$ rpki-client -vvf rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/1E1D32C22FF311EC9220256BC4F9AE02.roa File: 1E1D32C22FF311EC9220256BC4F9AE02.roa (raw, json) Hash identifier: 5OVfpGRRuTVW6RDgKbkbGFesEEqHci4GY8++VBXDTTc= Subject key identifier: E3:3D:41:6C:69:6E:61:D2:81:55:2F:88:CC:2D:C7:5F:73:35:0C:AE Certificate issuer: /CN=A91475BA/serialNumber=8389FD46FEF87E593DE81CFFDCDF20BA2CA7601E Certificate serial: 0886 Authority key identifier: 83:89:FD:46:FE:F8:7E:59:3D:E8:1C:FF:DC:DF:20:BA:2C:A7:60:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/1E1D32C22FF311EC9220256BC4F9AE02.roa Signing time: Tue 06 Jan 2026 20:16:53 +0000 ROA not before: Tue 06 Jan 2026 20:16:53 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 9744 IP address blocks: 103.127.24.0/22 maxlen: 24 2404:1a40::/32 maxlen: 32 2404:1a40:100::/40 maxlen: 40 2404:1a40:1000::/36 maxlen: 36 2404:1a40:1000::/37 maxlen: 37 2404:1a40:1000::/38 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.crl rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 20:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2182 (0x886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91475BA, serialNumber=8389FD46FEF87E593DE81CFFDCDF20BA2CA7601E Validity Not Before: Jan 6 20:16:53 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=695d6db5-3197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ba:5c:9c:a9:17:49:9a:83:be:76:5b:42:74: d5:d2:45:51:a8:f5:08:0b:aa:cd:f1:44:79:90:74: b3:83:02:a5:53:56:af:37:ad:e3:5f:56:4e:41:98: f3:a5:ef:98:f6:e8:5c:8f:ff:08:14:25:54:79:f9: 81:30:00:bd:1f:1f:ed:e0:36:1a:42:0e:c2:b3:ce: e9:f0:99:cf:34:31:27:67:46:39:86:5e:d3:e6:e4: 07:71:19:a4:24:2e:3c:3c:a4:c2:b5:9a:92:96:74: 40:38:6d:40:bf:24:21:7f:be:53:d3:ec:e1:fd:f1: c7:a9:5f:77:14:ac:da:09:fe:c4:55:c7:02:8f:07: 71:71:9f:0e:15:1e:48:fd:32:d9:fd:e4:85:ef:07: 10:05:dc:06:a6:b3:29:96:92:9b:ed:21:4e:df:6a: 4d:7a:e0:21:7b:d8:7c:8f:83:62:ed:12:ad:18:f1: 98:70:ce:d6:79:ba:7f:9c:62:98:5a:db:03:f4:37: 27:6d:e2:d4:e1:95:2e:47:13:95:39:d8:28:b7:b5: 3e:b3:80:7e:74:5d:33:19:37:69:3c:c9:d8:05:b0: 9b:fe:88:bd:02:2c:c9:f5:45:a1:7f:95:1a:d0:82: a2:06:07:51:77:71:d3:6e:3d:aa:3c:25:28:98:9f: 7e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:3D:41:6C:69:6E:61:D2:81:55:2F:88:CC:2D:C7:5F:73:35:0C:AE X509v3 Authority Key Identifier: keyid:83:89:FD:46:FE:F8:7E:59:3D:E8:1C:FF:DC:DF:20:BA:2C:A7:60:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/1E1D32C22FF311EC9220256BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.24.0/22 