$ rpki-client -vvf rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa File: FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa (raw, json) Hash identifier: 0FUmFGEae/WI4oEvQ4bozFrCGWW/xCiGwTH0VQcaeIw= Subject key identifier: 22:1B:E4:E2:4D:96:C9:AE:07:AA:C2:B5:A7:4D:55:27:C7:1B:D4:02 Certificate issuer: /CN=A915290D/serialNumber=6ABA86D304AAF64EB4A097B29BA5577860CC856F Certificate serial: 0130 Authority key identifier: 6A:BA:86:D3:04:AA:F6:4E:B4:A0:97:B2:9B:A5:57:78:60:CC:85:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/arqG0wSq9k60oJeym6VXeGDMhW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa Signing time: Thu 11 Sep 2025 05:12:53 +0000 ROA not before: Thu 11 Sep 2025 05:12:53 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135432 IP address blocks: 103.133.128.0/24 maxlen: 24 103.133.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/arqG0wSq9k60oJeym6VXeGDMhW8.crl rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/arqG0wSq9k60oJeym6VXeGDMhW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/arqG0wSq9k60oJeym6VXeGDMhW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915290D, serialNumber=6ABA86D304AAF64EB4A097B29BA5577860CC856F Validity Not Before: Sep 11 05:12:53 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c25a55-8b1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a9:80:17:e3:cf:b9:d2:a7:89:8d:bc:c6:a7: 02:62:8c:63:a1:c2:e5:11:4f:dd:a9:8f:f9:d8:a6: 3c:bc:28:fc:10:cd:cc:11:4d:4d:b4:8b:d3:a3:8d: 0e:38:f3:92:c5:b1:89:be:46:c6:d3:1d:cc:08:73: f3:96:98:00:a7:ef:72:70:04:bc:bd:a8:27:59:13: 01:4c:5e:5b:68:dc:9c:62:3d:f0:a3:ec:5a:5c:e4: 19:5e:c2:79:4d:f1:66:84:5f:ee:79:67:bb:fa:fb: 11:7f:9c:9a:f4:69:a1:5e:78:29:5c:53:a9:7e:0c: 45:c1:49:f5:3e:9a:2c:5e:80:92:74:5e:ba:77:54: 94:ea:35:dd:29:47:2b:50:d6:d4:1d:e7:9e:14:ce: e8:2d:36:24:82:aa:fa:1d:60:fc:b4:0d:dd:a8:33: 86:bb:7c:86:69:da:9a:c8:37:22:bb:2d:0c:8c:f2: 86:51:d0:62:8d:57:a1:c7:59:f6:81:87:45:fe:1f: 38:f8:a2:ec:6c:7a:a6:38:3e:c5:a8:b7:0e:65:0f: c2:6e:aa:63:61:99:6f:33:18:a8:04:c5:59:b1:1e: 46:35:59:dd:6c:a9:17:8f:74:6e:0c:cc:07:31:17: 5e:2b:58:b8:a9:8c:5f:dc:3b:f9:43:86:6b:d7:12: 56:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:1B:E4:E2:4D:96:C9:AE:07:AA:C2:B5:A7:4D:55:27:C7:1B:D4:02 X509v3 Authority Key Identifier: keyid:6A:BA:86:D3:04:AA:F6:4E:B4:A0:97:B2:9B:A5:57:78:60:CC:85:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/arqG0wSq9k60oJeym6VXeGDMhW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/arqG0wSq9k60oJeym6VXeGDMhW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.128.