$ rpki-client -vvf rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/B58038B838FF11EAB8D91529C4F9AE02.roa File: B58038B838FF11EAB8D91529C4F9AE02.roa (raw, json) Hash identifier: 1PUveXSVNEFsI6eTf+ATt+sd0I0xyK56lA2WpD1UOWM= Subject key identifier: 16:DD:7B:52:D1:07:E3:DD:29:97:06:3E:CA:E3:6E:33:03:DB:E7:D8 Certificate issuer: /CN=A91B727C/serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Certificate serial: 1221 Authority key identifier: 1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/B58038B838FF11EAB8D91529C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:36:24 +0000 ROA not before: Fri 16 Jan 2026 17:14:40 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138505 IP address blocks: 103.127.68.0/22 maxlen: 22 103.127.68.0/23 maxlen: 23 103.127.68.0/24 maxlen: 24 103.127.69.0/24 maxlen: 24 103.127.70.0/23 maxlen: 23 103.127.70.0/24 maxlen: 24 103.127.71.0/24 maxlen: 24 2404:19c0::/32 maxlen: 32 2404:19c0::/36 maxlen: 36 2404:19c0:1000::/36 maxlen: 36 2404:19c0:2000::/36 maxlen: 36 2404:19c0:3000::/36 maxlen: 36 2404:19c0:4000::/36 maxlen: 36 2404:19c0:5000::/36 maxlen: 36 2404:19c0:6000::/36 maxlen: 36 2404:19c0:7000::/36 maxlen: 36 2404:19c0:8000::/36 maxlen: 36 2404:19c0:9000::/36 maxlen: 36 2404:19c0:a000::/36 maxlen: 36 2404:19c0:b000::/36 maxlen: 36 2404:19c0:c000::/36 maxlen: 36 2404:19c0:d000::/36 maxlen: 36 2404:19c0:e000::/36 maxlen: 36 2404:19c0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4641 (0x1221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B727C, serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Validity Not Before: Jan 16 17:14:40 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44ee8-a9c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:be:b1:b4:11:c6:f4:7e:49:24:96:5d:00:52: 48:76:25:c8:bf:76:cb:ae:49:d1:0b:16:50:61:fe: c2:5f:4d:e1:ac:a0:68:85:16:ae:09:4f:69:0d:4f: 76:0a:ab:4a:29:c3:6e:a1:4e:8b:0a:2a:f3:de:77: 85:c9:e7:fd:56:c1:35:7c:67:a4:eb:85:3a:4d:19: fb:67:00:0b:ef:e0:d7:4b:72:7a:b5:9e:83:a1:d1: 33:dd:74:bf:81:7e:30:0e:aa:55:c8:59:9b:02:23: 11:95:65:ff:76:7a:b4:2d:41:a7:ec:e7:0b:12:e8: f3:ee:86:e9:94:c3:05:36:b1:12:00:9d:21:42:6e: 51:53:b3:ed:20:b5:7a:11:dc:f4:3d:2c:48:08:89: 6a:f1:42:e8:cf:a5:27:81:4f:ae:0b:88:2e:67:60: e1:1f:7f:57:5d:12:96:de:74:86:40:4c:b5:65:4e: 06:48:d8:e7:87:29:4e:11:e1:d6:35:80:d9:2e:89: 0c:40:af:59:9d:14:aa:61:42:a8:2a:27:e0:eb:13: d5:aa:72:00:ec:c4:fb:4a:61:33:69:24:5e:26:90: 34:da:9c:d8:1e:52:23:20:bf:fe:0d:dd:42:a3:d9: e4:0e:93:5b:82:7d:ca:46:ca:ed:45:8a:e4:b3:c6: 4c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:DD:7B:52:D1:07:E3:DD:29:97:06:3E:CA:E3:6E:33:03:DB:E7:D8 X509v3 Authority Key Identifier: