$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/9CE3F0C4489D11F19CE079A2B5833773.roa File: 9CE3F0C4489D11F19CE079A2B5833773.roa (raw, json) Hash identifier: 0u5S+QnN0BW3Zpd5I24lTzuoS8F5H4Uy5HJ33GYGqRI= Subject key identifier: 1D:4C:10:9A:6C:4F:99:EE:58:04:DC:61:2C:8E:9F:7F:4A:B9:7E:25 Certificate issuer: /CN=A9146B24/serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Certificate serial: 0220 Authority key identifier: 39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/9CE3F0C4489D11F19CE079A2B5833773.roa Signing time: Tue 05 May 2026 16:15:20 +0000 ROA not before: Tue 05 May 2026 16:15:20 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55832 IP address blocks: 27.123.216.0/22 maxlen: 22 27.123.216.0/24 maxlen: 24 27.123.217.0/24 maxlen: 24 27.123.218.0/24 maxlen: 24 27.123.219.0/24 maxlen: 24 120.88.176.0/24 maxlen: 24 120.88.177.0/24 maxlen: 24 120.88.178.0/24 maxlen: 24 120.88.179.0/24 maxlen: 24 120.88.180.0/24 maxlen: 24 120.88.181.0/24 maxlen: 24 120.88.182.0/23 maxlen: 24 120.88.184.0/24 maxlen: 24 120.88.185.0/24 maxlen: 24 120.88.186.0/24 maxlen: 24 120.88.187.0/24 maxlen: 24 2407:2a00::/32 maxlen: 32 2407:2a00::/44 maxlen: 44 2407:2a00::/48 maxlen: 48 2407:2a00:1::/48 maxlen: 48 2407:2a00:2::/48 maxlen: 48 2407:2a00:3::/48 maxlen: 48 2407:2a00:4::/48 maxlen: 48 2407:2a00:5::/48 maxlen: 48 2407:2a00:6::/48 maxlen: 48 2407:2a00:7::/48 maxlen: 48 2407:2a00:8::/48 maxlen: 48 2407:2a00:10::/44 maxlen: 44 2407:2a00:20::/44 maxlen: 44 2407:2a00:30::/44 maxlen: 44 2407:2a00:40::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 03:46:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B24, serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Validity Not Before: May 5 16:15:20 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69fa1798-7b7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3e:dd:71:c7:5a:32:90:84:b7:fc:b0:9b:33: 44:8c:36:54:58:9b:2d:fe:61:2f:ce:7f:38:9c:60: 90:e8:50:19:0e:83:0e:d5:4f:8c:15:ed:9b:d2:41: 8d:79:04:0d:df:1e:7c:6d:63:ab:8d:65:ca:1e:5e: fc:b2:69:2d:b9:12:aa:85:6d:13:df:a8:66:66:d2: fa:f2:73:32:bd:74:09:bd:21:b3:61:83:ed:a9:68: e4:cb:20:33:36:ed:48:92:23:a0:20:1c:a7:29:fb: 25:52:29:cf:72:3d:db:31:b4:bf:4b:e5:01:22:29: c2:f3:c5:8d:fb:9d:84:af:0e:c5:1f:9d:fc:49:3d: 6c:d1:80:b3:ad:bf:10:c9:da:85:af:84:b3:de:a6: 8e:c8:a2:22:e3:56:c5:09:56:b1:61:74:72:bd:3a: 60:c4:c0:95:0e:b7:39:39:84:67:aa:8c:a1:d7:9f: b1:22:7c:4a:48:f0:36:a6:c8:8e:12:aa:6b:ec:f1: 74:4e:f7:93:03:9a:7b:38:d5:ec:1a:e5:f9:93:4c: ab:a8:03:cc:3d:1b:8c:7c:b8:54:18:1a:2a:aa:23: 8a:d6:42:26:d5:91:8e:f0:15:f7:6f:84:04:89:ba: 17:8d:b8:58:2d:6d:38:68:83:e1:39:93:a0:3a:cb: 88:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:4C:10:9A:6C:4F:99:EE:58:04:DC:61:2C:8E:9F:7F:4A:B9:7E:25 