$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa File: 66E400CACB4C11EE8E404546C4F9AE02.roa (raw, json) Hash identifier: zdqWLocdgkEwEzpGEFgWlpmeuU0MlCsdCgg2P2h00eg= Subject key identifier: 6B:EA:9E:31:A0:D4:75:8D:6F:E6:1C:43:FD:BE:97:FA:E9:32:EA:02 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0B42 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa Signing time: Thu 26 Mar 2026 19:24:57 +0000 ROA not before: Thu 26 Mar 2026 19:24:57 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 2914 IP address blocks: 27.110.64.0/21 maxlen: 21 203.78.192.0/20 maxlen: 20 203.78.196.0/32 maxlen: 32 203.131.240.0/20 maxlen: 20 203.131.244.0/22 maxlen: 22 2001:218::/32 maxlen: 32 2001:218:2002::/48 maxlen: 48 2001:218:8000::/38 maxlen: 38 2001:218:e000::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:18:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2882 (0xb42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 19:24:57 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c58809-0b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:cf:84:19:bf:64:e9:e0:53:8e:57:8c:6d:c6: f2:17:b3:0b:f8:ed:a5:98:78:4a:4b:a4:7e:33:9e: 2c:ec:79:67:c7:84:35:6d:19:cd:74:a4:bd:2b:a0: ae:b1:9a:6b:8e:70:da:a2:bc:30:3c:4e:e8:af:8e: a2:a3:cb:50:52:1e:91:51:8a:18:d4:9f:ae:ae:ca: 27:2f:6d:6a:f4:9d:98:73:b7:32:32:e7:b0:9a:3e: 38:03:05:3c:58:31:2c:bc:d8:56:2f:44:de:fc:32: 4d:d6:8e:ab:8f:42:0b:dd:50:98:fe:c6:8b:23:a1: 30:e2:32:3a:c7:04:28:10:48:e7:35:e0:67:04:09: 23:8f:39:71:17:32:35:38:79:7d:e0:f5:da:32:50: 2a:c9:df:40:e4:bc:12:dc:cd:95:21:02:e4:2e:20: 15:b5:15:f6:86:77:6c:a8:80:da:27:55:bf:36:16: 6f:7f:6e:16:3d:aa:1a:b5:0d:47:e8:91:2c:53:db: 01:89:46:9c:ac:b5:59:d9:ff:4a:1b:13:06:1a:a0: 6e:c0:f9:0f:68:16:70:db:ac:52:7d:ac:6a:5b:ae: 5b:54:79:74:72:a3:48:cb:13:7a:15:b6:8d:63:e7: 79:b5:a1:15:f6:20:3c:62:0b:ee:7b:a6:e5:a5:3c: 9a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:EA:9E:31:A0:D4:75:8D:6F:E6:1C:43:FD:BE:97:FA:E9:32:EA:02 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.110.64.0/21 203.78.192.0/20 203.131.240.0/20 IPv6: 2001:218::/32 Signature Algorithm: sha256WithRSAEncryption a0:88:99:cc:2a:2a:a9:3d:75:71:32:9a:0c:7e:41:e1:2e:92: 10:bf:b7:c3:ff:18:38:00:48:ba:01:a2:4d:5d:0a:50:83:0e: 16:9c:88:43:77:59:d9:cd:f8:fd:03:85:f3:5d:75:d7:3d:fd: 98:ed:73:06:18:e0:65:0b:fa:f7:bc:1e:c2:ed:f9:70:b9:b9: 3b:da:d5:ad:b2:ff:40:61:c8:e0:9e:ab:55:bf:2e:21:d6:dd: 0e:a6:7b:fe:93:dc:02:24:eb:fb:e7:89:58:47:f5:4d:80:5c: 3a:f5:0d:03:58:49:e9:f7:c5:7e:b2:b3:71:a5:48:84:73:0c: 5d:be:c4:9d:d3:6b:43:1f:33:f6:67:93:f6:78:65:55:c5:95: 8e:04:0e:0c:d8:fd:c3:b9:77:1c:c2:31:59:45:53:ef:20:7f: 05:7a:bc:9c:8c:c2:57:ec:a4:8d:95:28:75:4c:62:75:33:b0: 07:f7:57:39:31:b7:c8:34:07:16:10:d3:bc:17:5e:c6:00:8b: e4:e4:68:2b:5b:6a:66:c2:fd:b8:a4:8e:62:a0:c4:06:83:dc: 51:87:51:08:d6:cb:ce:f0:cc:35:d7:4e:b8:ca:6f:d4:d1:40: d8:29:83:49:8a:7b:a5:e4:53:35:ed:d8:e9:bf:23:4b:2d:7a: 7a:a3:08:78 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICC0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjYwMzI2MTkyNDU3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1ODgwOS0wYjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8+EGb9k6eBTjleMbcbyF7ML+O2lmHhKS6R+M54s7Hlnx4Q1bRnNdKS9K6Cu sZprjnDaorwwPE7or46io8tQUh6RUYoY1J+ursonL21q9J2Yc7cyMuewmj44AwU8 WDEsvNhWL0Te/DJN1o6rj0IL3VCY/saLI6Ew4jI6xwQoEEjnNeBnBAkjjzlxFzI1 OHl94PXaMlAqyd9A5LwS3M2VIQLkLiAVtRX2hndsqIDaJ1W/NhZvf24WPaoatQ1H 6JEsU9sBiUacrLVZ2f9KGxMGGqBuwPkPaBZw26xSfaxqW65bVHl0cqNIyxN6FbaN Y+d5taEV9iA8Ygvue6blpTya0QIDAQABo4ICezCCAncwHQYDVR0OBBYEFGvqnjGg 1HWNb+YcQ/2+l/rpMuoCMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvNjZFNDAwQ0FD QjRDMTFFRThFNDA0NTQ2QzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQDG25AAwQEy07AAwQEy4PwMA0EAgACMAcDBQAgAQIYMA0GCSqGSIb3 DQEBCwUAA4IBAQCgiJnMKiqpPXVxMpoMfkHhLpIQv7fD/xg4AEi6AaJNXQpQgw4W nIhDd1nZzfj9A4XzXXXXPf2Y7XMGGOBlC/r3vB7C7flwubk72tWtsv9AYcjgnqtV vy4h1t0Opnv+k9wCJOv754lYR/VNgFw69Q0DWEnp98V+srNxpUiEcwxdvsSd02tD HzP2Z5P2eGVVxZWOBA4M2P3DuXccwjFZRVPvIH8FerycjMJX7KSNlSh1TGJ1M7AH 91c5MbfINAcWENO8F17GAIvk5GgrW2pmwv24pI5ioMQGg9xRh1EI1svO8Mw11064 ym/U0UDYKYNJinul5FM17djpvyNLLXp6owh4 -----END CERTIFICATE-----Generated at Fri Apr 17 14:09:41 2026 by rpki-client