$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/08EAF5106C2111F0B46AAC57C4F9AE02.roa File: 08EAF5106C2111F0B46AAC57C4F9AE02.roa (raw, json) Hash identifier: Z2FtvRw0zuR9Tn/KRZwJJwbzmRuiW6tEOkvTiYf9ZYY= Subject key identifier: 5E:66:77:78:42:D9:9E:5A:EC:4D:70:16:35:78:B3:3D:22:2F:FD:A5 Certificate issuer: /CN=A91A9C62/serialNumber=21C8F2B6E01D0A82D13C35188C3C93E6F514BA94 Certificate serial: 72 Authority key identifier: 21:C8:F2:B6:E0:1D:0A:82:D1:3C:35:18:8C:3C:93:E6:F5:14:BA:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcjytuAdCoLRPDUYjDyT5vUUupQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/08EAF5106C2111F0B46AAC57C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:12:45 +0000 ROA not before: Tue 29 Jul 2025 02:09:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 8075 IP address blocks: 202.27.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/IcjytuAdCoLRPDUYjDyT5vUUupQ.crl rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/IcjytuAdCoLRPDUYjDyT5vUUupQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcjytuAdCoLRPDUYjDyT5vUUupQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9C62, serialNumber=21C8F2B6E01D0A82D13C35188C3C93E6F514BA94 Validity Not Before: Jul 29 02:09:19 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3e6ed-9ae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:99:ff:ad:9b:8b:81:46:61:79:fb:54:95:1d: 2e:43:39:f5:e1:b4:b4:63:cd:d2:99:ab:83:69:ce: 23:f1:82:65:0c:ef:96:23:33:b5:d2:7c:fd:11:f6: 9d:fe:a9:8f:d0:31:78:8e:5e:71:94:92:62:c4:b0: 2a:ef:76:c0:06:89:d7:a1:4a:da:02:89:7a:8a:d3: 4e:4e:7e:6c:50:ee:f7:bd:a3:c4:58:6f:73:48:a7: 3c:14:76:18:fd:e7:57:37:a9:d3:e2:83:47:0f:2a: a1:4f:c7:4c:2e:ec:30:21:ab:90:0a:74:7a:49:67: b3:cb:8a:31:9b:a6:5d:5b:78:b3:c4:fe:ba:b3:74: 24:c1:e1:fd:b1:49:41:7c:a9:dc:0b:12:2a:0e:d6: fd:c2:53:a5:3d:47:b4:96:ef:c6:4a:d5:bd:c6:57: ef:9a:d6:db:6a:f3:5b:36:13:e9:4b:3b:a7:6e:e9: 3e:12:31:84:df:a4:83:15:a6:9d:28:4c:32:18:9b: 5d:29:89:92:a7:90:3a:16:11:2d:57:43:9a:6b:dd: ef:50:2d:a9:bf:f0:2e:59:34:46:3e:48:0a:c8:ee: b1:11:87:85:e3:ff:63:b3:5a:c5:b5:68:34:d6:f5: 0a:79:65:d0:5f:d0:9e:00:06:06:f8:42:d5:f4:d5: 28:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:66:77:78:42:D9:9E:5A:EC:4D:70:16:35:78:B3:3D:22:2F:FD:A5 X509v3 Authority Key Identifier: keyid:21:C8:F2:B6:E0:1D:0A:82:D1:3C:35:18:8C:3C:93:E6:F5:14:BA:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/IcjytuAdCoLRPDUYjDyT5vUUupQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcjytuAdCoLRPDUYjDyT5vUUupQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/08EAF5106C2111F0B46AAC57C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.27.49.0/24 