$ rpki-client -vvf rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/C90C4476FBA611E9BA00AB33C4F9AE02.roa File: C90C4476FBA611E9BA00AB33C4F9AE02.roa (raw, json) Hash identifier: NnH6JwaNK1mn9Fuhu8l0BoHKZMPd4NWjCo7VE8NdvTQ= Subject key identifier: 89:2E:25:94:66:94:DD:68:C7:C8:C4:04:28:F0:5F:96:46:F6:22:66 Certificate issuer: /CN=A915BA28/serialNumber=7F6045A376765BF82792AA705BBD899519CB19C7 Certificate serial: 10F9 Authority key identifier: 7F:60:45:A3:76:76:5B:F8:27:92:AA:70:5B:BD:89:95:19:CB:19:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/C90C4476FBA611E9BA00AB33C4F9AE02.roa Signing time: Thu 02 Oct 2025 18:39:30 +0000 ROA not before: Thu 02 Oct 2025 18:39:30 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138596 IP address blocks: 103.134.28.0/22 maxlen: 22 103.134.28.0/24 maxlen: 24 103.134.29.0/24 maxlen: 24 103.134.30.0/24 maxlen: 24 103.134.31.0/24 maxlen: 24 2404:5bc0::/32 maxlen: 32 2404:5bc0:10::/48 maxlen: 48 2404:5bc0:20::/48 maxlen: 48 2404:5bc0:30::/48 maxlen: 48 2404:5bc0:40::/48 maxlen: 48 2404:5bc0:50::/48 maxlen: 48 2404:5bc0:60::/48 maxlen: 48 2404:5bc0:70::/48 maxlen: 48 2404:5bc0:80::/48 maxlen: 48 2404:5bc0:90::/48 maxlen: 48 2404:5bc0:200::/64 maxlen: 64 2404:5bc0:400::/48 maxlen: 48 2404:5bc0:401::/48 maxlen: 48 2404:5bc0:402::/48 maxlen: 48 2404:5bc0:403::/48 maxlen: 48 2404:5bc0:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.crl rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4345 (0x10f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BA28, serialNumber=7F6045A376765BF82792AA705BBD899519CB19C7 Validity Not Before: Oct 2 18:39:30 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68dec6e2-5dbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5d:bc:a2:c6:28:1f:79:20:53:65:74:55:a2: d2:94:7b:60:c1:56:a4:f0:ce:9e:92:7d:9f:3d:6e: 9d:97:2e:74:df:d3:59:9a:55:55:89:1d:a9:12:a5: 4f:b0:8f:28:1d:a9:6d:14:14:28:4e:92:fa:ba:08: 6f:e3:5c:ee:14:cc:e3:4c:4c:d4:9c:0a:74:a2:1b: 65:5d:6e:a0:30:00:16:27:25:de:09:32:df:70:b6: a3:a6:d9:3d:fd:cd:a6:6f:bb:fa:b6:42:d3:22:5e: a0:23:a8:bb:f0:22:59:36:ca:0d:b7:79:e3:99:3b: 18:0a:26:18:69:44:f9:c0:68:0d:f7:c8:fe:9b:ba: cd:89:09:ba:1c:52:83:41:b1:bd:e3:9a:a7:df:1c: 3d:c4:8a:a1:79:b9:92:c4:bb:e1:03:88:c8:1c:56: 2b:19:69:72:73:be:e3:ad:3e:25:fb:18:8f:ba:90: ca:71:9b:3b:b9:e6:ca:d6:b8:24:70:37:65:8a:b6: ba:a2:1e:f2:35:df:e2:96:24:b2:58:eb:a6:7c:fb: f2:75:b8:37:7e:d2:a9:d8:2d:81:f1:09:79:8c:15: 22:d4:6e:3a:2f:37:02:21:2b:43:d6:43:be:2d:fa: 90:0c:78:eb:f9:ab:f0:2c:07:48:e9:c9:ca:21:3e: 85:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:2E:25:94:66:94:DD:68:C7:C8:C4:04:28:F0:5F:96:46:F6:22:66 X509v3 Authority Key Identifier: