$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/128DFF02E14611EE80D6C425C4F9AE02.roa File: 128DFF02E14611EE80D6C425C4F9AE02.roa (raw, json) Hash identifier: KPX0rK0OaNteIMx84M4NZOMyO+pLPu817uzNmJdQ98A= Subject key identifier: 4C:20:81:E6:D5:15:99:12:50:22:6D:2D:E3:EC:89:70:81:65:73:49 Certificate issuer: /CN=A91ADDD5/serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Certificate serial: 0610 Authority key identifier: FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/128DFF02E14611EE80D6C425C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:38:33 +0000 ROA not before: Wed 09 Jul 2025 00:05:02 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142565 IP address blocks: 103.78.28.0/22 maxlen: 22 103.78.28.0/24 maxlen: 24 103.78.29.0/24 maxlen: 24 103.78.30.0/24 maxlen: 24 103.169.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1552 (0x610) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADDD5, serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Validity Not Before: Jul 9 00:05:02 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a43349-3541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d1:30:f4:f9:21:a4:8f:a7:db:b0:5d:3e:b4: 98:5f:42:d6:41:18:f8:9c:31:c7:fc:df:0b:8a:8a: cb:ca:f4:ab:e3:0e:31:21:c2:c5:6e:1f:02:e8:1b: d5:88:ca:e1:0e:e9:84:15:67:54:cd:ed:30:09:73: 9d:50:6e:a3:91:ee:18:2e:98:43:20:c6:dc:6b:eb: 73:b8:26:22:82:a1:18:7b:48:94:8f:ca:7a:75:76: 36:42:d6:7b:b9:f5:40:bc:f4:84:b5:96:d0:18:f0: 3a:5f:c8:c1:95:88:b8:7f:94:f4:ea:66:c3:64:b1: f4:49:3f:73:1f:12:ed:b0:24:b2:85:67:63:69:9a: ca:39:d1:b3:21:06:6c:bf:57:a1:9c:d2:2b:3d:62: 86:8e:01:0c:4b:9f:eb:1c:4a:43:84:a7:c4:1d:57: ae:62:ed:d6:61:23:e8:d8:6f:db:90:cb:2a:25:4a: c5:f8:5c:23:ce:8f:89:7f:37:fd:87:1e:d1:9a:dc: 02:52:2b:b9:96:cb:b4:1d:d5:6e:d6:71:10:0c:d5: 30:2c:d5:56:cb:51:df:e0:ee:70:26:96:0a:04:0d: 73:8d:f2:b6:2b:2d:b6:0a:f0:98:d0:bf:cf:e9:dd: e7:32:32:da:d3:46:e2:80:e1:2f:35:20:a0:e1:fa: 1b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:20:81:E6:D5:15:99:12:50:22:6D:2D:E3:EC:89:70:81:65:73:49 X509v3 Authority Key Identifier: keyid:FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/128DFF02E14611EE80D6C425C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.78.28.0/22 103.169.66.0/24 Signature Algorithm: sha256WithRSAEncryption 48:4a:2d:a4:21:57:06:01:a2:a9:1e:b0:bd:99:c1:a4:48:d8: 79:91:91:37:23:b4:e0:df:51:c2:d0:0d:44:74:33:5c:2c:67: 82:ca:4b:aa:ba:ee:19:84:22:72:d1:1d:54:0b:4d:79:27:ce: 36:4e:60:ea:e9:fb:d4:f0:e4:a3:ec:b1:64:cc:7c:49:4a:99: 64:17:cd:5f:e7:e2:ff:15:85:a5:1c:f5:50:70:9e:46:30:a1: d1:ed:b3:e3:bf:f4:18:34:b7:b2:4f:4d:54:55:5b:5e:62:ac: 79:ed:1a:85:f9:f9:b6:45:ff:d2:73:57:37:48:a4:15:ab:69: d9:45:fc:49:12:22:bd:78:3e:85:ee:dc:8c:76:35:c6:01:03: 90:4b:d6:84:3f:a1:80:96:1c:e9:81:4d:1d:27:2e:20:e6:20: 66:77:25:e2:93:21:87:bc:c8:f5:f5:92:9f:21:26:79:57:e8: e0:8e:bd:93:52:09:c0:aa:d7:23:9b:4b:89:25:eb:d2:91:57: 66:3c:05:34:76:02:c5:aa:c1:c3:76:03:7d:f0:a1:bb:a9:87: 5c:e3:f0:9a:66:19:0a:09:79:48:44:ee:60:58:9d:77:de:1c: 8e:22:c9:98:5f:95:c4:41:04:c4:1d:dd:44:8c:a6:f4:02:f6: 3b:b6:67:b4 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURERDUxMTAvBgNVBAUTKEZCMTEyQ0FENTYzMTlCRkFBQ0ExQUIyOENFN0JEN0Y0 Q0IyNjhDRTkwHhcNMjUwNzA5MDAwNTAyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzM0OS0zNTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdEw9PkhpI+n27BdPrSYX0LWQRj4nDHH/N8LiorLyvSr4w4xIcLFbh8C6BvV iMrhDumEFWdUze0wCXOdUG6jke4YLphDIMbca+tzuCYigqEYe0iUj8p6dXY2QtZ7 ufVAvPSEtZbQGPA6X8jBlYi4f5T06mbDZLH0ST9zHxLtsCSyhWdjaZrKOdGzIQZs v1ehnNIrPWKGjgEMS5/rHEpDhKfEHVeuYu3WYSPo2G/bkMsqJUrF+Fwjzo+Jfzf9 hx7RmtwCUiu5lsu0HdVu1nEQDNUwLNVWy1Hf4O5wJpYKBA1zjfK2Ky22CvCY0L/P 6d3nMjLa00bigOEvNSCg4fobOwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEwggebV FZkSUCJtLePsiXCBZXNJMB8GA1UdIwQYMBaAFPsRLK1WMZv6rKGrKM571/TLJozp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRERENS84QjBEMEZGMkUz RjgxMUVCOUUwOERCMTRDNEY5QUUwMi8teEVzclZZeG1fcXNvYXNvem52WDlNc21q T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14RXNyVll4bV9xc29hc296bnZYOU1zbWpPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURERDUvOEIwRDBGRjJFM0Y4MTFFQjlFMDhEQjE0QzRGOUFFMDIvMTI4REZGMDJF MTQ2MTFFRTgwRDZDNDI1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ04cAwQAZ6lCMA0GCSqGSIb3DQEBCwUAA4IBAQBISi2kIVcGAaKp HrC9mcGkSNh5kZE3I7Tg31HC0A1EdDNcLGeCykuquu4ZhCJy0R1UC015J842TmDq 6fvU8OSj7LFkzHxJSplkF81f5+L/FYWlHPVQcJ5GMKHR7bPjv/QYNLeyT01UVVte Yqx57RqF+fm2Rf/Sc1c3SKQVq2nZRfxJEiK9eD6F7tyMdjXGAQOQS9aEP6GAlhzp gU0dJy4g5iBmdyXikyGHvMj19ZKfISZ5V+jgjr2TUgnAqtcjm0uJJevSkVdmPAU0 dgLFqsHDdgN98KG7qYdc4/CaZhkKCXlIRO5gWJ133hyOIsmYX5XEQQTEHd1EjKb0 AvY7tme0 -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:20 2026 by rpki-client