$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa File: 66E400CACB4C11EE8E404546C4F9AE02.roa (raw, json) Hash identifier: pZZtHGFQRbt0wHLJTk6iKV6lnlHB4kiYZ8oDEDgL+Hw= Subject key identifier: 61:B1:A6:E1:45:35:D1:07:22:29:79:29:72:FC:90:38:EE:3F:1E:7A Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0B2C Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:50:40 +0000 ROA not before: Mon 08 Dec 2025 19:03:21 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 2914 IP address blocks: 27.110.64.0/21 maxlen: 21 203.78.192.0/20 maxlen: 20 203.78.196.0/32 maxlen: 32 203.131.240.0/20 maxlen: 20 203.131.244.0/22 maxlen: 22 2001:218::/32 maxlen: 32 2001:218:2002::/48 maxlen: 48 2001:218:8000::/38 maxlen: 38 2001:218:e000::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2860 (0xb2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Dec 8 19:03:21 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a47c70-d885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a2:18:f4:bb:32:20:25:77:63:0e:90:99:cb: b9:0b:be:22:be:d8:58:39:d4:ae:7e:fe:0e:39:a0: 88:4a:af:3d:93:2f:5a:e5:47:97:d7:92:6b:f1:5b: 30:4e:8b:5b:b7:44:64:78:2b:ba:ec:39:4f:af:e5: 00:57:ac:5a:e4:a5:ab:7a:ae:e3:bb:6d:88:f3:f3: af:c7:92:64:91:0e:dd:fa:28:e5:5c:cc:e4:e6:f2: a1:47:07:c5:66:8c:42:d6:f9:74:cb:bc:2f:a4:81: 59:fb:10:77:c4:8c:79:38:bd:8b:90:bd:a8:e2:db: e4:80:83:82:6e:8e:23:ad:ef:35:e4:12:a3:a4:95: 50:99:fe:ba:95:71:e2:ec:74:f3:0f:c7:19:cb:72: 97:78:49:67:c7:6d:18:59:4c:42:59:5d:b9:8e:ac: 32:c5:41:9d:a3:ba:3a:b1:4e:aa:3c:8c:aa:56:8e: 18:19:76:d7:fd:7d:57:e9:af:46:35:a8:93:0b:30: fe:3d:8d:56:cc:08:a5:e4:cb:1e:09:2e:e9:d0:7a: 20:d4:60:e3:59:0e:20:fa:f3:20:bb:63:8c:65:44: ba:6b:04:15:fd:95:49:de:9f:62:af:47:1f:9c:da: 0c:8d:d0:95:46:56:15:28:95:36:72:2b:7a:97:17: d6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:B1:A6:E1:45:35:D1:07:22:29:79:29:72:FC:90:38:EE:3F:1E:7A X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.110.64.0/21 203.78.192.0/20 203.131.240.0/20 IPv6: 2001:218::/32 Signature Algorithm: sha256WithRSAEncryption a6:bc:d0:11:0c:8d:7e:d8:3d:98:19:45:4c:e4:8a:2c:1b:c4: 51:8f:ab:94:12:cf:91:51:62:4d:53:43:d2:77:eb:0f:b6:53: 11:64:38:80:d2:90:9f:ea:f6:d2:4c:9f:98:0e:c5:53:2f:e7: d7:26:46:2f:c6:0c:35:ac:1c:65:fa:c8:dc:9b:9f:5b:30:46: 5b:ae:0e:7a:0c:3f:ed:89:77:18:1b:ef:42:f3:4e:be:16:87: f7:1f:c6:7b:e7:24:0b:92:b4:05:ba:c9:ca:4f:11:3d:74:94: e6:40:0b:12:ed:24:f8:bc:c6:95:8a:d9:e4:60:ab:8d:65:c8: f3:37:90:36:9c:ad:6a:7b:50:78:ac:75:34:9c:71:1f:69:f7: 4c:1d:f8:57:d8:1d:0a:67:e9:55:d4:8c:4a:6e:82:42:25:19: 8d:a2:b0:a6:5a:a2:dd:01:a6:49:b8:57:2b:79:da:46:f7:bd: 19:e7:b9:30:8b:cd:15:41:ec:39:a5:39:62:55:02:ba:c7:87: ed:0b:a6:2c:a6:d7:24:3a:9e:0e:11:b1:04:27:9b:d4:b7:c5: 94:a0:06:18:c4:4d:f0:39:95:f7:51:f2:c0:4b:92:55:6e:37: 5e:57:86:16:3e:e3:4a:b4:56:cf:08:30:be:9a:6e:86:cb:c5: b3:73:ca:c8 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICCywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjUxMjA4MTkwMzIxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2M3MC1kODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqIY9LsyICV3Yw6Qmcu5C74ivthYOdSufv4OOaCISq89ky9a5UeX15Jr8Vsw Totbt0RkeCu67DlPr+UAV6xa5KWreq7ju22I8/Ovx5JkkQ7d+ijlXMzk5vKhRwfF ZoxC1vl0y7wvpIFZ+xB3xIx5OL2LkL2o4tvkgIOCbo4jre815BKjpJVQmf66lXHi 7HTzD8cZy3KXeElnx20YWUxCWV25jqwyxUGdo7o6sU6qPIyqVo4YGXbX/X1X6a9G NaiTCzD+PY1WzAil5MseCS7p0Hog1GDjWQ4g+vMgu2OMZUS6awQV/ZVJ3p9ir0cf nNoMjdCVRlYVKJU2cit6lxfWhwIDAQABo4ICezCCAncwHQYDVR0OBBYEFGGxpuFF NdEHIil5KXL8kDjuPx56MB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvNjZFNDAwQ0FD QjRDMTFFRThFNDA0NTQ2QzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQDG25AAwQEy07AAwQEy4PwMA0EAgACMAcDBQAgAQIYMA0GCSqGSIb3 DQEBCwUAA4IBAQCmvNARDI1+2D2YGUVM5IosG8RRj6uUEs+RUWJNU0PSd+sPtlMR ZDiA0pCf6vbSTJ+YDsVTL+fXJkYvxgw1rBxl+sjcm59bMEZbrg56DD/tiXcYG+9C 806+Fof3H8Z75yQLkrQFusnKTxE9dJTmQAsS7ST4vMaVitnkYKuNZcjzN5A2nK1q e1B4rHU0nHEfafdMHfhX2B0KZ+lV1IxKboJCJRmNorCmWqLdAaZJuFcredpG970Z 57kwi80VQew5pTliVQK6x4ftC6YsptckOp4OEbEEJ5vUt8WUoAYYxE3wOZX3UfLA S5JVbjdeV4YWPuNKtFbPCDC+mm6Gy8Wzc8rI -----END CERTIFICATE-----Generated at Thu Mar 26 04:17:04 2026 by rpki-client