$ rpki-client -vvf rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa File: 28543AA0BABA11EB8A51C234C4F9AE02.roa (raw, json) Hash identifier: MXT5jcze9muAxIxhhOptgI/97lbgIlxVB1859ZI8SAI= Subject key identifier: B4:39:98:C8:1C:BC:8A:02:0C:3B:98:FD:92:55:4B:F6:74:B1:2D:63 Certificate issuer: /CN=A91D40BF/serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Certificate serial: 07FD Authority key identifier: BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa Signing time: Thu 12 Mar 2026 21:28:25 +0000 ROA not before: Thu 12 Mar 2026 21:28:25 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 51318 IP address blocks: 103.68.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 21:28:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2045 (0x7fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D40BF, serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Validity Not Before: Mar 12 21:28:25 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b32ff9-bf46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8a:72:2c:70:c8:63:1c:74:b9:1e:5d:bf:c1: f6:08:e3:49:cb:a1:0c:0b:15:25:cf:81:d9:18:a7: f0:1d:c2:12:83:00:33:3f:a7:fa:25:4e:a9:1e:09: 12:14:5d:82:c8:84:1b:c7:6a:db:aa:96:19:6f:a9: e4:83:8f:75:a1:89:77:e5:29:c9:44:47:a2:89:44: 11:56:ea:dd:2a:00:b7:f7:05:82:4d:e8:42:07:bd: 3a:ad:c3:03:e6:cb:c8:85:9f:24:81:5a:41:64:fb: 60:fe:07:3f:fb:d5:35:18:f0:4a:2e:7c:09:06:4e: 01:47:2d:17:b0:ab:0b:ef:fd:35:e3:4f:97:2a:43: 60:88:b5:be:65:28:51:70:e9:fa:24:82:fa:38:57: 0c:e3:a9:62:fa:c9:b8:f8:21:aa:f5:eb:b7:ee:f9: 46:8f:b6:93:3d:d0:59:90:8c:b5:8e:1d:ae:83:e3: 0f:50:8f:07:6e:28:2e:0d:78:58:f4:ad:fd:ae:ee: 66:e3:96:ab:40:1d:0b:15:5a:57:e9:f0:40:70:96: 58:b4:c7:36:85:19:6b:d6:17:f2:12:93:17:89:05: eb:ac:6c:c2:a6:d5:f2:8c:52:2e:f0:86:43:55:dd: e2:cb:d1:23:ee:49:19:74:92:c4:54:9f:e3:4c:0b: 4a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:39:98:C8:1C:BC:8A:02:0C:3B:98:FD:92:55:4B:F6:74:B1:2D:63 X509v3 Authority Key Identifier: keyid:BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.68.125.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:8c:60:8b:c1:68:58:84:29:c8:1a:bd:23:1c:57:82:8b:ce: 00:0a:54:5f:08:5a:6c:c5:e0:38:db:a8:a2:d4:39:b0:8d:ee: a1:e4:8d:15:0f:f4:45:95:54:af:2c:07:cd:35:f2:23:4a:79: 93:67:18:7c:26:65:19:b6:08:a1:06:bf:b4:50:5f:c8:a9:b8: a5:e8:50:d3:41:50:23:ac:b0:d1:11:fc:7b:7d:dd:09:f0:79: 90:b8:4c:7c:c5:a8:9f:0a:01:94:39:33:a7:fb:d5:cb:0a:f7: ea:bc:d3:e7:10:49:50:bc:49:3b:bf:95:53:fd:a9:b1:82:ef: 19:9a:05:c7:fc:6f:b1:15:89:2f:90:25:8a:f7:09:8e:ab:e9: 45:32:0d:5d:fe:f4:5f:d3:31:ca:fd:85:c1:65:98:63:84:a4: 42:bd:5d:94:49:39:0d:c4:d5:a9:d2:34:32:fd:b2:1f:0a:b1: 8d:28:e0:31:6e:4c:57:5f:45:44:bf:d5:68:7f:f4:54:fe:74: bf:5c:99:9f:8a:39:90:a6:dd:f5:75:b7:d6:ac:79:f0:5a:7d: 30:a8:74:d1:78:2e:8c:c1:7a:8b:92:cf:e1:2f:65:8f:0c:5c: 44:1c:ca:9b:04:94:be:fc:49:91:61:c8:da:be:62:b4:ac:13: f1:87:0a:15 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQwQkYxMTAvBgNVBAUTKEJFNDYzRkMxOTE5QjQxNDJCMjM4MjgxMzgyN0ZCNzE2 RDZFRTkyODMwHhcNMjYwMzEyMjEyODI1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIzMmZmOS1iZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4pyLHDIYxx0uR5dv8H2CONJy6EMCxUlz4HZGKfwHcISgwAzP6f6JU6pHgkS FF2CyIQbx2rbqpYZb6nkg491oYl35SnJREeiiUQRVurdKgC39wWCTehCB706rcMD 5svIhZ8kgVpBZPtg/gc/+9U1GPBKLnwJBk4BRy0XsKsL7/0140+XKkNgiLW+ZShR cOn6JIL6OFcM46li+sm4+CGq9eu37vlGj7aTPdBZkIy1jh2ug+MPUI8HbiguDXhY 9K39ru5m45arQB0LFVpX6fBAcJZYtMc2hRlr1hfyEpMXiQXrrGzCptXyjFIu8IZD Vd3iy9Ej7kkZdJLEVJ/jTAtKJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLQ5mMgc vIoCDDuY/ZJVS/Z0sS1jMB8GA1UdIwQYMBaAFL5GP8GRm0FCsjgoE4J/txbW7pKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDBCRi8yN0I3QTI4NDI0 QzAxMUVCQjYyQjQzODdDNEY5QUUwMi92a1lfd1pHYlFVS3lPQ2dUZ24tM0Z0YnVr b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZrWV93WkdiUVVLeU9DZ1Rnbi0zRnRidWtvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQwQkYvMjdCN0EyODQyNEMwMTFFQkI2MkI0Mzg3QzRGOUFFMDIvMjg1NDNBQTBC QUJBMTFFQjhBNTFDMjM0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ0R9MA0GCSqGSIb3DQEBCwUAA4IBAQAujGCLwWhYhCnIGr0jHFeC i84AClRfCFpsxeA426ii1Dmwje6h5I0VD/RFlVSvLAfNNfIjSnmTZxh8JmUZtgih Br+0UF/Iqbil6FDTQVAjrLDREfx7fd0J8HmQuEx8xaifCgGUOTOn+9XLCvfqvNPn EElQvEk7v5VT/amxgu8ZmgXH/G+xFYkvkCWK9wmOq+lFMg1d/vRf0zHK/YXBZZhj hKRCvV2USTkNxNWp0jQy/bIfCrGNKOAxbkxXX0VEv9Vof/RU/nS/XJmfijmQpt31 dbfWrHnwWn0wqHTReC6MwXqLks/hL2WPDFxEHMqbBJS+/EmRYcjavmK0rBPxhwoV -----END CERTIFICATE-----Generated at Fri Mar 13 05:51:36 2026 by rpki-client