$ rpki-client -vvf rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/2E248E2CAD8511F08469DF53C4F9AE02.roa File: 2E248E2CAD8511F08469DF53C4F9AE02.roa (raw, json) Hash identifier: tYXj2bMl7MaKxL6ygpAW6mqtyVQwQZ+Bu+BYsWPtUdc= Subject key identifier: 4A:A5:02:67:0E:B8:E9:2D:07:E1:B1:D6:6E:95:EE:92:8B:EA:8E:FA Certificate issuer: /CN=A91EABCB/serialNumber=16B98842D861AEFE803040200C9AAA89560F2BCA Certificate serial: 06D7 Authority key identifier: 16:B9:88:42:D8:61:AE:FE:80:30:40:20:0C:9A:AA:89:56:0F:2B:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrmIQthhrv6AMEAgDJqqiVYPK8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/2E248E2CAD8511F08469DF53C4F9AE02.roa Signing time: Mon 20 Oct 2025 07:19:57 +0000 ROA not before: Mon 20 Oct 2025 07:19:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55201 IP address blocks: 2400:bac0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/FrmIQthhrv6AMEAgDJqqiVYPK8o.crl rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/FrmIQthhrv6AMEAgDJqqiVYPK8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrmIQthhrv6AMEAgDJqqiVYPK8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 07:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1751 (0x6d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EABCB, serialNumber=16B98842D861AEFE803040200C9AAA89560F2BCA Validity Not Before: Oct 20 07:19:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68f5e29c-e00e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6d:d5:98:0b:e3:ff:2c:5f:02:5a:48:6a:cc: 21:a0:8c:a7:95:32:7f:ec:24:c7:8f:55:a7:be:14: 45:46:97:88:f5:c3:9b:06:f5:c3:4e:02:08:c6:af: 7b:68:32:b8:67:2e:61:5c:04:ad:ae:8b:79:2b:dc: ff:d8:13:2b:8c:e3:5f:b3:10:be:08:02:ae:46:d6: d9:e1:a6:1a:1d:5d:3f:63:8e:47:52:15:19:35:57: 7b:3c:c8:bd:ea:e2:c0:99:51:c7:cb:d2:99:8b:34: bc:7c:4a:78:6a:6a:35:b8:a3:7f:75:c9:d7:d1:81: 27:2d:1d:39:25:d0:85:d9:cf:09:56:b8:49:ad:07: 77:1a:11:62:81:59:73:bb:b1:a7:e9:e3:bd:a5:3f: 33:05:ca:db:55:bf:07:c3:7f:c0:c8:33:61:f1:bf: 40:3b:a2:d8:51:d6:d9:1f:96:d9:77:97:d5:79:04: 64:88:14:c0:c3:7a:99:02:d2:8f:58:be:91:56:eb: 33:a4:d8:02:4c:66:14:d2:5c:3e:7b:89:f0:7e:ad: 07:49:19:66:d9:14:ee:cb:39:7c:6d:7d:28:76:3b: 68:bb:1f:52:39:4c:6e:58:eb:ac:79:ba:15:ea:15: 42:ab:17:09:ac:0b:47:8b:27:45:2c:9f:e0:59:f4: ae:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A5:02:67:0E:B8:E9:2D:07:E1:B1:D6:6E:95:EE:92:8B:EA:8E:FA X509v3 Authority Key Identifier: keyid:16:B9:88:42:D8:61:AE:FE:80:30:40:20:0C:9A:AA:89:56:0F:2B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/FrmIQthhrv6AMEAgDJqqiVYPK8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrmIQthhrv6AMEAgDJqqiVYPK8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/2E248E2CAD8511F08469DF53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:bac0::/32 