$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/2E7B4F0CD45811EF908AFE44C4F9AE02.roa File: 2E7B4F0CD45811EF908AFE44C4F9AE02.roa (raw, json) Hash identifier: 0gWp5PyGmTihYDNzToQweag+/yXIgKytaRcZImh3PUI= Subject key identifier: 68:7F:88:5D:3C:E3:1B:DD:18:65:3F:C3:01:62:B7:C5:96:36:B4:EB Certificate issuer: /CN=A91C6BB9/serialNumber=C79112C7C5AC36583221D1F94675196C2136EABE Certificate serial: 073C Authority key identifier: C7:91:12:C7:C5:AC:36:58:32:21:D1:F9:46:75:19:6C:21:36:EA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/2E7B4F0CD45811EF908AFE44C4F9AE02.roa Signing time: Tue 10 Jun 2025 22:09:36 +0000 ROA not before: Tue 10 Jun 2025 22:09:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17763 IP address blocks: 203.12.28.0/24 maxlen: 24 203.28.70.0/24 maxlen: 24 203.28.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.crl rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1852 (0x73c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BB9, serialNumber=C79112C7C5AC36583221D1F94675196C2136EABE Validity Not Before: Jun 10 22:09:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6848ad20-e274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bf:ac:04:6b:d3:8c:7f:d5:52:57:23:29:dc: 55:79:5d:57:08:e1:a4:c5:1b:4b:d4:45:91:43:cd: a6:25:3c:db:f9:3f:83:92:0d:1b:18:3f:7c:ea:3a: 51:25:17:a3:ba:3f:11:ee:cc:db:3a:24:08:b0:d9: 8b:7b:f7:dd:37:0d:76:1e:50:30:aa:d3:50:9d:38: 0d:9d:b6:95:58:b5:df:cf:f3:12:35:da:0b:81:c8: 66:60:b1:3c:f2:c1:20:e6:0c:1e:91:67:c2:68:4d: 25:a4:ee:70:f8:52:af:ad:f0:56:c1:1d:ac:06:91: 3c:4f:f6:79:7d:bc:0a:9a:7b:97:c2:1e:59:14:15: 15:12:2c:7a:c4:d8:8c:3f:ac:8c:cc:e6:91:8e:83: fe:04:66:4d:eb:93:28:65:c6:d0:08:2b:44:8f:61: d5:7e:4a:57:4d:ae:e2:7f:70:44:9e:21:52:23:e3: 57:da:cb:8e:75:1f:2c:06:7f:5d:d5:75:bd:ed:95: 11:aa:40:0d:9c:63:51:54:57:9e:17:d8:64:f4:37: f1:3d:dd:ca:fe:5a:f2:2b:98:ff:51:da:0a:9b:95: 30:d4:74:0f:56:93:42:2a:4a:d0:3a:6d:e3:d3:ba: c9:8c:a3:47:ed:a7:41:4f:e7:89:cd:78:31:b8:b4: a3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:7F:88:5D:3C:E3:1B:DD:18:65:3F:C3:01:62:B7:C5:96:36:B4:EB X509v3 Authority Key Identifier: keyid:C7:91:12:C7:C5:AC:36:58:32:21:D1:F9:46:75:19:6C:21:36:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/2E7B4F0CD45811EF908AFE44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.28.0/24 203.28.70.0/23 Signature Algorithm: sha256WithRSAEncryption 