$ rpki-client -vvf rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/1E1D32C22FF311EC9220256BC4F9AE02.roa File: 1E1D32C22FF311EC9220256BC4F9AE02.roa (raw, json) Hash identifier: rQBPOBvkThW7+7E7jubPbgFdB5SrjXafLnjRjSwdJcM= Subject key identifier: 5E:57:B6:1D:DA:F6:A3:47:34:62:85:59:5C:93:8F:21:09:F9:9C:2C Certificate issuer: /CN=A91475BA/serialNumber=8389FD46FEF87E593DE81CFFDCDF20BA2CA7601E Certificate serial: 08A6 Authority key identifier: 83:89:FD:46:FE:F8:7E:59:3D:E8:1C:FF:DC:DF:20:BA:2C:A7:60:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/1E1D32C22FF311EC9220256BC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:50:29 +0000 ROA not before: Tue 06 Jan 2026 20:16:53 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 9744 IP address blocks: 103.127.24.0/22 maxlen: 24 2404:1a40::/32 maxlen: 32 2404:1a40:100::/40 maxlen: 40 2404:1a40:1000::/36 maxlen: 36 2404:1a40:1000::/37 maxlen: 37 2404:1a40:1000::/38 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.crl rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2214 (0x8a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91475BA, serialNumber=8389FD46FEF87E593DE81CFFDCDF20BA2CA7601E Validity Not Before: Jan 6 20:16:53 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a45235-ba5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b6:00:d7:ec:22:b1:e3:14:4a:e3:c2:c0:31: e7:44:d0:c3:9a:96:0b:e3:ec:74:8c:18:a0:a0:62: 4a:ae:44:81:e0:e2:4f:ac:fb:3a:08:a7:14:34:d7: a2:fc:d6:4b:10:51:8c:42:f8:bf:25:f4:1d:9b:5b: 12:05:a3:77:41:bc:12:b5:59:69:05:87:52:41:da: 12:9b:4a:26:aa:4e:b2:fa:48:93:37:27:a1:ff:79: 5d:d8:50:ed:31:b3:21:87:41:fa:2e:78:0e:74:79: 8f:3d:2c:5b:41:23:ee:c5:4b:c3:c2:82:55:3d:cf: 9a:a7:7d:68:d6:b3:c4:e2:7e:20:5f:24:68:34:31: a3:ed:0d:42:f5:f6:21:eb:59:ad:99:a3:db:cc:9e: 76:8f:03:53:be:c8:44:92:a5:b7:ed:c1:9c:ab:e8: 47:5e:44:a0:f3:31:e2:24:10:76:1f:39:31:1d:3f: 5f:9c:9f:7f:b7:31:ac:fa:82:55:2f:cd:23:c4:02: 0a:30:75:92:5f:77:53:ca:86:57:04:b8:9b:07:a9: 7b:18:18:a5:31:4f:0a:ac:24:40:2f:31:f5:97:2d: c2:bd:61:83:17:dc:5f:df:d0:2c:c5:3b:da:96:e4: 89:25:c3:ff:63:15:f2:73:13:f4:8f:07:0b:8e:0a: 7d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:57:B6:1D:DA:F6:A3:47:34:62:85:59:5C:93:8F:21:09:F9:9C:2C X509v3 Authority Key Identifier: keyid:83:89:FD:46:FE:F8:7E:59:3D:E8:1C:FF:DC:DF:20:BA:2C:A7:60:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/1E1D32C22FF311EC9220256BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.127.24.0/22 IPv6: 