$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/128DFF02E14611EE80D6C425C4F9AE02.roa File: 128DFF02E14611EE80D6C425C4F9AE02.roa (raw, json) Hash identifier: uYxDc2s73H33RAjSESYgkRg+fhVzlnP0WIWOn/2ko/g= Subject key identifier: C2:75:51:00:6E:B9:DF:AC:33:3D:7E:70:82:F2:7A:B4:B4:6B:9E:07 Certificate issuer: /CN=A91ADDD5/serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Certificate serial: 0645 Authority key identifier: FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/128DFF02E14611EE80D6C425C4F9AE02.roa Signing time: Mon 01 Jun 2026 17:34:04 +0000 ROA not before: Mon 01 Jun 2026 17:34:04 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142565 IP address blocks: 103.78.28.0/22 maxlen: 22 103.78.28.0/24 maxlen: 24 103.78.29.0/24 maxlen: 24 103.78.30.0/24 maxlen: 24 103.78.31.0/24 maxlen: 24 103.169.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1605 (0x645) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADDD5, serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Validity Not Before: Jun 1 17:34:04 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6a1dc28c-ed9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:db:9b:7f:a0:b6:dd:7d:1e:71:cb:f6:f3:40: 43:3f:41:b3:9b:34:34:10:4b:91:c7:4b:ab:c9:58: bd:ff:2f:25:ff:53:f7:58:3f:ba:f7:15:44:36:00: 8c:3c:5b:ce:ce:7f:64:35:b9:8a:8f:06:40:93:5b: cc:d4:a5:77:35:89:c6:21:44:9b:1b:be:03:ba:91: 6a:e1:66:80:4f:c3:1e:34:78:23:9b:fb:10:e9:6f: 20:b8:ae:99:64:77:af:4a:8c:d8:f7:3c:cb:25:11: a5:9d:84:65:92:87:c6:7a:52:fc:28:48:54:a7:41: 46:3c:c2:9f:78:74:2b:a3:f3:a8:31:a7:ba:7c:96: 11:ce:88:a1:d1:f5:78:f4:50:5b:4e:14:28:1a:04: c2:70:57:d9:81:ba:da:7d:33:ae:c7:bd:f2:96:44: eb:45:e2:d6:8f:8d:5c:46:15:7f:de:9a:17:1f:09: 02:c4:3f:5f:a2:3b:b7:6a:c4:c5:1d:7d:20:47:be: a0:57:b7:cf:a5:3d:d4:e1:b0:36:50:0f:27:5b:48: 04:60:26:fb:ef:b8:32:c6:70:79:c0:38:f2:8f:21: ab:52:6b:73:cb:15:dc:2c:89:fe:93:6c:89:a0:57: d7:b9:d3:90:01:a9:bb:68:35:30:4f:60:50:74:ca: e8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:75:51:00:6E:B9:DF:AC:33:3D:7E:70:82:F2:7A:B4:B4:6B:9E:07 X509v3 Authority Key Identifier: keyid:FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/128DFF02E14611EE80D6C425C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.78.28.0/22 103.169.66.0/24 Signature Algorithm: sha256WithRSAEncryption 39:28:5c:d6:3a:8e:7f:40:b0:e7:9a:2f:b8:2e:65:18:c9:00: 87:20:a4:1a:18:26:e0:bf:e4:99:7c:59:bc:eb:6e:09:fb:d1: f0:50:3e:33:e4:c3:14:55:32:98:09:ab:5c:11:d0:50:54:19: c5:2c:fd:a7:e2:22:4f:c9:2c:42:58:c2:51:83:66:85:54:43: f5:c2:a3:85:bd:f1:5b:97:12:c6:c3:7a:03:64:b8:0c:63:05: c4:8f:17:02:72:26:cd:26:30:7f:d1:3e:0f:07:73:70:fb:82: 72:d7:06:4f:fb:27:ae:55:30:70:4b:6b:68:7d:55:30:84:96: fa:46:eb:66:dc:9e:53:31:c4:34:f4:67:9c:eb:1b:37:a8:3c: 0f:e1:3c:6a:c6:16:e5:ed:89:5e:b0:c2:2b:86:9e:c7:81:72: 7f:b4:34:07:8a:c1:93:49:99:05:19:6a:c5:8a:a9:62:d5:fd: 59:26:2d:d6:51:fd:64:af:0f:74:d2:23:7a:94:f6:a7:4b:f3: 18:8d:9e:46:8d:82:58:0f:d4:e5:03:3d:6c:4b:97:d3:e2:25: fb:70:bd:cf:1f:c7:f6:9b:64:f6:df:21:f2:7c:21:5f:ba:fc: 5b:d6:02:86:92:0b:41:01:c8:d4:57:ed:73:69:e2:cc:c4:84: eb:4b:f9:d1 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURERDUxMTAvBgNVBAUTKEZCMTEyQ0FENTYzMTlCRkFBQ0ExQUIyOENFN0JEN0Y0 Q0IyNjhDRTkwHhcNMjYwNjAxMTczNDA0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFkYzI4Yy1lZDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdubf6C23X0eccv280BDP0GzmzQ0EEuRx0uryVi9/y8l/1P3WD+69xVENgCM PFvOzn9kNbmKjwZAk1vM1KV3NYnGIUSbG74DupFq4WaAT8MeNHgjm/sQ6W8guK6Z ZHevSozY9zzLJRGlnYRlkofGelL8KEhUp0FGPMKfeHQro/OoMae6fJYRzoih0fV4 9FBbThQoGgTCcFfZgbrafTOux73ylkTrReLWj41cRhV/3poXHwkCxD9foju3asTF HX0gR76gV7fPpT3U4bA2UA8nW0gEYCb777gyxnB5wDjyjyGrUmtzyxXcLIn+k2yJ oFfXudOQAam7aDUwT2BQdMrotwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFMJ1UQBu ud+sMz1+cILyerS0a54HMB8GA1UdIwQYMBaAFPsRLK1WMZv6rKGrKM571/TLJozp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRERENS84QjBEMEZGMkUz RjgxMUVCOUUwOERCMTRDNEY5QUUwMi8teEVzclZZeG1fcXNvYXNvem52WDlNc21q T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14RXNyVll4bV9xc29hc296bnZYOU1zbWpPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURERDUvOEIwRDBGRjJFM0Y4MTFFQjlFMDhEQjE0QzRGOUFFMDIvMTI4REZGMDJF MTQ2MTFFRTgwRDZDNDI1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ04cAwQAZ6lCMA0GCSqGSIb3DQEBCwUAA4IBAQA5KFzWOo5/QLDn mi+4LmUYyQCHIKQaGCbgv+SZfFm8624J+9HwUD4z5MMUVTKYCatcEdBQVBnFLP2n 4iJPySxCWMJRg2aFVEP1wqOFvfFblxLGw3oDZLgMYwXEjxcCcibNJjB/0T4PB3Nw +4Jy1wZP+yeuVTBwS2tofVUwhJb6Rutm3J5TMcQ09Gec6xs3qDwP4Txqxhbl7Yle sMIrhp7HgXJ/tDQHisGTSZkFGWrFiqli1f1ZJi3WUf1krw900iN6lPanS/MYjZ5G jYJYD9TlAz1sS5fT4iX7cL3PH8f2m2T23yHyfCFfuvxb1gKGkgtBAcjUV+1zaeLM xITrS/nR -----END CERTIFICATE-----Generated at Sat Jun 13 09:48:26 2026 by rpki-client