$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/8A8C093A42E311F1B93532028F833773.roa File: 8A8C093A42E311F1B93532028F833773.roa (raw, json) Hash identifier: 9m8Dvq8GVyNZk2cbyrBZleTZzmMEk1mdl6ftuO3mqFA= Subject key identifier: EF:7A:BD:02:4F:5E:FD:B0:25:82:95:BB:26:25:D1:DE:47:4E:1E:4E Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 28C5 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/8A8C093A42E311F1B93532028F833773.roa Signing time: Tue 28 Apr 2026 09:20:47 +0000 ROA not before: Tue 28 Apr 2026 09:20:47 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 21433 IP address blocks: 27.110.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10437 (0x28c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 28 09:20:47 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69f07bef-3cb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ce:93:62:26:e2:c5:74:4b:45:67:d3:a2:65: 72:99:0c:4f:e8:3f:a8:df:89:67:06:68:29:18:91: 14:e6:36:f9:92:28:8b:43:7f:6b:ea:63:8c:06:02: 54:b7:e7:40:53:35:ae:b9:6d:c6:25:aa:4f:77:f3: 95:2f:cd:73:e1:e2:c7:b5:c1:09:76:d5:b2:39:55: 6a:26:15:2c:eb:e3:51:02:3d:58:71:31:7e:f7:43: 29:f2:52:67:4e:53:ca:f6:d0:80:60:cb:f9:d5:90: 65:62:95:1b:b1:ab:cd:b2:2f:0e:dd:fa:e6:91:d2: d9:61:e7:cb:bd:ef:61:e4:28:de:30:4a:fe:18:1a: 1a:5b:72:67:c5:fe:af:cb:ba:18:44:6a:af:35:b1: 64:d6:6f:38:6a:e2:25:93:44:f0:fc:87:1f:cd:a0: 47:c3:ac:f8:b6:46:e2:42:94:6d:27:56:52:c1:6a: 69:be:64:7b:1e:e0:b9:98:49:da:87:1b:8a:ab:69: 45:cf:39:f6:fe:f4:5a:b5:29:b9:0e:9f:8d:38:5c: 7e:44:87:74:0d:34:fd:7a:57:e3:a4:84:da:91:24: 4a:6c:e8:e1:75:58:95:91:f7:15:ce:54:8f:cf:c2: ad:09:58:94:a7:ef:64:ba:02:3d:c4:66:b2:73:1e: 27:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:7A:BD:02:4F:5E:FD:B0:25:82:95:BB:26:25:D1:DE:47:4E:1E:4E X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/8A8C093A42E311F1B93532028F833773.roa sbgp-ipAddrBlock: critical IPv4: 27.110.227.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:45:c0:03:8f:48:58:43:8c:6d:36:4c:df:9c:57:bf:73:66: 91:98:2c:b4:0d:a6:43:f3:eb:de:05:d6:f7:49:fc:f4:31:61: af:0c:0a:a3:4f:12:52:19:f3:a8:64:17:d4:aa:74:25:d5:9f: 1e:01:cf:e8:ff:46:48:b1:02:61:31:ca:e8:3e:63:be:a6:b8: 5f:8b:49:88:33:f5:3c:1e:a4:28:94:a1:37:6f:b6:b0:4f:ba: 51:34:a1:d3:03:cc:e0:b3:d4:4a:ab:26:19:1e:f9:05:43:26: 9c:a9:44:fb:2e:36:92:33:a6:71:78:7d:15:39:33:0b:40:79: 66:a8:85:b1:ed:8f:1b:ef:df:3e:a9:df:2d:a2:eb:da:67:68: 2d:f7:9b:c9:12:10:aa:fb:b4:dd:aa:e3:a7:a9:9b:24:8f:a2: a7:50:5b:39:d8:81:3f:66:fe:a9:53:47:db:3e:45:0e:04:76: ce:c0:53:40:37:70:2c:db:0c:60:db:63:55:cd:ac:28:bd:fb: c3:4e:e4:e6:a4:b3:3d:94:15:ad:75:ad:48:b0:e5:a5:82:db: 3c:8f:b4:1f:07:a9:27:43:bb:1f:9d:5f:f7:7b:66:3d:e5:ae: 91:67:a7:a4:ec:f3:b0:f5:6c:e7:f7:d1:85:2e:91:85:3d:84: ed:ae:1c:f1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjYwNDI4MDkyMDQ3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWYwN2JlZi0zY2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwM6TYibixXRLRWfTomVymQxP6D+o34lnBmgpGJEU5jb5kiiLQ39r6mOMBgJU t+dAUzWuuW3GJapPd/OVL81z4eLHtcEJdtWyOVVqJhUs6+NRAj1YcTF+90Mp8lJn TlPK9tCAYMv51ZBlYpUbsavNsi8O3frmkdLZYefLve9h5CjeMEr+GBoaW3Jnxf6v y7oYRGqvNbFk1m84auIlk0Tw/IcfzaBHw6z4tkbiQpRtJ1ZSwWppvmR7HuC5mEna hxuKq2lFzzn2/vRatSm5Dp+NOFx+RId0DTT9elfjpITakSRKbOjhdViVkfcVzlSP z8KtCViUp+9kugI9xGaycx4naQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO96vQJP Xv2wJYKVuyYl0d5HTh5OMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvOEE4QzA5M0E0 MkUzMTFGMUI5MzUzMjAyOEY4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAG27jMA0GCSqGSIb3DQEBCwUAA4IBAQAqRcADj0hYQ4xtNkzfnFe/ c2aRmCy0DaZD8+veBdb3Sfz0MWGvDAqjTxJSGfOoZBfUqnQl1Z8eAc/o/0ZIsQJh McroPmO+prhfi0mIM/U8HqQolKE3b7awT7pRNKHTA8zgs9RKqyYZHvkFQyacqUT7 LjaSM6ZxeH0VOTMLQHlmqIWx7Y8b798+qd8touvaZ2gt95vJEhCq+7TdquOnqZsk j6KnUFs52IE/Zv6pU0fbPkUOBHbOwFNAN3As2wxg22NVzawovfvDTuTmpLM9lBWt da1IsOWlgts8j7QfB6knQ7sfnV/3e2Y95a6RZ6ek7POw9Wzn99GFLpGFPYTtrhzx -----END CERTIFICATE-----Generated at Wed May 13 05:44:07 2026 by rpki-client