$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/B9FF8C12120A11EEBF7A0D72C4F9AE02.roa File: B9FF8C12120A11EEBF7A0D72C4F9AE02.roa (raw, json) Hash identifier: 9k+NHvdwPaL2Te9EGjJfwM53cdhWCBk6SgfyxFOLTzw= Subject key identifier: B9:B3:4C:93:5C:1D:A0:D8:B5:FA:E4:D5:D6:FE:7B:B4:C8:86:44:86 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 19C8 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/B9FF8C12120A11EEBF7A0D72C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:50:36 +0000 ROA not before: Fri 20 Feb 2026 17:14:43 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 10113 IP address blocks: 27.0.64.0/19 maxlen: 19 202.62.144.0/24 maxlen: 24 202.68.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6600 (0x19c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:14:43 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a48a7c-cb5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:32:9d:20:9c:86:a8:3e:e1:50:36:94:d0:1a: 0d:e6:96:43:aa:71:97:12:b0:04:3a:25:e2:fa:db: 9c:4d:dc:5e:7a:47:62:78:7d:fb:08:2e:0b:59:b7: 7b:54:a4:5a:22:af:37:32:1f:2f:0b:2e:37:5c:57: c8:e8:ab:b9:80:70:08:c3:71:48:65:39:8f:99:0c: 72:92:cf:21:8d:e9:fb:c1:71:f3:06:8d:5f:ad:1a: e3:b5:f5:e6:20:5f:55:10:dc:1d:32:b3:fa:07:df: f6:7a:48:7e:55:16:db:49:7e:b6:63:02:b8:fb:43: 0a:f9:e1:c1:af:f6:d0:58:0a:1a:22:2c:32:d2:42: cd:22:cd:3a:90:59:a1:2f:82:2d:21:d8:32:bf:d7: ac:db:77:be:c5:b7:ca:1b:32:bf:1d:78:6e:d6:e5: 60:61:c8:bb:57:29:3f:9f:46:48:70:e8:de:97:1a: 55:c9:52:52:39:21:db:36:b2:22:35:85:34:e6:7a: 85:cd:a8:90:de:44:6e:8e:27:49:8c:7d:ae:4a:77: 8c:8d:31:9c:ff:24:bd:52:3a:c6:41:50:6f:fb:51: cb:8e:ea:52:fd:ed:38:dc:57:b7:33:41:5f:04:b8: 25:80:ee:7b:18:2d:53:d5:91:ef:ee:bc:21:a5:50: 7e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:B3:4C:93:5C:1D:A0:D8:B5:FA:E4:D5:D6:FE:7B:B4:C8:86:44:86 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/B9FF8C12120A11EEBF7A0D72C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.0.64.0/19 202.62.144.0/24 202.68.96.0/19 Signature Algorithm: sha256WithRSAEncryption 8a:a6:c6:35:d5:7f:4c:af:f5:65:1f:61:17:be:9e:48:a9:9b: 73:57:fc:31:e0:15:38:b2:de:f7:02:40:cf:76:6f:d7:3a:24: 02:e0:99:d9:64:53:28:3b:28:90:b4:f4:09:38:4b:18:24:26: 04:18:45:78:1a:02:54:32:eb:af:e5:d4:ef:20:c2:2f:6b:a2: 65:73:34:14:78:07:da:31:8c:87:c7:79:1c:74:e9:18:a3:be: 75:3a:df:64:17:01:37:37:2d:67:e6:44:92:3d:68:91:f4:81: fd:22:ff:fd:ba:64:5f:7d:b4:09:a5:82:ae:e8:63:70:80:23: 1a:16:2f:35:b4:53:a0:c3:37:69:4b:ab:fb:ce:07:e5:de:db: 28:ab:94:89:ed:61:a9:ff:f9:78:c7:bb:24:37:b9:e9:3a:d0: 53:f8:1e:c1:0a:42:98:ab:50:d3:44:42:a3:1a:23:5e:21:5c: 4f:51:99:2b:5d:8f:85:9f:91:46:eb:3e:2f:13:6a:a4:69:70: ba:7c:8c:62:70:09:22:ee:06:06:6b:b4:09:f7:0d:87:67:bb: e0:de:4c:df:0d:40:ca:f3:a4:01:fc:42:ba:e7:32:43:b3:b5: ac:70:f5:3a:fb:cd:e5:92:05:c1:67:48:aa:e9:cb:98:42:f1: 6c:9a:f7:7e -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICGcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjYwMjIwMTcxNDQzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGE3Yy1jYjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjKdIJyGqD7hUDaU0BoN5pZDqnGXErAEOiXi+tucTdxeekdieH37CC4LWbd7 VKRaIq83Mh8vCy43XFfI6Ku5gHAIw3FIZTmPmQxyks8hjen7wXHzBo1frRrjtfXm IF9VENwdMrP6B9/2ekh+VRbbSX62YwK4+0MK+eHBr/bQWAoaIiwy0kLNIs06kFmh L4ItIdgyv9es23e+xbfKGzK/HXhu1uVgYci7Vyk/n0ZIcOjelxpVyVJSOSHbNrIi NYU05nqFzaiQ3kRujidJjH2uSneMjTGc/yS9UjrGQVBv+1HLjupS/e043Fe3M0Ff BLglgO57GC1T1ZHv7rwhpVB+dwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFLmzTJNc HaDYtfrk1db+e7TIhkSGMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvQjlGRjhDMTIx MjBBMTFFRUJGN0EwRDcyQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQFGwBAAwQAyj6QAwQFykRgMA0GCSqGSIb3DQEBCwUAA4IBAQCKpsY1 1X9Mr/VlH2EXvp5IqZtzV/wx4BU4st73AkDPdm/XOiQC4JnZZFMoOyiQtPQJOEsY JCYEGEV4GgJUMuuv5dTvIMIva6JlczQUeAfaMYyHx3kcdOkYo751Ot9kFwE3Ny1n 5kSSPWiR9IH9Iv/9umRffbQJpYKu6GNwgCMaFi81tFOgwzdpS6v7zgfl3tsoq5SJ 7WGp//l4x7skN7npOtBT+B7BCkKYq1DTREKjGiNeIVxPUZkrXY+Fn5FG6z4vE2qk aXC6fIxicAki7gYGa7QJ9w2HZ7vg3kzfDUDK86QB/EK65zJDs7WscPU6+83lkgXB Z0iq6cuYQvFsmvd+ -----END CERTIFICATE-----Generated at Mon Mar 2 21:12:19 2026 by rpki-client