IPv6: 2404:1a40::/32 Signature Algorithm: sha256WithRSAEncryption 95:6a:12:dd:2e:c8:3a:68:e5:bb:fb:bc:29:09:e5:b2:ca:42: 7c:80:d5:bf:ad:4c:9a:c5:27:48:1a:06:9b:ab:c5:20:9b:29: 5f:6c:65:96:59:03:1f:14:b8:c9:f7:10:ab:17:a0:00:4a:d0: 7e:bc:b5:19:c9:43:47:d0:66:e3:55:00:5d:1b:cd:f3:85:36: 35:4b:d4:72:02:4a:0e:72:23:f7:64:ba:dd:83:7c:10:4d:85: 08:0b:18:3e:c0:40:a8:58:59:6f:da:df:3d:d5:c9:a2:2b:40: 0e:78:3e:77:1b:41:db:9d:7a:84:df:29:2f:2c:72:0d:6a:ec: 1e:74:e1:69:4e:ad:70:f7:1d:b6:a1:ef:ad:70:1b:75:b7:c2: 41:e6:b0:69:9e:6d:21:cb:a8:eb:b2:cc:4a:c9:a8:a9:d9:c7: cc:93:82:ba:8b:1b:8e:b7:30:12:03:9f:60:dc:9b:89:26:90: 2d:75:77:32:ac:d3:4c:94:33:0e:4c:42:45:a1:6a:35:55:59: 93:a0:65:eb:52:d6:f9:4d:ab:53:18:be:b5:d7:56:5b:32:b9: 3b:d3:b0:f3:f4:a5:ce:6a:41:28:ef:24:ec:aa:e7:e0:f9:a7: 79:ad:e7:af:a6:ec:36:49:67:6c:53:2e:15:4a:a5:bb:64:de: da:87:63:00 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NDc1QkExMTAvBgNVBAUTKDgzODlGRDQ2RkVGODdFNTkzREU4MUNGRkRDREYyMEJB MkNBNzYwMUUwHhcNMjYwMTA2MjAxNjUzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVkNmRiNS0zMTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7pcnKkXSZqDvnZbQnTV0kVRqPUIC6rN8UR5kHSzgwKlU1avN63jX1ZOQZjz pe+Y9uhcj/8IFCVUefmBMAC9Hx/t4DYaQg7Cs87p8JnPNDEnZ0Y5hl7T5uQHcRmk JC48PKTCtZqSlnRAOG1AvyQhf75T0+zh/fHHqV93FKzaCf7EVccCjwdxcZ8OFR5I /TLZ/eSF7wcQBdwGprMplpKb7SFO32pNeuAhe9h8j4Ni7RKtGPGYcM7Webp/nGKY WtsD9DcnbeLU4ZUuRxOVOdgot7U+s4B+dF0zGTdpPMnYBbCb/oi9AizJ9UWhf5Ua 0IKiBgdRd3HTbj2qPCUomJ9+7QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOM9QWxp bmHSgVUviMwtx19zNQyuMB8GA1UdIwQYMBaAFIOJ/Ub++H5ZPegc/9zfILosp2Ae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzVCQS9ENEYwOEVFNkRB RTkxMUVBOTJDRTM0NUFDNEY5QUUwMi9nNG45UnY3NGZsazk2QnpfM044Z3VpeW5Z QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c0bjlSdjc0ZmxrOTZCel8zTjhndWl5bllCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc1QkEvRDRGMDhFRTZEQUU5MTFFQTkyQ0UzNDVBQzRGOUFFMDIvMUUxRDMyQzIy RkYzMTFFQzkyMjAyNTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfxgwDQQCAAIwBwMFACQEGkAwDQYJKoZIhvcNAQELBQAD ggEBAJVqEt0uyDpo5bv7vCkJ5bLKQnyA1b+tTJrFJ0gaBpurxSCbKV9sZZZZAx8U uMn3EKsXoABK0H68tRnJQ0fQZuNVAF0bzfOFNjVL1HICSg5yI/dkut2DfBBNhQgL GD7AQKhYWW/a3z3VyaIrQA54PncbQdudeoTfKS8scg1q7B504WlOrXD3Hbah761w G3W3wkHmsGmebSHLqOuyzErJqKnZx8yTgrqLG463MBIDn2Dcm4kmkC11dzKs00yU Mw5MQkWhajVVWZOgZetS1vlNq1MYvrXXVlsyuTvTsPP0pc5qQSjvJOyq5+D5p3mt 56+m7DZJZ2xTLhVKpbtk3tqHYwA= -----END CERTIFICATE-----Generated at Fri Feb 20 00:30:46 2026 by rpki-client