keyid:7F:60:45:A3:76:76:5B:F8:27:92:AA:70:5B:BD:89:95:19:CB:19:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/C90C4476FBA611E9BA00AB33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.28.0/22 IPv6: 2404:5bc0::/32 Signature Algorithm: sha256WithRSAEncryption 13:94:9d:7c:c3:0b:7d:2d:bb:0d:ce:e4:8f:ba:fa:c6:66:7e: 81:aa:ef:de:83:0b:13:56:35:20:71:f8:ea:7f:75:31:ba:88: 36:fa:33:1f:f9:a7:50:f1:5b:69:2d:f4:16:44:93:f8:b9:7d: 51:43:e0:59:fa:be:b6:0b:bd:02:4d:c9:85:c3:f9:60:18:76: 1b:f9:68:45:bb:9c:2d:7f:b4:32:f7:00:3f:8d:81:38:cf:d5: e4:8a:9a:a0:b3:cb:73:71:a9:3f:f7:bf:47:1b:75:f7:5d:91: 3e:1f:4a:f8:41:91:ca:2b:08:83:a1:a3:28:0f:cb:e3:88:e3: a2:80:4c:3c:21:da:0e:6e:ba:34:f5:f0:89:81:25:92:f7:45: c1:2b:48:ce:f0:63:9a:06:7a:1c:9c:6b:83:12:5e:89:f3:65: 23:b4:d6:7d:17:3e:19:c8:5f:22:7a:ab:f0:5b:2c:7f:7d:80: 3e:e0:ee:71:9a:4d:97:5b:93:9d:7c:00:8b:8d:c2:d6:f2:65: 53:46:b6:9a:a0:ed:9a:0a:c3:18:88:dd:d9:75:a5:62:af:5a: 67:13:1e:2a:ec:c8:b9:da:cf:36:81:11:95:ac:92:fb:ff:d2: f6:e4:42:f4:a8:11:aa:a7:8f:2a:7d:31:35:e3:46:3c:ba:af: d5:f7:4e:4d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICEPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJBMjgxMTAvBgNVBAUTKDdGNjA0NUEzNzY3NjVCRjgyNzkyQUE3MDVCQkQ4OTk1 MTlDQjE5QzcwHhcNMjUxMDAyMTgzOTMwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlYzZlMi01ZGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1l28osYoH3kgU2V0VaLSlHtgwVak8M6ekn2fPW6dly5039NZmlVViR2pEqVP sI8oHaltFBQoTpL6ughv41zuFMzjTEzUnAp0ohtlXW6gMAAWJyXeCTLfcLajptk9 /c2mb7v6tkLTIl6gI6i78CJZNsoNt3njmTsYCiYYaUT5wGgN98j+m7rNiQm6HFKD QbG945qn3xw9xIqhebmSxLvhA4jIHFYrGWlyc77jrT4l+xiPupDKcZs7uebK1rgk cDdlira6oh7yNd/iliSyWOumfPvydbg3ftKp2C2B8Ql5jBUi1G46LzcCIStD1kO+ LfqQDHjr+avwLAdI6cnKIT6F/QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIkuJZRm lN1ox8jEBCjwX5ZG9iJmMB8GA1UdIwQYMBaAFH9gRaN2dlv4J5KqcFu9iZUZyxnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkEyOC9BNDdEMjAyODI4 NTUxMUU5QUQzODExNTFDNEY5QUUwMi9mMkJGbzNaMldfZ25rcXB3VzcySmxSbkxH Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YyQkZvM1oyV19nbmtxcHdXNzJKbFJuTEdjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJBMjgvQTQ3RDIwMjgyODU1MTFFOUFEMzgxMTUxQzRGOUFFMDIvQzkwQzQ0NzZG QkE2MTFFOUJBMDBBQjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhhwwDQQCAAIwBwMFACQEW8AwDQYJKoZIhvcNAQELBQAD ggEBABOUnXzDC30tuw3O5I+6+sZmfoGq796DCxNWNSBx+Op/dTG6iDb6Mx/5p1Dx W2kt9BZEk/i5fVFD4Fn6vrYLvQJNyYXD+WAYdhv5aEW7nC1/tDL3AD+NgTjP1eSK mqCzy3NxqT/3v0cbdfddkT4fSvhBkcorCIOhoygPy+OI46KATDwh2g5uujT18ImB JZL3RcErSM7wY5oGehyca4MSXonzZSO01n0XPhnIXyJ6q/BbLH99gD7g7nGaTZdb k518AIuNwtbyZVNGtpqg7ZoKwxiI3dl1pWKvWmcTHirsyLnazzaBEZWskvv/0vbk QvSoEaqnjyp9MTXjRjy6r9X3Tk0= -----END CERTIFICATE-----Generated at Mon Oct 20 04:46:04 2025 by rpki-client