$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/DFBB127A1FD911F18338B27E3F3D8C67.roa File: DFBB127A1FD911F18338B27E3F3D8C67.roa (raw, json) Hash identifier: /SYY7WeR+aA+gbxGrf5qM5FajASTqqxf81wX3CNIlA0= Subject key identifier: F1:0D:86:ED:86:8F:16:4D:57:E4:81:0A:15:F9:EA:5A:36:F6:13:3B Certificate issuer: /CN=A9149A0D/serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Certificate serial: 0862 Authority key identifier: 5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/DFBB127A1FD911F18338B27E3F3D8C67.roa Signing time: Sat 14 Mar 2026 19:13:25 +0000 ROA not before: Sat 14 Mar 2026 19:13:25 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138456 IP address blocks: 103.126.24.0/24 maxlen: 24 2001:df7:3700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2146 (0x862) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A0D, serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Validity Not Before: Mar 14 19:13:25 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69b5b355-45aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:4f:95:dc:dc:a7:cd:ce:e2:f9:98:15:1a:1a: 11:86:6c:89:32:ac:f6:1b:90:6b:60:bc:77:62:7b: 78:35:7b:5b:41:f7:17:aa:f5:0f:fd:1e:01:ad:e0: e3:08:7d:87:c9:dc:61:e0:f8:eb:39:d6:e4:95:c5: 9a:18:4f:4c:c7:fc:e3:14:8b:0f:ab:9f:8a:63:71: c6:67:ea:5c:54:c3:04:41:87:8d:a4:ce:9f:04:51: f3:e4:d1:01:bf:07:3c:d0:73:8e:e3:96:67:36:8e: 43:cf:35:66:62:f8:21:97:c5:26:ad:2d:ee:1f:d4: b0:ed:3d:ec:06:60:ca:59:fb:07:34:7d:1c:ed:a1: d7:85:06:ee:1d:20:38:8b:83:c4:c6:09:de:61:28: ff:1c:9d:80:18:78:35:61:ab:be:32:bd:65:4a:2d: fc:ab:24:13:9f:95:45:09:0f:4d:26:ba:26:32:e2: 66:a4:61:03:67:df:5f:4f:1a:b1:a7:25:60:68:12: a5:6a:86:34:bf:71:78:52:ce:d9:86:69:bd:65:5a: 55:34:9b:30:0a:b0:96:62:80:fd:18:bc:f4:5f:6a: f9:a5:56:59:40:ec:f8:ae:79:b8:9d:94:2a:f1:68: c6:b3:13:4e:94:ca:31:05:a6:54:34:4a:29:30:8a: 27:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0D:86:ED:86:8F:16:4D:57:E4:81:0A:15:F9:EA:5A:36:F6:13:3B X509v3 Authority Key Identifier: keyid:5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/DFBB127A1FD911F18338B27E3F3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.126.24.0/24 IPv6: 2001:df7:3700::/48 Signature Algorithm: sha256WithRSAEncryption 0b:59:cb:de:c9:15:5b:56:97:02:81:0f:28:81:37:37:9f:98: 65:ef:c3:f7:26:96:61:79:8e:88:19:02:f4:8d:cb:6c:42:24: 7b:1a:8b:bf:88:d0:92:27:a8:17:fc:bf:eb:b6:c6:94:ed:47: 8e:7d:50:82:2d:93:a1:67:52:35:6d:a6:5c:d5:38:59:ca:b7: 3c:9e:e1:63:ac:72:d1:6c:2f:55:fb:e1:63:29:10:c7:92:ec: 40:e1:03:0a:cc:c0:8f:ec:56:0a:cd:7e:24:c9:a5:a6:82:76: 36:ce:72:e5:7f:d5:08:f3:dd:47:b5:b3:8e:f5:c2:e5:f3:57: 6b:68:8e:b8:3b:e8:4e:ca:14:c2:a6:66:31:96:47:89:5a:93: 5c:52:f8:8d:e0:a8:da:43:03:61:02:6b:8a:a6:78:df:95:35: ce:2d:d1:0b:4c:ad:1d:6e:91:57:79:ce:1c:ee:e4:e5:0f:48: be:18:a8:65:4a:52:7f:88:68:48:3e:a9:4a:1c:53:66:10:f1: fc:6b:69:89:bc:85:b8:1a:ef:66:b8:fb:bb:b0:32:0a:1d:38: e4:8c:cf:21:22:e2:2e:98:84:92:09:d8:cf:c1:4a:fc:a9:9c: a2:07:e3:73:73:17:20:0e:3d:14:c7:07:19:88:89:e4:1a:df: e0:47:89:7f -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBMEQxMTAvBgNVBAUTKDVGOEYwMTYxQjdBQ0JCMjU1RjEzQ0YwODFCNjY1MzYx OUI0RTJDMDIwHhcNMjYwMzE0MTkxMzI1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI1YjM1NS00NWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhk+V3Nynzc7i+ZgVGhoRhmyJMqz2G5BrYLx3Ynt4NXtbQfcXqvUP/R4BreDj CH2Hydxh4PjrOdbklcWaGE9Mx/zjFIsPq5+KY3HGZ+pcVMMEQYeNpM6fBFHz5NEB vwc80HOO45ZnNo5DzzVmYvghl8UmrS3uH9Sw7T3sBmDKWfsHNH0c7aHXhQbuHSA4 i4PExgneYSj/HJ2AGHg1Yau+Mr1lSi38qyQTn5VFCQ9NJromMuJmpGEDZ99fTxqx pyVgaBKlaoY0v3F4Us7Zhmm9ZVpVNJswCrCWYoD9GLz0X2r5pVZZQOz4rnm4nZQq 8WjGsxNOlMoxBaZUNEopMIonOQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFPENhu2G jxZNV+SBChX56lo29hM7MB8GA1UdIwQYMBaAFF+PAWG3rLslXxPPCBtmU2GbTiwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUEwRC8wRkI3OTE2NEZC MTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5VmZFODhJRzJaVFladE9M QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0OEJZYmVzdXlWZkU4OElHMlpUWVp0T0xBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlBMEQvMEZCNzkxNjRGQjE1MTFFQUIwMTFFQzZFQzRGOUFFMDIvREZCQjEyN0Ex RkQ5MTFGMTgzMzhCMjdFM0YzRDhDNjcucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ34YMA8EAgACMAkDBwAgAQ33NwAwDQYJKoZIhvcNAQELBQADggEB AAtZy97JFVtWlwKBDyiBNzefmGXvw/cmlmF5jogZAvSNy2xCJHsai7+I0JInqBf8 v+u2xpTtR459UIItk6FnUjVtplzVOFnKtzye4WOsctFsL1X74WMpEMeS7EDhAwrM wI/sVgrNfiTJpaaCdjbOcuV/1Qjz3Ue1s471wuXzV2tojrg76E7KFMKmZjGWR4la k1xS+I3gqNpDA2ECa4qmeN+VNc4t0QtMrR1ukVd5zhzu5OUPSL4YqGVKUn+IaEg+ qUocU2YQ8fxraYm8hbga72a4+7uwMgodOOSMzyEi4i6YhJIJ2M/BSvypnKIH43Nz FyAOPRTHBxmIieQa3+BHiX8= -----END CERTIFICATE-----Generated at Thu Mar 26 05:26:12 2026 by rpki-client