2404:1a40::/32 Signature Algorithm: sha256WithRSAEncryption 58:d2:9c:91:27:08:89:10:91:6e:3f:39:6f:83:ef:db:21:10: 74:c7:94:8b:f2:c6:21:9a:b2:21:98:64:95:b8:ad:a9:73:7f: 75:94:2c:a1:af:2f:1e:7d:e9:9c:ec:e8:58:96:79:c3:fc:ef: 4b:c8:0a:34:d9:1b:77:08:3d:32:81:40:f1:55:1f:c4:42:c2: 6f:33:6e:2f:e0:da:06:72:f7:08:09:b9:d6:96:0e:26:4e:97: 21:05:07:bd:4b:4a:cd:2c:f1:2d:bf:80:ee:ee:45:ac:1f:89: 3d:ab:d4:32:f7:b9:41:69:52:8f:4d:6d:39:e4:8f:4c:e3:e0: fd:1f:42:61:76:30:f6:9a:6f:91:66:44:b7:4c:20:d9:0c:cf: 6d:42:02:85:81:d6:f0:0b:bc:27:21:f8:ae:48:69:8e:27:3f: d6:1a:ea:fd:92:72:ac:5e:8e:83:19:23:4c:91:43:52:01:f0: ce:21:56:54:af:23:ab:49:12:b0:0c:f2:c9:fb:f4:55:99:11: 4a:8a:d6:8c:d7:75:29:7f:33:62:4c:5d:64:48:ed:07:c4:f1: 39:a3:a2:cd:9b:3c:be:8d:25:78:f8:96:00:e0:d2:64:de:bb: 24:49:52:ec:09:d3:e7:d8:03:98:7e:5d:44:4a:32:40:18:b1: a1:8e:e9:ba -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc1QkExMTAvBgNVBAUTKDgzODlGRDQ2RkVGODdFNTkzREU4MUNGRkRDREYyMEJB MkNBNzYwMUUwHhcNMjYwMTA2MjAxNjUzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTIzNS1iYTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27YA1+wiseMUSuPCwDHnRNDDmpYL4+x0jBigoGJKrkSB4OJPrPs6CKcUNNei /NZLEFGMQvi/JfQdm1sSBaN3QbwStVlpBYdSQdoSm0omqk6y+kiTNyeh/3ld2FDt MbMhh0H6LngOdHmPPSxbQSPuxUvDwoJVPc+ap31o1rPE4n4gXyRoNDGj7Q1C9fYh 61mtmaPbzJ52jwNTvshEkqW37cGcq+hHXkSg8zHiJBB2HzkxHT9fnJ9/tzGs+oJV L80jxAIKMHWSX3dTyoZXBLibB6l7GBilMU8KrCRALzH1ly3CvWGDF9xf39AsxTva luSJJcP/YxXycxP0jwcLjgp90QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFF5Xth3a 9qNHNGKFWVyTjyEJ+ZwsMB8GA1UdIwQYMBaAFIOJ/Ub++H5ZPegc/9zfILosp2Ae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzVCQS9ENEYwOEVFNkRB RTkxMUVBOTJDRTM0NUFDNEY5QUUwMi9nNG45UnY3NGZsazk2QnpfM044Z3VpeW5Z QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c0bjlSdjc0ZmxrOTZCel8zTjhndWl5bllCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc1QkEvRDRGMDhFRTZEQUU5MTFFQTkyQ0UzNDVBQzRGOUFFMDIvMUUxRDMyQzIy RkYzMTFFQzkyMjAyNTZCQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ38YMA0EAgACMAcDBQAkBBpAMA0GCSqGSIb3DQEBCwUAA4IBAQBY 0pyRJwiJEJFuPzlvg+/bIRB0x5SL8sYhmrIhmGSVuK2pc391lCyhry8efemc7OhY lnnD/O9LyAo02Rt3CD0ygUDxVR/EQsJvM24v4NoGcvcICbnWlg4mTpchBQe9S0rN LPEtv4Du7kWsH4k9q9Qy97lBaVKPTW055I9M4+D9H0JhdjD2mm+RZkS3TCDZDM9t QgKFgdbwC7wnIfiuSGmOJz/WGur9knKsXo6DGSNMkUNSAfDOIVZUryOrSRKwDPLJ +/RVmRFKitaM13UpfzNiTF1kSO0HxPE5o6LNmzy+jSV4+JYA4NJk3rskSVLsCdPn 2AOYfl1ESjJAGLGhjum6 -----END CERTIFICATE-----Generated at Thu Mar 26 10:05:50 2026 by rpki-client