$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/27F621183B5D11EB97506B7AC4F9AE02.roa File: 27F621183B5D11EB97506B7AC4F9AE02.roa (raw, json) Hash identifier: mnM3jhkYdoMBMQQ9qnf1LfCD2dKw6i+NLhIXD7hvD5U= Subject key identifier: F4:F3:1C:94:4B:44:19:9C:34:3D:48:74:37:3B:85:5B:D6:C3:5E:E7 Certificate issuer: /CN=A919986F/serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Certificate serial: 28B8 Authority key identifier: A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/27F621183B5D11EB97506B7AC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:32:19 +0000 ROA not before: Wed 10 Dec 2025 15:36:35 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 63928 IP address blocks: 43.227.236.0/24 maxlen: 24 43.227.237.0/24 maxlen: 24 43.227.238.0/24 maxlen: 24 43.227.239.0/24 maxlen: 24 103.47.24.0/24 maxlen: 24 103.47.25.0/24 maxlen: 24 103.47.26.0/24 maxlen: 24 103.47.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10424 (0x28b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F, serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Validity Not Before: Dec 10 15:36:35 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a44df2-abab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e8:c3:f4:93:d1:fd:72:58:76:6c:7b:f8:a3: a8:23:bf:36:c4:83:02:b9:59:a7:79:be:07:33:8c: 16:ab:35:a6:1d:d4:86:ed:39:33:af:9a:41:ca:db: ba:99:68:16:26:cf:7b:a4:d2:1d:37:32:cf:18:e4: 75:3b:4f:4d:9c:a0:30:6f:2e:f6:86:ff:27:9b:e7: d0:87:d2:56:e0:f9:80:6d:aa:4d:d2:de:8f:67:d8: a5:43:2f:06:01:4f:a8:f5:24:3a:f5:6a:d5:16:01: 89:0d:1a:fb:f3:fb:ae:e1:c3:42:ef:90:fd:6c:e3: f2:c3:31:91:f4:b2:f7:d6:2a:ce:da:09:dd:12:eb: 1d:c0:81:85:a1:50:34:b6:6e:e7:d3:c6:41:b5:f5: 53:4d:dd:e8:1d:a2:fc:13:f0:64:1b:f8:b4:90:a4: 6e:06:1f:89:b2:05:6b:09:61:b1:ee:d4:1f:88:68: 9b:0c:f9:b6:57:ee:39:82:ef:91:41:9b:58:18:94: 11:4b:80:01:48:14:4e:eb:ae:81:19:64:70:d5:23: b3:d8:0d:20:94:c7:91:d8:1c:06:fb:d0:a0:7d:a6: 76:cc:af:99:08:d0:4a:c4:a6:40:8f:91:24:21:4e: a2:e5:37:5d:80:20:b7:6a:d9:da:fa:9a:80:6a:5b: 99:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F3:1C:94:4B:44:19:9C:34:3D:48:74:37:3B:85:5B:D6:C3:5E:E7 X509v3 Authority Key Identifier: keyid:A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/27F621183B5D11EB97506B7AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.227.236.0/22 103.47.24.0/22 Signature Algorithm: sha256WithRSAEncryption a6:23:0b:b4:7b:ca:eb:2e:41:07:9d:47:69:50:f2:de:73:13: c9:7b:2c:1e:9c:b8:85:1f:ba:34:35:c6:33:ea:7e:5f:20:2e: 01:c6:fa:82:f8:18:ee:94:d7:81:c4:48:b0:6b:23:d7:d6:14: 2b:98:dc:4d:f9:81:29:76:3e:b0:04:5c:1b:d9:67:a3:09:b8: e6:97:63:42:73:63:ec:04:16:6f:0a:b4:c7:1d:e4:87:61:19: a5:60:80:4f:91:1a:d6:27:1c:2e:2f:69:29:3a:98:57:09:b3: 6f:1d:f0:75:ea:5b:ed:5a:c1:5f:c7:e8:ff:10:52:e3:14:bc: f6:f6:63:2f:ea:a9:10:67:48:ac:88:5b:4b:64:1f:30:24:06: e4:5b:3e:49:ad:c1:f7:a3:8c:d6:7f:b7:c4:99:ec:e2:22:e7: 9e:31:40:07:90:45:bc:f9:df:13:c6:7e:75:64:2c:08:c1:d1: dd:92:9e:c3:cd:1b:e6:f3:ff:63:db:72:ad:c7:d1:c4:b3:11: 82:cd:a3:6e:45:20:6f:e0:c6:90:e7:b7:09:f3:a3:07:41:87: 60:f9:20:3e:07:58:d9:fa:4f:57:6a:b4:da:e3:27:5d:6f:fe: 28:d7:f0:30:50:1e:c6:f5:d8:45:c3:b8:63:6f:6d:51:bf:cb: 90:39:fe:c1 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICKLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKEE2NTZGNjBEM0YxMTY0MUE1NzFCRDFGRkFEMjQ2MERE NDU3NjMzMkQwHhcNMjUxMjEwMTUzNjM1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGRmMi1hYmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+jD9JPR/XJYdmx7+KOoI782xIMCuVmneb4HM4wWqzWmHdSG7Tkzr5pBytu6 mWgWJs97pNIdNzLPGOR1O09NnKAwby72hv8nm+fQh9JW4PmAbapN0t6PZ9ilQy8G AU+o9SQ69WrVFgGJDRr78/uu4cNC75D9bOPywzGR9LL31irO2gndEusdwIGFoVA0 tm7n08ZBtfVTTd3oHaL8E/BkG/i0kKRuBh+JsgVrCWGx7tQfiGibDPm2V+45gu+R QZtYGJQRS4ABSBRO666BGWRw1SOz2A0glMeR2BwG+9CgfaZ2zK+ZCNBKxKZAj5Ek IU6i5TddgCC3atna+pqAaluZnQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPTzHJRL RBmcND1IdDc7hVvWw17nMB8GA1UdIwQYMBaAFKZW9g0/EWQaVxvR/60kYN1FdjMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9FQzg3MEI4NjhG MkExMUU0QkY5OEI0MzJDNEY5QUUwMi9wbGIyRFQ4UlpCcFhHOUhfclNSZzNVVjJN eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BsYjJEVDhSWkJwWEc5SF9yU1JnM1VWMk15MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk4NkYvRUM4NzBCODY4RjJBMTFFNEJGOThCNDMyQzRGOUFFMDIvMjdGNjIxMTgz QjVEMTFFQjk3NTA2QjdBQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK+PsAwQCZy8YMA0GCSqGSIb3DQEBCwUAA4IBAQCmIwu0e8rrLkEH nUdpUPLecxPJeywenLiFH7o0NcYz6n5fIC4BxvqC+BjulNeBxEiwayPX1hQrmNxN +YEpdj6wBFwb2WejCbjml2NCc2PsBBZvCrTHHeSHYRmlYIBPkRrWJxwuL2kpOphX CbNvHfB16lvtWsFfx+j/EFLjFLz29mMv6qkQZ0isiFtLZB8wJAbkWz5JrcH3o4zW f7fEmeziIueeMUAHkEW8+d8Txn51ZCwIwdHdkp7DzRvm8/9j23Ktx9HEsxGCzaNu RSBv4MaQ57cJ86MHQYdg+SA+B1jZ+k9XarTa4yddb/4o1/AwUB7G9dhFw7hjb21R v8uQOf7B -----END CERTIFICATE-----Generated at Mon Mar 2 07:44:26 2026 by rpki-client