$ rpki-client -vvf rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa File: FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa (raw, json) Hash identifier: Dy1nuBVOv5zlPF1NmK8r+tPhGrR42+dXOgfOIxmTV1A= Subject key identifier: 8F:6D:72:76:54:EB:8E:CD:26:52:69:B8:DA:DF:8C:5F:C7:10:4F:7C Certificate issuer: /CN=A915290D/serialNumber=6ABA86D304AAF64EB4A097B29BA5577860CC856F Certificate serial: 018E Authority key identifier: 6A:BA:86:D3:04:AA:F6:4E:B4:A0:97:B2:9B:A5:57:78:60:CC:85:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/arqG0wSq9k60oJeym6VXeGDMhW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:52:30 +0000 ROA not before: Thu 11 Sep 2025 05:12:53 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135432 IP address blocks: 103.133.128.0/24 maxlen: 24 103.133.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/arqG0wSq9k60oJeym6VXeGDMhW8.crl rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/arqG0wSq9k60oJeym6VXeGDMhW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/arqG0wSq9k60oJeym6VXeGDMhW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915290D, serialNumber=6ABA86D304AAF64EB4A097B29BA5577860CC856F Validity Not Before: Sep 11 05:12:53 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a5961e-8270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:87:7d:6d:3b:28:1d:81:e5:1e:b4:b7:1b:b6: d5:16:45:5f:c2:6f:3c:15:d2:f4:eb:68:f6:c4:72: 6e:7a:48:ed:54:72:92:68:a7:94:87:a1:5b:7b:b4: c2:33:0c:6f:77:72:47:d1:7d:41:0f:1f:d9:5b:e6: 77:b3:6a:51:23:35:d2:9b:5e:6f:2e:ed:09:14:46: aa:e6:27:86:e0:63:1a:c6:61:0f:c6:ee:33:12:e5: 73:cc:83:99:fa:d1:df:37:27:fa:44:79:28:c1:57: 43:1a:ed:d2:6d:25:85:5c:e5:0a:fd:17:c7:1f:29: e9:99:ca:0b:a0:3e:4b:95:be:97:36:14:0b:31:d2: ca:50:a2:56:fa:b0:6a:23:cd:cb:fb:5d:cc:f9:cc: 95:69:6e:df:8a:b8:0a:23:24:73:54:aa:1b:58:67: 75:15:ec:b8:ae:ca:34:4f:2e:45:4f:39:4f:ff:6c: bf:4b:43:ce:3a:8c:f6:b6:ae:3e:5b:40:41:08:ab: 15:5d:63:6c:88:72:e5:5b:a6:41:15:a6:13:68:b5: 3e:99:cc:b4:0e:02:45:96:77:4c:f9:d0:24:35:26: 1d:48:db:6b:f5:52:09:af:47:7f:da:a5:a3:00:6d: e7:1e:5c:0b:77:3c:1d:50:6c:d9:e3:7d:50:2b:e4: 4e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:6D:72:76:54:EB:8E:CD:26:52:69:B8:DA:DF:8C:5F:C7:10:4F:7C X509v3 Authority Key Identifier: keyid:6A:BA:86:D3:04:AA:F6:4E:B4:A0:97:B2:9B:A5:57:78:60:CC:85:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/arqG0wSq9k60oJeym6VXeGDMhW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/arqG0wSq9k60oJeym6VXeGDMhW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.133.128.0/23 