$ rpki-client -vvf rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/2B46EF64951211F0A6C6AF5AC4F9AE02.roa File: 2B46EF64951211F0A6C6AF5AC4F9AE02.roa (raw, json) Hash identifier: CZf1VlKoEaqshjSK2lnVUILrCRzYZXt31OkqsPRaGqc= Subject key identifier: 86:DB:84:A1:07:CE:2C:1B:E1:F7:FF:BF:B2:AB:71:27:29:88:B4:CD Certificate issuer: /CN=A91F58C9/serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Certificate serial: 03F6 Authority key identifier: 19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/2B46EF64951211F0A6C6AF5AC4F9AE02.roa Signing time: Fri 19 Sep 2025 04:36:12 +0000 ROA not before: Fri 19 Sep 2025 04:36:12 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 7594 IP address blocks: 2400:16e0:36::/48 maxlen: 48 2400:16e0:36:3000::64/128 maxlen: 128 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1014 (0x3f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F58C9, serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Validity Not Before: Sep 19 04:36:12 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68ccddbb-cda2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c6:81:2c:8f:04:bd:62:71:d6:87:61:9d:15: a2:9b:07:5b:63:4a:f1:5c:e1:4d:51:33:73:3a:88: 07:2f:24:58:68:35:7f:16:b1:82:30:3c:ec:e6:64: ed:4f:c5:f7:2f:78:f7:40:3f:c0:29:02:14:43:bf: 8a:8c:47:ff:4c:80:b0:83:02:aa:98:af:5f:71:df: 22:46:c1:f9:04:46:05:39:34:8e:ed:05:4f:82:fb: 28:ab:06:36:54:50:1e:17:d4:e6:4d:06:8e:f8:86: 3a:a2:14:48:92:01:f9:29:21:3e:ad:47:7d:d9:a2: 10:0d:59:ac:43:ff:dc:c0:77:4d:31:be:d7:bd:aa: ba:67:35:1d:4f:a3:b7:90:e4:0e:ef:3a:cd:b3:76: f0:12:7f:1a:a2:fd:94:f7:fc:48:88:95:6a:94:32: 7c:b6:c1:30:43:2d:2e:64:7b:17:38:6f:bb:bb:fa: 9c:52:0b:51:db:dd:d8:40:38:93:0c:f9:b4:3a:5e: c8:fe:3f:50:7d:82:66:cc:c6:a5:9e:ec:59:53:e5: f5:37:d2:0b:84:b8:fe:82:c9:5e:7a:79:86:c2:cf: 9e:de:af:8f:06:58:4f:b7:c5:e9:64:e3:42:bb:9e: 6a:55:b1:e8:70:b6:c5:a6:02:b3:36:d4:a8:c7:2c: ef:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:DB:84:A1:07:CE:2C:1B:E1:F7:FF:BF:B2:AB:71:27:29:88:B4:CD X509v3 Authority Key Identifier: keyid:19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/2B46EF64951211F0A6C6AF5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:16e0:36::/48 Signature Algorithm: sha256WithRSAEncryption 0b:4c:5e:66:e9:f4:0b:72:17:ec:72:b0:49:99:11:5b:30:41: 23:cc:0d:d4:7b:73:e8:9b:2f:c4:65:d9:f3:1a:c2:33:8f:d0: 1c:50:3a:62:21:bc:7f:a4:63:71:a2:8d:e0:e9:35:76:e0:b5: ad:3e:ce:6d:24:fa:f6:01:b9:64:76:a5:37:52:f0:53:2b:1c: 71:02:2e:9a:39:78:2a:0c:70:97:b2:c8:8a:d4:f6:5c:fd:ba: cd:3b:68:ec:7a:ca:4b:2c:d6:a6:91:f6:01:ab:84:08:cf:df: a9:0c:9e:21:c6:6f:98:ac:42:9b:45:2d:af:98:39:11:58:99: d8:9b:7c:f7:cd:e4:d9:b5:d9:15:3e:aa:8c:d9:bb:be:a2:01: e7:84:f6:ed:e5:f7:9c:39:51:ba:91:d3:af:01:35:67:43:fe: 1f:70:15:c9:b1:0d:c7:94:da:b4:6e:4d:6c:36:4b:c7:7b:ac: 6a:89:c0:27:c1:de:a6:20:00:f8:7c:40:1b:0d:7a:e2:1a:50: 6a:72:74:b3:17:a3:02:ff:98:30:f8:6a:3f:2e:c1:4f:d5:1e: ed:5d:31:3a:0d:b1:f0:ed:8c:da:99:13:a8:57:e4:cd:c3:a3: 4d:64:c9:e5:ae:97:b5:6c:84:36:26:b0:3a:5e:54:4c:30:3a: 73:21:30:dd -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4QzkxMTAvBgNVBAUTKDE5Mjk3N0REQUEwOTVCNDA3N0VFMEQ3NjIzODQ2M0Yx QjZGNDBBRUUwHhcNMjUwOTE5MDQzNjEyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjZGRiYi1jZGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcaBLI8EvWJx1odhnRWimwdbY0rxXOFNUTNzOogHLyRYaDV/FrGCMDzs5mTt T8X3L3j3QD/AKQIUQ7+KjEf/TICwgwKqmK9fcd8iRsH5BEYFOTSO7QVPgvsoqwY2 VFAeF9TmTQaO+IY6ohRIkgH5KSE+rUd92aIQDVmsQ//cwHdNMb7Xvaq6ZzUdT6O3 kOQO7zrNs3bwEn8aov2U9/xIiJVqlDJ8tsEwQy0uZHsXOG+7u/qcUgtR293YQDiT DPm0Ol7I/j9QfYJmzMalnuxZU+X1N9ILhLj+gsleenmGws+e3q+PBlhPt8XpZONC u55qVbHocLbFpgKzNtSoxyzvAwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIbbhKEH ziwb4ff/v7KrcScpiLTNMB8GA1UdIwQYMBaAFBkpd92qCVtAd+4NdiOEY/G29Aru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNThDOS80MEUwQzBFRTkz NkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcwQjM3ZzEySTRSajhiYjBD dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dTbDMzYW9KVzBCMzdnMTJJNFJqOGJiMEN1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU4QzkvNDBFMEMwRUU5MzZDMTFFQ0JEQzExQTIwQzRGOUFFMDIvMkI0NkVGNjQ5 NTEyMTFGMEE2QzZBRjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkABbgADYwDQYJKoZIhvcNAQELBQADggEBAAtMXmbp9Aty F+xysEmZEVswQSPMDdR7c+ibL8Rl2fMawjOP0BxQOmIhvH+kY3GijeDpNXbgta0+ zm0k+vYBuWR2pTdS8FMrHHECLpo5eCoMcJeyyIrU9lz9us07aOx6ykss1qaR9gGr hAjP36kMniHGb5isQptFLa+YORFYmdibfPfN5Nm12RU+qozZu76iAeeE9u3l95w5 UbqR068BNWdD/h9wFcmxDceU2rRuTWw2S8d7rGqJwCfB3qYgAPh8QBsNeuIaUGpy dLMXowL/mDD4aj8uwU/VHu1dMToNsfDtjNqZE6hX5M3Do01kyeWul7VshDYmsDpe VEwwOnMhMN0= -----END CERTIFICATE-----Generated at Thu Oct 23 01:42:19 2025 by rpki-client