$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/27DB37683BD211EE8094355FC4F9AE02.roa File: 27DB37683BD211EE8094355FC4F9AE02.roa (raw, json) Hash identifier: YzDFDZ54fUqzOihykhyRhXUfQqVEw3BeHxpAnhoKUlk= Subject key identifier: 6B:2F:1D:CF:C7:5F:3C:6B:E8:1F:AA:03:46:CA:93:58:2B:67:56:13 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: 01B4 Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/27DB37683BD211EE8094355FC4F9AE02.roa Signing time: Fri 31 Oct 2025 03:47:27 +0000 ROA not before: Fri 31 Oct 2025 03:47:27 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133093 IP address blocks: 103.126.80.0/24 maxlen: 24 103.126.81.0/24 maxlen: 24 103.243.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1, serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: Oct 31 03:47:27 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6904314e-38bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:13:e2:59:d7:0c:af:84:5c:fc:d6:69:ae:6f: 1c:55:fc:de:52:64:13:e9:24:6c:86:38:80:25:0c: 28:21:ad:3a:e6:0b:dc:8f:cf:8f:b9:a5:28:0b:4b: ec:36:b6:44:22:62:5e:da:15:33:29:f7:5e:91:5c: 40:ea:af:e6:2f:28:28:dd:8e:e1:63:a3:e8:1f:62: c8:d0:15:50:bb:d4:98:e0:65:f3:92:0a:fd:d9:d2: c0:6f:ff:07:ee:ae:14:d8:cb:24:d4:96:58:b2:08: 46:41:69:cc:42:b4:5b:06:23:38:00:28:09:c2:02: 5d:2c:30:ba:cf:60:d7:62:e9:e6:36:5b:9b:b2:4d: 83:7e:c8:25:02:b6:0d:01:57:cc:03:69:1c:a3:01: 12:35:29:f8:bc:fa:e8:7a:90:45:93:2d:55:91:58: 5b:59:d1:e0:67:64:ed:74:6f:94:eb:dd:77:54:61: ca:0f:97:59:99:80:56:a8:7d:d8:a9:93:e7:e8:31: 1d:b9:50:88:8a:3a:ef:e7:db:d3:06:84:56:48:c7: 87:88:6b:fa:b1:3b:16:80:02:0e:70:ca:49:a9:e4: b9:aa:f0:74:dd:d9:3d:03:b6:f1:e3:36:a7:b3:98: 02:b7:af:87:5b:e6:22:74:94:a5:a6:43:45:68:8d: 63:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2F:1D:CF:C7:5F:3C:6B:E8:1F:AA:03:46:CA:93:58:2B:67:56:13 X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/27DB37683BD211EE8094355FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.80.0/23 103.243.17.0/24 Signature Algorithm: sha256WithRSAEncryption 84:09:93:db:97:22:12:cd:e5:0c:78:07:61:9b:e2:6a:85:eb: 6d:b4:39:6e:a5:1c:5e:4f:98:15:af:d8:bc:2f:0a:88:b1:5a: d4:c9:95:b9:1b:d6:23:4a:05:a1:eb:09:d5:86:55:7e:61:4e: 39:a8:78:ff:e1:f4:b6:74:41:7f:57:3b:1a:d4:00:18:83:c1: 71:38:ff:32:68:15:1f:17:95:04:18:6a:f3:06:49:9f:60:3f: d3:18:6b:1e:19:17:5f:22:5e:56:cf:5a:45:a4:30:bf:bf:c6: 92:f8:06:49:52:ab:a0:d3:a0:e6:67:20:c4:bc:8a:db:d5:4f: 2e:c1:05:b7:8e:e1:91:b0:63:34:6a:e6:51:bb:da:d2:56:e7: 4e:68:e7:78:6b:93:11:a6:f6:8e:48:50:93:e5:99:3f:eb:26: 36:d3:b5:2d:34:97:ff:be:a4:87:a4:2b:a9:cd:36:96:9e:40: 17:b3:e8:fb:72:00:d2:77:cd:9f:27:2c:23:40:78:23:ac:db: 14:8d:54:2f:6e:d2:0f:85:d5:47:13:c0:e4:7f:7b:8b:49:5e: fa:41:4f:9c:f6:d8:45:d2:64:0e:7d:5e:3a:ab:a0:2b:73:97: 43:47:e6:bc:cd:c4:80:03:ea:aa:27:24:0b:ea:c9:e4:b6:02: 9e:29:85:a4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRERDExMTAvBgNVBAUTKDIxNkFEMUQ3NUE5M0UwMzdBRTk0RjZDOTE4OTZEMkQ1 ODJEOEZGNTQwHhcNMjUxMDMxMDM0NzI3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0MzE0ZS0zOGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BPiWdcMr4Rc/NZprm8cVfzeUmQT6SRshjiAJQwoIa065gvcj8+PuaUoC0vs NrZEImJe2hUzKfdekVxA6q/mLygo3Y7hY6PoH2LI0BVQu9SY4GXzkgr92dLAb/8H 7q4U2Msk1JZYsghGQWnMQrRbBiM4ACgJwgJdLDC6z2DXYunmNlubsk2DfsglArYN AVfMA2kcowESNSn4vProepBFky1VkVhbWdHgZ2TtdG+U6913VGHKD5dZmYBWqH3Y qZPn6DEduVCIijrv59vTBoRWSMeHiGv6sTsWgAIOcMpJqeS5qvB03dk9A7bx4zan s5gCt6+HW+YidJSlpkNFaI1jUQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGsvHc/H Xzxr6B+qA0bKk1grZ1YTMB8GA1UdIwQYMBaAFCFq0ddak+A3rpT2yRiW0tWC2P9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREREMS82OEMxRDQ5NjNC RDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDREZXVsUGJKR0piUzFZTFlf MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRERDEvNjhDMUQ0OTYzQkQwMTFFRThCQUMzNTFBQzRGOUFFMDIvMjdEQjM3Njgz QkQyMTFFRTgwOTQzNTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnflADBABn8xEwDQYJKoZIhvcNAQELBQADggEBAIQJk9uX IhLN5Qx4B2Gb4mqF6220OW6lHF5PmBWv2LwvCoixWtTJlbkb1iNKBaHrCdWGVX5h TjmoeP/h9LZ0QX9XOxrUABiDwXE4/zJoFR8XlQQYavMGSZ9gP9MYax4ZF18iXlbP WkWkML+/xpL4BklSq6DToOZnIMS8itvVTy7BBbeO4ZGwYzRq5lG72tJW505o53hr kxGm9o5IUJPlmT/rJjbTtS00l/++pIekK6nNNpaeQBez6PtyANJ3zZ8nLCNAeCOs 2xSNVC9u0g+F1UcTwOR/e4tJXvpBT5z22EXSZA59XjqroCtzl0NH5rzNxIAD6qon JAvqyeS2Ap4phaQ= -----END CERTIFICATE-----Generated at Wed Nov 5 13:35:40 2025 by rpki-client