X509v3 Authority Key Identifier: keyid:39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/9CE3F0C4489D11F19CE079A2B5833773.roa sbgp-ipAddrBlock: critical IPv4: 27.123.216.0/22 120.88.176.0-120.88.187.255 IPv6: 2407:2a00::/32 Signature Algorithm: sha256WithRSAEncryption 0a:dc:50:60:e2:91:1a:5d:4f:95:31:e0:12:91:0f:f6:82:92: 17:20:e9:51:90:58:ef:3a:80:5c:1b:19:21:29:c2:25:1b:ae: ae:95:84:7c:64:5c:1a:fb:26:a3:fe:23:45:e2:10:8d:4b:bd: 29:da:a0:ac:ac:03:0c:44:19:18:12:2a:70:ef:1e:dd:c7:13: 4b:83:72:ef:50:3a:be:50:fe:17:c4:ed:01:bc:cc:6e:39:96: 18:7a:1d:6f:c2:07:c1:ed:0a:7b:41:e0:af:b5:b1:08:7b:91: fb:01:a4:b9:e8:dc:53:5b:67:c6:70:6d:e2:98:8f:0b:b5:8e: 7d:c4:49:2f:6a:d7:67:9b:de:69:72:55:13:27:64:ae:44:c5: ad:7e:65:63:84:46:6f:6b:eb:3a:03:67:32:d9:c0:61:55:b1: b4:c8:fc:11:43:bf:a0:ad:cd:4a:b8:7a:81:e5:18:f5:7e:9c: 5a:7f:7e:98:3c:02:2a:e4:c8:a4:3c:46:73:36:89:7e:f5:83: 96:63:99:6b:02:74:30:cf:09:73:7c:4e:f6:e4:2e:93:04:78: de:9e:62:6e:de:78:1b:4e:51:4f:18:28:bc:a8:30:41:78:54: 8c:ef:9d:eb:96:3b:f1:6c:ac:5f:64:86:33:3b:8e:78:88:41: 76:17:d8:73 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCMjQxMTAvBgNVBAUTKDM5MThEODBCQ0I3MDJFQ0FDRjg0Q0I3QUNBODgwRjg3 OEExNEZFNDgwHhcNMjYwNTA1MTYxNTIwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZhMTc5OC03YjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1D7dccdaMpCEt/ywmzNEjDZUWJst/mEvzn84nGCQ6FAZDoMO1U+MFe2b0kGN eQQN3x58bWOrjWXKHl78smktuRKqhW0T36hmZtL68nMyvXQJvSGzYYPtqWjkyyAz Nu1IkiOgIBynKfslUinPcj3bMbS/S+UBIinC88WN+52Erw7FH538ST1s0YCzrb8Q ydqFr4Sz3qaOyKIi41bFCVaxYXRyvTpgxMCVDrc5OYRnqoyh15+xInxKSPA2psiO Eqpr7PF0TveTA5p7ONXsGuX5k0yrqAPMPRuMfLhUGBoqqiOK1kIm1ZGO8BX3b4QE iboXjbhYLW04aIPhOZOgOsuI1QIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFB1MEJps T5nuWATcYSyOn39KuX4lMB8GA1UdIwQYMBaAFDkY2AvLcC7Kz4TLesqID4eKFP5I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyNC9CNDczQzRCRTkz MzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xzclBoTXQ2eW9nUGg0b1Vf a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SallDOHR3THNyUGhNdDZ5b2dQaDRvVV9rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZCMjQvQjQ3M0M0QkU5MzMwMTFFRTgyMzA4MDU5QzRGOUFFMDIvOUNFM0YwQzQ0 ODlEMTFGMTlDRTA3OUEyQjU4MzM3NzMucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAa BAIAATAUAwQCG3vYMAwDBAR4WLADBAJ4WLgwDQQCAAIwBwMFACQHKgAwDQYJKoZI hvcNAQELBQADggEBAArcUGDikRpdT5Ux4BKRD/aCkhcg6VGQWO86gFwbGSEpwiUb rq6VhHxkXBr7JqP+I0XiEI1LvSnaoKysAwxEGRgSKnDvHt3HE0uDcu9QOr5Q/hfE 7QG8zG45lhh6HW/CB8HtCntB4K+1sQh7kfsBpLno3FNbZ8ZwbeKYjwu1jn3ESS9q 12eb3mlyVRMnZK5Exa1+ZWOERm9r6zoDZzLZwGFVsbTI/BFDv6CtzUq4eoHlGPV+ nFp/fpg8AirkyKQ8RnM2iX71g5ZjmWsCdDDPCXN8TvbkLpMEeN6eYm7eeBtOUU8Y KLyoMEF4VIzvneuWO/FsrF9khjM7jniIQXYX2HM= -----END CERTIFICATE-----Generated at Wed May 13 05:47:33 2026 by rpki-client