$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/87D45318994C11EC82BA3978C4F9AE02.roa File: 87D45318994C11EC82BA3978C4F9AE02.roa (raw, json) Hash identifier: yhZTT65gvcH6LyYySvWS1ePrRj5E9xVEzCutdCEo4ss= Subject key identifier: D7:6E:06:0B:7A:A6:34:48:F0:DA:98:71:16:BF:E4:3A:34:78:E4:9E Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Certificate serial: 1716 Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/87D45318994C11EC82BA3978C4F9AE02.roa Signing time: Thu 12 Mar 2026 17:21:39 +0000 ROA not before: Thu 12 Mar 2026 17:21:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198247 IP address blocks: 103.27.21.0/24 maxlen: 24 175.111.2.0/24 maxlen: 24 175.111.7.0/24 maxlen: 24 175.111.14.0/23 maxlen: 23 2001:fe8:8f01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 17:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5910 (0x1716) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1185, serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Validity Not Before: Mar 12 17:21:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69b2f623-423e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:00:a3:74:d3:ef:da:ec:67:1e:ca:8b:a0:7f: 30:0e:bf:41:b1:a0:17:41:b8:9b:51:3f:cf:07:05: 7d:e3:c1:c9:32:72:06:f9:67:8c:3f:e7:89:39:48: b9:ea:b7:0a:02:06:d4:4c:a0:1b:3a:95:e2:d6:7b: 3a:8c:9f:b5:31:0a:08:c6:c1:76:53:0d:63:31:04: 02:0c:f8:ec:55:1a:d2:3b:b4:18:20:0a:71:5b:88: 67:2e:d2:11:7f:5e:f2:58:62:12:e5:da:96:f6:f2: 06:dd:73:9b:73:1d:72:fa:6a:58:05:8b:93:13:98: b3:d7:d8:80:00:d5:b4:c6:18:ce:a0:9f:1f:7d:04: e2:21:8e:f0:6b:da:d8:00:dd:76:49:90:65:b7:0e: e8:e6:97:6f:05:d1:ce:95:e9:64:4a:2a:0b:87:79: ed:af:32:85:ac:cd:4e:dd:e3:33:cc:1a:a2:ef:f2: e7:82:e0:7d:e8:c3:69:a1:82:f0:b1:4c:5e:e0:37: c7:12:a4:2b:43:87:56:54:c3:59:c2:65:57:fc:e4: 24:c2:3c:74:a5:82:ed:3f:b4:f9:9c:eb:f8:be:f5: 4f:e4:53:18:c8:6c:cd:11:24:e1:49:68:04:2d:4b: 17:7a:d0:e9:45:ed:6c:7a:2a:8a:d9:0e:8c:d7:55: fe:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:6E:06:0B:7A:A6:34:48:F0:DA:98:71:16:BF:E4:3A:34:78:E4:9E X509v3 Authority Key Identifier: keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/87D45318994C11EC82BA3978C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.27.21.0/24 175.111.2.0/24 175.111.7.0/24 175.111.14.0/23 IPv6: 2001:fe8:8f01::/48 Signature Algorithm: sha256WithRSAEncryption 49:55:f5:50:61:97:08:80:d3:71:cc:44:6a:22:07:2a:88:a4: 0e:32:15:2c:b1:06:57:f7:2e:15:03:2b:41:4b:55:84:4e:97: 78:e8:f9:33:2a:a0:d0:b2:1d:e2:af:77:0c:bf:1e:9a:06:3b: 8b:81:ca:1a:3f:12:82:d9:9f:7c:dd:00:ee:29:0c:b1:35:37: 03:c3:1c:2d:3e:10:52:33:60:13:95:1e:20:a0:70:9c:98:05: 98:2c:36:c5:3f:a0:85:35:b8:5e:d2:23:11:99:fa:07:35:eb: 7f:7a:e4:6c:7d:53:63:c9:c3:2e:56:a2:99:26:9b:dc:93:ce: e6:55:bc:58:75:92:f1:0f:3e:1a:9d:95:47:5c:16:06:41:72: e9:76:99:3b:c2:67:ef:1c:2f:a6:40:f3:d3:2c:06:d3:08:55: c2:c5:b3:50:b9:0b:95:2c:2e:1a:48:5a:9e:01:ad:e3:8c:c2: 3d:b6:64:87:b7:11:ff:12:29:58:c9:b2:8f:4a:64:1e:09:c7: 4e:9c:29:cc:1b:e2:d2:f2:d3:93:db:41:c4:3a:66:9a:22:bb: d4:e3:31:30:81:aa:09:00:65:58:ee:97:22:f8:3c:45:69:d9: 89:81:35:dc:c4:68:10:48:c1:8a:16:98:51:a5:e1:39:11:5c: 86:a8:39:79 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICFxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjExODUxMTAvBgNVBAUTKEZFM0NEMzdDRUMwRTM4MjMwN0I0RjlENUZGRDU3RTk3 RjEyMUYwNTMwHhcNMjYwMzEyMTcyMTM5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIyZjYyMy00MjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQCjdNPv2uxnHsqLoH8wDr9BsaAXQbibUT/PBwV948HJMnIG+WeMP+eJOUi5 6rcKAgbUTKAbOpXi1ns6jJ+1MQoIxsF2Uw1jMQQCDPjsVRrSO7QYIApxW4hnLtIR f17yWGIS5dqW9vIG3XObcx1y+mpYBYuTE5iz19iAANW0xhjOoJ8ffQTiIY7wa9rY AN12SZBltw7o5pdvBdHOlelkSioLh3ntrzKFrM1O3eMzzBqi7/LnguB96MNpoYLw sUxe4DfHEqQrQ4dWVMNZwmVX/OQkwjx0pYLtP7T5nOv4vvVP5FMYyGzNESThSWgE LUsXetDpRe1seiqK2Q6M11X+VQIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFNduBgt6 pjRI8NqYcRa/5Do0eOSeMB8GA1UdIwQYMBaAFP4803zsDjgjB7T51f/VfpfxIfBT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTE4NS8zRUE5REQzQTE2 MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09DTUh0UG5WXzlWLWxfRWg4 Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qelRmT3dPT0NNSHRQblZfOVYtbF9FaDhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjExODUvM0VBOUREM0ExNjIzMTFFODkyQzRBOTQwQzRGOUFFMDIvODdENDUzMTg5 OTRDMTFFQzgyQkEzOTc4QzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAe BAIAATAYAwQAZxsVAwQAr28CAwQAr28HAwQBr28OMA8EAgACMAkDBwAgAQ/ojwEw DQYJKoZIhvcNAQELBQADggEBAElV9VBhlwiA03HMRGoiByqIpA4yFSyxBlf3LhUD K0FLVYROl3jo+TMqoNCyHeKvdwy/HpoGO4uByho/EoLZn3zdAO4pDLE1NwPDHC0+ EFIzYBOVHiCgcJyYBZgsNsU/oIU1uF7SIxGZ+gc163965Gx9U2PJwy5Wopkmm9yT zuZVvFh1kvEPPhqdlUdcFgZBcul2mTvCZ+8cL6ZA89MsBtMIVcLFs1C5C5UsLhpI Wp4BreOMwj22ZIe3Ef8SKVjJso9KZB4Jx06cKcwb4tLy05PbQcQ6Zpoiu9TjMTCB qgkAZVjulyL4PEVp2YmBNdzEaBBIwYoWmFGl4TkRXIaoOXk= -----END CERTIFICATE-----Generated at Fri Mar 13 13:19:51 2026 by rpki-client