$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/527AA5C69F4F11EAA7970484C4F9AE02.roa File: 527AA5C69F4F11EAA7970484C4F9AE02.roa (raw, json) Hash identifier: ZRJ8RRTx82c/T4AayJfx0hjTY8b/3YGVP7pz26JY7DE= Subject key identifier: 8F:CC:1D:81:F5:3D:8D:0A:14:EE:F4:F2:1C:60:30:99:5A:7C:ED:45 Certificate issuer: /CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Certificate serial: 1EC1 Authority key identifier: F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/527AA5C69F4F11EAA7970484C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:40:47 +0000 ROA not before: Wed 22 Jan 2025 16:23:27 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 45121 IP address blocks: 27.131.62.0/23 maxlen: 23 27.131.62.0/24 maxlen: 24 27.131.63.0/24 maxlen: 24 103.221.63.0/24 maxlen: 24 122.0.31.0/24 maxlen: 24 202.133.108.0/22 maxlen: 22 202.133.108.0/23 maxlen: 24 202.133.110.0/23 maxlen: 24 2405:6400:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:36:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7873 (0x1ec1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC46A, serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Validity Not Before: Jan 22 16:23:27 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=69a441df-e13b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:76:bf:6d:9c:09:25:d5:2d:f1:6f:e4:37:93: 9f:a9:e4:3c:9c:4b:58:9f:3f:da:ce:f0:b3:3d:98: 1b:ae:38:57:4c:7c:74:c1:ef:6e:48:59:aa:d8:1a: 27:14:70:eb:31:12:40:26:36:4b:83:53:55:78:cc: 8b:d2:00:8c:1b:fb:c4:33:77:89:4e:50:e7:04:b0: ad:41:6f:37:75:ec:3b:9d:8d:84:0f:3b:0b:c1:ae: 30:24:9d:99:d9:85:8e:1b:89:16:52:e6:c6:90:e9: b0:f9:09:c8:45:62:49:14:b6:f8:29:cc:c2:c2:29: f5:57:81:60:35:0c:dd:00:b1:41:97:b5:06:ca:f8: fe:97:2b:65:b9:e5:9e:c5:68:81:3c:0e:ac:ad:19: 2c:84:f8:24:f0:49:a8:a6:a2:56:2b:0f:d5:51:95: 6c:48:b1:3b:61:e4:54:e8:e1:d0:a3:06:0e:92:04: 48:98:41:b5:f8:c7:4a:a7:6c:fa:40:cb:43:93:3b: cb:c4:36:76:9f:45:ed:c4:ba:f3:40:a8:48:51:59: 7a:79:4d:9d:01:d9:c7:dd:25:96:d5:7c:8d:87:96: d9:40:ab:73:8f:d2:6b:c8:ce:b4:47:bd:c7:8d:39: a2:82:e2:32:54:1b:47:11:7d:03:52:bd:98:dd:c2: ff:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CC:1D:81:F5:3D:8D:0A:14:EE:F4:F2:1C:60:30:99:5A:7C:ED:45 X509v3 Authority Key Identifier: keyid:F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/527AA5C69F4F11EAA7970484C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.131.62.0/23 103.221.63.0/24 122.0.31.0/24 202.133.108.0/22 IPv6: 2405:6400:4000::/36 Signature Algorithm: sha256WithRSAEncryption 