Signature Algorithm: sha256WithRSAEncryption 38:56:96:bb:e6:f4:8c:5f:57:c4:60:02:78:95:d5:10:b8:8b: 38:4b:aa:70:b1:57:2d:1f:af:91:33:3c:2a:09:ac:0f:8a:28: 6b:7f:91:61:11:44:56:f2:b5:c9:a0:d7:f0:f1:fb:70:2d:d6: 68:25:2a:6c:ab:1e:a3:b2:4e:8e:10:a3:37:f8:00:fc:19:d2: 88:82:0a:4b:76:bf:61:e5:18:84:eb:43:a9:8e:b4:5f:aa:ef: 2e:0f:8a:b4:6a:b7:e7:85:12:f7:e6:21:b9:02:e3:2c:d3:41: 4d:b4:41:97:39:5c:05:88:d9:1a:4f:05:52:0a:70:b3:32:1f: c3:00:4f:da:51:8d:37:de:66:b0:3f:c2:53:5d:1b:b4:ca:85: dd:c2:ca:32:d1:bb:d5:6a:61:82:ac:be:ee:f1:5d:2b:ad:72: 0b:05:b4:47:9b:45:03:86:96:a8:73:c5:7f:4a:d0:b2:5b:62: 4c:67:7a:ea:3c:9c:9e:c1:ef:cb:3c:d0:d1:85:30:25:f5:c7: 21:a3:5c:13:52:8d:1a:ab:8e:70:6d:b9:e7:64:a9:02:4d:a4: 8b:04:8c:04:27:c5:a0:b9:62:df:bd:75:df:96:4d:48:e4:6c: 60:fb:69:4c:5c:34:bd:e8:11:6d:91:01:fa:a5:48:37:6d:e4: a2:63:69:55 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCQ0IxMTAvBgNVBAUTKDE2Qjk4ODQyRDg2MUFFRkU4MDMwNDAyMDBDOUFBQTg5 NTYwRjJCQ0EwHhcNMjUxMDIwMDcxOTU2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGY1ZTI5Yy1lMDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxm3VmAvj/yxfAlpIaswhoIynlTJ/7CTHj1WnvhRFRpeI9cObBvXDTgIIxq97 aDK4Zy5hXAStrot5K9z/2BMrjONfsxC+CAKuRtbZ4aYaHV0/Y45HUhUZNVd7PMi9 6uLAmVHHy9KZizS8fEp4amo1uKN/dcnX0YEnLR05JdCF2c8JVrhJrQd3GhFigVlz u7Gn6eO9pT8zBcrbVb8Hw3/AyDNh8b9AO6LYUdbZH5bZd5fVeQRkiBTAw3qZAtKP WL6RVuszpNgCTGYU0lw+e4nwfq0HSRlm2RTuyzl8bX0odjtoux9SOUxuWOuseboV 6hVCqxcJrAtHiydFLJ/gWfSuqwIDAQABo4ICljCCApIwHQYDVR0OBBYEFEqlAmcO uOktB+Gx1m6V7pKL6o76MB8GA1UdIwQYMBaAFBa5iELYYa7+gDBAIAyaqolWDyvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUJDQi8zNDJGRkYxODdB ODYxMUVCOTdBRTUxNjBDNEY5QUUwMi9Gcm1JUXRoaHJ2NkFNRUFnREpxcWlWWVBL OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZybUlRdGhocnY2QU1FQWdESnFxaVZZUEs4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFCQ0IvMzQyRkZGMTg3QTg2MTFFQjk3QUU1MTYwQzRGOUFFMDIvMkUyNDhFMkNB RDg1MTFGMDg0NjlERjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkALrAMA0GCSqGSIb3DQEBCwUAA4IBAQA4Vpa75vSMX1fE YAJ4ldUQuIs4S6pwsVctH6+RMzwqCawPiihrf5FhEURW8rXJoNfw8ftwLdZoJSps qx6jsk6OEKM3+AD8GdKIggpLdr9h5RiE60OpjrRfqu8uD4q0arfnhRL35iG5AuMs 00FNtEGXOVwFiNkaTwVSCnCzMh/DAE/aUY033mawP8JTXRu0yoXdwsoy0bvVamGC rL7u8V0rrXILBbRHm0UDhpaoc8V/StCyW2JMZ3rqPJyewe/LPNDRhTAl9ccho1wT Uo0aq45wbbnnZKkCTaSLBIwEJ8WguWLfvXXflk1I5Gxg+2lMXDS96BFtkQH6pUg3 beSiY2lV -----END CERTIFICATE-----Generated at Tue Oct 21 22:24:39 2025 by rpki-client