Signature Algorithm: sha256WithRSAEncryption a0:e3:52:3e:66:41:3a:2b:5f:1c:3f:46:53:6c:6a:d9:53:9d: 0c:0c:ee:80:21:85:a3:a7:90:50:34:c6:e5:ec:0b:7a:1f:db: 31:08:39:88:d8:74:54:b2:b6:12:eb:fd:d8:90:e3:ca:3a:23: a0:0c:49:d4:c6:b8:76:a5:9c:86:06:21:89:28:65:d8:d6:48: 45:70:4f:bd:f7:9f:fe:a1:1e:9b:84:95:d9:85:24:22:1a:da: 71:e9:48:f3:a9:dc:23:30:4e:6d:f7:f8:2c:c0:56:2a:9e:05: 23:4b:a9:85:84:f8:f4:b0:3a:d5:ff:b9:da:f0:15:49:15:a1: 9b:e6:9d:43:0d:40:c8:43:00:61:c9:26:ac:e7:cf:f0:3c:2f: 54:8b:66:21:57:78:ec:04:13:1a:31:bd:06:1a:1d:6b:99:0e: 1a:ba:e8:c5:ff:f6:80:2c:7c:36:3c:35:24:9d:76:c2:96:91: 6a:c8:06:f0:b1:93:2e:d8:bd:6d:e1:e7:fc:1a:b6:f5:9a:d3: 4b:53:79:fb:34:1c:83:db:a4:4c:c3:70:5b:7e:6b:8a:7a:4f: ca:31:f1:22:75:b9:a4:04:6f:e4:d0:2f:f7:d0:86:18:ba:07: ac:0e:ba:42:11:f5:35:c3:82:57:36:45:9f:80:5e:e8:86:f2: 6d:87:2f:55 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI5MEQxMTAvBgNVBAUTKDZBQkE4NkQzMDRBQUY2NEVCNEEwOTdCMjlCQTU1Nzc4 NjBDQzg1NkYwHhcNMjUwOTExMDUxMjUzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTYxZS04MjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuId9bTsoHYHlHrS3G7bVFkVfwm88FdL062j2xHJuekjtVHKSaKeUh6Fbe7TC Mwxvd3JH0X1BDx/ZW+Z3s2pRIzXSm15vLu0JFEaq5ieG4GMaxmEPxu4zEuVzzIOZ +tHfNyf6RHkowVdDGu3SbSWFXOUK/RfHHynpmcoLoD5Llb6XNhQLMdLKUKJW+rBq I83L+13M+cyVaW7firgKIyRzVKobWGd1Fey4rso0Ty5FTzlP/2y/S0POOoz2tq4+ W0BBCKsVXWNsiHLlW6ZBFaYTaLU+mcy0DgJFlndM+dAkNSYdSNtr9VIJr0d/2qWj AG3nHlwLdzwdUGzZ431QK+ROaQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI9tcnZU 647NJlJpuNrfjF/HEE98MB8GA1UdIwQYMBaAFGq6htMEqvZOtKCXspulV3hgzIVv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjkwRC9BNjg0OUFDOEQw MjkxMUVFOUU2Q0JBNDBDNEY5QUUwMi9hcnFHMHdTcTlrNjBvSmV5bTZWWGVHRE1o VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FycUcwd1NxOWs2MG9KZXltNlZYZUdETWhXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTI5MEQvQTY4NDlBQzhEMDI5MTFFRTlFNkNCQTQwQzRGOUFFMDIvRkZCNkUwOEFG NkExMTFFRUJDMEVGNjJGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4WAMA0GCSqGSIb3DQEBCwUAA4IBAQCg41I+ZkE6K18cP0ZTbGrZ U50MDO6AIYWjp5BQNMbl7At6H9sxCDmI2HRUsrYS6/3YkOPKOiOgDEnUxrh2pZyG BiGJKGXY1khFcE+995/+oR6bhJXZhSQiGtpx6UjzqdwjME5t9/gswFYqngUjS6mF hPj0sDrV/7na8BVJFaGb5p1DDUDIQwBhySas58/wPC9Ui2YhV3jsBBMaMb0GGh1r mQ4auujF//aALHw2PDUknXbClpFqyAbwsZMu2L1t4ef8Grb1mtNLU3n7NByD26RM w3BbfmuKek/KMfEidbmkBG/k0C/30IYYugesDrpCEfU1w4JXNkWfgF7ohvJthy9V -----END CERTIFICATE-----Generated at Thu Mar 26 10:06:37 2026 by rpki-client