$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/4F383CB6FF6B11F0AD4BC885576F56BC.roa File: 4F383CB6FF6B11F0AD4BC885576F56BC.roa (raw, json) Hash identifier: wwbAK8oiejrRqztY01yoKfr0EpZtJpfxnGCsmORuPJk= Subject key identifier: CA:60:3D:A2:61:36:F2:DA:08:E6:E7:85:AA:DA:59:1E:CC:30:26:40 Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0D34 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/4F383CB6FF6B11F0AD4BC885576F56BC.roa Signing time: Sun 01 Mar 2026 18:26:11 +0000 ROA not before: Sun 01 Feb 2026 12:43:49 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 135881 IP address blocks: 103.78.224.0/24 maxlen: 24 103.78.225.0/24 maxlen: 24 2407:ff80::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:57:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3380 (0xd34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Feb 1 12:43:49 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a484c3-b8d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ad:40:ec:85:b4:52:9e:30:20:6a:2a:82:ca: fb:54:21:d1:c8:46:96:a2:a1:db:cd:8b:89:7a:fc: 21:40:a9:f3:d8:f5:76:b7:a3:98:5d:08:41:51:06: 4b:4c:60:66:f8:b1:7f:b5:d7:6a:d7:fb:3f:f0:fd: 77:fb:d0:13:e0:fb:69:d1:35:69:41:e7:cb:5e:83: 31:7a:86:16:9f:3b:12:92:fd:5c:85:92:d0:ac:1c: 40:80:56:54:11:90:1f:7e:98:1f:b7:62:dc:a5:d7: df:ab:dc:79:ed:46:6a:1e:b3:25:8b:4f:a1:1e:42: 28:b4:41:30:06:f7:1b:e3:9f:ca:b2:08:de:6f:6e: 7e:d6:0e:d1:74:f7:51:77:7b:21:77:3f:d6:30:db: 6b:63:25:8b:a0:6e:ff:11:c2:6d:fe:3d:79:b2:e7: 18:1a:11:ce:fc:4c:8e:11:46:b8:2f:9c:97:a0:f4: 55:23:66:79:f2:10:4a:56:5d:2a:7b:3b:2a:e2:3f: c1:38:d6:5f:1d:0a:2e:03:6f:14:6e:53:df:c3:a8: 78:e4:a4:f7:ac:f5:4f:0b:de:76:ee:0b:bd:d9:ef: ce:d4:55:1a:bb:f7:70:8d:2f:a5:34:7d:36:e9:d7: 32:cd:00:19:cd:4d:19:41:4e:3a:27:23:c1:1d:c6: 53:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:60:3D:A2:61:36:F2:DA:08:E6:E7:85:AA:DA:59:1E:CC:30:26:40 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/4F383CB6FF6B11F0AD4BC885576F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.78.224.0/23 IPv6: 2407:ff80::/32 Signature Algorithm: sha256WithRSAEncryption 8d:a7:07:fd:d9:79:11:cf:83:f6:a1:6f:4f:c9:77:29:3e:bc: 33:e6:bb:91:8e:7e:14:1c:dd:6e:65:7c:1f:e8:c8:1e:ff:00: eb:07:ff:1c:6d:91:e6:5d:5a:5c:f4:28:58:03:cf:c6:5b:d6: 5f:53:1d:73:ce:f5:e1:ad:04:fe:76:3e:ba:68:3d:fd:2b:1b: f0:3f:19:44:9a:38:e4:b0:b9:e0:20:05:b5:e5:a9:dc:a9:c1: 17:1f:10:2d:70:cc:9b:9f:5a:c2:51:a2:a7:b2:ce:a0:c7:b8: 76:bc:07:0a:93:8c:a1:35:0e:56:60:fe:35:bc:ee:e4:cd:f6: 88:68:3b:86:c1:bd:f4:34:4c:f8:c5:51:57:29:45:5a:ad:4b: 8f:66:83:ac:15:32:75:1b:84:53:ef:e0:5b:2f:38:5e:95:c9: 65:0a:a9:07:27:58:0e:4e:33:d7:4e:ed:c8:04:ee:e6:54:4c: db:cb:3a:0d:7d:c5:fc:09:c9:f3:7b:a4:bc:0f:2a:ff:34:39: 54:fd:31:2b:97:c0:0f:24:51:6f:52:15:87:ae:a0:55:40:6d: 43:53:38:5a:57:0e:38:58:f6:ab:90:91:fd:b4:4b:8e:ef:5e: 6d:d3:61:de:1f:0e:0b:39:98:77:45:c6:7c:78:db:b3:59:37: 1e:c8:16:8c -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjYwMjAxMTI0MzQ5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODRjMy1iOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu61A7IW0Up4wIGoqgsr7VCHRyEaWoqHbzYuJevwhQKnz2PV2t6OYXQhBUQZL TGBm+LF/tddq1/s/8P13+9AT4Ptp0TVpQefLXoMxeoYWnzsSkv1chZLQrBxAgFZU EZAffpgft2Lcpdffq9x57UZqHrMli0+hHkIotEEwBvcb45/Ksgjeb25+1g7RdPdR d3shdz/WMNtrYyWLoG7/EcJt/j15sucYGhHO/EyOEUa4L5yXoPRVI2Z58hBKVl0q ezsq4j/BONZfHQouA28UblPfw6h45KT3rPVPC9527gu92e/O1FUau/dwjS+lNH02 6dcyzQAZzU0ZQU46JyPBHcZT1wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFMpgPaJh NvLaCObnharaWR7MMCZAMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI1RjIvRUY5MENENEUwM0IwMTFFQTg1RjAyOTM0QzRGOUFFMDIvNEYzODNDQjZG RjZCMTFGMEFENEJDODg1NTc2RjU2QkMucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ07gMA0EAgACMAcDBQAkB/+AMA0GCSqGSIb3DQEBCwUAA4IBAQCN pwf92XkRz4P2oW9PyXcpPrwz5ruRjn4UHN1uZXwf6Mge/wDrB/8cbZHmXVpc9ChY A8/GW9ZfUx1zzvXhrQT+dj66aD39KxvwPxlEmjjksLngIAW15ancqcEXHxAtcMyb n1rCUaKnss6gx7h2vAcKk4yhNQ5WYP41vO7kzfaIaDuGwb30NEz4xVFXKUVarUuP ZoOsFTJ1G4RT7+BbLzhelcllCqkHJ1gOTjPXTu3IBO7mVEzbyzoNfcX8Ccnze6S8 Dyr/NDlU/TErl8APJFFvUhWHrqBVQG1DUzhaVw44WParkJH9tEuO715t02HeHw4L OZh3RcZ8eNuzWTceyBaM -----END CERTIFICATE-----Generated at Mon Mar 2 16:01:53 2026 by rpki-client