$ rpki-client -vvf rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/2E5B28FC1E9611F098931D57C4F9AE02.roa File: 2E5B28FC1E9611F098931D57C4F9AE02.roa (raw, json) Hash identifier: WEjLCi1DlMb0pJbL9Z4xrjtw1122zr6GBemO2jaZ1hw= Subject key identifier: 48:FC:A1:54:D9:44:C7:18:4A:D4:47:63:AF:69:DD:8E:01:56:82:8F Certificate issuer: /CN=A9172999/serialNumber=2F533EA0E40819DF563E3F7FE3FE87428D52A0D5 Certificate serial: 0382 Authority key identifier: 2F:53:3E:A0:E4:08:19:DF:56:3E:3F:7F:E3:FE:87:42:8D:52:A0:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/2E5B28FC1E9611F098931D57C4F9AE02.roa Signing time: Fri 03 Apr 2026 01:33:12 +0000 ROA not before: Fri 03 Apr 2026 01:33:12 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 18186 IP address blocks: 43.248.173.0/24 maxlen: 24 43.248.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.crl rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 898 (0x382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172999, serialNumber=2F533EA0E40819DF563E3F7FE3FE87428D52A0D5 Validity Not Before: Apr 3 01:33:12 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cf18d8-84ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:51:4d:66:90:78:e4:0a:30:a7:3c:2d:53:7e: 35:04:15:09:e2:43:6e:fa:cf:e5:69:2e:0c:3e:f0: 9b:ff:4c:6d:d8:fd:07:fa:87:6e:54:b9:37:ee:ca: df:60:3f:8d:7e:98:0d:5e:ab:cc:99:eb:cf:cc:24: 2f:bb:4f:25:e1:19:3f:58:ab:53:79:87:d0:d0:56: d9:64:28:c5:14:17:15:f7:ee:b8:64:02:53:f5:92: 1f:85:fd:de:ee:c6:4c:e3:1c:2c:f5:86:ba:4d:6f: 32:23:d5:37:10:d4:88:a1:40:ae:1d:09:71:17:de: b3:2d:f9:64:f7:d5:17:14:ef:d3:1c:32:5b:d5:73: df:f0:3b:05:e2:72:e5:11:b2:b0:99:4c:74:a9:de: a3:cc:9c:a4:19:b8:41:d4:0b:0b:5b:0a:22:ff:20: b6:4e:b5:8b:ef:cb:1c:de:b1:a4:b2:bc:0f:3b:3d: c7:f3:50:fc:99:96:56:d0:4c:94:68:d3:98:02:00: 38:5e:e1:3f:81:81:ef:32:76:df:d5:2a:39:69:15: 45:5b:92:d1:5b:5e:0f:45:b1:c3:b2:98:35:56:6b: 19:e6:88:df:2b:59:a0:04:48:ab:f3:6a:ef:6f:85: 1e:a2:4a:07:4c:92:a3:a3:30:a6:20:39:c0:72:04: b1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:FC:A1:54:D9:44:C7:18:4A:D4:47:63:AF:69:DD:8E:01:56:82:8F X509v3 Authority Key Identifier: keyid:2F:53:3E:A0:E4:08:19:DF:56:3E:3F:7F:E3:FE:87:42:8D:52:A0:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/2E5B28FC1E9611F098931D57C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.248.173.0/24 43.248.175.0/24 Signature Algorithm: sha256WithRSAEncryption 25:a2:17:e5:e8:51:cc:1a:1f:96:84:d2:3a:76:3a:27:ca:0b: d7:a6:52:04:06:af:d6:d0:2e:76:e3:d6:7f:ce:40:2d:21:ee: 35:0e:81:90:61:da:1f:68:23:3e:81:0e:f8:a6:d5:c2:44:db: 95:da:34:46:8c:aa:62:af:d4:eb:65:18:78:2f:6a:07:17:7f: 9a:eb:d9:13:d6:29:12:d6:45:32:24:98:e9:1c:a4:d9:16:89: fe:23:2a:dd:38:ca:03:cb:ca:e9:79:04:1b:08:c8:94:f6:a7: d8:c0:f7:58:76:8c:fe:86:a1:a7:6a:c7:96:54:00:97:73:28: dd:ab:65:22:5b:fb:25:19:12:a9:9a:de:88:e6:cd:3b:1b:5c: 06:fa:16:f7:9f:5d:87:ab:58:eb:d7:2d:1f:a9:9b:71:18:bc: 67:d2:ce:cb:a8:31:02:ab:35:5c:ff:08:ee:d4:d2:8d:20:b4: 14:8b:26:60:f4:20:fd:da:54:d3:d0:53:c3:02:8e:2a:88:30: ca:21:b5:1b:a6:c6:29:4c:78:3a:c6:60:da:aa:a6:5e:8e:98: c0:54:4a:96:09:8b:63:9c:8c:f1:10:83:58:25:b5:e5:f8:61: 60:36:38:65:f2:6a:5a:9d:c3:91:79:bc:0a:3a:a6:5e:bd:53: f3:42:b9:37 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICA4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI5OTkxMTAvBgNVBAUTKDJGNTMzRUEwRTQwODE5REY1NjNFM0Y3RkUzRkU4NzQy OEQ1MkEwRDUwHhcNMjYwNDAzMDEzMzEyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMThkOC04NGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlVFNZpB45AowpzwtU341BBUJ4kNu+s/laS4MPvCb/0xt2P0H+oduVLk37srf YD+NfpgNXqvMmevPzCQvu08l4Rk/WKtTeYfQ0FbZZCjFFBcV9+64ZAJT9ZIfhf3e 7sZM4xws9Ya6TW8yI9U3ENSIoUCuHQlxF96zLflk99UXFO/THDJb1XPf8DsF4nLl EbKwmUx0qd6jzJykGbhB1AsLWwoi/yC2TrWL78sc3rGksrwPOz3H81D8mZZW0EyU aNOYAgA4XuE/gYHvMnbf1So5aRVFW5LRW14PRbHDspg1VmsZ5ojfK1mgBEir82rv b4UeokoHTJKjozCmIDnAcgSxPQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEj8oVTZ RMcYStRHY69p3Y4BVoKPMB8GA1UdIwQYMBaAFC9TPqDkCBnfVj4/f+P+h0KNUqDV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mjk5OS9CMUMxQjBEQTAz MUUxMUVEOTZFMjU2MjBDNEY5QUUwMi9MMU0tb09RSUdkOVdQajlfNF82SFFvMVNv TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wxTS1vT1FJR2Q5V1BqOV80XzZIUW8xU29OVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI5OTkvQjFDMUIwREEwMzFFMTFFRDk2RTI1NjIwQzRGOUFFMDIvMkU1QjI4RkMx RTk2MTFGMDk4OTMxRDU3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK/itAwQAK/ivMA0GCSqGSIb3DQEBCwUAA4IBAQAlohfl6FHMGh+W hNI6djonygvXplIEBq/W0C5249Z/zkAtIe41DoGQYdofaCM+gQ74ptXCRNuV2jRG jKpir9TrZRh4L2oHF3+a69kT1ikS1kUyJJjpHKTZFon+IyrdOMoDy8rpeQQbCMiU 9qfYwPdYdoz+hqGnaseWVACXcyjdq2UiW/slGRKpmt6I5s07G1wG+hb3n12Hq1jr 1y0fqZtxGLxn0s7LqDECqzVc/wju1NKNILQUiyZg9CD92lTT0FPDAo4qiDDKIbUb psYpTHg6xmDaqqZejpjAVEqWCYtjnIzxEINYJbXl+GFgNjhl8mpancORebwKOqZe vVPzQrk3 -----END CERTIFICATE-----Generated at Fri Apr 17 10:12:21 2026 by rpki-client