$ rpki-client -vvf rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa File: 2ED1150C561D11E7B003DF26C4F9AE02.roa (raw, json) Hash identifier: hRXVDS2SOPtJ34LPdCH4GrMLjogwv7F/rCNwzymK5NA= Subject key identifier: 4B:5A:CB:95:A1:3C:35:6B:57:DF:CE:B6:B5:B8:13:4D:49:14:2E:0D Certificate issuer: /CN=A91C83EA/serialNumber=F76750515BB762D1800C5AE6C6C2DB24FE952D02 Certificate serial: 2AB1 Authority key identifier: F7:67:50:51:5B:B7:62:D1:80:0C:5A:E6:C6:C2:DB:24:FE:95:2D:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa Signing time: Wed 06 Aug 2025 15:52:28 +0000 ROA not before: Wed 06 Aug 2025 15:52:28 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45177 IP address blocks: 45.64.48.0/22 maxlen: 24 103.233.220.0/22 maxlen: 24 2401:1880::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.crl rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10929 (0x2ab1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C83EA, serialNumber=F76750515BB762D1800C5AE6C6C2DB24FE952D02 Validity Not Before: Aug 6 15:52:28 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68937a3c-e2dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:dc:4a:58:53:7b:38:86:db:b3:10:cb:cb:c6: 3f:c0:2c:cf:98:55:30:5b:a2:10:f4:d1:d2:b6:e3: 0e:df:ba:94:c5:2c:ca:f2:ce:18:af:a0:8c:86:32: 87:bf:b7:05:6c:a4:6b:b2:7e:74:ea:89:ce:47:35: 11:2c:38:6d:64:a2:40:11:10:85:56:79:66:28:21: f1:59:81:3f:ad:ff:68:68:30:55:89:00:16:47:c4: 5e:0a:44:5b:6f:74:03:80:ee:48:0a:f7:c7:75:5f: 94:a3:bd:1e:3d:27:4b:53:a5:c5:a7:12:65:36:67: ed:15:12:7c:d1:04:6b:ff:ee:58:4a:f2:cd:15:ec: 50:38:4b:c2:cb:b2:b3:74:2f:ac:b0:0d:0e:7f:3d: 7d:94:ae:60:ac:b4:95:89:de:a1:cc:46:d1:a4:35: 5a:16:f7:6c:70:1d:91:1e:35:15:7a:cc:20:2c:a7: 2a:1c:c8:4d:60:e3:ac:6f:da:ee:63:35:69:56:a5: bd:af:4a:6e:77:0e:27:7c:f8:51:8a:56:b4:45:1f: 13:f2:91:f7:42:df:47:9b:b3:6d:52:0b:ba:4c:99: cc:38:f3:86:9d:45:90:c4:67:ac:bb:ae:95:d5:a2: 21:e7:90:47:aa:f4:93:b6:5b:ae:e5:f8:6f:86:9e: 31:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:5A:CB:95:A1:3C:35:6B:57:DF:CE:B6:B5:B8:13:4D:49:14:2E:0D X509v3 Authority Key Identifier: keyid:F7:67:50:51:5B:B7:62:D1:80:0C:5A:E6:C6:C2:DB:24:FE:95:2D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.48.0/22 103.233.220.0/22 IPv6: 2401:1880::/32 Signature Algorithm: sha256WithRSAEncryption 9c:54:97:f3:6e:d0:51:97:5a:83:2c:7f:1c:da:68:ba:55:90: e2:0b:f7:5b:b4:9a:9f:31:67:c4:97:2b:4a:8a:4c:a0:76:1b: 