$ rpki-client -vvf rpki.apnic.net/member_repository/A915D64F/F115B6727DED11EA9A5CCC4BC4F9AE02/2F7EAF12932411EB97630343C4F9AE02.roa File: 2F7EAF12932411EB97630343C4F9AE02.roa (raw, json) Hash identifier: fTC3RP5UwYJo/xgaymTCOGYfDdh0ORjauT4dKfVe+3E= Subject key identifier: 59:5D:BF:99:1E:6B:5E:22:E5:68:62:BA:46:98:05:9A:E5:67:A8:12 Certificate issuer: /CN=A915D64F/serialNumber=EC705B2AD6FB13FD6FC4214B9772704113E668D7 Certificate serial: 0A96 Authority key identifier: EC:70:5B:2A:D6:FB:13:FD:6F:C4:21:4B:97:72:70:41:13:E6:68:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HBbKtb7E_1vxCFLl3JwQRPmaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D64F/F115B6727DED11EA9A5CCC4BC4F9AE02/2F7EAF12932411EB97630343C4F9AE02.roa Signing time: Tue 12 May 2026 20:24:10 +0000 ROA not before: Tue 12 May 2026 20:24:10 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 58713 IP address blocks: 43.240.120.0/23 maxlen: 23 43.240.122.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D64F/F115B6727DED11EA9A5CCC4BC4F9AE02/7HBbKtb7E_1vxCFLl3JwQRPmaNc.crl rsync://rpki.apnic.net/member_repository/A915D64F/F115B6727DED11EA9A5CCC4BC4F9AE02/7HBbKtb7E_1vxCFLl3JwQRPmaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HBbKtb7E_1vxCFLl3JwQRPmaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2710 (0xa96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D64F, serialNumber=EC705B2AD6FB13FD6FC4214B9772704113E668D7 Validity Not Before: May 12 20:24:10 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a038c6a-dda4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8d:62:94:49:cd:b8:36:4a:dc:71:73:6a:64: 49:32:e1:31:97:e0:62:da:28:36:8e:27:e7:c1:02: ac:77:76:93:c5:29:e6:48:14:64:38:a3:19:23:1d: 72:1d:cf:4d:f9:8b:71:43:39:da:b5:b8:2c:b3:d1: d0:40:a6:0b:b1:c3:d2:56:b6:94:44:d7:ef:71:06: e2:32:0c:ee:d3:10:86:e8:fa:9e:16:65:96:a7:5b: 2d:70:04:b1:04:66:a3:d2:c0:d8:95:85:ae:b1:b2: cb:9a:1d:69:09:21:61:2c:14:4e:9a:26:fe:05:a6: b9:da:a4:7c:74:4f:22:5b:08:6f:5c:d0:ac:80:6b: 20:39:f0:8a:d5:73:f5:c0:39:a4:8f:04:d1:2c:ca: 57:8d:2b:f2:b2:26:c8:e2:0d:9e:20:9d:5c:30:f2: cf:50:e5:72:17:ba:72:d0:88:8e:c5:bd:72:9e:72: b0:d2:e4:a1:95:84:96:f3:af:33:31:1c:af:1d:1c: 23:d4:37:48:9c:37:47:fb:44:45:80:0f:3b:dd:57: 63:e8:8b:6e:54:94:f1:80:46:de:a5:b9:09:cf:40: 63:90:9e:d2:74:cd:2a:06:a8:97:c3:d3:2d:65:f5: 89:bb:13:7b:26:17:60:e2:69:e7:2b:18:0e:15:f2: a1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:5D:BF:99:1E:6B:5E:22:E5:68:62:BA:46:98:05:9A:E5:67:A8:12 X509v3 Authority Key Identifier: