$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/2D01B33649CE11F1962271F3A6833773.roa File: 2D01B33649CE11F1962271F3A6833773.roa (raw, json) Hash identifier: OdalZasx/DjTMoexBV48c+QeVXCFs+zT88TAq5BCaJg= Subject key identifier: 98:80:BA:7C:D5:3B:52:CB:77:D7:4D:52:09:BD:5C:81:AF:14:3F:1F Certificate issuer: /CN=A9172B46/serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D Certificate serial: AC Authority key identifier: B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/2D01B33649CE11F1962271F3A6833773.roa Signing time: Thu 07 May 2026 05:07:30 +0000 ROA not before: Thu 07 May 2026 05:07:30 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 20473 IP address blocks: 163.8.32.0/24 maxlen: 24 163.8.34.0/24 maxlen: 24 163.8.36.0/24 maxlen: 24 163.8.39.0/24 maxlen: 24 163.8.41.0/24 maxlen: 24 163.8.43.0/24 maxlen: 24 163.8.44.0/24 maxlen: 24 163.8.198.0/24 maxlen: 24 163.8.200.0/24 maxlen: 24 163.8.202.0/24 maxlen: 24 163.8.210.0/24 maxlen: 24 163.8.212.0/24 maxlen: 24 163.8.214.0/24 maxlen: 24 163.8.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 03:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B46, serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D Validity Not Before: May 7 05:07:30 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69fc1e12-5edc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a4:62:15:c4:29:38:b3:82:6d:b7:32:27:ca: 5f:f8:67:8b:54:7e:f3:f4:94:bb:da:9a:cf:5c:8f: bf:77:6b:86:cf:68:f7:52:d7:62:d5:d2:26:ff:dd: d6:59:f2:b2:bb:88:08:eb:81:57:fb:64:76:45:d7: 5a:30:2d:4c:be:71:98:24:e7:1d:2e:4c:10:a3:c1: 55:a9:1c:43:36:7f:b0:a5:f8:29:70:35:b5:4c:bb: 85:30:c1:dc:b9:ea:39:16:e7:4c:42:97:87:07:60: fd:e3:6e:b2:c6:9f:b8:f4:40:7a:55:24:94:d7:23: 54:a3:62:8a:b0:2b:7e:c8:0f:a8:e7:46:6c:c7:2d: 60:1e:71:84:84:b7:ba:b8:80:76:c2:f7:7e:9b:79: 0d:6e:6e:6f:53:2c:57:a7:aa:99:38:87:41:c1:ed: 76:b3:97:e8:96:9b:a8:e9:04:9e:78:63:d9:f9:e4: 00:ee:55:2e:c2:84:c9:b5:9b:35:7c:c8:17:b0:5d: c6:66:39:d3:64:47:46:9c:fd:ed:20:cb:d3:f6:cf: ad:ac:79:7b:31:48:e9:b5:e5:09:2f:31:4a:12:14: e7:50:0f:2a:fd:87:f1:78:ce:df:37:b4:68:4f:d3: 7a:80:d7:4b:7a:12:db:43:a5:8b:e4:6e:4f:47:ad: f5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:80:BA:7C:D5:3B:52:CB:77:D7:4D:52:09:BD:5C:81:AF:14:3F:1F X509v3 Authority Key Identifier: keyid:B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/2D01B33649CE11F1962271F3A6833773.roa sbgp-ipAddrBlock: critical IPv4: 163.8.32.0/24 163.8.34.0/24 163.8.36.0/24 163.8.39.0/24 163.8.41.0/24 163.8.43.0-163.8.44.255 163.8.198.0/24 163.8.200.0/24 163.8.202.0/24 163.8.210.0/24 163.8.212.0/24 