14:f9:f9:59:c6:03:13:be:d6:22:75:6b:00:8e:c3:8a:32:53: 5c:24:3e:77:14:12:73:61:e6:7c:de:e1:34:f0:19:2a:bb:de: b7:1a:d4:0b:33:6e:dd:86:dd:db:35:79:84:ba:92:5f:dd:c4: 0b:56:c1:90:a5:27:5c:7d:57:67:8d:2a:e3:60:55:fe:d3:63: 80:56:a1:d3:2d:ef:c3:c4:eb:cd:5c:b9:31:56:bf:03:ba:58: e8:eb:28:f8:fb:c4:9c:e5:42:cf:66:ce:05:73:c7:e2:3c:09: 69:de:92:10:81:e5:15:76:69:f9:f0:c1:75:38:9b:21:f5:e2: 22:ad:b0:26:60:b2:b7:50:15:de:05:78:9e:d7:1f:2f:45:55: a0:4d:6e:67:5c:89:5c:47:f3:3b:02:0f:f4:19:58:23:af:2a: 2f:8d:92:57:9d:ac:77:12:d2:c3:e5:a7:bd:ac:ea:a6:55:a1: 76:80:51:ff:04:fd:64:c7:d5:d5:66:55:89:9b:9c:c3:23:e3: cd:41:14:25:13:80:ed:9a:aa:d8:5e:a3:9a:1c:99:8f:86:d8: d8:dd:bd:08:38:19:2a:0f:4d:66:76:8f:f7:ed:66:9b:1b:cb: 42:9b:7e:be:9c:5c:03:0d:67:42:b7:9e:7f:eb:eb:89:a9:47: fd:90:77:1a -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgICHsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NkExMTAvBgNVBAUTKEY4RDRBNjMyRDA2OTk2NEM2MUEzM0U0MUQ2MjQzRDUz NUIwMDdENTQwHhcNMjUwMTIyMTYyMzI3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDFkZi1lMTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHa/bZwJJdUt8W/kN5OfqeQ8nEtYnz/azvCzPZgbrjhXTHx0we9uSFmq2Bon FHDrMRJAJjZLg1NVeMyL0gCMG/vEM3eJTlDnBLCtQW83dew7nY2EDzsLwa4wJJ2Z 2YWOG4kWUubGkOmw+QnIRWJJFLb4KczCwin1V4FgNQzdALFBl7UGyvj+lytlueWe xWiBPA6srRkshPgk8EmopqJWKw/VUZVsSLE7YeRU6OHQowYOkgRImEG1+MdKp2z6 QMtDkzvLxDZ2n0XtxLrzQKhIUVl6eU2dAdnH3SWW1XyNh5bZQKtzj9JryM60R73H jTmiguIyVBtHEX0DUr2Y3cL/dQIDAQABo4ICgjCCAn4wHQYDVR0OBBYEFI/MHYH1 PY0KFO708hxgMJlafO1FMB8GA1UdIwQYMBaAFPjUpjLQaZZMYaM+QdYkPVNbAH1U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ2QS8wMDUwMDE2NDk0 MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxreGhvejVCMWlROVUxc0Fm VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OU21NdEJwbGt4aG96NUIxaVE5VTFzQWZWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM0NkEvMDA1MDAxNjQ5NDMyMTFFNjhDMUI4MjRBQzRGOUFFMDIvNTI3QUE1QzY5 RjRGMTFFQUE3OTcwNDg0QzRGOUFFMDIucm9hMEEGCCsGAQUFBwEHAQH/BDIwMDAe BAIAATAYAwQBG4M+AwQAZ90/AwQAegAfAwQCyoVsMA4EAgACMAgDBgQkBWQAQDAN BgkqhkiG9w0BAQsFAAOCAQEAFPn5WcYDE77WInVrAI7DijJTXCQ+dxQSc2HmfN7h NPAZKrvetxrUCzNu3Ybd2zV5hLqSX93EC1bBkKUnXH1XZ40q42BV/tNjgFah0y3v w8TrzVy5MVa/A7pY6Oso+PvEnOVCz2bOBXPH4jwJad6SEIHlFXZp+fDBdTibIfXi Iq2wJmCyt1AV3gV4ntcfL0VVoE1uZ1yJXEfzOwIP9BlYI68qL42SV52sdxLSw+Wn vazqplWhdoBR/wT9ZMfV1WZViZucwyPjzUEUJROA7Zqq2F6jmhyZj4bY2N29CDgZ Kg9NZnaP9+1mmxvLQpt+vpxcAw1nQreef+vrialH/ZB3Gg== -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:29 2026 by rpki-client