$ rpki-client -vvf rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/27F7A40AE4FD11E990830B62C4F9AE02.roa File: 27F7A40AE4FD11E990830B62C4F9AE02.roa (raw, json) Hash identifier: H2PKNA7ln5Tm1QO2PuY9P2UE8JnCTTe09zyZ/hYdcgw= Subject key identifier: 6A:74:C4:A7:9E:90:8C:B8:8A:4F:3F:78:32:7A:B4:92:88:FD:89:D3 Certificate issuer: /CN=A912DC44/serialNumber=A6421FE13D8C93A7BDDFF8B53719B5808748D0DF Certificate serial: 0DFE Authority key identifier: A6:42:1F:E1:3D:8C:93:A7:BD:DF:F8:B5:37:19:B5:80:87:48:D0:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/27F7A40AE4FD11E990830B62C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:39:50 +0000 ROA not before: Tue 20 Jan 2026 18:15:13 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138482 IP address blocks: 103.126.216.0/22 maxlen: 24 103.200.36.0/22 maxlen: 22 103.200.36.0/23 maxlen: 23 103.200.36.0/24 maxlen: 24 103.200.37.0/24 maxlen: 24 103.200.38.0/23 maxlen: 23 103.200.38.0/24 maxlen: 24 103.200.39.0/24 maxlen: 24 123.253.64.0/22 maxlen: 22 123.253.64.0/24 maxlen: 24 123.253.65.0/24 maxlen: 24 123.253.66.0/23 maxlen: 23 123.253.66.0/24 maxlen: 24 123.253.67.0/24 maxlen: 24 2401:1040::/32 maxlen: 32 2401:1040::/40 maxlen: 40 2401:1040:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.crl rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3582 (0xdfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DC44, serialNumber=A6421FE13D8C93A7BDDFF8B53719B5808748D0DF Validity Not Before: Jan 20 18:15:13 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a479e6-507b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f6:c3:ab:d7:a4:08:d9:dc:e8:28:82:c6:fa: c6:9e:16:d0:0a:c4:bf:0e:e9:ff:10:bb:27:96:9e: 90:60:d3:60:4d:9e:13:8d:44:84:8e:33:93:25:bd: 41:ca:56:ae:54:90:fa:4f:81:8d:7a:b6:15:7c:e2: f0:2a:95:50:df:bc:4a:24:df:4d:e9:82:fe:cc:da: b3:3d:24:3f:83:09:65:4a:63:bf:67:a0:e1:bb:0e: 98:fb:3d:08:bb:1d:2b:02:f8:24:de:6d:03:5f:4f: 7e:48:f7:61:74:06:83:5b:6d:36:74:b9:75:ce:e1: 30:73:8d:2a:7a:01:12:4e:de:f3:f6:1e:93:c5:4d: 71:25:81:7e:cf:0b:d1:ee:c6:49:6a:55:49:74:6c: 13:19:c9:e0:d2:18:f6:d2:85:a3:a9:b6:7f:2b:0a: 36:da:a2:31:0e:5a:fb:8e:8b:dd:5a:f5:5e:f7:83: 3c:2a:89:52:a8:05:2e:d5:b3:1e:2d:72:ac:89:61: f8:b9:9e:94:44:6c:7a:c3:7a:fc:03:03:34:46:af: e8:5d:fc:36:d9:66:0e:88:96:53:c1:5e:b3:18:66: 5b:9d:5c:c6:1a:1b:e0:54:83:11:f3:15:20:23:30: be:90:06:44:4a:18:46:46:f3:61:88:58:05:61:55: 50:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:74:C4:A7:9E:90:8C:B8:8A:4F:3F:78:32:7A:B4:92:88:FD:89:D3 X509v3 Authority Key Identifier: keyid:A6:42:1F:E1:3D:8C:93:A7:BD:DF:F8:B5:37:19:B5:80:87:48:D0:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/27F7A40AE4FD11E990830B62C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.126.216.0/22 