$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/278EE7F0F4FD11EB975E376BC4F9AE02.roa File: 278EE7F0F4FD11EB975E376BC4F9AE02.roa (raw, json) Hash identifier: 5vTUO00erRlKKMCddYT7JbKWm6rwCoTWmosFX2A0a0I= Subject key identifier: 23:7A:D1:68:83:70:43:AB:78:79:0D:C1:89:FD:0C:69:3E:48:F8:56 Certificate issuer: /CN=A91A45C3/serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Certificate serial: 05DD Authority key identifier: 01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/278EE7F0F4FD11EB975E376BC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:50:26 +0000 ROA not before: Sat 03 May 2025 00:05:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135158 IP address blocks: 103.211.92.0/22 maxlen: 22 160.202.56.0/22 maxlen: 22 160.202.56.0/24 maxlen: 24 160.202.57.0/24 maxlen: 24 160.202.58.0/23 maxlen: 23 160.202.58.0/24 maxlen: 24 160.202.59.0/24 maxlen: 24 2404:8380::/32 maxlen: 32 2404:8380::/36 maxlen: 36 2404:8380:1000::/36 maxlen: 36 2404:8380:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:41:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1501 (0x5dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45C3, serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Validity Not Before: May 3 00:05:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fdd2-7dbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:89:29:fe:ad:89:d4:f2:86:22:f8:0d:8b:bb: 3e:a9:aa:ce:4f:b2:fb:dc:52:be:c3:87:e4:6a:04: 30:41:d7:ec:e3:31:ce:21:e3:0a:4b:41:c3:67:8e: e2:af:8d:41:de:25:41:45:8c:fc:ec:8c:55:15:67: 56:48:1a:7a:c6:b5:92:c5:f4:e0:a8:9f:4c:ee:f4: dd:10:46:43:35:43:01:52:0d:34:c6:37:f6:7a:fc: 35:cc:8f:5e:44:58:38:13:46:83:5d:cc:8f:7c:8a: 08:a2:14:f2:61:eb:19:fa:da:2a:9f:fb:8c:28:f1: 8c:63:63:10:8e:61:db:a3:3d:03:70:4b:95:d0:b0: bf:07:8e:65:db:40:2a:ee:c5:29:25:57:a3:ec:87: db:45:3e:e5:c4:27:93:c0:fa:03:45:ef:03:13:fb: f3:0f:93:a7:6a:38:4d:69:cd:da:4a:a7:ad:ba:9c: 47:7a:29:10:50:db:ce:94:d1:dc:93:53:c5:f5:6f: c5:ab:ea:dc:06:dd:59:89:1d:0a:86:91:2d:1c:7e: fb:ec:a5:c1:80:5d:c1:63:8f:70:9b:e4:37:d6:a9: 96:aa:48:c1:c5:3d:7c:6a:12:fb:04:b6:86:c1:c8: 13:26:d1:db:70:f2:16:bf:a3:af:ce:94:1b:93:da: 6c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:7A:D1:68:83:70:43:AB:78:79:0D:C1:89:FD:0C:69:3E:48:F8:56 X509v3 Authority Key Identifier: keyid:01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/278EE7F0F4FD11EB975E376BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.211.92.0/22 160.202.56.0/22 IPv6: 2404:8380::/32 Signature Algorithm: sha256WithRSAEncryption 72:aa:1a:9f:49:a9:32:aa:f0:6d:7e:15:ae:3c:53:6c:c4:67: 0d:1b:8e:9e:23:41:d7:84:9c:c0:88:6f:46:75:b1:1f:bf:8e: a0:a9:53:31:81:64:35:b1:e7:4c:fa:9d:2f:90:ff:ba:66:80: 95:18:60:5b:17:be:21:61:b5:77:fb:71:f9:60:83:b6:0c:ad: 30:0f:ea:dc:79:f5:f9:c1:de:a3:e9:9a:a9:fc:4b:c7:f7:5f: f4:da:48:5d:3e:c7:88:61:44:ff:7d:bb:9b:b0:9f:66:44:8f: b8:0e:76:9c:0d:a2:c9:1d:99:28:ee:58:d6:fa:cd:9a:1b:4a: 25:f9:85:bc:e4:f0:f3:83:2b:8f:0b:2f:79:e6:25:5d:04:af: 1a:b4:d6:28:d6:88:d2:77:fc:d3:c4:a8:0d:9c:3e:3e:63:41: 40:c7:5f:52:0d:93:8d:f0:b9:92:77:f6:50:49:2f:b3:1c:45: 38:f4:99:5b:7c:f6:3e:fc:61:14:c8:0f:3e:e9:94:73:61:c4: 76:f1:bf:97:a8:bf:fb:17:47:d0:4e:c3:a9:2a:36:0f:e5:13: 58:a2:a5:e4:44:c8:04:f4:28:85:68:89:6c:09:09:cc:70:5b: dc:d3:84:28:7b:88:0a:3b:2c:5e:c4:cb:99:ea:8b:4e:aa:02: 4c:b4:eb:a1 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICBd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1QzMxMTAvBgNVBAUTKDAxMDgwRTI0MkU0NTA0NjA2NTZGRkZGOUU2QUE0MzJF MUQ0MEUyNUMwHhcNMjUwNTAzMDAwNTA4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmRkMi03ZGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk4kp/q2J1PKGIvgNi7s+qarOT7L73FK+w4fkagQwQdfs4zHOIeMKS0HDZ47i r41B3iVBRYz87IxVFWdWSBp6xrWSxfTgqJ9M7vTdEEZDNUMBUg00xjf2evw1zI9e RFg4E0aDXcyPfIoIohTyYesZ+toqn/uMKPGMY2MQjmHboz0DcEuV0LC/B45l20Aq 7sUpJVej7IfbRT7lxCeTwPoDRe8DE/vzD5OnajhNac3aSqetupxHeikQUNvOlNHc k1PF9W/Fq+rcBt1ZiR0KhpEtHH777KXBgF3BY49wm+Q31qmWqkjBxT18ahL7BLaG wcgTJtHbcPIWv6OvzpQbk9pskQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFCN60WiD cEOreHkNwYn9DGk+SPhWMB8GA1UdIwQYMBaAFAEIDiQuRQRgZW//+eaqQy4dQOJc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVDMy84QTMzRDcyMEY0 RjkxMUVCOTEyQzJCMjBDNEY5QUUwMi9BUWdPSkM1RkJHQmxiX181NXFwRExoMUE0 bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRZ09KQzVGQkdCbGJfXzU1cXBETGgxQTRsdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1QzMvOEEzM0Q3MjBGNEY5MTFFQjkxMkMyQjIwQzRGOUFFMDIvMjc4RUU3RjBG NEZEMTFFQjk3NUUzNzZCQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ9NcAwQCoMo4MA0EAgACMAcDBQAkBIOAMA0GCSqGSIb3DQEBCwUA A4IBAQByqhqfSakyqvBtfhWuPFNsxGcNG46eI0HXhJzAiG9GdbEfv46gqVMxgWQ1 sedM+p0vkP+6ZoCVGGBbF74hYbV3+3H5YIO2DK0wD+rcefX5wd6j6Zqp/EvH91/0 2khdPseIYUT/fbubsJ9mRI+4DnacDaLJHZko7ljW+s2aG0ol+YW85PDzgyuPCy95 5iVdBK8atNYo1ojSd/zTxKgNnD4+Y0FAx19SDZON8LmSd/ZQSS+zHEU49JlbfPY+ /GEUyA8+6ZRzYcR28b+XqL/7F0fQTsOpKjYP5RNYoqXkRMgE9CiFaIlsCQnMcFvc 04Qoe4gKOyxexMuZ6otOqgJMtOuh -----END CERTIFICATE-----Generated at Thu Mar 26 14:11:53 2026 by rpki-client