$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa File: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (raw, json) Hash identifier: xuUvIJ8eAw9K5qU0uP7UNuu0jZ+MgcXKquXu8ktwO3A= Subject key identifier: D3:37:88:8B:69:DE:D0:AB:B7:42:1F:FC:8B:71:44:59:99:D8:64:AB Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 0B60 Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa Signing time: Thu 02 Apr 2026 19:24:28 +0000 ROA not before: Thu 02 Apr 2026 19:24:28 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 4049 IP address blocks: 188.125.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 19:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2912 (0xb60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: Apr 2 19:24:28 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cec26c-646f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dd:b1:61:44:28:4c:54:a2:39:e3:d5:fb:24: 90:cc:30:4d:aa:a7:35:a2:50:76:9a:75:cc:04:e2: 7b:18:54:dd:eb:5c:49:14:b4:d7:4d:41:26:3d:5c: be:3f:38:75:9c:b8:7b:8e:8d:b5:ce:f6:16:1e:e0: 8f:38:bf:b8:00:6f:b5:c2:c7:98:cc:e1:e0:b3:3a: 91:88:33:42:a5:9e:40:1a:14:a0:e2:a3:7c:d0:b0: 6b:9e:83:55:99:f4:0f:c5:59:d7:c1:55:39:43:a5: 58:4d:c4:39:f4:95:23:c7:92:b9:47:be:b6:1f:94: fd:19:dd:92:e7:90:9e:8d:f8:25:22:cc:e9:fd:7e: 2b:93:a3:9b:61:c1:ce:a5:8c:92:63:ca:d0:48:d7: 65:e4:94:f1:7c:2b:42:98:37:45:a0:de:75:e9:a7: 72:85:ea:8e:aa:1f:8d:ce:9f:d0:9f:84:13:ce:20: f5:c5:41:f4:45:fa:41:35:67:89:fc:55:cc:84:96: b2:44:e4:9a:a2:f4:12:3f:d9:7e:d5:33:e4:1b:68: 79:be:ca:7d:60:c5:7e:a7:8e:4d:b9:8b:ac:b6:98: 8b:79:f7:76:68:c2:f6:fb:0c:4c:f3:da:01:7a:20: 36:11:59:08:38:42:c2:f9:ee:6c:a7:3c:11:eb:fd: ac:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:37:88:8B:69:DE:D0:AB:B7:42:1F:FC:8B:71:44:59:99:D8:64:AB X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 188.125.176.0/20 Signature Algorithm: sha256WithRSAEncryption 95:4a:1e:89:04:b2:38:7c:a9:f9:34:9a:64:c9:a2:61:9e:2f: 66:c7:33:ec:d7:d4:bf:05:ce:78:44:26:6a:ba:2f:37:ac:2f: 35:29:1b:2d:f1:e2:59:c7:53:f1:8d:0e:8f:9b:66:77:ab:b5: 54:88:0a:4d:14:f7:f6:20:74:68:22:3f:03:ee:02:d5:b4:b8: cf:0e:01:d9:f7:eb:13:09:0f:4e:d9:ee:af:e9:0b:11:b8:08: 05:c0:7b:a0:35:0f:cf:b0:6c:ff:e7:9a:81:f1:86:33:44:d1: 69:de:43:e3:48:b7:7c:a8:b3:1a:f8:d3:67:e9:d7:47:3c:38: 61:71:42:fe:b8:9c:ac:85:c8:4f:2e:f4:68:e5:fe:51:85:0b: a4:db:21:87:b9:ec:1f:3f:53:bd:5b:b0:64:8c:64:4e:7e:6b: 85:c7:ee:24:64:0a:84:42:27:ee:e6:ec:30:f2:f0:95:9b:81: 3d:1d:6d:24:8d:1e:26:22:3a:ac:ce:29:da:89:bd:e7:9e:7e: fa:e6:d1:d4:59:ec:e6:0b:1e:8d:ff:1b:f2:0e:66:4f:61:04: 84:c0:30:bf:74:f9:a4:6e:97:0c:ba:50:1f:b3:53:1e:13:97: 10:b7:0c:cf:ba:dd:f5:b4:2f:d3:b0:8a:aa:52:25:65:fc:cf: f2:e2:d9:6a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjYwNDAyMTkyNDI4WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlYzI2Yy02NDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtN2xYUQoTFSiOePV+ySQzDBNqqc1olB2mnXMBOJ7GFTd61xJFLTXTUEmPVy+ Pzh1nLh7jo21zvYWHuCPOL+4AG+1wseYzOHgszqRiDNCpZ5AGhSg4qN80LBrnoNV mfQPxVnXwVU5Q6VYTcQ59JUjx5K5R762H5T9Gd2S55CejfglIszp/X4rk6ObYcHO pYySY8rQSNdl5JTxfCtCmDdFoN516adyheqOqh+Nzp/Qn4QTziD1xUH0RfpBNWeJ /FXMhJayROSaovQSP9l+1TPkG2h5vsp9YMV+p45NuYustpiLefd2aML2+wxM89oB eiA2EVkIOELC+e5spzwR6/2sYwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNM3iItp 3tCrt0If/ItxRFmZ2GSrMB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIxMjcvMzM3RkJBNDQ1NDZEMTFFQUJERDNDMTE3QzRGOUFFMDIvMkZDQjhGQkE1 NkRDMTFFQThENzUxODdDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEvH2wMA0GCSqGSIb3DQEBCwUAA4IBAQCVSh6JBLI4fKn5NJpkyaJh ni9mxzPs19S/Bc54RCZqui83rC81KRst8eJZx1PxjQ6Pm2Z3q7VUiApNFPf2IHRo Ij8D7gLVtLjPDgHZ9+sTCQ9O2e6v6QsRuAgFwHugNQ/PsGz/55qB8YYzRNFp3kPj SLd8qLMa+NNn6ddHPDhhcUL+uJyshchPLvRo5f5RhQuk2yGHuewfP1O9W7BkjGRO fmuFx+4kZAqEQifu5uww8vCVm4E9HW0kjR4mIjqszinaib3nnn765tHUWezmCx6N /xvyDmZPYQSEwDC/dPmkbpcMulAfs1MeE5cQtwzPut31tC/TsIqqUiVl/M/y4tlq -----END CERTIFICATE-----Generated at Sun Apr 19 11:19:27 2026 by rpki-client