26:a4:19:2d:8d:c4:4a:4b:61:8e:ef:ab:4b:de:a1:f5:e9:29: 47:9e:e9:3c:b4:79:08:b2:e5:98:6e:36:fa:28:69:ba:c4:41: ed:8b:12:76:25:47:00:84:b1:96:27:1b:ba:3c:b2:4e:71:e8: 93:d8:2b:7f:f0:49:17:03:73:10:57:e3:49:ee:70:f5:e5:b7: c2:f8:04:9d:64:0c:44:9f:03:ea:b3:10:a0:c7:c8:f7:9f:9b: e4:e4:dc:16:ce:28:3c:61:a1:35:32:25:28:8e:1d:ce:03:21: ce:fd:e8:af:11:49:b9:52:eb:60:77:2a:4d:00:3c:65:0d:92: 04:d6:77:2d:db:a3:88:2e:1b:d0:e5:9b:83:66:69:eb:88:ef: fd:53:70:b3:cb:3b:81:db:49:8d:b1:ab:50:b2:3f:b3:3c:34: b4:a3:66:f3:d2:d2:54:8e:a1:11:9d:15:f2:b0:35:80:c5:a5: c0:19:6d:2f:27:dd:f6:f4:93:96:ee:89:7d:f6:1a:55:e0:6f: 75:da:e2:cd:bd:ba:7b:35:b5:39:89:82:07:a0:55:c9:f2:63: 73:76:3d:88:38:5e:7f:d5:86:a1:c4:db:53:09:37:92:79:44: f6:6f:0f:2c:d7:a7:f1:74:a4:fc:3b:9a:d3:6a:12:c3:48:60: 30:e8:ba:f7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCQjkxMTAvBgNVBAUTKEM3OTExMkM3QzVBQzM2NTgzMjIxRDFGOTQ2NzUxOTZD MjEzNkVBQkUwHhcNMjUwNjEwMjIwOTM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4YWQyMC1lMjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvb+sBGvTjH/VUlcjKdxVeV1XCOGkxRtL1EWRQ82mJTzb+T+Dkg0bGD986jpR JRejuj8R7szbOiQIsNmLe/fdNw12HlAwqtNQnTgNnbaVWLXfz/MSNdoLgchmYLE8 8sEg5gwekWfCaE0lpO5w+FKvrfBWwR2sBpE8T/Z5fbwKmnuXwh5ZFBUVEix6xNiM P6yMzOaRjoP+BGZN65MoZcbQCCtEj2HVfkpXTa7if3BEniFSI+NX2suOdR8sBn9d 1XW97ZURqkANnGNRVFeeF9hk9DfxPd3K/lryK5j/UdoKm5Uw1HQPVpNCKkrQOm3j 07rJjKNH7adBT+eJzXgxuLSjmQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGh/iF08 4xvdGGU/wwFit8WWNrTrMB8GA1UdIwQYMBaAFMeREsfFrDZYMiHR+UZ1GWwhNuq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJCOS82QkRFQUE3RTM5 MEMxMUVCQjIxODFENjNDNEY5QUUwMi94NUVTeDhXc05sZ3lJZEg1Um5VWmJDRTI2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1RVN4OFdzTmxneUlkSDVSblVaYkNFMjZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZCQjkvNkJERUFBN0UzOTBDMTFFQkIyMTgxRDYzQzRGOUFFMDIvMkU3QjRGMENE NDU4MTFFRjkwOEFGRTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLDBwDBAHLHEYwDQYJKoZIhvcNAQELBQADggEBACakGS2N xEpLYY7vq0veofXpKUee6Ty0eQiy5ZhuNvooabrEQe2LEnYlRwCEsZYnG7o8sk5x 6JPYK3/wSRcDcxBX40nucPXlt8L4BJ1kDESfA+qzEKDHyPefm+Tk3BbOKDxhoTUy JSiOHc4DIc796K8RSblS62B3Kk0APGUNkgTWdy3bo4guG9Dlm4NmaeuI7/1TcLPL O4HbSY2xq1CyP7M8NLSjZvPS0lSOoRGdFfKwNYDFpcAZbS8n3fb0k5buiX32GlXg b3Xa4s29uns1tTmJggegVcnyY3N2PYg4Xn/VhqHE21MJN5J5RPZvDyzXp/F0pPw7 mtNqEsNIYDDouvc= -----END CERTIFICATE-----Generated at Tue Nov 4 17:18:15 2025 by rpki-client