keyid:1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/B58038B838FF11EAB8D91529C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.127.68.0/22 IPv6: 2404:19c0::/32 Signature Algorithm: sha256WithRSAEncryption a1:11:76:b0:f2:65:a4:ca:20:3d:a7:65:b9:07:5d:7b:5f:69: c1:76:3f:13:7e:31:34:2f:28:86:0d:1f:21:8e:00:14:0a:e1: 60:96:6e:40:f6:1a:ce:37:de:38:62:0f:9f:1b:0b:56:9f:9f: a0:0e:66:22:25:4b:3a:0a:28:5d:f1:dc:e3:14:91:b0:10:92: 24:6b:5c:14:c8:93:0f:d7:3e:89:37:08:b3:16:89:68:42:a1: 9a:04:dd:f4:82:36:14:a4:f2:e9:4e:f0:7e:6d:34:36:20:0e: 85:86:80:ce:68:86:b5:1a:ad:67:c8:64:26:5d:a7:fb:39:83: 10:07:1a:fa:01:40:b7:3b:d6:1c:f2:29:50:a5:ac:97:38:0a: cc:36:4e:0e:34:dc:9c:77:b9:2a:45:98:da:bc:d7:72:08:d5: 7a:d8:af:ec:f7:c9:a2:49:98:83:ce:6f:93:73:03:6b:fc:79: 1c:05:5a:4c:8b:6a:81:7d:7f:4f:cd:23:aa:73:cb:9b:51:84: 43:ad:76:58:9e:9a:61:2a:4b:e3:88:92:f6:ae:a4:93:ca:3e: 60:e3:48:57:54:f0:ad:ba:05:6d:dc:b1:b3:04:17:ee:ac:33: dd:70:39:c5:01:e4:a8:c6:f8:5e:46:a5:00:18:c9:d5:23:c8: 1e:b8:83:42 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICEiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjcyN0MxMTAvBgNVBAUTKDFEODgyQzhDRjI0MzRDQzlCQkZENzkxOTFEQzJDNjk4 MjkyNkU4QUIwHhcNMjYwMTE2MTcxNDQwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGVlOC1hOWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArL6xtBHG9H5JJJZdAFJIdiXIv3bLrknRCxZQYf7CX03hrKBohRauCU9pDU92 CqtKKcNuoU6LCirz3neFyef9VsE1fGek64U6TRn7ZwAL7+DXS3J6tZ6DodEz3XS/ gX4wDqpVyFmbAiMRlWX/dnq0LUGn7OcLEujz7obplMMFNrESAJ0hQm5RU7PtILV6 Edz0PSxICIlq8ULoz6UngU+uC4guZ2DhH39XXRKW3nSGQEy1ZU4GSNjnhylOEeHW NYDZLokMQK9ZnRSqYUKoKifg6xPVqnIA7MT7SmEzaSReJpA02pzYHlIjIL/+Dd1C o9nkDpNbgn3KRsrtRYrks8ZM/wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFBbde1LR B+PdKZcGPsrjbjMD2+fYMB8GA1UdIwQYMBaAFB2ILIzyQ0zJu/15GR3CxpgpJuir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzI3Qy85RDc3QzZENDAy OEYxMUU5OUQ4MUY2NDBDNEY5QUUwMi9IWWdzalBKRFRNbTdfWGtaSGNMR21Da202 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hZZ3NqUEpEVE1tN19Ya1pIY0xHbUNrbTZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjcyN0MvOUQ3N0M2RDQwMjhGMTFFOTlEODFGNjQwQzRGOUFFMDIvQjU4MDM4Qjgz OEZGMTFFQUI4RDkxNTI5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ39EMA0EAgACMAcDBQAkBBnAMA0GCSqGSIb3DQEBCwUAA4IBAQCh EXaw8mWkyiA9p2W5B117X2nBdj8TfjE0LyiGDR8hjgAUCuFglm5A9hrON944Yg+f GwtWn5+gDmYiJUs6Cihd8dzjFJGwEJIka1wUyJMP1z6JNwizFoloQqGaBN30gjYU pPLpTvB+bTQ2IA6FhoDOaIa1Gq1nyGQmXaf7OYMQBxr6AUC3O9Yc8ilQpayXOArM Nk4ONNycd7kqRZjavNdyCNV62K/s98miSZiDzm+TcwNr/HkcBVpMi2qBfX9PzSOq c8ubUYRDrXZYnpphKkvjiJL2rqSTyj5g40hXVPCtugVt3LGzBBfurDPdcDnFAeSo xvheRqUAGMnVI8geuINC -----END CERTIFICATE-----Generated at Mon Mar 2 08:20:59 2026 by rpki-client