$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/F6609DDAAD3C11EA95DFF369C4F9AE02.roa File: F6609DDAAD3C11EA95DFF369C4F9AE02.roa (raw, json) Hash identifier: 20arv5U8husxQitTrWiTSK38gpd2yk8TJ612SR5JCg4= Subject key identifier: CD:38:C0:43:C3:54:0D:4C:93:5B:4E:B1:7A:0E:49:1D:28:26:A0:EC Certificate issuer: /CN=A91C4FB5/serialNumber=CAFA20A9018095D229F0AC43920DCD43A66BEB52 Certificate serial: 1207 Authority key identifier: CA:FA:20:A9:01:80:95:D2:29:F0:AC:43:92:0D:CD:43:A6:6B:EB:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/F6609DDAAD3C11EA95DFF369C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:36:30 +0000 ROA not before: Mon 06 Jan 2025 17:45:30 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138527 IP address blocks: 103.127.248.0/22 maxlen: 22 103.127.248.0/23 maxlen: 23 103.127.250.0/23 maxlen: 23 103.127.250.0/24 maxlen: 24 103.127.251.0/24 maxlen: 24 2404:2b40::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.crl rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4615 (0x1207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4FB5, serialNumber=CAFA20A9018095D229F0AC43920DCD43A66BEB52 Validity Not Before: Jan 6 17:45:30 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=69a44eee-3d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b3:3e:dd:70:ad:c7:db:98:b8:e4:d8:3e:17: c1:1b:44:0c:ed:d7:60:84:f3:97:e1:e3:7a:61:81: 76:b2:4c:d7:1f:a3:5c:df:0c:2b:be:f7:76:03:5e: c0:6a:2f:e5:20:a3:6f:46:35:7a:64:60:9c:7e:59: f0:8f:e6:9a:2b:90:0b:b9:01:7d:40:d9:0f:bb:dc: cc:2b:f9:fd:f2:08:61:ad:23:46:59:1a:a8:90:12: ec:d3:a5:09:f4:da:e1:4f:77:66:a5:2e:60:65:b5: 71:50:2e:c3:87:ba:7c:b7:f6:7e:67:7f:e7:e2:ef: 11:ed:d8:ec:fd:f5:d3:92:9d:70:62:b5:b4:2e:b2: fb:01:63:31:0a:2c:a7:83:8d:5a:ab:2c:bb:b0:79: 55:27:f0:be:bc:9d:b9:1a:e4:00:14:7a:23:b8:01: 92:d2:bf:1b:17:bd:06:37:aa:36:5c:7f:68:f0:1d: 73:d4:46:ce:d5:04:3b:3c:31:88:c9:22:ea:3b:3c: 65:1a:55:5e:5a:04:a5:a5:cf:8b:21:74:08:14:6f: bd:fb:4b:39:e1:6f:20:f0:7f:c4:f0:06:02:58:23: 80:97:d5:e3:3b:d1:16:6e:e8:5b:04:11:ba:ac:73: 59:aa:ef:09:cd:d7:20:1d:3d:72:46:c7:ab:74:c8: 4b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:38:C0:43:C3:54:0D:4C:93:5B:4E:B1:7A:0E:49:1D:28:26:A0:EC X509v3 Authority Key Identifier: keyid:CA:FA:20:A9:01:80:95:D2:29:F0:AC:43:92:0D:CD:43:A6:6B:EB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/F6609DDAAD3C11EA95DFF369C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.127.248.0/22 IPv6: 2404:2b40::/32 Signature Algorithm: sha256WithRSAEncryption 57:38:81:d7:54:d9:f8:61:c4:4b:f4:10:eb:b7:8f:b7:53:67: 20:ef:a1:3c:e5:c3:d7:52:fb:d8:4a:17:41:04:a7:bb:00:82: 54:05:1b:f5:65:14:72:c7:22:5d:59:1c:41:79:da:38:9a:5c: 8d:52:72:9e:0c:37:9d:95:a5:86:20:c7:11:6e:6c:06:79:c6: 4c:98:98:69:6e:cc:60:a3:ff:fc:38:d0:b9:c2:72:87:6e:48: 6e:b5:74:f0:16:2a:1d:f1:78:d0:20:21:26:8d:9d:fd:80:42: 6d:09:34:96:68:44:3c:39:6c:3d:bc:1c:08:b0:b2:d6:d8:55: c2:ad:87:2c:84:dd:e3:8f:a6:c3:67:14:cc:21:83:23:c8:be: 0b:d8:7b:69:28:4f:48:a8:68:94:6a:3b:74:d8:16:e2:69:02: a8:26:a0:9c:47:d4:61:d8:ce:82:29:cd:22:53:db:bb:e0:4a: 9d:f1:f8:49:8c:33:8d:e8:0b:86:94:0c:0b:22:3e:24:a9:13: d2:63:c2:5f:b0:63:dc:c9:ae:8f:ac:88:6d:aa:85:d1:61:dd: c5:a4:f5:cb:6b:35:2a:56:c3:57:2f:33:aa:93:b1:b8:61:f3: f6:03:89:47:d5:1f:41:a0:0f:95:97:49:46:12:ec:41:93:3e: 48:d0:dc:3b -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICEgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGQjUxMTAvBgNVBAUTKENBRkEyMEE5MDE4MDk1RDIyOUYwQUM0MzkyMERDRDQz QTY2QkVCNTIwHhcNMjUwMTA2MTc0NTMwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGVlZS0zZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLM+3XCtx9uYuOTYPhfBG0QM7ddghPOX4eN6YYF2skzXH6Nc3wwrvvd2A17A ai/lIKNvRjV6ZGCcflnwj+aaK5ALuQF9QNkPu9zMK/n98ghhrSNGWRqokBLs06UJ 9NrhT3dmpS5gZbVxUC7Dh7p8t/Z+Z3/n4u8R7djs/fXTkp1wYrW0LrL7AWMxCiyn g41aqyy7sHlVJ/C+vJ25GuQAFHojuAGS0r8bF70GN6o2XH9o8B1z1EbO1QQ7PDGI ySLqOzxlGlVeWgSlpc+LIXQIFG+9+0s54W8g8H/E8AYCWCOAl9XjO9EWbuhbBBG6 rHNZqu8JzdcgHT1yRserdMhLPwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFM04wEPD VA1Mk1tOsXoOSR0oJqDsMB8GA1UdIwQYMBaAFMr6IKkBgJXSKfCsQ5INzUOma+tS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEZCNS9FRjk4N0VFMjA5 RDExMUU5OTU2MDdCNTJDNEY5QUUwMi95dm9ncVFHQWxkSXA4S3hEa2czTlE2WnI2 MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l2b2dxUUdBbGRJcDhLeERrZzNOUTZacjYxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRGQjUvRUY5ODdFRTIwOUQxMTFFOTk1NjA3QjUyQzRGOUFFMDIvRjY2MDlEREFB RDNDMTFFQTk1REZGMzY5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3/4MA0EAgACMAcDBQAkBCtAMA0GCSqGSIb3DQEBCwUAA4IBAQBX OIHXVNn4YcRL9BDrt4+3U2cg76E85cPXUvvYShdBBKe7AIJUBRv1ZRRyxyJdWRxB edo4mlyNUnKeDDedlaWGIMcRbmwGecZMmJhpbsxgo//8ONC5wnKHbkhutXTwFiod 8XjQICEmjZ39gEJtCTSWaEQ8OWw9vBwIsLLW2FXCrYcshN3jj6bDZxTMIYMjyL4L 2HtpKE9IqGiUajt02BbiaQKoJqCcR9Rh2M6CKc0iU9u74Eqd8fhJjDON6AuGlAwL Ij4kqRPSY8JfsGPcya6PrIhtqoXRYd3FpPXLazUqVsNXLzOqk7G4YfP2A4lH1R9B oA+Vl0lGEuxBkz5I0Nw7 -----END CERTIFICATE-----Generated at Mon Mar 2 03:59:23 2026 by rpki-client