keyid:EC:70:5B:2A:D6:FB:13:FD:6F:C4:21:4B:97:72:70:41:13:E6:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D64F/F115B6727DED11EA9A5CCC4BC4F9AE02/7HBbKtb7E_1vxCFLl3JwQRPmaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HBbKtb7E_1vxCFLl3JwQRPmaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D64F/F115B6727DED11EA9A5CCC4BC4F9AE02/2F7EAF12932411EB97630343C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.240.120.0/22 Signature Algorithm: sha256WithRSAEncryption 73:d0:ba:c3:1f:80:9e:e7:5c:ed:f6:fa:dc:09:58:25:ee:43: 7b:45:53:ec:58:51:6c:57:36:80:0d:50:da:18:d0:06:bf:0a: 63:d5:99:35:54:54:ec:69:35:be:fb:0e:80:5d:1a:db:27:f8: 88:91:b1:c4:6c:64:7e:78:94:25:9e:6f:58:72:74:8b:27:c5: 96:69:52:49:30:ac:f9:bc:08:c7:5d:b0:36:5b:fb:eb:c8:2a: 0d:ac:6a:36:eb:fe:aa:4e:53:fc:e3:d6:93:21:43:56:34:5f: ec:1f:4c:8c:38:bf:7e:91:d6:83:e9:e3:82:c4:98:29:10:27: 99:0e:5f:7c:74:c5:62:9d:d2:54:25:5a:81:cd:c8:21:8c:db: 6b:9b:5d:57:6a:b1:a9:1a:82:63:a3:49:36:c1:49:41:69:ac: c3:cd:7c:ec:e8:ad:08:c8:1c:29:82:2b:cd:7c:fd:56:7a:a3: a5:d8:0a:69:72:c7:d5:c1:55:f8:56:6d:3c:ba:89:ef:4f:bc: 1e:be:ef:79:d0:c4:af:52:56:b7:44:d9:00:95:36:db:c6:37: a1:64:45:e5:53:65:25:24:96:7a:c0:1b:bd:01:f3:8b:5a:a2: be:af:b0:1b:fe:4a:43:d6:f3:77:1e:d5:58:c1:b8:b3:94:ff: 8b:98:57:03 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ2NEYxMTAvBgNVBAUTKEVDNzA1QjJBRDZGQjEzRkQ2RkM0MjE0Qjk3NzI3MDQx MTNFNjY4RDcwHhcNMjYwNTEyMjAyNDEwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAzOGM2YS1kZGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7I1ilEnNuDZK3HFzamRJMuExl+Bi2ig2jifnwQKsd3aTxSnmSBRkOKMZIx1y Hc9N+YtxQznatbgss9HQQKYLscPSVraURNfvcQbiMgzu0xCG6PqeFmWWp1stcASx BGaj0sDYlYWusbLLmh1pCSFhLBROmib+Baa52qR8dE8iWwhvXNCsgGsgOfCK1XP1 wDmkjwTRLMpXjSvysibI4g2eIJ1cMPLPUOVyF7py0IiOxb1ynnKw0uShlYSW868z MRyvHRwj1DdInDdH+0RFgA873Vdj6ItuVJTxgEbepbkJz0BjkJ7SdM0qBqiXw9Mt ZfWJuxN7Jhdg4mnnKxgOFfKhWwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFldv5ke a14i5WhiukaYBZrlZ6gSMB8GA1UdIwQYMBaAFOxwWyrW+xP9b8QhS5dycEET5mjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDY0Ri9GMTE1QjY3MjdE RUQxMUVBOUE1Q0NDNEJDNEY5QUUwMi83SEJiS3RiN0VfMXZ4Q0ZMbDNKd1FSUG1h TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdIQmJLdGI3RV8xdnhDRkxsM0p3UVJQbWFOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ2NEYvRjExNUI2NzI3REVEMTFFQTlBNUNDQzRCQzRGOUFFMDIvMkY3RUFGMTI5 MzI0MTFFQjk3NjMwMzQzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/B4MA0GCSqGSIb3DQEBCwUAA4IBAQBz0LrDH4Ce51zt9vrcCVgl 7kN7RVPsWFFsVzaADVDaGNAGvwpj1Zk1VFTsaTW++w6AXRrbJ/iIkbHEbGR+eJQl nm9YcnSLJ8WWaVJJMKz5vAjHXbA2W/vryCoNrGo26/6qTlP849aTIUNWNF/sH0yM OL9+kdaD6eOCxJgpECeZDl98dMVindJUJVqBzcghjNtrm11XarGpGoJjo0k2wUlB aazDzXzs6K0IyBwpgivNfP1WeqOl2AppcsfVwVX4Vm08uonvT7wevu950MSvUla3 RNkAlTbbxjehZEXlU2UlJJZ6wBu9AfOLWqK+r7Ab/kpD1vN3HtVYwbizlP+LmFcD -----END CERTIFICATE-----Generated at Wed May 13 04:43:48 2026 by rpki-client