$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa File: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (raw, json) Hash identifier: wLzSSsb1W3A2MYP49E/fklCTD0d/JRiMl3Lul9XwiIg= Subject key identifier: E3:FB:5A:E4:5A:01:8E:5C:93:DB:65:A8:DF:68:DD:5C:77:98:A9:42 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 1217 Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:46:40 +0000 ROA not before: Thu 04 Dec 2025 17:17:59 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134926 IP address blocks: 103.127.28.0/24 maxlen: 24 103.127.29.0/24 maxlen: 24 103.127.30.0/24 maxlen: 24 103.127.31.0/24 maxlen: 24 2404:17c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4631 (0x1217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: Dec 4 17:17:59 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44340-6a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7a:e1:5c:00:ad:72:53:ea:c4:64:e4:89:32: b7:99:e0:1a:20:93:e6:62:7d:e4:f1:24:3c:42:b7: 4f:03:3d:8c:76:3e:2b:f3:0e:e6:17:d2:45:2d:ef: 47:d9:ae:22:77:7c:4a:c8:ce:b0:c4:bf:9b:46:ea: ea:94:76:11:2c:6e:8c:e5:c5:08:ac:2a:8d:54:e9: 79:7f:f7:13:94:86:83:94:8b:91:e9:04:93:56:50: 13:47:88:ff:8a:d1:b6:49:f2:d1:11:98:d5:34:07: 19:9d:39:df:d0:a5:7c:bf:fe:21:d9:03:72:3b:eb: b4:d4:d1:ce:23:b8:53:a9:c5:e3:16:59:91:f2:67: af:11:02:67:18:a2:8a:c8:6d:b5:d2:dc:3a:b2:ca: e7:90:e2:4c:73:a5:cd:ec:2b:41:88:2d:24:62:56: 95:f6:bf:93:d4:ab:25:74:2e:ce:88:0b:3d:71:52: 67:99:d6:d3:1a:45:93:2b:d5:69:42:88:70:52:29: 33:79:f7:e6:c5:72:16:88:d5:29:e1:08:55:52:40: 02:2e:00:8b:42:8a:d2:cc:4c:dc:fd:f9:6e:01:bf: fb:f4:5e:57:35:ce:e7:f9:32:fd:45:0b:a6:79:b9: 97:ea:84:4b:03:d9:73:e0:99:c9:23:c1:8c:a2:3a: cf:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:FB:5A:E4:5A:01:8E:5C:93:DB:65:A8:DF:68:DD:5C:77:98:A9:42 X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.127.28.0/22 IPv6: 2404:17c0::/32 Signature Algorithm: sha256WithRSAEncryption b0:72:aa:32:c5:1e:06:d2:45:67:43:7e:68:65:e6:e8:95:32: a0:2d:77:05:3b:31:53:38:d5:0c:4e:67:df:ad:f5:30:55:53: bc:d6:bf:94:4e:d6:2f:1a:16:2b:29:6b:7a:67:b8:5e:36:c9: c4:39:d3:6c:cc:15:c0:3a:a6:83:45:0d:d3:6c:40:61:2a:3a: 05:a5:72:eb:c0:24:2f:5a:8d:45:b4:61:e9:8b:df:5e:20:36: ec:32:98:e0:8d:50:74:20:56:d7:f6:21:03:66:a3:9a:53:73: 13:24:34:34:06:f3:71:d2:2c:d4:74:91:96:72:f3:2d:dc:c1: 24:ae:06:9b:96:7f:2b:ce:17:f5:88:d1:e2:ef:79:b8:f5:c9: da:23:20:d9:b7:55:4d:66:8e:63:28:7f:11:34:99:4c:99:48: 90:9e:a6:d3:2a:3c:5e:09:81:80:3e:cc:ef:ac:68:37:cc:83: 99:65:02:25:04:b4:d0:d1:3b:4a:05:17:b8:32:04:4b:68:43: e0:c6:62:87:ec:c4:05:5e:25:48:2a:2b:29:7a:15:d9:4e:40: ab:8f:fc:27:e5:20:2d:c7:80:bd:d7:6d:e2:1d:1b:6f:78:79: 2d:24:5d:13:13:f4:9d:02:31:2d:f8:db:48:9b:65:bf:b2:ba: 1d:4e:59:14 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICEhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjUxMjA0MTcxNzU5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDM0MC02YTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnrhXACtclPqxGTkiTK3meAaIJPmYn3k8SQ8QrdPAz2Mdj4r8w7mF9JFLe9H 2a4id3xKyM6wxL+bRurqlHYRLG6M5cUIrCqNVOl5f/cTlIaDlIuR6QSTVlATR4j/ itG2SfLREZjVNAcZnTnf0KV8v/4h2QNyO+u01NHOI7hTqcXjFlmR8mevEQJnGKKK yG210tw6ssrnkOJMc6XN7CtBiC0kYlaV9r+T1KsldC7OiAs9cVJnmdbTGkWTK9Vp QohwUikzeffmxXIWiNUp4QhVUkACLgCLQorSzEzc/fluAb/79F5XNc7n+TL9RQum ebmX6oRLA9lz4JnJI8GMojrPAQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFOP7WuRa AY5ck9tlqN9o3Vx3mKlCMB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENCMjUvMkM2MERGRDhGREE1MTFFODg4NTlDMDZCQzRGOUFFMDIvQkRDMUFCMEFG REE2MTFFODhGQTVFMjZEQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ38cMA0EAgACMAcDBQAkBBfAMA0GCSqGSIb3DQEBCwUAA4IBAQCw cqoyxR4G0kVnQ35oZebolTKgLXcFOzFTONUMTmffrfUwVVO81r+UTtYvGhYrKWt6 Z7heNsnEOdNszBXAOqaDRQ3TbEBhKjoFpXLrwCQvWo1FtGHpi99eIDbsMpjgjVB0 IFbX9iEDZqOaU3MTJDQ0BvNx0izUdJGWcvMt3MEkrgabln8rzhf1iNHi73m49cna IyDZt1VNZo5jKH8RNJlMmUiQnqbTKjxeCYGAPszvrGg3zIOZZQIlBLTQ0TtKBRe4 MgRLaEPgxmKH7MQFXiVIKispehXZTkCrj/wn5SAtx4C9123iHRtveHktJF0TE/Sd AjEt+NtIm2W/srodTlkU -----END CERTIFICATE-----Generated at Mon Mar 2 05:33:44 2026 by rpki-client