1d:55:73:3e:75:3b:83:e7:39:82:ee:89:e5:ec:f3:14:a6:c0: a8:f0:62:78:00:72:3d:48:52:4b:81:96:a0:30:fc:da:a9:0e: e6:37:d6:c1:53:97:97:5d:7b:6e:b2:8b:c5:04:4e:68:0f:95: 65:dd:17:57:87:00:af:aa:7a:7a:d3:15:46:cf:9f:de:89:e9: 58:c7:7a:73:20:70:9b:45:f0:28:8f:93:71:3a:e1:94:05:ab: 8f:a2:9f:5f:57:06:64:d4:8e:39:2c:31:84:5e:c9:34:c4:3a: 02:20:50:01:49:f3:70:cb:2c:a6:de:ed:f7:39:27:19:08:1f: cf:75:17:67:59:63:53:0b:16:86:1a:8a:91:65:8f:7e:06:17: 72:b0:22:18:44:d8:df:52:2c:33:69:9a:4f:f2:e7:32:60:bf: d1:a3:bf:c5:1a:81:e1:cc:71:46:8e:4e:19:78:10:d6:cf:a0: db:23:21:b5:ce:03:b2:89:b3:e0:b4:26:ff:86:e1:40:c5:62: 03:0c:0c:39:0c:97:08:02:4b:bc:8c:94:a8:cd:88:0e:62:2f: 12:48:35:98 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICKrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzRUExMTAvBgNVBAUTKEY3Njc1MDUxNUJCNzYyRDE4MDBDNUFFNkM2QzJEQjI0 RkU5NTJEMDIwHhcNMjUwODA2MTU1MjI4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkzN2EzYy1lMmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NxKWFN7OIbbsxDLy8Y/wCzPmFUwW6IQ9NHStuMO37qUxSzK8s4Yr6CMhjKH v7cFbKRrsn506onORzURLDhtZKJAERCFVnlmKCHxWYE/rf9oaDBViQAWR8ReCkRb b3QDgO5ICvfHdV+Uo70ePSdLU6XFpxJlNmftFRJ80QRr/+5YSvLNFexQOEvCy7Kz dC+ssA0Ofz19lK5grLSVid6hzEbRpDVaFvdscB2RHjUVeswgLKcqHMhNYOOsb9ru YzVpVqW9r0pudw4nfPhRila0RR8T8pH3Qt9Hm7NtUgu6TJnMOPOGnUWQxGesu66V 1aIh55BHqvSTtluu5fhvhp4x4wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFEtay5Wh PDVrV9/OtrW4E01JFC4NMB8GA1UdIwQYMBaAFPdnUFFbt2LRgAxa5sbC2yT+lS0C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODNFQS9EODJDNjFFODFD NDUxMUU0OTRBNzZGMUJDNEY5QUUwMi85MmRRVVZ1M1l0R0FERnJteHNMYkpQNlZM UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkyZFFVVnUzWXRHQURGcm14c0xiSlA2VkxRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzgzRUEvRDgyQzYxRTgxQzQ1MTFFNDk0QTc2RjFCQzRGOUFFMDIvMkVEMTE1MEM1 NjFEMTFFN0IwMDNERjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItQDADBAJn6dwwDQQCAAIwBwMFACQBGIAwDQYJKoZIhvcN AQELBQADggEBAJxUl/Nu0FGXWoMsfxzaaLpVkOIL91u0mp8xZ8SXK0qKTKB2Gx1V cz51O4PnOYLuieXs8xSmwKjwYngAcj1IUkuBlqAw/NqpDuY31sFTl5dde26yi8UE TmgPlWXdF1eHAK+qenrTFUbPn96J6VjHenMgcJtF8CiPk3E64ZQFq4+in19XBmTU jjksMYReyTTEOgIgUAFJ83DLLKbe7fc5JxkIH891F2dZY1MLFoYaipFlj34GF3Kw IhhE2N9SLDNpmk/y5zJgv9Gjv8UageHMcUaOThl4ENbPoNsjIbXOA7KJs+C0Jv+G 4UDFYgMMDDkMlwgCS7yMlKjNiA5iLxJINZg= -----END CERTIFICATE-----Generated at Sun Aug 10 18:19:47 2025 by rpki-client