$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa File: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (raw, json) Hash identifier: l4uYU+uPf8JPateYFt5+JYWdyGHASfl72ELVvU8+Sso= Subject key identifier: A2:0E:E3:77:02:FE:2B:DF:CD:34:A4:CD:4B:04:C8:F2:10:C6:BC:DB Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 06C0 Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:44:07 +0000 ROA not before: Tue 06 May 2025 22:33:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141995 IP address blocks: 194.233.64.0/22 maxlen: 22 194.233.68.0/22 maxlen: 22 194.233.72.0/22 maxlen: 22 194.233.76.0/22 maxlen: 22 194.233.80.0/22 maxlen: 22 194.233.84.0/22 maxlen: 22 194.233.88.0/22 maxlen: 22 194.233.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 21:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1728 (0x6c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: May 6 22:33:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fc57-9adf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0c:91:ad:5e:68:04:4b:49:8f:8e:3f:5a:fa: 38:9a:19:27:a2:bc:99:91:6f:ea:51:f5:e6:82:ff: e6:71:60:18:e2:bd:ee:dd:89:4c:fe:94:ab:31:98: 51:b2:5e:8b:15:5e:44:4e:7e:3b:2c:55:80:3c:1d: 44:40:e1:7f:db:fc:00:a4:98:eb:da:65:b5:79:51: b7:2e:9d:b2:cd:9c:6d:be:7f:5b:13:43:a9:81:15: 13:67:45:35:28:b0:c9:44:8c:5e:fc:dd:b3:f8:23: 27:3b:59:07:c5:e2:da:48:d7:d2:ae:eb:b0:b1:4b: e7:af:e4:13:ac:54:cd:de:22:4b:ae:50:a9:f5:64: 2c:8c:7f:39:36:31:a3:36:3f:ca:15:d9:23:6b:c6: 08:fe:40:c5:10:13:03:1f:9b:25:b7:b3:ed:05:29: 1b:0c:3a:4b:53:7c:c6:39:2b:f0:e6:c5:46:95:32: 5e:8b:06:93:c3:93:e4:5d:41:77:b9:33:13:bc:f6: 47:7c:c0:d8:e8:36:ff:54:bd:3c:e2:5a:dc:87:e5: 97:69:e5:85:61:8d:31:47:7e:22:f8:ba:ce:db:a2: 22:ba:1c:1c:14:8a:e2:92:b7:13:86:e5:fd:16:02: 47:98:69:32:72:87:e8:74:9b:69:8f:02:0d:62:36: 9c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0E:E3:77:02:FE:2B:DF:CD:34:A4:CD:4B:04:C8:F2:10:C6:BC:DB X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 194.233.64.0/19 Signature Algorithm: sha256WithRSAEncryption 5a:5b:7e:e8:a6:91:46:08:13:bc:14:68:91:5a:b7:88:42:8c: 6c:09:e4:64:46:2c:71:c7:1e:b3:e2:8f:e3:0d:1f:15:9a:92: 14:08:80:1e:d6:25:f1:0d:8d:62:60:37:4c:41:0c:28:8b:d3: 3c:2e:37:5b:a6:06:71:57:a9:fd:81:6b:fc:65:f9:22:0b:83: c6:2d:ed:6c:a8:0a:d3:e4:ed:51:84:f6:42:9b:78:c3:12:23: 6b:ef:70:9e:e7:da:bf:c9:71:94:38:ee:ed:69:f5:b6:be:e0: f8:d1:dc:65:6a:2f:9f:70:4c:2a:fa:8b:68:e1:dc:8b:78:bb: e5:29:3c:ae:c0:47:0c:45:79:9e:64:78:f5:47:6c:d0:2f:14: 39:d8:f6:76:83:cc:bb:67:a7:f2:82:09:43:94:22:b5:79:29: 89:f8:3e:bb:65:f9:46:a2:ae:66:a5:aa:c4:32:f1:c8:b0:e6: 4f:e6:d7:9c:cc:d9:32:8d:44:d7:1e:41:6a:ca:76:d8:87:1f: c3:0f:40:0f:3f:1e:01:51:45:35:bb:25:ac:40:41:25:42:0d: 0e:53:39:80:28:50:0a:53:2f:ca:78:c5:bb:b7:1c:6d:0f:cf: a3:45:bf:55:14:7d:a0:14:44:47:28:74:a7:8a:a2:e3:bd:6f: 11:5c:d4:ea -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjUwNTA2MjIzMzUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmM1Ny05YWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgyRrV5oBEtJj44/Wvo4mhknoryZkW/qUfXmgv/mcWAY4r3u3YlM/pSrMZhR sl6LFV5ETn47LFWAPB1EQOF/2/wApJjr2mW1eVG3Lp2yzZxtvn9bE0OpgRUTZ0U1 KLDJRIxe/N2z+CMnO1kHxeLaSNfSruuwsUvnr+QTrFTN3iJLrlCp9WQsjH85NjGj Nj/KFdkja8YI/kDFEBMDH5slt7PtBSkbDDpLU3zGOSvw5sVGlTJeiwaTw5PkXUF3 uTMTvPZHfMDY6Db/VL084lrch+WXaeWFYY0xR34i+LrO26IiuhwcFIrikrcThuX9 FgJHmGkycofodJtpjwINYjacEQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKIO43cC /ivfzTSkzUsEyPIQxrzbMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzk1Q0EvNjM0NzM3NTY5ODA2MTFFQkE4N0UyNzY1QzRGOUFFMDIvMkI4RDc2QUU5 QkI3MTFFQkJCN0JBMDJCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFwulAMA0GCSqGSIb3DQEBCwUAA4IBAQBaW37oppFGCBO8FGiRWreI QoxsCeRkRixxxx6z4o/jDR8VmpIUCIAe1iXxDY1iYDdMQQwoi9M8LjdbpgZxV6n9 gWv8ZfkiC4PGLe1sqArT5O1RhPZCm3jDEiNr73Ce59q/yXGUOO7tafW2vuD40dxl ai+fcEwq+oto4dyLeLvlKTyuwEcMRXmeZHj1R2zQLxQ52PZ2g8y7Z6fygglDlCK1 eSmJ+D67ZflGoq5mparEMvHIsOZP5teczNkyjUTXHkFqynbYhx/DD0APPx4BUUU1 uyWsQEElQg0OUzmAKFAKUy/KeMW7txxtD8+jRb9VFH2gFERHKHSniqLjvW8RXNTq -----END CERTIFICATE-----Generated at Sat Mar 7 16:12:07 2026 by rpki-client