$ rpki-client -vvf rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa File: D8F27C903AD811EF960D9329C4F9AE02.roa (raw, json) Hash identifier: vs2Gbdu50+XToE8E4WRhYDNiQq7PIlKd89VDKs3X2wE= Subject key identifier: AC:56:21:B2:1E:94:1A:23:99:D9:1C:A8:13:A5:6C:87:9A:AC:AB:56 Certificate issuer: /CN=A91215B3/serialNumber=914850C4B8A513B2F8E4EDC4B5578707776372AE Certificate serial: 0221 Authority key identifier: 91:48:50:C4:B8:A5:13:B2:F8:E4:ED:C4:B5:57:87:07:77:63:72:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:59:48 +0000 ROA not before: Wed 31 Dec 2025 02:21:37 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 133551 IP address blocks: 103.48.0.0/24 maxlen: 24 103.48.1.0/24 maxlen: 24 2001:df1:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.crl rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91215B3, serialNumber=914850C4B8A513B2F8E4EDC4B5578707776372AE Validity Not Before: Dec 31 02:21:37 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41c24-d7fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:42:9e:4d:66:4b:dd:40:db:14:1f:77:75:be: e7:bc:03:a4:47:b2:48:b2:4a:bf:6c:cd:4f:6c:0a: c1:69:d4:ed:9e:66:7a:18:7c:c2:0d:b4:1a:02:12: 0c:5e:4e:46:ea:06:f7:ee:13:04:0c:4e:a0:07:f1: 47:03:8a:3d:c4:75:f3:9d:96:a0:72:b9:6a:95:ab: 7e:92:98:9d:58:e2:30:a9:43:00:ab:52:d9:79:d9: 6e:32:15:4a:5e:c9:15:6e:6b:fd:68:24:75:bb:51: cb:3b:c4:3a:f4:06:94:2a:af:35:98:e5:3b:85:53: f5:63:4b:0a:50:a6:ff:11:d5:06:1a:95:a3:29:4e: f5:76:d2:8e:e1:2b:62:8a:ef:91:ef:4d:cc:73:55: b0:8a:32:d5:8b:05:d7:7d:8f:74:9e:ab:22:3a:8a: 12:d6:d8:69:b2:1c:69:ce:19:fa:4f:60:6a:93:fb: e2:fc:a9:8d:2e:b1:ea:2a:c0:26:48:d4:8c:86:d6: 54:86:2d:99:63:21:91:41:6f:fd:df:e5:63:26:79: 8b:e2:72:72:33:2a:a6:a0:34:cc:dd:31:04:0e:84: 33:83:28:23:8a:04:05:72:59:99:3b:8a:6b:41:57: 90:00:16:34:1f:8a:c4:f1:64:e2:59:39:bc:c0:28: 75:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:56:21:B2:1E:94:1A:23:99:D9:1C:A8:13:A5:6C:87:9A:AC:AB:56 X509v3 Authority Key Identifier: keyid:91:48:50:C4:B8:A5:13:B2:F8:E4:ED:C4:B5:57:87:07:77:63:72:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.48.0.0/23 IPv6: 2001:df1:a040::/48 Signature Algorithm: sha256WithRSAEncryption 4c:ae:e1:cb:8a:7a:24:8a:e4:e9:9b:c4:44:63:05:07:4c:65: 4e:fb:cf:e3:e1:90:13:e9:f8:79:d5:77:62:4f:d0:f0:d9:6f: 24:f0:9b:9c:c0:a3:19:08:61:a4:86:59:f5:ab:41:7d:5e:49: 03:95:a2:11:14:e7:70:c6:37:5a:fa:e5:f3:b1:1c:5e:fb:ce: 9e:d2:9d:2e:6b:3b:7a:6b:77:c3:f9:9b:7c:f9:4a:cf:7e:23: b6:66:97:02:d2:c8:2a:7a:1f:fc:45:ca:68:55:81:e2:26:5b: 94:37:94:14:1d:6f:ae:25:4c:fe:b7:18:8d:d2:fb:21:b7:a4: 4e:f5:ad:39:b2:ba:00:e0:1c:cd:35:d4:cd:11:20:6a:68:53: c6:c3:43:f7:d9:f5:55:69:7c:4b:36:2e:af:f0:83:c5:cf:18: d2:35:4b:84:01:a7:a1:65:7f:0a:04:c6:84:35:49:dd:16:30: 57:17:e3:a1:2d:ba:7d:16:3e:62:75:23:7c:ce:40:60:24:03: c3:90:63:88:6f:4e:64:96:21:2f:8c:3f:aa:b2:ee:a4:51:fa: e4:64:bc:1f:b2:ba:88:19:7c:0f:0a:38:4d:cf:78:2d:ee:d2: 9a:24:7e:00:46:41:c2:30:d2:ba:26:7e:69:42:a0:79:c1:c6: fe:0d:4f:40 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE1QjMxMTAvBgNVBAUTKDkxNDg1MEM0QjhBNTEzQjJGOEU0RURDNEI1NTc4NzA3 Nzc2MzcyQUUwHhcNMjUxMjMxMDIyMTM3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWMyNC1kN2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUKeTWZL3UDbFB93db7nvAOkR7JIskq/bM1PbArBadTtnmZ6GHzCDbQaAhIM Xk5G6gb37hMEDE6gB/FHA4o9xHXznZagcrlqlat+kpidWOIwqUMAq1LZedluMhVK XskVbmv9aCR1u1HLO8Q69AaUKq81mOU7hVP1Y0sKUKb/EdUGGpWjKU71dtKO4Sti iu+R703Mc1WwijLViwXXfY90nqsiOooS1thpshxpzhn6T2Bqk/vi/KmNLrHqKsAm SNSMhtZUhi2ZYyGRQW/93+VjJnmL4nJyMyqmoDTM3TEEDoQzgygjigQFclmZO4pr QVeQABY0H4rE8WTiWTm8wCh1/wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKxWIbIe lBojmdkcqBOlbIearKtWMB8GA1UdIwQYMBaAFJFIUMS4pROy+OTtxLVXhwd3Y3Ku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTVCMy9FNkY2OEYwNjBC NEIxMUVFQUI5QUFENzlDNEY5QUUwMi9rVWhReExpbEU3TDQ1TzNFdFZlSEIzZGpj cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tVaFF4TGlsRTdMNDVPM0V0VmVIQjNkamNxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE1QjMvRTZGNjhGMDYwQjRCMTFFRUFCOUFBRDc5QzRGOUFFMDIvRDhGMjdDOTAz QUQ4MTFFRjk2MEQ5MzI5QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZzAAMA8EAgACMAkDBwAgAQ3xoEAwDQYJKoZIhvcNAQELBQADggEB AEyu4cuKeiSK5OmbxERjBQdMZU77z+PhkBPp+HnVd2JP0PDZbyTwm5zAoxkIYaSG WfWrQX1eSQOVohEU53DGN1r65fOxHF77zp7SnS5rO3prd8P5m3z5Ss9+I7ZmlwLS yCp6H/xFymhVgeImW5Q3lBQdb64lTP63GI3S+yG3pE71rTmyugDgHM011M0RIGpo U8bDQ/fZ9VVpfEs2Lq/wg8XPGNI1S4QBp6FlfwoExoQ1Sd0WMFcX46Etun0WPmJ1 I3zOQGAkA8OQY4hvTmSWIS+MP6qy7qRR+uRkvB+yuogZfA8KOE3PeC3u0pokfgBG QcIw0romfmlCoHnBxv4NT0A= -----END CERTIFICATE-----Generated at Mon Mar 2 05:45:32 2026 by rpki-client