$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/2FD77F7E621511F09070587CC4F9AE02.roa File: 2FD77F7E621511F09070587CC4F9AE02.roa (raw, json) Hash identifier: DzXy8BEuESMOqIj1ZsPp4HtWDSpRtccWGiXvOFf8WyM= Subject key identifier: 23:6D:26:0B:CD:E1:84:93:E8:73:16:90:C5:09:83:DD:6F:AA:28:01 Certificate issuer: /CN=A91F5756/serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Certificate serial: 1E Authority key identifier: 40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/2FD77F7E621511F09070587CC4F9AE02.roa Signing time: Wed 03 Sep 2025 08:38:11 +0000 ROA not before: Wed 03 Sep 2025 08:38:10 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 140666 IP address blocks: 160.187.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 08:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5756, serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Validity Not Before: Sep 3 08:38:10 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68b7fe72-76be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b4:6c:95:fb:c8:fb:87:0a:1b:a2:8b:62:3f: a5:9c:fd:53:8c:4c:6b:59:71:4e:d6:78:1c:28:07: 56:10:4f:f4:19:21:fd:4c:49:1d:c0:b4:d3:ed:d6: e7:7f:27:d9:7a:55:63:3e:1a:1b:7e:59:32:74:1d: d5:f5:96:f3:51:d0:4f:3a:44:06:c5:cf:a1:15:71: ad:dd:1e:08:2b:79:02:89:96:d5:c2:3b:96:30:3e: cf:b7:6e:5b:21:5c:8e:77:df:77:3e:8f:02:3d:8a: b9:32:a7:a3:b7:18:f4:88:b8:89:52:c5:74:f8:03: 1d:a5:7b:55:c9:85:a8:75:26:79:c9:c2:12:fc:ce: a8:3c:74:2a:26:1d:07:1f:c7:40:b5:44:65:58:b9: 7b:15:d1:e8:3d:4d:35:7e:16:0b:d5:7f:ee:19:87: a4:87:0f:a4:88:33:63:e4:c1:5c:8a:62:57:70:78: e8:44:78:5b:fb:42:07:3f:5b:51:db:b8:a6:7e:f0: 0f:a5:7f:b9:b1:c6:c7:e3:42:31:31:9c:a4:40:54: 36:24:6b:70:55:17:b8:a0:32:8e:1b:ed:f2:77:83: bb:db:88:fd:99:05:98:62:e6:9e:24:6b:2c:c8:a7: d2:d7:69:0f:52:09:d5:23:5a:3c:77:c2:80:65:84: 1e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:6D:26:0B:CD:E1:84:93:E8:73:16:90:C5:09:83:DD:6F:AA:28:01 X509v3 Authority Key Identifier: keyid:40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/2FD77F7E621511F09070587CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.134.0/23 Signature Algorithm: sha256WithRSAEncryption c2:7c:a3:cb:63:06:f6:bd:4a:1d:b5:4b:56:b6:1a:a3:c4:5e: 40:62:5d:95:13:1e:0d:8e:d0:a2:cb:82:91:16:d2:0f:f3:b6: 36:e1:b6:86:a1:24:a6:e8:a8:eb:35:bd:58:c8:a1:af:0e:f5: 3d:96:ea:8e:08:83:2e:ae:bd:2b:d8:86:e4:e3:3a:cb:dc:46: 19:92:4e:86:f3:9a:22:7e:47:42:9a:9c:ed:6a:6f:14:06:96: 18:c1:ce:d4:f9:a0:55:f8:5e:fc:ff:0a:cd:e3:74:c6:e3:99: 56:68:a4:d3:44:aa:71:da:25:f2:86:73:10:5c:28:e6:ff:02: ac:15:31:9c:a7:8d:41:99:f4:42:8b:85:b0:e0:61:34:c7:66: 33:42:a4:ab:a1:43:ce:82:77:fe:26:c4:8b:45:a5:40:cd:58: 30:fa:1f:24:cc:01:f0:cd:d8:cb:99:ca:07:20:cd:29:df:67: 88:f2:56:1e:3f:1c:44:5b:99:5a:4b:16:53:b2:7c:cc:14:bf: 4a:29:64:70:35:8c:d5:1a:c4:49:30:d9:16:3a:f3:f0:34:5f: 41:1f:4a:93:ed:51:e0:8e:5b:ba:18:03:05:8b:30:c4:2d:d6: 4c:ec:13:0c:eb:1e:a1:40:77:e8:9f:73:73:e9:0b:37:8a:6c: ce:c1:a1:14 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTc1NjExMC8GA1UEBRMoNDAxRDhCREM4MkEzMjQ0OEM5M0JBM0EwRkU5M0FGMTA2 NDIzNjJBMjAeFw0yNTA5MDMwODM4MTBaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjdmZTcyLTc2YmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDztGyV+8j7hwobootiP6Wc/VOMTGtZcU7WeBwoB1YQT/QZIf1MSR3AtNPt1ud/ J9l6VWM+Ght+WTJ0HdX1lvNR0E86RAbFz6EVca3dHggreQKJltXCO5YwPs+3blsh XI5333c+jwI9irkyp6O3GPSIuIlSxXT4Ax2le1XJhah1JnnJwhL8zqg8dComHQcf x0C1RGVYuXsV0eg9TTV+FgvVf+4Zh6SHD6SIM2PkwVyKYldweOhEeFv7Qgc/W1Hb uKZ+8A+lf7mxxsfjQjExnKRAVDYka3BVF7igMo4b7fJ3g7vbiP2ZBZhi5p4kayzI p9LXaQ9SCdUjWjx3woBlhB7fAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUI20mC83h hJPocxaQxQmD3W+qKAEwHwYDVR0jBBgwFoAUQB2L3IKjJEjJO6Og/pOvEGQjYqIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1NzU2LzZCNzI3RjMyNjIx MjExRjA4Q0E2QzE1NEM0RjlBRTAyL1FCMkwzSUtqSkVqSk82T2dfcE92RUdRallx SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUIyTDNJS2pKRWpKTzZPZ19wT3ZFR1FqWXFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTc1Ni82QjcyN0YzMjYyMTIxMUYwOENBNkMxNTRDNEY5QUUwMi8yRkQ3N0Y3RTYy MTUxMUYwOTA3MDU4N0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7hjANBgkqhkiG9w0BAQsFAAOCAQEAwnyjy2MG9r1KHbVL VrYao8ReQGJdlRMeDY7QosuCkRbSD/O2NuG2hqEkpuio6zW9WMihrw71PZbqjgiD Lq69K9iG5OM6y9xGGZJOhvOaIn5HQpqc7WpvFAaWGMHO1PmgVfhe/P8KzeN0xuOZ Vmik00Sqcdol8oZzEFwo5v8CrBUxnKeNQZn0QouFsOBhNMdmM0Kkq6FDzoJ3/ibE i0WlQM1YMPofJMwB8M3Yy5nKByDNKd9niPJWHj8cRFuZWksWU7J8zBS/SilkcDWM 1RrESTDZFjrz8DRfQR9Kk+1R4I5buhgDBYswxC3WTOwTDOseoUB36J9zc+kLN4ps zsGhFA== -----END CERTIFICATE-----Generated at Fri Sep 5 08:39:40 2025 by rpki-client