$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa File: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (raw, json) Hash identifier: XjbcBg5C4XFnwFYUTLX7T8VO1Y9OzJMVBQLkwMjPTtg= Subject key identifier: 16:B2:BE:F9:FE:00:33:73:3B:8C:06:7D:1C:03:E0:00:A2:D2:FC:E1 Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 0B4C Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:35:40 +0000 ROA not before: Wed 02 Apr 2025 19:49:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4049 IP address blocks: 188.125.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 14:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2892 (0xb4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: Apr 2 19:49:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5841b-bc2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1c:be:3c:cf:e7:c9:a5:38:b7:13:d5:63:6d: cd:82:80:7b:58:1a:be:46:df:6f:c8:ad:c8:4a:71: 88:33:b9:5d:39:76:63:2d:51:14:3e:ae:9f:fd:6d: 6b:bd:e4:5c:34:b9:a6:5a:0d:65:67:ad:be:80:79: 26:0a:54:c0:14:f4:69:16:cf:ac:61:39:f2:7e:2c: cc:5c:4d:29:b4:36:03:51:15:50:66:7d:5a:f8:e3: cc:8a:4b:e9:d9:0f:55:cf:81:56:a5:b8:0c:d9:4f: a8:e6:d4:2e:bd:3d:77:2c:54:65:7d:0d:24:5c:b2: 56:c7:4f:fc:9d:2c:aa:13:14:b7:4f:0e:20:e3:10: 31:88:0c:13:12:ff:5a:14:68:2b:b4:d0:9f:30:16: a4:cc:ad:a6:59:32:6e:01:a7:86:2d:5f:d6:51:cb: 24:23:94:02:05:91:fa:c8:fd:48:f6:13:01:4a:f9: a2:7a:09:4e:6e:6a:77:be:71:8e:8a:dd:45:eb:72: 76:ba:0a:a9:c3:a4:dd:ef:bc:d0:16:b5:e5:f6:ab: 3e:4d:1f:70:7c:b3:40:8d:1c:f5:65:e7:13:8f:db: a4:21:ce:6d:24:a8:cd:95:5f:dd:04:b5:ec:f0:62: 9c:1d:16:47:8f:ac:45:41:9b:ca:8e:eb:93:a6:09: 16:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B2:BE:F9:FE:00:33:73:3B:8C:06:7D:1C:03:E0:00:A2:D2:FC:E1 X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 188.125.176.0/20 Signature Algorithm: sha256WithRSAEncryption 32:10:67:7f:98:f6:35:bf:48:0f:e1:43:c4:46:17:4d:82:54: 75:dc:d0:02:e1:b2:04:af:e4:80:98:93:37:05:35:40:84:58: d6:a4:d8:3c:db:67:ca:4d:3a:3d:ab:64:0c:28:3a:67:1c:4a: 6e:98:7f:96:66:01:a7:d2:b9:c0:c4:00:a8:c2:f2:6b:cf:8c: db:ba:9a:ce:d9:e1:bf:50:a8:be:b1:7b:10:66:c3:79:27:74: ed:d0:fc:91:99:9d:af:67:85:53:25:da:56:90:5c:1f:b9:b1: 91:09:f0:fc:cf:32:14:be:08:08:50:42:db:c8:06:08:91:b6: e2:a5:35:da:48:b4:b0:70:ee:a8:7e:cd:c5:97:ee:10:d2:13: 0f:d0:fa:dd:cb:57:ca:e7:df:84:25:ae:a6:4d:70:a2:15:28: 4f:31:ef:f9:de:7e:a7:b2:e1:cb:99:15:90:7f:59:1f:9b:05: 3e:70:2a:21:fd:e0:7b:08:1b:49:5b:78:57:9b:5c:49:54:41: bd:7b:cf:3e:ca:25:9e:69:08:21:c4:e3:13:9b:3a:04:6c:b1: a2:94:b9:2e:0d:77:36:20:5b:78:89:18:d1:17:52:cc:7a:8d: 48:15:88:d6:0c:b3:c6:dd:72:73:f9:19:ce:92:af:5d:34:6d: 78:d4:91:fa -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjUwNDAyMTk0OTU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODQxYi1iYzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRy+PM/nyaU4txPVY23NgoB7WBq+Rt9vyK3ISnGIM7ldOXZjLVEUPq6f/W1r veRcNLmmWg1lZ62+gHkmClTAFPRpFs+sYTnyfizMXE0ptDYDURVQZn1a+OPMikvp 2Q9Vz4FWpbgM2U+o5tQuvT13LFRlfQ0kXLJWx0/8nSyqExS3Tw4g4xAxiAwTEv9a FGgrtNCfMBakzK2mWTJuAaeGLV/WUcskI5QCBZH6yP1I9hMBSvmieglObmp3vnGO it1F63J2ugqpw6Td77zQFrXl9qs+TR9wfLNAjRz1ZecTj9ukIc5tJKjNlV/dBLXs 8GKcHRZHj6xFQZvKjuuTpgkWQQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBayvvn+ ADNzO4wGfRwD4ACi0vzhMB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIxMjcvMzM3RkJBNDQ1NDZEMTFFQUJERDNDMTE3QzRGOUFFMDIvMkZDQjhGQkE1 NkRDMTFFQThENzUxODdDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEvH2wMA0GCSqGSIb3DQEBCwUAA4IBAQAyEGd/mPY1v0gP4UPERhdN glR13NAC4bIEr+SAmJM3BTVAhFjWpNg822fKTTo9q2QMKDpnHEpumH+WZgGn0rnA xACowvJrz4zbuprO2eG/UKi+sXsQZsN5J3Tt0PyRmZ2vZ4VTJdpWkFwfubGRCfD8 zzIUvggIUELbyAYIkbbipTXaSLSwcO6ofs3Fl+4Q0hMP0Prdy1fK59+EJa6mTXCi FShPMe/53n6nsuHLmRWQf1kfmwU+cCoh/eB7CBtJW3hXm1xJVEG9e88+yiWeaQgh xOMTmzoEbLGilLkuDXc2IFt4iRjRF1LMeo1IFYjWDLPG3XJz+RnOkq9dNG141JH6 -----END CERTIFICATE-----Generated at Fri Mar 13 04:15:21 2026 by rpki-client