163.8.214.0/24 163.8.220.0/24 Signature Algorithm: sha256WithRSAEncryption 94:30:a8:1e:3f:4e:60:ee:f2:94:73:2d:c5:85:c7:92:26:09: 0c:87:d4:ff:85:92:36:78:b5:5f:3d:e2:28:9b:e4:1a:cf:f3: 10:7e:f3:47:a2:ba:23:9c:52:b1:2b:0e:89:5a:a1:b4:24:35: 78:82:39:83:14:0d:b4:d5:21:c7:06:79:7e:3b:04:9d:52:ee: 3b:ad:3f:53:46:b7:f4:dc:55:a2:a1:55:bf:a5:c6:25:54:c1: 67:67:29:dd:ab:c7:96:f4:4a:1d:22:cb:7c:5a:10:11:46:40: dc:01:1e:67:e0:79:7a:bc:f5:f9:2d:28:ac:b3:93:ad:44:42: 04:f5:fd:eb:bd:65:4f:ad:da:81:60:2d:87:d9:96:71:41:52: e5:be:fb:b9:b4:60:3f:e3:6a:64:be:52:23:c2:78:fa:3e:62: 75:70:31:6c:ac:1a:bb:75:bb:32:10:ff:32:89:ae:60:a0:a6: 8f:6b:23:21:80:8d:65:40:d1:93:e3:04:57:0e:30:f6:32:c6: 4f:cb:75:84:df:58:20:e0:1d:30:de:b2:79:dd:7a:fe:a2:d1: a4:30:b3:47:b5:d1:81:d3:a8:d2:15:96:76:77:57:7a:41:4c: 23:17:a4:88:bf:0f:d7:5a:39:5b:c9:92:3c:06:4e:cf:1f:07: 32:38:b5:41 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCNDYxMTAvBgNVBAUTKEI1NEUwODQ2NUI1NDVDRUVGMUUyRTEwMDk3NzVEOTFC QTQxMkI2M0QwHhcNMjYwNTA3MDUwNzMwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWZjMWUxMi01ZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqRiFcQpOLOCbbcyJ8pf+GeLVH7z9JS72prPXI+/d2uGz2j3Utdi1dIm/93W WfKyu4gI64FX+2R2RddaMC1MvnGYJOcdLkwQo8FVqRxDNn+wpfgpcDW1TLuFMMHc ueo5FudMQpeHB2D9426yxp+49EB6VSSU1yNUo2KKsCt+yA+o50Zsxy1gHnGEhLe6 uIB2wvd+m3kNbm5vUyxXp6qZOIdBwe12s5folpuo6QSeeGPZ+eQA7lUuwoTJtZs1 fMgXsF3GZjnTZEdGnP3tIMvT9s+trHl7MUjpteUJLzFKEhTnUA8q/YfxeM7fN7Ro T9N6gNdLehLbQ6WL5G5PR631lQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFJiAunzV O1LLd9dNUgm9XIGvFD8fMB8GA1UdIwQYMBaAFLVOCEZbVFzu8eLhAJd12RukErY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0Ni8wODg3MDFCOEFC QjQxMUYwQUJGMjA5NDBDNEY5QUUwMi90VTRJUmx0VVhPN3g0dUVBbDNYWkc2UVN0 ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVNElSbHRVWE83eDR1RUFsM1haRzZRU3RqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJCNDYvMDg4NzAxQjhBQkI0MTFGMEFCRjIwOTQwQzRGOUFFMDIvMkQwMUIzMzY0 OUNFMTFGMTk2MjI3MUYzQTY4MzM3NzMucm9hMG8GCCsGAQUFBwEHAQH/BGAwXjBc BAIAATBWAwQAowggAwQAowgiAwQAowgkAwQAowgnAwQAowgpMAwDBACjCCsDBACj CCwDBACjCMYDBACjCMgDBACjCMoDBACjCNIDBACjCNQDBACjCNYDBACjCNwwDQYJ KoZIhvcNAQELBQADggEBAJQwqB4/TmDu8pRzLcWFx5ImCQyH1P+FkjZ4tV894iib 5BrP8xB+80eiuiOcUrErDolaobQkNXiCOYMUDbTVIccGeX47BJ1S7jutP1NGt/Tc VaKhVb+lxiVUwWdnKd2rx5b0Sh0iy3xaEBFGQNwBHmfgeXq89fktKKyzk61EQgT1 /eu9ZU+t2oFgLYfZlnFBUuW++7m0YD/jamS+UiPCePo+YnVwMWysGrt1uzIQ/zKJ rmCgpo9rIyGAjWVA0ZPjBFcOMPYyxk/LdYTfWCDgHTDesnndev6i0aQws0e10YHT qNIVlnZ3V3pBTCMXpIi/D9daOVvJkjwGTs8fBzI4tUE= -----END CERTIFICATE-----Generated at Tue May 12 21:45:18 2026 by rpki-client