$ rpki-client -vvf rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/1C6ADB02525311EA939E4652C4F9AE02.roa File: 1C6ADB02525311EA939E4652C4F9AE02.roa (raw, json) Hash identifier: QDOv/k1/6QwFO3v9/oK9m5KqC6iM+gtzDTOnLCwkAkg= Subject key identifier: 64:FD:1B:CA:96:B6:02:93:7E:85:6E:94:20:E5:80:CE:78:E5:1A:30 Certificate issuer: /CN=A9144354/serialNumber=47D06BD7EA8DF2197F71270B75C964C79AB9F0CC Certificate serial: 11FE Authority key identifier: 47:D0:6B:D7:EA:8D:F2:19:7F:71:27:0B:75:C9:64:C7:9A:B9:F0:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R9Br1-qN8hl_cScLdclkx5q58Mw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/1C6ADB02525311EA939E4652C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:31:56 +0000 ROA not before: Thu 04 Dec 2025 17:18:12 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134926 IP address blocks: 103.127.156.0/24 maxlen: 24 103.127.157.0/24 maxlen: 24 103.127.159.0/24 maxlen: 24 2404:2340::/32 maxlen: 32 2404:2340::/36 maxlen: 36 2404:2340:1000::/36 maxlen: 36 2404:2340:2000::/36 maxlen: 36 2404:2340:3000::/36 maxlen: 36 2404:2340:4000::/36 maxlen: 36 2404:2340:5000::/36 maxlen: 36 2404:2340:6000::/36 maxlen: 36 2404:2340:7000::/36 maxlen: 36 2404:2340:8000::/36 maxlen: 36 2404:2340:9000::/36 maxlen: 36 2404:2340:a000::/36 maxlen: 36 2404:2340:b000::/36 maxlen: 36 2404:2340:c000::/36 maxlen: 36 2404:2340:d000::/36 maxlen: 36 2404:2340:e000::/36 maxlen: 36 2404:2340:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/R9Br1-qN8hl_cScLdclkx5q58Mw.crl rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/R9Br1-qN8hl_cScLdclkx5q58Mw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R9Br1-qN8hl_cScLdclkx5q58Mw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4606 (0x11fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144354, serialNumber=47D06BD7EA8DF2197F71270B75C964C79AB9F0CC Validity Not Before: Dec 4 17:18:12 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a45bec-537e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3a:80:8e:fe:00:84:6c:79:3f:2f:bb:ad:60: 49:05:1a:7b:ac:30:52:77:59:53:b9:f3:5d:5e:84: 15:d0:7c:fe:ff:01:0d:a6:36:56:5a:45:5c:7d:ad: cd:ce:29:05:bf:b2:c9:57:cd:78:e3:97:dd:2a:74: 77:82:21:bb:4f:92:c2:c7:c0:c0:56:13:4c:0e:50: d4:8c:6d:bc:b9:06:6d:5d:d5:50:82:52:0e:77:d4: a0:14:cf:f5:58:8a:83:cf:a3:70:28:af:ff:1d:73: 06:f8:e7:8b:69:1c:40:3e:7c:75:3c:82:ad:97:1e: 65:49:91:9f:d3:b8:41:50:9b:82:4f:08:f9:66:73: e9:17:06:12:e8:64:7c:cc:d8:c4:0e:62:d2:36:d2: a0:a3:31:cb:1f:bc:5d:bf:bc:ac:d7:28:de:7f:71: 38:84:2b:4b:38:50:5d:65:4a:f1:ab:b7:2e:0e:34: 08:84:97:9b:d9:b3:da:05:db:c1:4e:b0:c2:d8:2a: cf:97:f3:ee:ce:d2:eb:90:a0:c0:cd:8a:ed:24:d1: b4:c8:7b:a6:bb:1e:02:e1:24:1b:51:a0:8f:80:9e: 5d:6f:55:ca:54:1a:a7:f7:75:a3:36:a2:63:fd:84: bb:b7:30:9e:e4:f5:b9:2c:f8:3c:0f:77:6b:62:b6: bb:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:FD:1B:CA:96:B6:02:93:7E:85:6E:94:20:E5:80:CE:78:E5:1A:30 X509v3 Authority Key Identifier: keyid:47:D0:6B:D7:EA:8D:F2:19:7F:71:27:0B:75:C9:64:C7:9A:B9:F0:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/R9Br1-qN8hl_cScLdclkx5q58Mw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R9Br1-qN8hl_cScLdclkx5q58Mw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/1C6ADB02525311EA939E4652C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.127.156.0/23 103.127.159.0/24 IPv6: 2404:2340::/32 Signature Algorithm: sha256WithRSAEncryption 47:d8:fc:a8:1b:a6:5c:d1:6e:e6:b0:bd:eb:02:0e:93:88:eb: 3b:b7:54:75:67:ed:8f:40:2c:64:69:5f:39:96:18:e0:dd:f3: b8:db:c2:f5:51:ce:76:e7:6f:e5:66:d4:8b:24:d0:4e:7a:06: 2e:8e:5d:8c:d3:16:e9:04:70:4a:c3:dc:2b:bc:25:01:4b:29: c5:b7:c9:c1:1f:44:6e:48:7c:eb:ef:c8:81:9c:e3:5e:ca:16: aa:2d:90:f8:5e:62:f1:87:69:f9:4d:71:d2:69:ce:d9:9b:1b: 6f:fd:3d:a9:40:c8:9f:58:63:cc:1d:56:ce:63:1c:e3:13:c3: 7c:13:d2:c5:14:47:4f:1a:bb:de:34:5e:6d:cc:3c:f4:44:80: c6:5d:f4:e9:ac:0e:ad:b2:ea:72:a7:f0:00:15:91:0f:02:cc: 46:54:46:bb:63:92:6b:0b:73:2c:da:f7:93:17:6a:0c:de:76: f8:e4:7d:ba:4f:9b:9f:77:d8:17:c0:ba:52:2f:ae:fa:84:bb: b5:66:34:06:99:7c:aa:6a:74:7f:6e:d0:57:2b:26:7d:70:07: e8:78:32:fd:c7:43:b8:bb:61:a8:c3:ac:ff:59:fb:ca:d6:cc: 51:96:4a:1e:f8:8d:d2:5e:3f:55:02:b4:87:97:0d:be:b2:e8: 4d:2b:f6:98 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICEf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzNTQxMTAvBgNVBAUTKDQ3RDA2QkQ3RUE4REYyMTk3RjcxMjcwQjc1Qzk2NEM3 OUFCOUYwQ0MwHhcNMjUxMjA0MTcxODEyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWJlYy01MzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszqAjv4AhGx5Py+7rWBJBRp7rDBSd1lTufNdXoQV0Hz+/wENpjZWWkVcfa3N zikFv7LJV81445fdKnR3giG7T5LCx8DAVhNMDlDUjG28uQZtXdVQglIOd9SgFM/1 WIqDz6NwKK//HXMG+OeLaRxAPnx1PIKtlx5lSZGf07hBUJuCTwj5ZnPpFwYS6GR8 zNjEDmLSNtKgozHLH7xdv7ys1yjef3E4hCtLOFBdZUrxq7cuDjQIhJeb2bPaBdvB TrDC2CrPl/PuztLrkKDAzYrtJNG0yHumux4C4SQbUaCPgJ5db1XKVBqn93WjNqJj /YS7tzCe5PW5LPg8D3drYra7mQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFGT9G8qW tgKTfoVulCDlgM545RowMB8GA1UdIwQYMBaAFEfQa9fqjfIZf3EnC3XJZMeaufDM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM1NC82MUExMjZFNDA0 RTQxMUU5OENBRkFBN0JDNEY5QUUwMi9SOUJyMS1xTjhobF9jU2NMZGNsa3g1cTU4 TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I5QnIxLXFOOGhsX2NTY0xkY2xreDVxNThNdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQzNTQvNjFBMTI2RTQwNEU0MTFFOThDQUZBQTdCQzRGOUFFMDIvMUM2QURCMDI1 MjUzMTFFQTkzOUU0NjUyQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ3+cAwQAZ3+fMA0EAgACMAcDBQAkBCNAMA0GCSqGSIb3DQEBCwUA A4IBAQBH2PyoG6Zc0W7msL3rAg6TiOs7t1R1Z+2PQCxkaV85lhjg3fO428L1Uc52 52/lZtSLJNBOegYujl2M0xbpBHBKw9wrvCUBSynFt8nBH0RuSHzr78iBnONeyhaq LZD4XmLxh2n5TXHSac7Zmxtv/T2pQMifWGPMHVbOYxzjE8N8E9LFFEdPGrveNF5t zDz0RIDGXfTprA6tsupyp/AAFZEPAsxGVEa7Y5JrC3Ms2veTF2oM3nb45H26T5uf d9gXwLpSL676hLu1ZjQGmXyqanR/btBXKyZ9cAfoeDL9x0O4u2Gow6z/WfvK1sxR lkoe+I3SXj9VArSHlw2+suhNK/aY -----END CERTIFICATE-----Generated at Mon Mar 2 19:09:13 2026 by rpki-client