Signature Algorithm: sha256WithRSAEncryption 14:6d:e1:80:90:fa:88:b1:bd:45:68:f9:23:f4:45:07:51:c4: 0e:c9:f8:2c:fa:97:e5:df:da:de:e6:9f:71:ac:e2:6a:b0:98: d1:7b:c1:95:9b:7b:54:25:15:78:a7:0b:74:9d:d4:cc:ab:ae: 50:c7:4c:dc:29:2a:62:fa:d6:68:18:43:6a:da:12:ae:37:fd: 08:38:6b:44:35:b9:e0:fa:31:10:81:56:87:bd:d7:48:ef:6e: c1:26:6f:11:30:b4:b3:48:fc:70:09:71:ba:67:88:6a:f2:fe: 74:28:64:89:df:f2:ef:ad:47:5f:d7:14:4a:a8:ce:e3:6b:2a: ba:36:ec:93:68:ec:b2:57:06:f2:cb:d4:ef:8f:d6:4a:f1:db: 76:2e:09:80:41:6d:5a:28:f6:d1:98:0f:f3:f9:c1:5a:76:00: 56:8c:b4:ad:bd:ae:ff:64:20:43:6a:08:92:76:1c:cc:02:88: 7b:b0:66:7e:31:43:7d:4e:cc:3a:43:22:fc:b9:a9:e7:62:1f: 13:a1:7b:5a:90:2c:e8:75:c2:2b:b1:90:1d:88:b8:69:d3:51: 99:45:37:1c:a1:ba:bb:cd:f5:d4:ff:a4:92:b6:a9:03:41:8e: d2:88:06:11:ab:71:38:f3:5b:1a:7e:bd:8d:d0:15:5d:de:0d: 88:b6:f6:0e -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OUM2MjExMC8GA1UEBRMoMjFDOEYyQjZFMDFEMEE4MkQxM0MzNTE4OEMzQzkzRTZG NTE0QkE5NDAeFw0yNTA3MjkwMjA5MTlaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNlNmVkLTlhZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCMmf+tm4uBRmF5+1SVHS5DOfXhtLRjzdKZq4NpziPxgmUM75YjM7XSfP0R9p3+ qY/QMXiOXnGUkmLEsCrvdsAGidehStoCiXqK005OfmxQ7ve9o8RYb3NIpzwUdhj9 51c3qdPig0cPKqFPx0wu7DAhq5AKdHpJZ7PLijGbpl1beLPE/rqzdCTB4f2xSUF8 qdwLEioO1v3CU6U9R7SW78ZK1b3GV++a1ttq81s2E+lLO6du6T4SMYTfpIMVpp0o TDIYm10piZKnkDoWES1XQ5pr3e9QLam/8C5ZNEY+SArI7rERh4Xj/2OzWsW1aDTW 9Qp5ZdBf0J4ABgb4QtX01SjrAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUXmZ3eELZ nlrsTXAWNXizPSIv/aUwHwYDVR0jBBgwFoAUIcjytuAdCoLRPDUYjDyT5vUUupQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5QzYyLzBBRUFBQ0Q2NkI2 NjExRjBCN0Y4RUI0MEM0RjlBRTAyL0ljanl0dUFkQ29MUlBEVVlqRHlUNXZVVXVw US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSWNqeXR1QWRDb0xSUERVWWpEeVQ1dlVVdXBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUM2Mi8wQUVBQUNENjZCNjYxMUYwQjdGOEVCNDBDNEY5QUUwMi8wOEVBRjUxMDZD MjExMUYwQjQ2QUFDNTdDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADKGzEwDQYJKoZIhvcNAQELBQADggEBABRt4YCQ+oixvUVo+SP0RQdR xA7J+Cz6l+Xf2t7mn3Gs4mqwmNF7wZWbe1QlFXinC3Sd1MyrrlDHTNwpKmL61mgY Q2raEq43/Qg4a0Q1ueD6MRCBVoe910jvbsEmbxEwtLNI/HAJcbpniGry/nQoZInf 8u+tR1/XFEqozuNrKro27JNo7LJXBvLL1O+P1krx23YuCYBBbVoo9tGYD/P5wVp2 AFaMtK29rv9kIENqCJJ2HMwCiHuwZn4xQ31OzDpDIvy5qediHxOhe1qQLOh1wiux kB2IuGnTUZlFNxyhurvN9dT/pJK2qQNBjtKIBhGrcTjzWxp+vY3QFV3eDYi29g4= -----END CERTIFICATE-----Generated at Sun Mar 1 23:22:13 2026 by rpki-client