$ rpki-client -vvf rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa File: 28543AA0BABA11EB8A51C234C4F9AE02.roa (raw, json) Hash identifier: N2//kBDbRKFYgzQIKD/gPvkry/BfN8vgg5nexvruRxg= Subject key identifier: C7:78:05:CF:E6:40:F7:60:53:44:10:97:38:DE:8E:87:F9:09:BE:8C Certificate issuer: /CN=A91D40BF/serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Certificate serial: 07F0 Authority key identifier: BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:09:17 +0000 ROA not before: Mon 10 Mar 2025 21:42:04 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 51318 IP address blocks: 103.68.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:10:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2032 (0x7f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D40BF, serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Validity Not Before: Mar 10 21:42:04 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4488c-09c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:89:58:b2:5a:44:30:59:03:7e:17:6a:13:2b: 65:80:de:09:f6:9b:6b:30:58:32:22:41:03:7d:c4: 4c:b1:8c:ba:43:ea:59:79:91:75:db:7a:e0:66:0b: 4a:ae:26:94:8b:aa:73:d2:12:dc:d2:5d:58:46:7f: 0c:6a:67:f0:2c:d3:8c:b3:ce:59:92:83:1d:fa:28: 6e:ad:b1:b8:84:18:c2:80:52:aa:3e:fa:2b:96:1a: f4:d4:58:39:61:3c:2b:73:19:90:a9:ba:64:ad:63: 08:62:f4:5a:f7:86:15:f9:0f:21:cb:0e:01:4f:6b: d0:15:75:0d:5e:bd:73:8c:d8:26:d6:8e:2d:66:3b: 2b:f4:0d:ce:2f:bb:43:2b:7c:aa:6b:c6:2e:02:79: 03:3c:2b:97:7d:09:20:b3:e9:1d:b0:59:1e:60:c6: ec:55:2b:19:c2:07:3d:de:55:71:20:57:5e:f0:7e: 02:6f:65:00:2e:0f:7f:f5:1b:71:6b:c1:a4:51:a0: 77:b0:17:39:dc:32:4f:61:8c:b2:24:bb:6a:c9:d8: b7:f3:03:35:4f:76:60:b4:f7:e2:c9:0d:50:81:31: a0:fd:05:2b:d2:05:08:20:56:76:61:01:cd:c0:24: 25:fb:37:cb:b8:5e:53:8f:bd:20:dc:1c:b6:1d:54: cb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:78:05:CF:E6:40:F7:60:53:44:10:97:38:DE:8E:87:F9:09:BE:8C X509v3 Authority Key Identifier: keyid:BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.68.125.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:f4:0e:17:b8:a4:49:e8:e6:4f:2b:04:44:ec:22:9c:5d:30: 32:f0:aa:b7:26:6b:cc:fe:e8:a6:60:93:fc:4f:b2:d4:31:72: 4b:94:ee:12:fc:5f:cb:1d:e9:61:7f:47:f4:57:ac:08:ac:f4: 9f:09:4a:5e:12:4c:f4:be:66:5b:44:97:e5:a8:8c:e9:37:93: f9:97:47:c1:84:c8:7f:87:09:40:6d:01:a0:12:83:d4:ec:53: 64:46:23:3a:92:06:83:d3:15:b7:11:e5:75:84:77:65:63:18: 62:b0:c1:20:e7:cf:fd:eb:70:48:92:c3:4c:6e:84:82:9f:9a: 20:d2:6b:9e:49:7d:a9:b9:7a:6e:c1:ab:8f:8e:9a:ea:01:b7: 9e:d2:d9:02:3a:08:c7:2e:60:66:bb:45:cd:84:d2:a2:05:5d: d1:d8:49:f9:2c:99:85:04:08:5b:69:2d:c2:86:12:0b:d9:2d: c6:58:1e:ef:02:6a:d1:30:fc:f9:0d:76:3d:7a:32:65:d5:9e: 3e:ca:b7:68:ef:61:6b:14:b0:ce:cc:32:87:41:fd:3e:50:8d: b6:fa:e1:41:85:8f:77:7e:f5:00:f2:20:ed:c5:7e:6c:9c:ff: 81:f8:22:68:f2:ec:78:a0:c4:d7:1b:aa:b6:5a:83:ec:b5:52: 71:5f:aa:18 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQwQkYxMTAvBgNVBAUTKEJFNDYzRkMxOTE5QjQxNDJCMjM4MjgxMzgyN0ZCNzE2 RDZFRTkyODMwHhcNMjUwMzEwMjE0MjA0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDg4Yy0wOWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7YlYslpEMFkDfhdqEytlgN4J9ptrMFgyIkEDfcRMsYy6Q+pZeZF123rgZgtK riaUi6pz0hLc0l1YRn8MamfwLNOMs85ZkoMd+ihurbG4hBjCgFKqPvorlhr01Fg5 YTwrcxmQqbpkrWMIYvRa94YV+Q8hyw4BT2vQFXUNXr1zjNgm1o4tZjsr9A3OL7tD K3yqa8YuAnkDPCuXfQkgs+kdsFkeYMbsVSsZwgc93lVxIFde8H4Cb2UALg9/9Rtx a8GkUaB3sBc53DJPYYyyJLtqydi38wM1T3ZgtPfiyQ1QgTGg/QUr0gUIIFZ2YQHN wCQl+zfLuF5Tj70g3By2HVTLPQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMd4Bc/m QPdgU0QQlzjejof5Cb6MMB8GA1UdIwQYMBaAFL5GP8GRm0FCsjgoE4J/txbW7pKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDBCRi8yN0I3QTI4NDI0 QzAxMUVCQjYyQjQzODdDNEY5QUUwMi92a1lfd1pHYlFVS3lPQ2dUZ24tM0Z0YnVr b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZrWV93WkdiUVVLeU9DZ1Rnbi0zRnRidWtvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQwQkYvMjdCN0EyODQyNEMwMTFFQkI2MkI0Mzg3QzRGOUFFMDIvMjg1NDNBQTBC QUJBMTFFQjhBNTFDMjM0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ0R9MA0GCSqGSIb3DQEBCwUAA4IBAQAM9A4XuKRJ6OZPKwRE7CKc XTAy8Kq3JmvM/uimYJP8T7LUMXJLlO4S/F/LHelhf0f0V6wIrPSfCUpeEkz0vmZb RJflqIzpN5P5l0fBhMh/hwlAbQGgEoPU7FNkRiM6kgaD0xW3EeV1hHdlYxhisMEg 58/963BIksNMboSCn5og0mueSX2puXpuwauPjprqAbee0tkCOgjHLmBmu0XNhNKi BV3R2En5LJmFBAhbaS3ChhIL2S3GWB7vAmrRMPz5DXY9ejJl1Z4+yrdo72FrFLDO zDKHQf0+UI22+uFBhY93fvUA8iDtxX5snP+B+CJo8ux4oMTXG6q2WoPstVJxX6oY -----END CERTIFICATE-----Generated at Mon Mar 2 13:23:41 2026 by rpki-client