$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/2FD77F7E621511F09070587CC4F9AE02.roa File: 2FD77F7E621511F09070587CC4F9AE02.roa (raw, json) Hash identifier: 3+o7qebkkN1OKvUkerL7wnawvdJf5yEWl5f4sMyfaMA= Subject key identifier: 08:2F:BD:9A:5B:C8:3C:1F:4B:DE:5E:80:90:50:C2:9E:4D:D9:9F:D6 Certificate issuer: /CN=A91F5756/serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Certificate serial: 02 Authority key identifier: 40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/2FD77F7E621511F09070587CC4F9AE02.roa Signing time: Wed 16 Jul 2025 07:19:18 +0000 ROA not before: Wed 16 Jul 2025 07:19:18 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 140666 IP address blocks: 160.187.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5756, serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Validity Not Before: Jul 16 07:19:18 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68775276-ff26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:db:6f:56:8b:c4:36:80:c2:33:12:62:ce:7e: fa:d8:b4:2c:dc:0e:f0:71:7e:26:a6:59:14:28:0c: 2b:ff:e3:d0:bf:bf:34:6a:e5:d4:96:51:b5:c9:89: 93:a9:59:59:c1:ea:cb:c8:05:a9:fc:b1:23:b3:4f: 9b:ee:e1:d6:8a:6e:e5:04:2f:8a:18:f4:62:1a:d5: cd:c0:a8:68:16:fb:7d:41:30:0f:f3:d3:9c:83:89: 40:92:92:20:70:23:34:4a:88:03:34:c9:e6:6e:76: 1f:4d:cc:bd:54:fb:57:fb:bf:be:3c:dd:3a:d7:d9: 96:7f:80:42:ab:1c:13:8c:c7:26:62:3d:fd:27:e3: 16:11:7c:47:45:54:ed:e9:b7:54:e6:5c:b8:55:33: d5:fe:9e:ef:43:ec:1b:c4:69:75:6a:31:cc:fa:65: 70:c9:07:13:6d:4a:be:65:89:70:07:3d:68:a9:3d: 7c:1e:06:36:76:19:64:5a:2f:6c:66:7a:f7:f9:94: 1f:fb:84:40:6f:b3:a1:ed:e5:86:93:ea:b7:fc:0e: 78:d0:d1:da:83:db:ed:8a:79:27:ec:22:44:4d:19: e4:2f:5e:2b:a8:31:34:0a:9a:15:ff:4e:28:76:55: 06:06:25:2c:7c:71:77:21:a3:34:9b:4b:63:12:60: d5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:2F:BD:9A:5B:C8:3C:1F:4B:DE:5E:80:90:50:C2:9E:4D:D9:9F:D6 X509v3 Authority Key Identifier: keyid:40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/2FD77F7E621511F09070587CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.134.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:0a:e0:4e:b3:92:95:b1:f6:af:d1:f1:c5:76:6b:39:24:49: 75:7c:be:a9:1a:70:a3:46:82:a0:7c:2e:bf:89:99:1c:3d:af: 74:66:d8:65:67:c6:53:d0:a8:d2:88:fe:26:a7:41:d1:39:8e: d7:6a:df:bb:a9:8e:09:0a:6c:59:01:02:09:44:a5:4f:22:59: 77:d7:cc:34:a5:cc:0a:39:29:68:c2:bf:ed:a1:3f:0e:7b:3c: ee:4b:76:88:b6:a5:52:a9:29:18:09:6f:4a:42:a6:07:2f:fb: b8:ad:ab:85:90:11:f9:27:70:f3:3d:a0:df:18:58:42:c7:81: 9d:b5:4d:0a:c9:22:0e:4a:49:8f:d9:25:6c:33:44:b0:6f:98: 13:e5:14:21:45:30:52:2e:3e:38:f7:2b:86:00:2c:25:e0:c7: d0:e8:3a:82:76:9f:86:e5:19:a7:91:9d:be:93:55:88:9f:0a: ec:64:5e:00:33:50:45:77:c2:18:66:43:38:a0:03:63:a2:0e: a9:26:2e:68:ca:92:e5:93:35:ee:5a:23:84:ce:90:7e:13:64: 3b:0f:54:db:28:ce:05:04:97:23:c5:c4:16:2a:28:a7:54:f9: fd:e0:17:21:b7:ff:8e:fe:71:6f:d9:fc:52:e1:dd:5f:22:5e: 30:20:0d:71 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTc1NjExMC8GA1UEBRMoNDAxRDhCREM4MkEzMjQ0OEM5M0JBM0EwRkU5M0FGMTA2 NDIzNjJBMjAeFw0yNTA3MTYwNzE5MThaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Nzc1Mjc2LWZmMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3229Wi8Q2gMIzEmLOfvrYtCzcDvBxfiamWRQoDCv/49C/vzRq5dSWUbXJiZOp WVnB6svIBan8sSOzT5vu4daKbuUEL4oY9GIa1c3AqGgW+31BMA/z05yDiUCSkiBw IzRKiAM0yeZudh9NzL1U+1f7v7483TrX2ZZ/gEKrHBOMxyZiPf0n4xYRfEdFVO3p t1TmXLhVM9X+nu9D7BvEaXVqMcz6ZXDJBxNtSr5liXAHPWipPXweBjZ2GWRaL2xm evf5lB/7hEBvs6Ht5YaT6rf8DnjQ0dqD2+2KeSfsIkRNGeQvXiuoMTQKmhX/Tih2 VQYGJSx8cXchozSbS2MSYNUbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUCC+9mlvI PB9L3l6AkFDCnk3Zn9YwHwYDVR0jBBgwFoAUQB2L3IKjJEjJO6Og/pOvEGQjYqIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1NzU2LzZCNzI3RjMyNjIx MjExRjA4Q0E2QzE1NEM0RjlBRTAyL1FCMkwzSUtqSkVqSk82T2dfcE92RUdRallx SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUIyTDNJS2pKRWpKTzZPZ19wT3ZFR1FqWXFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTc1Ni82QjcyN0YzMjYyMTIxMUYwOENBNkMxNTRDNEY5QUUwMi8yRkQ3N0Y3RTYy MTUxMUYwOTA3MDU4N0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7hjANBgkqhkiG9w0BAQsFAAOCAQEAngrgTrOSlbH2r9Hx xXZrOSRJdXy+qRpwo0aCoHwuv4mZHD2vdGbYZWfGU9Co0oj+JqdB0TmO12rfu6mO CQpsWQECCUSlTyJZd9fMNKXMCjkpaMK/7aE/Dns87kt2iLalUqkpGAlvSkKmBy/7 uK2rhZAR+Sdw8z2g3xhYQseBnbVNCskiDkpJj9klbDNEsG+YE+UUIUUwUi4+OPcr hgAsJeDH0Og6gnafhuUZp5GdvpNViJ8K7GReADNQRXfCGGZDOKADY6IOqSYuaMqS 5ZM17lojhM6QfhNkOw9U2yjOBQSXI8XEFioop1T5/eAXIbf/jv5xb9n8UuHdXyJe MCANcQ== -----END CERTIFICATE-----Generated at Sun Jul 20 21:20:00 2025 by rpki-client