$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/B0BE3042014A11EFA8F03B5BC4F9AE02.roa File: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (raw, json) Hash identifier: lKWlhkDzF9OVoFvxt7VRR1SGwqDcOQ0oVF6cpYeoRqg= Subject key identifier: 23:66:F9:40:DD:5E:FE:0C:B5:C2:4F:7C:80:4C:BD:01:FA:79:F6:EC Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 0164 Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/B0BE3042014A11EFA8F03B5BC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:04:54 +0000 ROA not before: Wed 09 Apr 2025 05:12:15 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4768 IP address blocks: 202.27.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Apr 9 05:12:15 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a59906-4b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d1:f5:38:3b:7d:ce:94:e1:1d:bd:78:f3:56: a4:78:18:a9:97:b2:38:82:54:56:00:d8:e7:de:82: fe:e4:9d:d1:2b:f5:1c:76:db:c2:1d:7f:a9:e3:8c: a3:17:04:e7:9e:e6:0e:d1:74:9b:86:d9:e0:91:73: 64:3d:8b:bb:57:08:cb:78:3a:2c:27:04:33:49:9b: 10:1a:49:73:b2:3f:69:c7:d5:c8:59:d6:87:53:91: 3e:fe:6a:bb:02:a1:69:0f:a1:d3:dd:5b:c4:7b:ec: 4f:90:d5:21:b0:21:50:bc:a9:0e:e8:83:f1:5a:94: 99:45:96:c7:dc:a7:48:b1:c1:bc:fb:65:04:39:67: ca:74:45:cd:80:90:dd:a1:23:a4:85:7e:53:fe:5d: fa:e3:17:d0:1a:e1:4c:6d:15:31:a5:ff:3b:0e:b3: 51:32:e7:de:bc:7f:f7:f7:c8:5a:38:1e:3b:cc:18: 0b:e1:8a:83:e8:94:7d:6c:91:96:b5:f0:0b:8e:ce: d5:0b:9b:55:47:2c:8b:fa:be:c5:04:3f:7f:23:49: 66:e9:12:99:4b:7f:18:a2:93:fd:44:be:c5:ce:be: 9f:89:1c:16:13:74:d3:02:62:79:4d:93:be:57:fe: f5:07:27:b4:2a:d1:35:5a:16:cf:b6:38:7c:13:26: ad:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:66:F9:40:DD:5E:FE:0C:B5:C2:4F:7C:80:4C:BD:01:FA:79:F6:EC X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/B0BE3042014A11EFA8F03B5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.27.128.0/23 Signature Algorithm: sha256WithRSAEncryption 07:d2:7c:67:a1:d6:61:d0:24:70:3b:68:fb:47:2a:cd:9f:c2: f1:27:6f:01:52:ee:c4:84:42:74:ba:95:9c:d9:ea:22:22:db: b5:13:cc:c4:6b:29:a2:4b:42:ef:75:ae:84:e3:f2:8f:a9:cc: e0:8d:46:9d:39:00:b1:33:f8:95:1c:72:c6:2a:9a:91:ce:be: 35:b7:18:9a:df:15:2d:c5:05:37:e8:26:b7:33:19:18:d3:2d: 20:7c:4d:d8:fe:a1:e9:5e:95:b4:77:63:ae:48:a2:af:a8:67: 8c:16:56:16:d3:17:db:b3:23:56:3d:a7:80:e3:0e:ec:a3:83: fd:ea:88:76:46:05:c0:7e:92:a0:7e:9a:6e:d7:f4:36:01:9c: 89:fc:f7:fa:2d:d9:12:d8:cf:e7:64:15:e5:eb:56:97:61:bf: 8c:28:22:e9:76:3f:e1:f0:95:34:b0:a9:9e:84:fa:48:35:46: f3:75:57:45:f2:96:76:9a:9d:f2:ff:34:90:5e:0c:3c:95:df: de:42:d1:f3:c7:f3:66:92:50:63:4b:ea:26:04:0d:b6:ab:c8: e4:99:0f:e4:9a:1d:a1:12:b5:62:03:53:1c:a6:01:22:a6:85: b8:03:fc:f4:e7:9f:8c:7d:7e:6a:7f:4f:33:ed:cf:24:a1:b6: 6d:e1:9e:99 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUwNDA5MDUxMjE1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTkwNi00YjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAltH1ODt9zpThHb1481akeBipl7I4glRWANjn3oL+5J3RK/UcdtvCHX+p44yj FwTnnuYO0XSbhtngkXNkPYu7VwjLeDosJwQzSZsQGklzsj9px9XIWdaHU5E+/mq7 AqFpD6HT3VvEe+xPkNUhsCFQvKkO6IPxWpSZRZbH3KdIscG8+2UEOWfKdEXNgJDd oSOkhX5T/l364xfQGuFMbRUxpf87DrNRMufevH/398haOB47zBgL4YqD6JR9bJGW tfALjs7VC5tVRyyL+r7FBD9/I0lm6RKZS38YopP9RL7Fzr6fiRwWE3TTAmJ5TZO+ V/71Bye0KtE1WhbPtjh8EyatZQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCNm+UDd Xv4MtcJPfIBMvQH6efbsMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJCOTMvM0FDODc0RUUwMTQzMTFFRjgyNUE2NDY1QzRGOUFFMDIvQjBCRTMwNDIw MTRBMTFFRkE4RjAzQjVCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByhuAMA0GCSqGSIb3DQEBCwUAA4IBAQAH0nxnodZh0CRwO2j7RyrN n8LxJ28BUu7EhEJ0upWc2eoiItu1E8zEaymiS0Lvda6E4/KPqczgjUadOQCxM/iV HHLGKpqRzr41txia3xUtxQU36Ca3MxkY0y0gfE3Y/qHpXpW0d2OuSKKvqGeMFlYW 0xfbsyNWPaeA4w7so4P96oh2RgXAfpKgfppu1/Q2AZyJ/Pf6LdkS2M/nZBXl61aX Yb+MKCLpdj/h8JU0sKmehPpINUbzdVdF8pZ2mp3y/zSQXgw8ld/eQtHzx/NmklBj S+omBA22q8jkmQ/kmh2hErViA1McpgEipoW4A/z055+MfX5qf08z7c8kobZt4Z6Z -----END CERTIFICATE-----Generated at Mon Mar 2 16:24:48 2026 by rpki-client