$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa File: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (raw, json) Hash identifier: 6emuYpGIDSupIXXxu/XDF4B7uGgi8QMYDi4DLcnWne4= Subject key identifier: 39:EC:70:0B:A2:2E:E8:35:C2:27:DD:3A:6D:83:EB:96:C2:84:73:9A Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 0B42 Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:46:28 +0000 ROA not before: Wed 02 Apr 2025 19:49:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4049 IP address blocks: 188.125.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2882 (0xb42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: Apr 2 19:49:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a42714-d744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8c:87:b2:cc:c3:bc:51:21:f1:c2:0a:3c:ad: 48:75:cf:84:88:69:c4:84:e8:66:4f:6a:77:51:2f: d2:19:22:01:ad:2d:25:b3:62:3a:f8:ad:47:58:46: 6f:d0:8e:52:fc:d2:34:e6:fb:7e:b6:5e:f7:c1:a1: 6b:cb:05:ac:82:aa:fc:06:17:e6:78:de:7e:5b:3b: e8:c4:20:6b:fc:97:b5:31:aa:da:7a:c4:df:30:ae: e2:13:f5:92:02:d7:1e:b6:fd:b6:9e:89:9d:7b:89: fc:56:b4:c1:44:ed:fa:7b:5a:b9:13:37:43:61:c4: 47:8a:c1:16:ec:42:ae:a5:a7:c1:c6:50:cc:5a:28: 90:46:f0:f1:b7:a9:2d:f0:d0:d9:18:33:ca:04:7f: 3b:0e:8f:ef:14:96:48:ba:cb:92:1f:90:4d:35:86: 9f:68:a7:45:9f:be:f7:00:ee:e5:ce:ce:2c:3a:e2: 7a:da:08:cb:b6:71:f5:4e:f4:17:15:54:97:37:ff: dd:25:29:64:35:6d:78:8e:1f:7f:f4:db:af:7e:6a: c7:82:3c:b7:b8:4b:ac:d9:64:10:c6:24:ab:6a:96: b4:f2:fc:ac:c2:88:04:5c:6b:06:76:4a:1a:e6:ae: ef:af:91:3a:34:a7:84:f1:a9:4e:96:38:3f:c6:6b: 1b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:EC:70:0B:A2:2E:E8:35:C2:27:DD:3A:6D:83:EB:96:C2:84:73:9A X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 188.125.176.0/20 Signature Algorithm: sha256WithRSAEncryption 31:23:3c:9b:67:17:1a:75:54:eb:35:d5:76:ff:3b:d9:25:10: a2:c8:e0:81:ad:32:d5:82:3b:da:26:c9:28:c8:19:dc:c6:b8: 5f:1f:2d:23:79:d5:0d:15:24:be:d6:28:f0:a3:26:15:03:02: 82:23:4c:af:3f:2f:f1:bf:be:d2:41:5a:50:30:78:b1:a6:e2: 32:56:94:e4:ab:d2:3d:b2:3f:c2:73:0c:34:5f:cd:28:35:d3: 30:f5:e2:9a:df:be:37:5f:89:bc:6b:8b:0c:d5:cf:dc:71:be: 05:d7:59:5d:c0:cb:24:22:1d:c6:3a:14:16:e1:f0:3f:d1:a4: fb:73:a3:b1:ed:a7:6a:df:b8:9b:fd:7a:9d:a2:2b:41:33:62: 3e:52:07:1e:03:ca:1a:2b:9e:3d:ee:91:af:5b:f1:e5:c8:5e: 12:df:b7:3e:44:4c:f8:65:41:ec:f4:c0:c6:51:01:6d:ab:1e: 02:15:6a:a4:9d:32:d3:fe:37:b9:17:57:1a:ca:82:2a:d0:4d: 8f:61:b5:cb:6a:30:5f:86:99:09:ac:41:3b:6e:d1:14:d4:32: c3:f9:02:64:fb:7f:bd:dc:fb:16:85:f7:13:9c:23:5d:4c:4d: f5:42:32:dc:6e:bf:b6:2b:e0:b5:5b:ac:69:4e:1b:2a:92:00: 45:f8:44:8d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjUwNDAyMTk0OTU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjcxNC1kNzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4yHsszDvFEh8cIKPK1Idc+EiGnEhOhmT2p3US/SGSIBrS0ls2I6+K1HWEZv 0I5S/NI05vt+tl73waFrywWsgqr8BhfmeN5+WzvoxCBr/Je1MaraesTfMK7iE/WS Atcetv22nomde4n8VrTBRO36e1q5EzdDYcRHisEW7EKupafBxlDMWiiQRvDxt6kt 8NDZGDPKBH87Do/vFJZIusuSH5BNNYafaKdFn773AO7lzs4sOuJ62gjLtnH1TvQX FVSXN//dJSlkNW14jh9/9NuvfmrHgjy3uEus2WQQxiSrapa08vyswogEXGsGdkoa 5q7vr5E6NKeE8alOljg/xmsbzQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDnscAui Lug1wifdOm2D65bChHOaMB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIxMjcvMzM3RkJBNDQ1NDZEMTFFQUJERDNDMTE3QzRGOUFFMDIvMkZDQjhGQkE1 NkRDMTFFQThENzUxODdDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEvH2wMA0GCSqGSIb3DQEBCwUAA4IBAQAxIzybZxcadVTrNdV2/zvZ JRCiyOCBrTLVgjvaJskoyBncxrhfHy0jedUNFSS+1ijwoyYVAwKCI0yvPy/xv77S QVpQMHixpuIyVpTkq9I9sj/Ccww0X80oNdMw9eKa3743X4m8a4sM1c/ccb4F11ld wMskIh3GOhQW4fA/0aT7c6Ox7adq37ib/XqdoitBM2I+UgceA8oaK5497pGvW/Hl yF4S37c+REz4ZUHs9MDGUQFtqx4CFWqknTLT/je5F1cayoIq0E2PYbXLajBfhpkJ rEE7btEU1DLD+QJk+3+93PsWhfcTnCNdTE31QjLcbr+2K+C1W6xpThsqkgBF+ESN -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:57 2026 by rpki-client