$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/B0BE3042014A11EFA8F03B5BC4F9AE02.roa File: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (raw, json) Hash identifier: i2+AU5JC1CnIuV2WebgbR1MhXzhp17jyG1HTb2dIKP0= Subject key identifier: 7A:6A:B0:30:2F:1E:77:D6:D4:50:1A:A2:E8:78:3C:F9:C5:F9:C6:8F Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 017D Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/B0BE3042014A11EFA8F03B5BC4F9AE02.roa Signing time: Thu 09 Apr 2026 04:38:39 +0000 ROA not before: Thu 09 Apr 2026 04:38:39 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 4768 IP address blocks: 202.27.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Apr 9 04:38:39 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d72d4f-b68d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f8:fd:bc:d8:89:32:6c:02:f9:a0:71:a1:8b: e3:63:e1:13:a7:60:d4:4f:1d:c5:25:15:f1:55:1d: 0e:0a:49:10:31:3d:ec:7e:37:b2:5e:0e:74:9c:bc: 6f:e3:18:63:fd:58:ed:5f:81:80:ae:e3:fb:66:14: 39:6d:e0:6a:4a:1b:83:57:6b:3b:89:3a:51:d2:f0: 25:d0:b7:2b:ce:bd:79:13:55:a7:8e:c9:b0:9b:e5: d3:93:cc:06:0f:54:9b:c5:bb:f2:15:e8:12:a4:d4: e2:b5:66:2f:c6:da:02:ed:66:d3:61:91:d9:d5:51: ba:25:93:40:22:6c:59:79:53:75:9e:6c:7a:60:b2: d4:7d:40:61:b7:2c:92:a0:bb:f4:07:53:81:5a:eb: 10:26:51:ff:9b:8f:4c:07:4a:9b:41:cf:d9:fa:7a: fb:30:c6:12:f9:e8:ec:b6:db:71:08:6d:af:65:7d: 1f:12:aa:8f:7c:47:ea:f5:8f:f9:40:b2:2c:da:19: 99:b4:e8:7d:a8:a1:61:3e:78:26:49:5e:90:e1:cc: 7e:e4:88:5b:83:97:0b:94:92:6c:f4:2b:b8:79:fd: 32:ed:8f:8b:ed:ec:16:56:9c:63:ee:9c:af:cf:8c: ee:65:70:1e:29:3d:b0:e1:af:8a:e3:43:7e:3e:e5: 89:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:6A:B0:30:2F:1E:77:D6:D4:50:1A:A2:E8:78:3C:F9:C5:F9:C6:8F X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/B0BE3042014A11EFA8F03B5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.27.128.0/23 Signature Algorithm: sha256WithRSAEncryption 02:58:0b:b4:53:88:d7:96:b5:c3:87:98:10:4f:e4:c0:a3:43: 2b:d4:41:12:b6:84:c2:cd:2e:05:61:d3:f6:0e:14:93:c1:2e: a1:90:41:73:01:58:39:54:e8:3c:79:35:6a:db:35:7a:2a:e7: 41:fc:7e:b0:8b:a2:97:47:b5:2b:18:13:f2:d1:72:9e:40:a6: f5:7c:87:1f:3d:0b:e5:21:fe:c7:ff:7c:4e:3e:a2:ae:23:69: ad:56:6b:b8:e7:b6:74:46:a0:13:63:c0:c7:4b:6f:3d:70:13: e3:32:4e:29:d0:b1:a7:82:89:99:37:ac:62:df:d9:01:74:92: 6f:64:65:33:1f:1b:16:fd:45:93:05:8e:2d:65:36:7b:cb:a2: 92:e6:6c:19:ad:f6:82:c7:0c:3d:c7:68:68:1d:0e:82:ba:b2: 1a:73:6c:c5:e6:2a:87:89:1b:63:eb:30:90:53:68:e6:32:90: 0d:66:31:fa:65:fe:7e:f8:60:4a:ed:d7:f9:f1:2c:8b:36:21: 37:30:dd:72:e2:9e:bd:e1:e7:fc:14:c6:74:41:d4:19:b0:95: 25:b4:b6:25:f2:75:c4:6b:f1:e6:8c:14:d2:31:0a:6c:c7:b4: 16:b0:02:c9:69:16:c3:a7:c5:91:a1:50:75:91:70:52:91:a4: 24:14:4f:73 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjYwNDA5MDQzODM5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ3MmQ0Zi1iNjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvj9vNiJMmwC+aBxoYvjY+ETp2DUTx3FJRXxVR0OCkkQMT3sfjeyXg50nLxv 4xhj/VjtX4GAruP7ZhQ5beBqShuDV2s7iTpR0vAl0Lcrzr15E1Wnjsmwm+XTk8wG D1SbxbvyFegSpNTitWYvxtoC7WbTYZHZ1VG6JZNAImxZeVN1nmx6YLLUfUBhtyyS oLv0B1OBWusQJlH/m49MB0qbQc/Z+nr7MMYS+ejstttxCG2vZX0fEqqPfEfq9Y/5 QLIs2hmZtOh9qKFhPngmSV6Q4cx+5Ihbg5cLlJJs9Cu4ef0y7Y+L7ewWVpxj7pyv z4zuZXAeKT2w4a+K40N+PuWJgQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHpqsDAv HnfW1FAaouh4PPnF+caPMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJCOTMvM0FDODc0RUUwMTQzMTFFRjgyNUE2NDY1QzRGOUFFMDIvQjBCRTMwNDIw MTRBMTFFRkE4RjAzQjVCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByhuAMA0GCSqGSIb3DQEBCwUAA4IBAQACWAu0U4jXlrXDh5gQT+TA o0Mr1EEStoTCzS4FYdP2DhSTwS6hkEFzAVg5VOg8eTVq2zV6KudB/H6wi6KXR7Ur GBPy0XKeQKb1fIcfPQvlIf7H/3xOPqKuI2mtVmu457Z0RqATY8DHS289cBPjMk4p 0LGngomZN6xi39kBdJJvZGUzHxsW/UWTBY4tZTZ7y6KS5mwZrfaCxww9x2hoHQ6C urIac2zF5iqHiRtj6zCQU2jmMpANZjH6Zf5++GBK7df58SyLNiE3MN1y4p694ef8 FMZ0QdQZsJUltLYl8nXEa/HmjBTSMQpsx7QWsALJaRbDp8WRoVB1kXBSkaQkFE9z -----END CERTIFICATE-----Generated at Fri Apr 17 07:19:46 2026 by rpki-client