103.200.36.0/22 123.253.64.0/22 IPv6: 2401:1040::/32 Signature Algorithm: sha256WithRSAEncryption a8:ba:ac:6a:9b:de:f9:4a:3c:47:e6:53:61:b0:9d:e2:cc:63: 81:bf:03:e1:6e:44:a3:d5:e8:e2:14:25:75:0a:08:a3:06:21: 34:20:8c:c7:18:ce:dc:8b:be:d6:57:0d:ef:d7:ad:07:f6:87: 78:32:13:fe:d4:e9:5b:d4:83:30:1c:40:9c:5b:bd:96:00:b3: 00:52:a3:32:9c:91:be:71:ed:29:17:9b:7c:3e:e1:a7:f7:94: d5:ab:70:52:e5:aa:c1:32:dc:e2:1b:d3:01:2d:3e:64:7f:56: 6f:dc:81:60:49:78:7d:e8:fb:12:8b:f1:f3:bb:80:a8:68:1e: fb:c9:c4:d8:e0:6b:07:ab:f8:d0:11:10:90:a4:95:73:83:fc: 93:50:91:80:4e:8f:65:34:41:e1:f5:dc:33:23:f4:be:7e:5d: 5f:e1:0b:a6:b5:5c:47:35:10:9f:b5:84:12:86:b4:ab:ba:60: c8:d1:94:49:77:ac:58:46:91:5c:6c:73:1f:61:1e:9e:03:46: b7:5f:19:77:87:41:04:ca:53:2e:3e:7a:43:96:6f:94:cf:3a: 7c:5f:43:c1:c9:10:a2:87:18:97:24:88:eb:8b:96:78:dc:29: 53:5c:d1:66:bd:cb:6f:a8:bc:19:49:11:1a:b8:5d:b7:bd:1d: 76:e8:d0:8b -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICDf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRDNDQxMTAvBgNVBAUTKEE2NDIxRkUxM0Q4QzkzQTdCRERGRjhCNTM3MTlCNTgw ODc0OEQwREYwHhcNMjYwMTIwMTgxNTEzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzllNi01MDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvbDq9ekCNnc6CiCxvrGnhbQCsS/Dun/ELsnlp6QYNNgTZ4TjUSEjjOTJb1B ylauVJD6T4GNerYVfOLwKpVQ37xKJN9N6YL+zNqzPSQ/gwllSmO/Z6Dhuw6Y+z0I ux0rAvgk3m0DX09+SPdhdAaDW202dLl1zuEwc40qegESTt7z9h6TxU1xJYF+zwvR 7sZJalVJdGwTGcng0hj20oWjqbZ/Kwo22qIxDlr7jovdWvVe94M8KolSqAUu1bMe LXKsiWH4uZ6URGx6w3r8AwM0Rq/oXfw22WYOiJZTwV6zGGZbnVzGGhvgVIMR8xUg IzC+kAZEShhGRvNhiFgFYVVQuQIDAQABo4ICezCCAncwHQYDVR0OBBYEFGp0xKee kIy4ik8/eDJ6tJKI/YnTMB8GA1UdIwQYMBaAFKZCH+E9jJOnvd/4tTcZtYCHSNDf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREM0NC8yOUI2QkVEQUU0 RkMxMUU5QjEzQjQ4NjBDNEY5QUUwMi9wa0lmNFQyTWs2ZTkzX2kxTnhtMWdJZEkw TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BrSWY0VDJNazZlOTNfaTFOeG0xZ0lkSTBOOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRDNDQvMjlCNkJFREFFNEZDMTFFOUIxM0I0ODYwQzRGOUFFMDIvMjdGN0E0MEFF NEZEMTFFOTkwODMwQjYyQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCZ37YAwQCZ8gkAwQCe/1AMA0EAgACMAcDBQAkARBAMA0GCSqGSIb3 DQEBCwUAA4IBAQCouqxqm975SjxH5lNhsJ3izGOBvwPhbkSj1ejiFCV1CgijBiE0 IIzHGM7ci77WVw3v160H9od4MhP+1Olb1IMwHECcW72WALMAUqMynJG+ce0pF5t8 PuGn95TVq3BS5arBMtziG9MBLT5kf1Zv3IFgSXh96PsSi/Hzu4CoaB77ycTY4GsH q/jQERCQpJVzg/yTUJGATo9lNEHh9dwzI/S+fl1f4QumtVxHNRCftYQShrSrumDI 0ZRJd6xYRpFcbHMfYR6eA0a3Xxl3h0EEylMuPnpDlm+Uzzp8X0PByRCihxiXJIjr i5Z43ClTXNFmvctvqLwZSREauF23vR126NCL -----END CERTIFICATE-----Generated at Mon Mar 2 06:16:26 2026 by rpki-client