$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/2BEC62FA5DA011EF8E541175C4F9AE02.roa File: 2BEC62FA5DA011EF8E541175C4F9AE02.roa (raw, json) Hash identifier: PDPdfJs3Sp/L4O6BvH4/f/PfyDghykuDm6tMTYKRkIk= Subject key identifier: 2D:14:61:57:9D:AD:D5:5F:2C:49:20:CC:B4:B2:07:68:E7:68:8E:00 Certificate issuer: /CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Certificate serial: 095C Authority key identifier: CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/2BEC62FA5DA011EF8E541175C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:58:11 +0000 ROA not before: Sun 06 Jul 2025 21:00:44 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140616 IP address blocks: 2406:1140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:39:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2396 (0x95c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED8E0, serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Validity Not Before: Jul 6 21:00:44 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a429d2-6472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:43:c4:6d:83:a5:7a:df:3f:56:d3:6a:80:82: 1e:4e:37:bb:49:81:00:ff:20:4e:b2:9c:d8:05:76: ef:d1:df:b8:09:d2:f8:a3:d2:1c:29:e2:33:4c:4f: f4:d1:6e:9e:0f:4c:92:48:fa:aa:5b:75:4f:b3:38: b2:7b:b2:b9:8e:8c:fc:6d:8d:cc:2f:7c:b6:df:12: 90:34:39:bc:34:77:92:7c:45:38:e4:67:b5:4e:bb: da:40:e9:c7:c0:d4:0d:54:03:de:29:99:e7:88:b0: 87:e0:bd:1f:4f:74:5f:69:50:d7:f4:cf:fc:36:c5: d4:ab:0c:c1:e4:c5:6f:19:c4:39:b9:c0:e3:5e:77: 02:81:c6:ae:d1:bb:6d:f9:b3:a1:ac:89:d8:d5:77: cc:a6:82:d0:d0:74:2b:00:b7:21:0a:1f:03:ad:d8: 34:2d:49:57:f1:84:f5:12:fe:b4:35:fe:f6:83:d0: 9b:1c:b0:b7:30:80:8f:e6:83:63:b9:21:49:d2:db: c8:f8:fa:33:95:45:e4:51:6d:18:91:8b:09:9b:95: 5e:08:7c:eb:5b:45:5e:ad:67:24:6f:96:d5:79:f5: 48:9a:7b:be:6b:1d:ca:cb:a0:96:dd:1b:5e:9a:01: da:ac:09:55:82:e1:8a:cb:50:b9:4a:0c:56:a0:8f: eb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:14:61:57:9D:AD:D5:5F:2C:49:20:CC:B4:B2:07:68:E7:68:8E:00 X509v3 Authority Key Identifier: keyid:CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/2BEC62FA5DA011EF8E541175C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:1140::/32 Signature Algorithm: sha256WithRSAEncryption 39:7d:50:86:e2:18:48:23:7f:dc:c4:c8:15:52:5e:7e:a2:99: 00:20:3f:0b:11:4c:57:cf:c2:15:1e:21:0b:7b:48:9c:38:ac: 16:1a:6a:b8:4a:e0:b5:d0:ca:3a:d4:14:c3:4b:ec:26:13:ca: 4e:b5:29:45:b3:08:d4:dc:c0:d5:7f:4f:70:c7:c7:b7:97:3c: bc:98:43:f6:a8:95:5a:3f:55:80:28:3a:81:78:f9:fa:76:8d: c6:84:7e:ad:56:52:9b:55:2e:00:f2:d7:88:71:df:87:6b:76: 31:3d:98:96:4f:10:12:a7:9d:b2:b1:c0:4a:e3:0d:48:bf:3b: c1:11:13:10:d9:d2:28:ea:e1:ae:25:56:60:36:b6:72:09:15: 76:0e:74:3b:d4:52:ac:9b:a2:b3:f7:91:b7:8f:11:a2:5f:f1: 96:91:d5:a1:99:ee:c4:b9:3e:8c:19:f1:77:69:84:8a:7c:2e: 7d:d4:80:12:30:67:4a:8f:f9:cd:22:a4:4b:ad:d7:df:93:a3: 00:0a:2b:59:73:d2:40:7f:db:75:56:32:ec:70:6b:89:d5:85: 23:f7:15:0b:31:e5:c1:22:3d:77:fa:6a:71:c7:f0:3e:cd:56: 22:d3:a7:3b:6c:e6:2b:39:63:6a:ab:3b:cb:ae:14:01:59:82: 73:1b:e2:a9 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICCVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ4RTAxMTAvBgNVBAUTKENDNTQxOUM4QTc4QkNENTNBRDE3MUM1Qjc0QTQwNzFE OTUzOTUwNDkwHhcNMjUwNzA2MjEwMDQ0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjlkMi02NDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkPEbYOlet8/VtNqgIIeTje7SYEA/yBOspzYBXbv0d+4CdL4o9IcKeIzTE/0 0W6eD0ySSPqqW3VPsziye7K5joz8bY3ML3y23xKQNDm8NHeSfEU45Ge1TrvaQOnH wNQNVAPeKZnniLCH4L0fT3RfaVDX9M/8NsXUqwzB5MVvGcQ5ucDjXncCgcau0btt +bOhrInY1XfMpoLQ0HQrALchCh8Drdg0LUlX8YT1Ev60Nf72g9CbHLC3MICP5oNj uSFJ0tvI+PozlUXkUW0YkYsJm5VeCHzrW0VerWckb5bVefVImnu+ax3Ky6CW3Rte mgHarAlVguGKy1C5SgxWoI/rzQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFC0UYVed rdVfLEkgzLSyB2jnaI4AMB8GA1UdIwQYMBaAFMxUGcini81TrRccW3SkBx2VOVBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDhFMC9FRTJENTMyNkI5 NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpWT3RGeHhiZEtRSEhaVTVV RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGUVp5S2VMelZPdEZ4eGJkS1FISFpVNVVFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ4RTAvRUUyRDUzMjZCOTQ3MTFFQThBNjQ5RTc2QzRGOUFFMDIvMkJFQzYyRkE1 REEwMTFFRjhFNTQxMTc1QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAYRQDANBgkqhkiG9w0BAQsFAAOCAQEAOX1QhuIYSCN/3MTIFVJe fqKZACA/CxFMV8/CFR4hC3tInDisFhpquErgtdDKOtQUw0vsJhPKTrUpRbMI1NzA 1X9PcMfHt5c8vJhD9qiVWj9VgCg6gXj5+naNxoR+rVZSm1UuAPLXiHHfh2t2MT2Y lk8QEqedsrHASuMNSL87wRETENnSKOrhriVWYDa2cgkVdg50O9RSrJuis/eRt48R ol/xlpHVoZnuxLk+jBnxd2mEinwufdSAEjBnSo/5zSKkS63X35OjAAorWXPSQH/b dVYy7HBridWFI/cVCzHlwSI9d/pqccfwPs1WItOnO2zmKzljaqs7y64UAVmCcxvi qQ== -----END CERTIFICATE-----Generated at Mon Mar 2 20:14:55 2026 by rpki-client