$ rpki-client -vvf rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa File: 1DCB662A3DF211EB81F4CE73C4F9AE02.roa (raw, json) Hash identifier: CPnrHpUJq3mBrdIMrLfJZ0ZvbNZPxB+e14wP/E2xapc= Subject key identifier: C4:B0:D4:7C:08:E5:AE:E3:D1:A4:99:34:2F:45:9F:04:62:5B:0F:28 Certificate issuer: /CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Certificate serial: 171C Authority key identifier: 7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:44:50 +0000 ROA not before: Sat 10 May 2025 16:57:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 27.111.228.0/22 maxlen: 24 202.79.198.0/24 maxlen: 24 202.79.199.0/24 maxlen: 24 202.79.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5916 (0x171c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914254C, serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Validity Not Before: May 10 16:57:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a442d2-24fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2b:68:e8:20:65:95:c4:24:4f:d5:9b:68:45: 29:3d:82:0c:eb:ed:7d:b2:94:3a:a3:d2:73:0e:91: 6d:62:f7:8a:cf:62:44:d4:6f:94:a2:a9:5a:e2:5d: df:1b:d9:ec:1f:24:ca:b1:18:d6:57:cd:6c:48:5b: 3e:26:4d:a2:25:d6:5f:0e:47:dc:4e:2c:c0:ed:72: ef:0b:11:71:e6:1c:0d:42:e5:c0:1e:a0:a1:ac:9f: 03:50:3f:b7:c8:44:32:c5:08:f5:a7:50:53:6f:d2: 72:0b:31:6a:cf:b6:f8:d4:85:40:7e:4f:28:e7:15: 48:10:45:c6:e5:d5:ac:15:90:fd:36:6e:ff:fb:72: 21:ee:01:0f:43:3b:23:14:7d:11:ec:9e:31:9b:11: 8a:fd:b3:9a:f2:0d:18:82:51:17:f2:26:c7:25:95: d1:91:69:bb:5a:55:df:67:fe:30:79:26:59:eb:7d: b8:9b:e4:dd:92:bc:3c:b8:b1:6b:4f:e8:5d:3c:4f: fa:c6:e7:5d:6c:4e:61:40:17:74:83:25:76:5a:23: 13:28:bf:ba:1a:78:07:40:b2:af:9b:ea:0c:9d:3c: 37:5c:af:9e:59:17:45:68:56:af:35:53:25:72:67: ee:2e:8c:22:a5:63:90:07:9c:ce:c0:ee:19:84:74: c0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B0:D4:7C:08:E5:AE:E3:D1:A4:99:34:2F:45:9F:04:62:5B:0F:28 X509v3 Authority Key Identifier: keyid:7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.111.228.0/22 202.79.198.0-202.79.200.255 Signature Algorithm: sha256WithRSAEncryption 0e:c7:2e:19:6c:3c:47:1a:62:d2:1d:27:af:3e:ec:e3:fd:73: 0e:a6:82:3c:f1:37:0f:0b:0c:a2:d4:f8:55:51:14:a7:7f:a9: a5:2a:83:9b:70:9f:97:af:7c:8e:90:31:23:f6:04:9d:b6:e6: 25:e9:1d:a8:fe:b0:52:7f:6b:f6:6b:1c:00:6f:d9:12:f4:0c: f2:f4:3a:05:9f:73:5e:21:72:88:35:fa:e4:b9:de:62:d6:b3: d7:f5:13:b7:bb:a5:13:9f:8e:9b:59:10:e6:7d:f1:c4:e1:bf: f7:ac:9b:ce:81:22:62:24:56:ef:39:6a:c4:0e:31:d1:14:92: cb:42:e5:59:fe:49:7a:45:31:6b:f4:dd:36:06:85:79:e3:29: 20:d1:f5:07:6c:76:3d:0a:72:43:87:be:cc:c1:0a:87:be:e7: a3:02:b4:41:a4:c1:13:ba:45:3b:c8:5e:c6:67:24:b3:89:8e: 64:dd:4c:1b:3f:00:10:04:96:c7:ef:14:fa:de:30:20:03:56: d6:f8:e4:fd:7a:5b:ca:9f:bf:38:73:3b:59:0e:4c:2c:b5:0b: 96:07:2e:ca:61:d3:52:fc:e6:c5:8c:bb:9a:3a:37:a4:44:3c: 2f:db:7b:4b:03:ff:0a:47:12:c2:7b:f4:30:85:aa:e6:5d:dc: ab:37:7c:17 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICFxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI1NEMxMTAvBgNVBAUTKDdCM0Y2MEQ5QjFBMjgwMDJBMDc4NzVDQUI1OEEyMTQ1 NzA3M0UxN0YwHhcNMjUwNTEwMTY1NzU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDJkMi0yNGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmito6CBllcQkT9WbaEUpPYIM6+19spQ6o9JzDpFtYveKz2JE1G+Uoqla4l3f G9nsHyTKsRjWV81sSFs+Jk2iJdZfDkfcTizA7XLvCxFx5hwNQuXAHqChrJ8DUD+3 yEQyxQj1p1BTb9JyCzFqz7b41IVAfk8o5xVIEEXG5dWsFZD9Nm7/+3Ih7gEPQzsj FH0R7J4xmxGK/bOa8g0YglEX8ibHJZXRkWm7WlXfZ/4weSZZ6324m+Tdkrw8uLFr T+hdPE/6xuddbE5hQBd0gyV2WiMTKL+6GngHQLKvm+oMnTw3XK+eWRdFaFavNVMl cmfuLowipWOQB5zOwO4ZhHTAKwIDAQABo4ICbjCCAmowHQYDVR0OBBYEFMSw1HwI 5a7j0aSZNC9FnwRiWw8oMB8GA1UdIwQYMBaAFHs/YNmxooACoHh1yrWKIUVwc+F/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjU0Qy81QTU2NEQ0ODE5 RTgxMUU4Qjk2NTBDN0VDNEY5QUUwMi9lejlnMmJHaWdBS2dlSFhLdFlvaFJYQno0 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V6OWcyYkdpZ0FLZ2VIWEt0WW9oUlhCejRYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI1NEMvNUE1NjRENDgxOUU4MTFFOEI5NjUwQzdFQzRGOUFFMDIvMURDQjY2MkEz REYyMTFFQjgxRjRDRTczQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUAwQCG2/kMAwDBAHKT8YDBADKT8gwDQYJKoZIhvcNAQELBQADggEBAA7H LhlsPEcaYtIdJ68+7OP9cw6mgjzxNw8LDKLU+FVRFKd/qaUqg5twn5evfI6QMSP2 BJ225iXpHaj+sFJ/a/ZrHABv2RL0DPL0OgWfc14hcog1+uS53mLWs9f1E7e7pROf jptZEOZ98cThv/esm86BImIkVu85asQOMdEUkstC5Vn+SXpFMWv03TYGhXnjKSDR 9Qdsdj0KckOHvszBCoe+56MCtEGkwRO6RTvIXsZnJLOJjmTdTBs/ABAElsfvFPre MCADVtb45P16W8qfvzhzO1kOTCy1C5YHLsph01L85sWMu5o6N6REPC/be0sD/wpH EsJ79DCFquZd3Ks3fBc= -----END CERTIFICATE-----Generated at Thu Mar 26 01:52:52 2026 by rpki-client