$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/3D371C5C708F11E9B105E92CC4F9AE02.roa File: 3D371C5C708F11E9B105E92CC4F9AE02.roa (raw, json) Hash identifier: Pua1i96sdPgTbchWKGJJKMhHV+exBhbFsuuwGPKoM3E= Subject key identifier: 13:47:95:7B:7C:54:0A:C5:B8:A1:0D:71:7C:6F:59:8A:6D:51:D9:C1 Certificate issuer: /CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Certificate serial: 0FC3 Authority key identifier: 4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/3D371C5C708F11E9B105E92CC4F9AE02.roa Signing time: Fri 30 Jan 2026 18:14:44 +0000 ROA not before: Fri 30 Jan 2026 18:14:44 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138516 IP address blocks: 103.127.128.0/24 maxlen: 24 103.148.231.0/24 maxlen: 24 2001:df7:6700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 17:14:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4035 (0xfc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15A4, serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Validity Not Before: Jan 30 18:14:44 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697cf514-9237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:32:78:d8:86:2c:74:2c:ea:a7:de:e6:8c:a2: 70:8d:04:cf:56:84:e2:0c:ca:89:eb:52:5d:68:fe: fb:1e:9d:c8:cc:a3:9b:a8:94:aa:da:18:92:39:e3: 5b:e0:33:a2:39:a0:a9:99:df:c9:f8:2b:62:0b:60: 2f:bb:cb:0a:ff:92:c6:10:8a:62:51:83:6d:e6:0e: 17:c0:4b:15:f7:03:c3:88:56:77:50:ac:df:b9:84: 13:0d:51:77:d1:69:a6:bf:65:97:24:47:53:24:c8: e8:90:9e:c9:6e:f7:37:34:73:68:6f:98:eb:89:b8: 6a:b0:a1:5d:d7:1b:4e:43:49:3b:0f:1c:5f:8c:fd: 77:4e:35:53:39:82:8f:65:82:e5:ac:de:d8:42:83: 40:2f:f4:8c:28:bb:1c:f1:0f:66:d1:d6:a5:5c:16: 7a:af:0f:cc:17:94:23:91:90:6d:39:76:48:67:05: 86:9f:99:e2:9e:94:89:f6:97:da:95:af:fb:b3:e4: 69:b8:73:2a:77:aa:a5:2a:cc:b1:31:df:3c:6c:5d: 24:20:69:65:59:8c:ba:b3:e1:92:c8:5b:23:48:51: 70:6e:b0:fd:ad:81:bc:06:60:17:f5:a1:20:2b:6f: 43:7e:68:c0:d0:4f:b8:a5:42:0b:c3:ed:92:c7:e0: a9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:47:95:7B:7C:54:0A:C5:B8:A1:0D:71:7C:6F:59:8A:6D:51:D9:C1 X509v3 Authority Key Identifier: keyid:4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/3D371C5C708F11E9B105E92CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.128.0/24 103.148.231.0/24 IPv6: 2001:df7:6700::/48 Signature Algorithm: sha256WithRSAEncryption 5d:19:4a:a3:d5:9c:ba:90:1a:bf:65:36:c7:62:a4:58:7e:ab: 2d:6c:6c:74:18:f5:1c:99:da:18:d6:e4:a0:fd:c1:93:b9:25: 73:57:c4:a4:90:7e:d8:12:0c:d0:b0:6c:a8:bb:25:62:68:ce: 76:25:29:4e:76:21:3c:f8:16:37:17:d9:02:12:6d:7d:55:ec: a4:86:7d:9d:02:fe:9a:b8:8c:65:12:16:0a:42:c3:69:54:c8: 51:60:1d:f5:c9:1b:c7:53:80:5a:27:fb:22:fe:c2:ae:35:35: d1:5e:60:51:cc:55:35:ef:dd:1f:34:16:b1:7f:58:f8:4d:d2: 02:ae:76:26:36:88:7a:7b:94:59:c6:8f:63:5b:51:78:97:7f: e2:3c:0d:fa:1e:0d:4c:d6:31:cb:fb:c3:12:d0:c6:af:5e:c5: 79:aa:07:63:f4:81:e2:27:32:73:33:a6:65:08:17:61:27:4d: 8e:fb:49:fc:13:1c:82:aa:d8:0d:89:ad:85:69:2d:03:71:27: 9e:f6:7d:c6:ef:2d:76:fa:f7:a2:07:ce:b2:96:64:d1:ce:da: 70:4c:e8:35:8f:04:7d:51:f0:03:af:b1:83:93:5f:72:97:85: 18:5e:b0:2c:07:ff:c5:f3:dd:85:24:01:f7:58:6c:13:2c:2d: 95:f0:61:1b -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICD8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDE1QTQxMTAvBgNVBAUTKDRENDRFMkY3NTJBMjk1MEI2QjU1MjhDMDY5OUIxNDkw RTc1Nzc3NDQwHhcNMjYwMTMwMTgxNDQ0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdjZjUxNC05MjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTJ42IYsdCzqp97mjKJwjQTPVoTiDMqJ61JdaP77Hp3IzKObqJSq2hiSOeNb 4DOiOaCpmd/J+CtiC2Avu8sK/5LGEIpiUYNt5g4XwEsV9wPDiFZ3UKzfuYQTDVF3 0Wmmv2WXJEdTJMjokJ7Jbvc3NHNob5jribhqsKFd1xtOQ0k7DxxfjP13TjVTOYKP ZYLlrN7YQoNAL/SMKLsc8Q9m0dalXBZ6rw/MF5QjkZBtOXZIZwWGn5ninpSJ9pfa la/7s+RpuHMqd6qlKsyxMd88bF0kIGllWYy6s+GSyFsjSFFwbrD9rYG8BmAX9aEg K29DfmjA0E+4pUILw+2Sx+CpwwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFBNHlXt8 VArFuKENcXxvWYptUdnBMB8GA1UdIwQYMBaAFE1E4vdSopULa1UowGmbFJDnV3dE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVBNC9CMzRFNkQ1MDcw OEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxRdHJWU2pBYVpzVWtPZFhk MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RVVGk5MUtpbFF0clZTakFhWnNVa09kWGQwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE1QTQvQjM0RTZENTA3MDhBMTFFOUFGMEY4RDIxQzRGOUFFMDIvM0QzNzFDNUM3 MDhGMTFFOUIxMDVFOTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnf4ADBABnlOcwDwQCAAIwCQMHACABDfdnADANBgkqhkiG 9w0BAQsFAAOCAQEAXRlKo9WcupAav2U2x2KkWH6rLWxsdBj1HJnaGNbkoP3Bk7kl c1fEpJB+2BIM0LBsqLslYmjOdiUpTnYhPPgWNxfZAhJtfVXspIZ9nQL+mriMZRIW CkLDaVTIUWAd9ckbx1OAWif7Iv7CrjU10V5gUcxVNe/dHzQWsX9Y+E3SAq52JjaI enuUWcaPY1tReJd/4jwN+h4NTNYxy/vDEtDGr17FeaoHY/SB4icyczOmZQgXYSdN jvtJ/BMcgqrYDYmthWktA3EnnvZ9xu8tdvr3ogfOspZk0c7acEzoNY8EfVHwA6+x g5NfcpeFGF6wLAf/xfPdhSQB91hsEywtlfBhGw== -----END CERTIFICATE-----Generated at Fri Feb 20 02:44:44 2026 by rpki-client