$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/278EE7F0F4FD11EB975E376BC4F9AE02.roa File: 278EE7F0F4FD11EB975E376BC4F9AE02.roa (raw, json) Hash identifier: VDech5jPNGmdLMydFhvBmeMj/+3X8iHs7o3tOUHRvXQ= Subject key identifier: 28:AE:C7:C6:3A:B1:B1:C2:1B:24:A5:DC:20:69:DD:DE:24:5A:C3:96 Certificate issuer: /CN=A91A45C3/serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Certificate serial: 0601 Authority key identifier: 01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/278EE7F0F4FD11EB975E376BC4F9AE02.roa Signing time: Thu 30 Apr 2026 23:29:50 +0000 ROA not before: Thu 30 Apr 2026 23:29:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 135158 IP address blocks: 103.211.92.0/22 maxlen: 22 160.202.56.0/22 maxlen: 22 160.202.56.0/24 maxlen: 24 160.202.57.0/24 maxlen: 24 160.202.58.0/23 maxlen: 23 160.202.58.0/24 maxlen: 24 160.202.59.0/24 maxlen: 24 2404:8380::/32 maxlen: 32 2404:8380::/36 maxlen: 36 2404:8380:1000::/36 maxlen: 36 2404:8380:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 May 2026 22:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1537 (0x601) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45C3, serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Validity Not Before: Apr 30 23:29:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f3e5ee-d2f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:79:54:34:3f:8b:ed:46:b3:78:c4:8c:39:f7: ae:89:5e:1a:57:03:1b:d4:51:41:df:32:51:ed:fc: f4:b3:7c:31:79:24:db:44:f9:8d:90:ab:8b:ed:ba: 72:a4:1e:09:b1:0d:01:c2:f4:a9:7c:57:06:29:d5: 79:b7:84:f8:c8:36:7d:e4:7f:2f:7b:24:93:5c:63: eb:c5:a2:18:9a:82:0b:cb:4c:59:8d:63:98:29:88: 00:4e:3c:40:9a:22:a3:4b:2a:c1:9e:10:9e:15:64: de:cc:b6:6d:3d:05:d4:2c:b8:95:a3:8a:1b:a4:a6: 17:64:c6:65:94:d2:9a:90:37:87:b6:f9:29:b9:89: 2b:48:7a:cb:7f:21:a7:c8:05:e9:6d:a6:11:77:55: 0e:fc:48:5f:92:4b:47:6b:5a:0c:de:8c:bf:bf:e3: 95:fb:5e:ab:7a:7d:75:13:47:39:fc:4a:be:49:69: 25:eb:f5:28:ac:a0:0d:5f:73:64:b4:78:49:dd:5b: 9e:4c:e7:e3:1e:b5:d0:2d:52:40:30:42:df:aa:54: d1:54:b0:5f:b7:a1:4b:0f:48:53:f2:f4:ac:64:9d: 83:27:13:17:2c:d1:67:aa:16:3e:4a:81:0d:7e:76: 70:63:13:5d:c7:04:4f:30:20:a0:88:49:a7:6d:4d: a7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AE:C7:C6:3A:B1:B1:C2:1B:24:A5:DC:20:69:DD:DE:24:5A:C3:96 X509v3 Authority Key Identifier: keyid:01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/278EE7F0F4FD11EB975E376BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.211.92.0/22 160.202.56.0/22 IPv6: 2404:8380::/32 Signature Algorithm: sha256WithRSAEncryption 14:99:1b:a3:17:a2:36:bc:a9:00:2c:34:9d:f7:aa:b0:8a:43: 05:32:cd:68:24:82:d9:60:4e:e0:d3:8c:ea:b8:90:95:96:b9: 41:53:2e:86:b4:be:47:95:db:57:73:f1:32:9d:9d:80:9f:ec: 5b:fe:62:3d:05:1b:84:9a:cb:ff:8c:17:38:e4:8c:2c:65:6f: b3:a7:a3:74:54:ca:58:aa:61:23:54:5d:53:ce:5d:ef:7d:11: 2a:21:f9:76:40:1f:1a:53:4c:35:ec:d9:16:b6:54:da:e9:74: 16:c1:39:29:e9:f2:a3:4b:e9:f2:4a:26:00:aa:dd:94:5a:5a: d3:51:52:28:b3:ae:7c:a5:71:ac:06:91:54:08:39:9d:de:aa: c3:bc:f3:e2:61:da:1c:85:14:5e:91:21:31:b3:2e:0f:05:38: ae:8d:7d:99:c9:57:f3:da:c8:a2:5b:b7:45:f9:6f:75:81:ea: 80:72:a6:61:3d:1f:71:a1:86:2f:29:51:81:31:69:f7:69:1a: b6:f8:0d:93:fc:a9:d9:ab:02:a4:8b:ad:52:97:d3:da:2c:f0: d6:90:d7:0d:97:3a:d1:9c:6e:57:89:db:06:86:07:00:d7:3a: a2:30:79:61:6d:c9:8d:4b:ab:ae:57:fb:02:60:2b:5a:ed:a0: d5:ed:92:ac -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICBgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1QzMxMTAvBgNVBAUTKDAxMDgwRTI0MkU0NTA0NjA2NTZGRkZGOUU2QUE0MzJF MUQ0MEUyNUMwHhcNMjYwNDMwMjMyOTUwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzZTVlZS1kMmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XlUND+L7UazeMSMOfeuiV4aVwMb1FFB3zJR7fz0s3wxeSTbRPmNkKuL7bpy pB4JsQ0BwvSpfFcGKdV5t4T4yDZ95H8veySTXGPrxaIYmoILy0xZjWOYKYgATjxA miKjSyrBnhCeFWTezLZtPQXULLiVo4obpKYXZMZllNKakDeHtvkpuYkrSHrLfyGn yAXpbaYRd1UO/EhfkktHa1oM3oy/v+OV+16ren11E0c5/Eq+SWkl6/UorKANX3Nk tHhJ3VueTOfjHrXQLVJAMELfqlTRVLBft6FLD0hT8vSsZJ2DJxMXLNFnqhY+SoEN fnZwYxNdxwRPMCCgiEmnbU2n3wIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFCiux8Y6 sbHCGySl3CBp3d4kWsOWMB8GA1UdIwQYMBaAFAEIDiQuRQRgZW//+eaqQy4dQOJc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVDMy84QTMzRDcyMEY0 RjkxMUVCOTEyQzJCMjBDNEY5QUUwMi9BUWdPSkM1RkJHQmxiX181NXFwRExoMUE0 bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRZ09KQzVGQkdCbGJfXzU1cXBETGgxQTRsdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1QzMvOEEzM0Q3MjBGNEY5MTFFQjkxMkMyQjIwQzRGOUFFMDIvMjc4RUU3RjBG NEZEMTFFQjk3NUUzNzZCQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ9NcAwQCoMo4MA0EAgACMAcDBQAkBIOAMA0GCSqGSIb3DQEBCwUA A4IBAQAUmRujF6I2vKkALDSd96qwikMFMs1oJILZYE7g04zquJCVlrlBUy6GtL5H ldtXc/EynZ2An+xb/mI9BRuEmsv/jBc45IwsZW+zp6N0VMpYqmEjVF1Tzl3vfREq Ifl2QB8aU0w17NkWtlTa6XQWwTkp6fKjS+nySiYAqt2UWlrTUVIos658pXGsBpFU CDmd3qrDvPPiYdochRRekSExsy4PBTiujX2ZyVfz2siiW7dF+W91geqAcqZhPR9x oYYvKVGBMWn3aRq2+A2T/KnZqwKki61Sl9PaLPDWkNcNlzrRnG5XidsGhgcA1zqi MHlhbcmNS6uuV/sCYCta7aDV7ZKs -----END CERTIFICATE-----Generated at Wed May 13 01:31:20 2026 by rpki-client