$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/AF2F0B70CA7011F08E39E018C4F9AE02.roa File: AF2F0B70CA7011F08E39E018C4F9AE02.roa (raw, json) Hash identifier: KKSynpOm+ycQihs/yZsWcr8FrhVz4wSTwzAIsyVh/HE= Subject key identifier: 75:2F:7E:6D:E9:87:D3:E4:9E:85:F4:35:48:ED:6B:BC:F7:D4:04:F1 Certificate issuer: /CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Certificate serial: 0B6F Authority key identifier: AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/AF2F0B70CA7011F08E39E018C4F9AE02.roa Signing time: Fri 08 May 2026 20:24:51 +0000 ROA not before: Fri 08 May 2026 20:24:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9269 IP address blocks: 43.248.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2927 (0xb6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1E, serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Validity Not Before: May 8 20:24:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69fe4692-fbe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1c:b5:29:9b:93:ba:d1:f9:3d:d9:08:53:fd: 77:fe:93:26:96:62:12:6b:ec:2a:d3:51:22:e6:61: 08:d3:ea:a1:3a:c0:c2:ef:2a:af:b9:03:07:c4:5a: e3:f4:b8:ec:59:0d:75:82:6e:90:4d:61:82:1d:6b: 57:2c:33:fa:be:56:40:08:af:37:79:4b:8e:62:72: a5:54:92:4f:9a:3f:40:b7:7e:26:9b:32:d0:af:8f: 48:3a:3c:8f:b2:bf:f5:84:73:40:a5:6f:12:9a:e7: 5a:7a:d4:9b:7d:de:67:0a:eb:a7:88:cd:e1:3e:76: b4:4f:60:fe:e4:3f:94:15:ba:86:9d:fa:4e:61:20: 2a:2f:ac:03:61:df:d8:66:dc:72:2d:73:23:76:4d: 78:a1:e6:aa:9c:86:b7:9f:d4:a7:24:55:1f:ba:69: 1c:e1:37:1b:b9:e0:80:34:b4:fb:02:0d:5c:f7:05: bd:40:45:90:d2:5e:01:cb:bb:c3:0d:6d:35:e8:a1: de:fe:0e:40:3e:d9:b0:78:30:6d:75:44:e6:64:40: 1d:da:c1:6d:a5:46:c1:35:6a:ef:74:c6:80:93:f6: 6a:57:0f:98:56:4d:28:c7:d0:cf:33:a2:a5:0a:61: b1:e3:6a:5c:07:3e:71:9b:f3:f0:f9:82:ba:64:d7: 56:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:2F:7E:6D:E9:87:D3:E4:9E:85:F4:35:48:ED:6B:BC:F7:D4:04:F1 X509v3 Authority Key Identifier: keyid:AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/AF2F0B70CA7011F08E39E018C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.248.164.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:d9:60:63:ae:72:6f:de:f9:ed:a6:0d:bb:4c:af:99:ed:d6: 8a:42:a7:a0:81:dd:b6:74:23:81:93:8c:39:69:71:44:43:e9: 6b:59:1b:41:4c:a1:4f:46:66:08:b2:e7:b4:62:7a:e7:57:be: 83:7c:42:b2:5b:a2:06:ac:9f:80:a7:8a:78:6c:69:f4:8c:69: d6:db:e8:79:b7:27:f4:d5:23:bf:62:fb:5b:21:33:08:cf:eb: a1:cb:46:fd:7d:47:53:44:b7:4e:51:7f:78:88:a1:56:22:1e: 4c:35:d4:42:fc:b8:4c:ef:4f:c9:b0:2c:b4:52:b9:95:ab:72: 46:45:cb:68:fb:ec:3d:b7:cd:be:22:5a:bf:b1:d2:6a:75:3b: a1:5c:80:f0:1d:7c:5f:fe:fa:74:cc:d3:12:96:15:73:ff:2c: bc:bb:8b:90:f4:a6:f0:97:bf:32:23:e5:53:d6:d7:8e:9d:fe: 38:8f:a2:45:d8:86:8a:a4:ea:52:48:7c:05:56:5e:95:7b:7c: 32:49:d3:7b:ba:74:64:69:de:f4:d8:ad:ed:a3:47:89:9d:8f: e7:38:4e:5f:76:18:eb:0a:11:2c:11:68:8b:44:4e:e7:04:b1: 85:10:83:cb:d2:3d:68:95:50:4f:cf:f2:57:23:db:7a:a9:38: 80:9e:9f:cd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUUxMTAvBgNVBAUTKEFCRDQzNTQ4NjU5Q0JCMjc2RUY4RDM1QjgyMTJGODM4 RThDRUI3NUYwHhcNMjYwNTA4MjAyNDUxWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZlNDY5Mi1mYmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBy1KZuTutH5PdkIU/13/pMmlmISa+wq01Ei5mEI0+qhOsDC7yqvuQMHxFrj 9LjsWQ11gm6QTWGCHWtXLDP6vlZACK83eUuOYnKlVJJPmj9At34mmzLQr49IOjyP sr/1hHNApW8SmudaetSbfd5nCuuniM3hPna0T2D+5D+UFbqGnfpOYSAqL6wDYd/Y ZtxyLXMjdk14oeaqnIa3n9SnJFUfumkc4TcbueCANLT7Ag1c9wW9QEWQ0l4By7vD DW016KHe/g5APtmweDBtdUTmZEAd2sFtpUbBNWrvdMaAk/ZqVw+YVk0ox9DPM6Kl CmGx42pcBz5xm/Pw+YK6ZNdW+QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHUvfm3p h9PknoX0NUjta7z31ATxMB8GA1UdIwQYMBaAFKvUNUhlnLsnbvjTW4IS+Djozrdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRS84OTM2Q0MwNDg4 MzIxMUVBODQ4NjFCNzBDNEY5QUUwMi9xOVExU0dXY3V5ZHUtTk5iZ2hMNE9Pak90 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E5UTFTR1djdXlkdS1OTmJnaEw0T09qT3QxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCMUUvODkzNkNDMDQ4ODMyMTFFQTg0ODYxQjcwQzRGOUFFMDIvQUYyRjBCNzBD QTcwMTFGMDhFMzlFMDE4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/ikMA0GCSqGSIb3DQEBCwUAA4IBAQBu2WBjrnJv3vntpg27TK+Z 7daKQqeggd22dCOBk4w5aXFEQ+lrWRtBTKFPRmYIsue0YnrnV76DfEKyW6IGrJ+A p4p4bGn0jGnW2+h5tyf01SO/YvtbITMIz+uhy0b9fUdTRLdOUX94iKFWIh5MNdRC /LhM70/JsCy0UrmVq3JGRcto++w9t82+Ilq/sdJqdTuhXIDwHXxf/vp0zNMSlhVz /yy8u4uQ9Kbwl78yI+VT1teOnf44j6JF2IaKpOpSSHwFVl6Ve3wySdN7unRkad70 2K3to0eJnY/nOE5fdhjrChEsEWiLRE7nBLGFEIPL0j1olVBPz/JXI9t6qTiAnp/N -----END CERTIFICATE-----Generated at Wed May 13 09:06:11 2026 by rpki-client