$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/D2D5E3A2429111F1A9B50A47B2833773.roa File: D2D5E3A2429111F1A9B50A47B2833773.roa (raw, json) Hash identifier: JNJnwJdlLDhaD1G/+iNzHqjRU67B9dzGcdSz2okho74= Subject key identifier: 51:7F:6D:18:A2:32:CE:29:9E:08:59:82:3E:33:F8:C3:2F:A0:10:75 Certificate issuer: /CN=A9172B46/serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D Certificate serial: 87 Authority key identifier: B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/D2D5E3A2429111F1A9B50A47B2833773.roa Signing time: Mon 27 Apr 2026 23:35:50 +0000 ROA not before: Mon 27 Apr 2026 23:35:50 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 7361 IP address blocks: 163.8.56.0/24 maxlen: 24 163.8.57.0/24 maxlen: 24 163.8.58.0/24 maxlen: 24 163.8.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 03:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B46, serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D Validity Not Before: Apr 27 23:35:50 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69eff2d6-005d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:41:7d:6c:91:40:15:5c:10:0e:87:af:88:2e: a0:0f:78:44:10:83:a8:87:7d:53:d1:37:1c:41:4c: c6:0d:e5:3a:e0:12:6a:af:23:9e:55:22:46:88:4e: 42:fc:5f:52:d7:7c:bf:34:39:62:84:41:09:68:df: 1a:62:db:8d:86:05:c6:34:f1:e0:75:58:51:22:bb: b8:c4:44:03:d7:ce:06:cd:bb:0e:cd:6d:e4:71:bb: 2a:73:ba:8d:ab:2c:1f:bc:ea:84:e3:f1:07:b9:b8: 24:12:4a:2d:e6:b1:89:7a:48:56:e6:e8:4d:0f:d5: 99:e5:4c:0d:e5:5c:bf:89:34:bf:6f:98:28:54:95: 10:03:d7:3e:2d:20:dc:5d:a5:6c:fb:d4:dc:11:79: 0d:c3:c3:5b:1f:b6:9d:7b:8b:99:b6:5c:2a:18:87: 98:ac:7e:49:5a:de:1c:55:58:89:3f:15:34:33:c1: 39:4f:00:95:a0:b4:25:5c:03:69:bb:cd:4c:67:54: c8:52:35:a8:d6:59:dd:dc:93:14:60:2b:04:4e:c6: aa:93:94:7d:19:a8:8f:e1:e8:23:35:fb:69:89:75: b7:45:59:87:aa:46:2b:26:c6:74:fc:4b:37:e3:09: 1f:5a:99:f1:2f:e8:3f:94:d8:2c:c0:71:52:f1:ba: 43:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:7F:6D:18:A2:32:CE:29:9E:08:59:82:3E:33:F8:C3:2F:A0:10:75 X509v3 Authority Key Identifier: keyid:B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/D2D5E3A2429111F1A9B50A47B2833773.roa sbgp-ipAddrBlock: critical IPv4: 163.8.56.0-163.8.58.255 163.8.60.0/24 Signature Algorithm: sha256WithRSAEncryption 71:95:c6:54:7b:6d:5f:a8:2e:80:a5:65:0b:b5:69:b0:68:9e: 88:f4:18:cc:f8:e4:ff:8d:ee:ab:05:7d:ce:36:9b:a0:1c:5d: 6d:33:20:24:5a:87:f8:0d:14:99:64:4e:d1:a9:14:81:3f:de: 0a:c7:ca:3b:32:10:30:78:c0:7c:b4:e7:02:06:47:39:32:d8: c4:91:f5:d5:a8:7f:44:8e:b0:65:ae:c9:2a:c7:47:e1:9d:59: f5:2f:10:12:69:34:0e:5d:32:e3:f1:11:e6:7f:8f:fd:1b:c9: c2:4e:44:d4:8c:6d:0f:13:70:39:a1:0b:bb:39:2b:3d:07:7b: 89:2d:66:70:35:bc:6a:f4:16:ed:4f:19:23:e4:f7:aa:b8:bc: 93:17:2d:42:e2:69:de:11:da:7f:5c:9a:24:66:ad:02:86:67: 0d:11:de:e6:86:c4:d2:5e:4c:7f:66:73:e9:d1:fb:64:07:80: 37:14:4d:b0:7c:b4:71:16:cd:db:da:f5:49:b3:62:46:a6:a4: aa:ed:2c:ac:a4:4c:c7:85:63:af:4b:f3:54:f9:0c:4d:14:2d: c6:a2:70:09:bd:30:9d:c4:49:e6:d9:30:8e:5e:b3:31:5c:50: 64:22:18:3d:0e:bf:79:84:50:29:b8:3e:6a:11:b0:3c:a9:2a: 91:b9:af:57 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCNDYxMTAvBgNVBAUTKEI1NEUwODQ2NUI1NDVDRUVGMUUyRTEwMDk3NzVEOTFC QTQxMkI2M0QwHhcNMjYwNDI3MjMzNTUwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWVmZjJkNi0wMDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6kF9bJFAFVwQDoeviC6gD3hEEIOoh31T0TccQUzGDeU64BJqryOeVSJGiE5C /F9S13y/NDlihEEJaN8aYtuNhgXGNPHgdVhRIru4xEQD184GzbsOzW3kcbsqc7qN qywfvOqE4/EHubgkEkot5rGJekhW5uhND9WZ5UwN5Vy/iTS/b5goVJUQA9c+LSDc XaVs+9TcEXkNw8NbH7ade4uZtlwqGIeYrH5JWt4cVViJPxU0M8E5TwCVoLQlXANp u81MZ1TIUjWo1lnd3JMUYCsETsaqk5R9GaiP4egjNftpiXW3RVmHqkYrJsZ0/Es3 4wkfWpnxL+g/lNgswHFS8bpDUQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFFF/bRii Ms4pnghZgj4z+MMvoBB1MB8GA1UdIwQYMBaAFLVOCEZbVFzu8eLhAJd12RukErY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0Ni8wODg3MDFCOEFC QjQxMUYwQUJGMjA5NDBDNEY5QUUwMi90VTRJUmx0VVhPN3g0dUVBbDNYWkc2UVN0 ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVNElSbHRVWE83eDR1RUFsM1haRzZRU3RqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJCNDYvMDg4NzAxQjhBQkI0MTFGMEFCRjIwOTQwQzRGOUFFMDIvRDJENUUzQTI0 MjkxMTFGMUE5QjUwQTQ3QjI4MzM3NzMucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBAOjCDgDBACjCDoDBACjCDwwDQYJKoZIhvcNAQELBQADggEBAHGV xlR7bV+oLoClZQu1abBonoj0GMz45P+N7qsFfc42m6AcXW0zICRah/gNFJlkTtGp FIE/3grHyjsyEDB4wHy05wIGRzky2MSR9dWof0SOsGWuySrHR+GdWfUvEBJpNA5d MuPxEeZ/j/0bycJORNSMbQ8TcDmhC7s5Kz0He4ktZnA1vGr0Fu1PGSPk96q4vJMX LULiad4R2n9cmiRmrQKGZw0R3uaGxNJeTH9mc+nR+2QHgDcUTbB8tHEWzdva9Umz YkampKrtLKykTMeFY69L81T5DE0ULcaicAm9MJ3ESebZMI5eszFcUGQiGD0Ov3mE UCm4PmoRsDypKpG5r1c= -----END CERTIFICATE-----Generated at Wed May 13 03:48:29 2026 by rpki-client