$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/27BA3714662A11F080BC1150C4F9AE02.roa File: 27BA3714662A11F080BC1150C4F9AE02.roa (raw, json) Hash identifier: co+DhO9w2IwzqRnLSINrCRm8YO0IXJVaJ7ldrox9yI4= Subject key identifier: 5B:6A:D2:53:37:93:00:81:E2:80:BB:26:7E:C7:E4:18:41:E4:F2:99 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DB2E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/27BA3714662A11F080BC1150C4F9AE02.roa Signing time: Sun 01 Mar 2026 23:07:10 +0000 ROA not before: Thu 19 Feb 2026 05:41:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135817 IP address blocks: 43.255.164.0/22 maxlen: 24 49.213.39.0/24 maxlen: 24 103.11.80.0/22 maxlen: 24 103.52.32.0/23 maxlen: 24 103.147.150.0/23 maxlen: 24 103.148.144.0/24 maxlen: 24 103.159.239.0/24 maxlen: 24 103.170.56.0/23 maxlen: 24 103.177.84.0/24 maxlen: 24 163.227.38.0/24 maxlen: 24 163.227.39.0/24 maxlen: 24 2001:df6:f180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56110 (0xdb2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Feb 19 05:41:57 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c69e-63f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b9:d9:20:18:8b:be:f5:44:99:e8:c8:c6:1c: e9:f0:75:e0:0e:37:da:3d:5d:e2:86:d3:10:ef:b5: 0f:ed:cd:1b:7d:fc:7b:17:51:9b:12:14:c8:95:41: ab:e5:0e:93:3b:8f:70:ae:91:59:e3:25:5f:8e:8b: 4b:bc:86:d5:a7:59:fa:08:d7:f7:fa:0e:1f:2f:10: fe:01:c4:6b:2a:57:19:d9:42:e5:76:b1:f7:1e:d4: 8e:1c:9f:cf:e7:9a:a7:ce:bd:71:83:bf:21:2b:7f: 53:bc:6a:19:fb:06:7f:11:6b:dc:ce:5f:00:75:bc: d3:d1:df:f1:1c:52:62:86:80:9e:74:09:7e:42:91: b4:a4:50:96:a2:33:6d:80:9a:6f:a6:82:b4:8e:8f: f6:45:42:d4:66:8c:78:20:21:33:8b:e7:fb:5c:d1: 90:42:c4:21:0b:0f:91:55:a8:f2:9a:7f:89:44:82: e4:b6:99:aa:47:8a:8d:69:f1:05:da:99:86:a5:d8: cf:66:c3:91:84:06:ea:a5:8c:1d:39:5c:29:b8:0f: 58:9c:49:2c:bd:fb:bf:ef:10:3b:ed:d7:be:4e:e2: cc:ea:94:6b:b3:b3:1b:15:52:1c:02:b2:9f:2e:4c: 19:71:df:da:10:9b:a8:b6:53:fa:3b:56:35:ec:82: 96:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:6A:D2:53:37:93:00:81:E2:80:BB:26:7E:C7:E4:18:41:E4:F2:99 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/27BA3714662A11F080BC1150C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.255.164.0/22 49.213.39.0/24 103.11.80.0/22 103.52.32.0/23 103.147.150.0/23 103.148.144.0/24 103.159.239.0/24 103.170.56.0/23 103.177.84.0/24 163.227.38.0/23 IPv6: 2001:df6:f180::/48 Signature Algorithm: sha256WithRSAEncryption a2:7c:9f:88:d5:6f:a9:37:21:4f:55:53:f3:00:a4:73:43:b2: b4:81:d8:8a:5a:36:b0:e2:a8:a4:fd:fd:87:2d:e0:40:18:e2: c1:0f:1c:f9:66:8f:ca:60:fb:01:e3:ba:4c:c4:94:90:98:c8: 74:85:18:b3:4b:96:ca:58:74:cf:29:2b:6f:8a:a3:2c:18:70: cc:f2:3c:f6:5b:ea:16:5e:81:de:79:42:ba:18:c3:30:5b:a7: c0:2b:34:0d:a5:b8:6d:65:04:ea:cf:33:15:ab:1c:28:ad:b3: 38:50:80:2b:7d:18:17:10:c0:6c:04:62:fc:fa:f1:3d:75:df: af:6d:05:a0:ee:97:ee:0c:92:0a:4e:73:e8:10:de:b7:8d:08: 72:df:94:fc:ba:da:5d:01:4a:7e:a5:33:76:99:0d:08:0c:11: 1a:30:2a:71:64:00:b2:aa:7f:f5:7f:c9:c4:41:92:95:52:60: 18:83:9b:67:b4:68:96:ba:4d:07:66:60:d1:2e:62:5e:bd:a5: 89:18:67:13:84:4f:b8:4a:ff:91:e4:56:5a:67:db:64:1a:3d: 85:70:1f:05:67:77:5f:e2:06:97:7d:76:43:49:fe:5b:05:d5: 71:c1:9f:1f:06:03:c4:2a:21:a3:e1:92:a7:e9:f2:7c:08:cd: 3d:f2:b9:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIDANsuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDIxOTA1NDE1N1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM2OWUtNjNmMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKC52SAYi771RJnoyMYc6fB14A432j1d4obTEO+1D+3NG338exdRmxIUyJVB q+UOkzuPcK6RWeMlX46LS7yG1adZ+gjX9/oOHy8Q/gHEaypXGdlC5Xax9x7Ujhyf z+eap869cYO/ISt/U7xqGfsGfxFr3M5fAHW809Hf8RxSYoaAnnQJfkKRtKRQlqIz bYCab6aCtI6P9kVC1GaMeCAhM4vn+1zRkELEIQsPkVWo8pp/iUSC5LaZqkeKjWnx BdqZhqXYz2bDkYQG6qWMHTlcKbgPWJxJLL37v+8QO+3Xvk7izOqUa7OzGxVSHAKy ny5MGXHf2hCbqLZT+jtWNeyClsECAwEAAaOCAqcwggKjMB0GA1UdDgQWBBRbatJT N5MAgeKAuyZ+x+QYQeTymTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzI3QkEzNzE0 NjYyQTExRjA4MEJDMTE1MEM0RjlBRTAyLnJvYTBmBggrBgEFBQcBBwEB/wRXMFUw QgQCAAEwPAMEAiv/pAMEADHVJwMEAmcLUAMEAWc0IAMEAWeTlgMEAGeUkAMEAGef 7wMEAWeqOAMEAGexVAMEAaPjJjAPBAIAAjAJAwcAIAEN9vGAMA0GCSqGSIb3DQEB CwUAA4IBAQCifJ+I1W+pNyFPVVPzAKRzQ7K0gdiKWjaw4qik/f2HLeBAGOLBDxz5 Zo/KYPsB47pMxJSQmMh0hRizS5bKWHTPKStviqMsGHDM8jz2W+oWXoHeeUK6GMMw W6fAKzQNpbhtZQTqzzMVqxworbM4UIArfRgXEMBsBGL8+vE9dd+vbQWg7pfuDJIK TnPoEN63jQhy35T8utpdAUp+pTN2mQ0IDBEaMCpxZACyqn/1f8nEQZKVUmAYg5tn tGiWuk0HZmDRLmJevaWJGGcThE+4Sv+R5FZaZ9tkGj2FcB8FZ3df4gaXfXZDSf5b BdVxwZ8fBgPEKiGj4ZKn6fJ8CM098rkf -----END CERTIFICATE-----Generated at Mon Mar 2 11:07:53 2026 by rpki-client