$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa File: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (raw, json) Hash identifier: u0l6ewd10l3CnKNZWLyz/pX9vsxOgLw5k8pS9qZkY3A= Subject key identifier: 66:A9:54:B5:6F:89:22:5E:ED:03:B0:C5:EC:D5:8C:1E:3F:4F:9C:E2 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 06EE Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa Signing time: Fri 22 May 2026 22:27:28 +0000 ROA not before: Fri 22 May 2026 22:27:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 141995 IP address blocks: 194.233.64.0/22 maxlen: 22 194.233.68.0/22 maxlen: 22 194.233.72.0/22 maxlen: 22 194.233.76.0/22 maxlen: 22 194.233.80.0/22 maxlen: 22 194.233.84.0/22 maxlen: 22 194.233.88.0/22 maxlen: 22 194.233.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 21:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1774 (0x6ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: May 22 22:27:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a10d850-1337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2d:5f:8b:5a:ee:f5:ae:cb:83:3c:ab:28:44: 04:d7:6d:db:0a:39:47:d5:2a:67:c2:80:7e:cd:fe: 29:09:07:55:d9:d6:70:ee:c4:00:95:48:61:e1:18: ff:bd:71:b1:9f:6f:a3:84:10:8e:e7:05:55:02:fe: 52:30:55:5e:88:bf:e9:fe:a2:94:85:d9:99:a6:54: 91:00:ae:4c:0a:90:3b:cb:05:34:23:9d:be:7e:a1: 6d:0b:89:a9:8a:39:36:df:34:8e:a6:d7:7e:da:26: b4:22:00:11:e2:e4:9a:3f:5e:b7:62:80:ac:ea:c6: ec:75:5a:99:99:4b:b3:3f:75:53:37:c7:c5:2f:de: 78:c1:33:be:3d:0b:fc:48:bc:30:5a:25:fd:94:35: 90:40:da:21:cf:31:eb:d2:47:58:14:ec:ca:bd:67: 79:b6:a0:68:96:2d:e5:e2:05:3f:17:21:da:d7:65: a2:90:20:b5:7c:05:82:8c:a8:b3:74:ca:1a:4c:2d: b2:5a:7d:1d:8f:64:7a:66:e5:b7:ce:e4:66:0a:67: 8d:ca:56:22:52:74:20:c4:12:74:57:97:d5:53:21: 3b:ae:7e:a5:df:2a:57:63:ae:48:ac:74:e3:41:c8: f8:df:ce:47:1e:a3:86:a3:8a:02:53:73:bb:6a:7e: a3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A9:54:B5:6F:89:22:5E:ED:03:B0:C5:EC:D5:8C:1E:3F:4F:9C:E2 X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 194.233.64.0/19 Signature Algorithm: sha256WithRSAEncryption a3:e5:c8:4b:57:d7:8b:a5:ed:65:a2:f5:2b:2f:80:45:85:7d: b8:db:14:2e:9e:cd:20:fc:31:10:04:49:6d:25:de:f7:06:b4: 1b:fd:dd:cd:9a:8b:a0:7b:83:7f:0b:84:71:d2:45:77:2f:ae: 1f:5f:f1:14:f9:d9:18:99:09:c2:64:51:45:6c:c8:65:82:f3: 97:9d:59:2d:e8:40:d6:de:f6:5d:5a:e9:e5:c1:f8:e7:c2:8e: c8:54:3c:70:1e:98:aa:69:19:10:8b:1b:62:40:89:e5:68:bf: d2:ef:74:94:9d:ea:f6:13:e3:f4:18:d4:e2:94:55:10:bc:ca: 70:09:be:1f:72:0d:9e:5d:a0:69:98:62:25:ac:cf:29:7a:58: 94:b9:a1:27:08:8a:5e:b3:f3:72:87:29:6f:6b:39:cf:ea:69: ba:60:1f:c8:39:2c:fa:08:2c:0c:41:2c:2a:39:95:5d:b3:9b: bc:4f:3e:a4:1f:01:a5:27:33:6e:7f:2a:bc:96:23:00:ea:cc: f0:cd:fd:52:4a:d1:8c:bc:3b:c8:d8:d4:8e:5b:cf:35:73:2b: 0c:33:80:83:2f:fb:c1:33:97:c7:3c:3f:fd:6c:49:6e:6c:85: ad:fa:39:f4:6c:5c:5a:36:9a:ad:7c:dc:53:98:a4:da:95:d3: 0e:c7:00:5e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjYwNTIyMjIyNzI4WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwZDg1MC0xMzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC1fi1ru9a7LgzyrKEQE123bCjlH1SpnwoB+zf4pCQdV2dZw7sQAlUhh4Rj/ vXGxn2+jhBCO5wVVAv5SMFVeiL/p/qKUhdmZplSRAK5MCpA7ywU0I52+fqFtC4mp ijk23zSOptd+2ia0IgAR4uSaP163YoCs6sbsdVqZmUuzP3VTN8fFL954wTO+PQv8 SLwwWiX9lDWQQNohzzHr0kdYFOzKvWd5tqBoli3l4gU/FyHa12WikCC1fAWCjKiz dMoaTC2yWn0dj2R6ZuW3zuRmCmeNylYiUnQgxBJ0V5fVUyE7rn6l3ypXY65IrHTj Qcj4385HHqOGo4oCU3O7an6jFQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGapVLVv iSJe7QOwxezVjB4/T5ziMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzk1Q0EvNjM0NzM3NTY5ODA2MTFFQkE4N0UyNzY1QzRGOUFFMDIvMkI4RDc2QUU5 QkI3MTFFQkJCN0JBMDJCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFwulAMA0GCSqGSIb3DQEBCwUAA4IBAQCj5chLV9eLpe1lovUrL4BF hX242xQuns0g/DEQBEltJd73BrQb/d3Nmouge4N/C4Rx0kV3L64fX/EU+dkYmQnC ZFFFbMhlgvOXnVkt6EDW3vZdWunlwfjnwo7IVDxwHpiqaRkQixtiQInlaL/S73SU ner2E+P0GNTilFUQvMpwCb4fcg2eXaBpmGIlrM8peliUuaEnCIpes/NyhylvaznP 6mm6YB/IOSz6CCwMQSwqOZVds5u8Tz6kHwGlJzNufyq8liMA6szwzf1SStGMvDvI 2NSOW881cysMM4CDL/vBM5fHPD/9bElubIWt+jn0bFxaNpqtfNxTmKTaldMOxwBe -----END CERTIFICATE-----Generated at Sat Jun 6 13:25:57 2026 by rpki-client