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:34:67:37:8d:4a:74:af:fd:42:32:9e:00:20:0a:4f:4e:56: 92:6d:82:b1:af:4e:1a:72:09:ae:d9:84:e0:5f:38:cb:6b:e2: ff:7f:4c:fb:c0:b1:a6:a6:59:3b:10:14:f3:75:18:42:91:f0: 12:9f:df:54:26:46:8f:08:42:09:f0:03:18:7b:86:37:9d:b7: f6:97:d1:7f:a0:83:70:1f:bd:de:5d:c5:d8:4c:6e:24:be:31: 51:f4:ea:46:f3:8b:09:35:c9:28:4f:ce:67:64:4b:74:03:de: 63:82:ad:29:7c:9d:81:27:2f:9b:90:3d:9b:ba:0f:ce:01:d7: c2:cd:f2:7f:31:a3:6c:65:9a:de:a4:df:21:b9:8b:c2:80:02: a6:31:1b:de:97:19:34:c9:62:d8:dd:11:68:f2:41:1c:3b:8d: 90:ab:66:6f:45:ff:7c:3e:1f:2f:88:04:cd:f8:6f:92:fa:7a: 30:40:11:cc:27:fe:c7:cd:8c:2f:c0:47:42:af:f7:d4:28:5a: 80:ea:a2:be:33:1f:a4:55:93:49:75:34:ac:83:8e:1c:57:58: 4d:db:b1:1f:50:db:0a:78:d1:36:51:4f:de:63:c9:85:e5:8e: 08:78:d4:89:02:bd:c7:cd:52:1c:7a:79:e6:1e:44:55:a6:52: 01:14:7c:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI5MEQxMTAvBgNVBAUTKDZBQkE4NkQzMDRBQUY2NEVCNEEwOTdCMjlCQTU1Nzc4 NjBDQzg1NkYwHhcNMjUwOTExMDUxMjUzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMyNWE1NS04YjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0amAF+PPudKniY28xqcCYoxjocLlEU/dqY/52KY8vCj8EM3MEU1NtIvTo40O OPOSxbGJvkbG0x3MCHPzlpgAp+9ycAS8vagnWRMBTF5baNycYj3wo+xaXOQZXsJ5 TfFmhF/ueWe7+vsRf5ya9GmhXngpXFOpfgxFwUn1PposXoCSdF66d1SU6jXdKUcr UNbUHeeeFM7oLTYkgqr6HWD8tA3dqDOGu3yGadqayDciuy0MjPKGUdBijVehx1n2 gYdF/h84+KLsbHqmOD7FqLcOZQ/CbqpjYZlvMxioBMVZsR5GNVndbKkXj3RuDMwH MRdeK1i4qYxf3Dv5Q4Zr1xJWgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCIb5OJN lsmuB6rCtadNVSfHG9QCMB8GA1UdIwQYMBaAFGq6htMEqvZOtKCXspulV3hgzIVv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjkwRC9BNjg0OUFDOEQw MjkxMUVFOUU2Q0JBNDBDNEY5QUUwMi9hcnFHMHdTcTlrNjBvSmV5bTZWWGVHRE1o VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FycUcwd1NxOWs2MG9KZXltNlZYZUdETWhXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTI5MEQvQTY4NDlBQzhEMDI5MTFFRTlFNkNCQTQwQzRGOUFFMDIvRkZCNkUwOEFG NkExMTFFRUJDMEVGNjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnhYAwDQYJKoZIhvcNAQELBQADggEBAIs0ZzeNSnSv/UIy ngAgCk9OVpJtgrGvThpyCa7ZhOBfOMtr4v9/TPvAsaamWTsQFPN1GEKR8BKf31Qm Ro8IQgnwAxh7hjedt/aX0X+gg3Afvd5dxdhMbiS+MVH06kbziwk1yShPzmdkS3QD 3mOCrSl8nYEnL5uQPZu6D84B18LN8n8xo2xlmt6k3yG5i8KAAqYxG96XGTTJYtjd EWjyQRw7jZCrZm9F/3w+Hy+IBM34b5L6ejBAEcwn/sfNjC/AR0Kv99QoWoDqor4z H6RVk0l1NKyDjhxXWE3bsR9Q2wp40TZRT95jyYXljgh41IkCvcfNUhx6eeYeRFWm UgEUfCg= -----END CERTIFICATE-----Generated at Mon Oct 20 22:45:08 2025 by rpki-client