$ rpki-client -vvf rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/421FF25E18AD11EF99EAA661C4F9AE02.roa File: 421FF25E18AD11EF99EAA661C4F9AE02.roa (raw, json) Hash identifier: kCxBW9KlV5vONVPJNu5+ty3GjzD9VNwCWVx1zxePNqc= Subject key identifier: F2:E7:35:77:DC:89:FE:55:48:50:C4:35:D7:17:08:BE:65:61:FC:18 Certificate issuer: /CN=A915408A/serialNumber=D0DECF108D26801B7C97E349029AF1FCF90A855E Certificate serial: 0157 Authority key identifier: D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/421FF25E18AD11EF99EAA661C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:35:12 +0000 ROA not before: Mon 05 Jan 2026 06:55:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 131314 IP address blocks: 103.28.144.0/22 maxlen: 24 2401:a2a0::/32 maxlen: 32 2401:a2a0:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915408A, serialNumber=D0DECF108D26801B7C97E349029AF1FCF90A855E Validity Not Before: Jan 5 06:55:17 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a41660-6489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6b:a5:95:aa:5b:dd:b7:c8:ce:cb:87:43:cb: 4f:c8:a6:5e:61:fa:a8:4a:8d:16:ff:fd:56:9f:47: 9e:de:a7:3a:f7:05:0b:4c:28:d1:b9:c6:82:58:3e: ad:fb:02:f4:9b:89:a3:bf:22:fc:69:6a:96:0e:19: 7d:f0:8e:cc:ee:36:9a:5c:69:31:a8:84:00:8e:dc: 22:a7:6d:03:81:3a:1f:ff:94:47:68:a4:48:8b:83: 10:42:9a:39:68:8e:aa:d6:27:73:4b:04:b1:c7:38: c5:e2:c5:91:64:be:7d:33:aa:da:d2:30:5d:d5:32: 7e:52:c0:ad:e9:9a:ad:e1:f5:dd:1e:1d:5d:4b:c7: 59:f7:9d:49:ed:60:f4:5a:40:01:20:8d:a2:82:af: d3:ae:04:cd:86:76:8b:ee:da:a0:74:47:04:9e:47: d6:0e:8a:23:6e:15:5f:b6:d8:01:ac:4b:a1:e6:a9: 02:06:88:28:5b:4a:7d:41:bb:6c:6e:e1:96:35:52: 70:5c:0e:87:c9:4b:07:b0:83:b0:3a:54:58:8a:9d: 19:24:16:f9:df:51:6a:a3:a6:a0:c3:7b:9b:e4:1d: a2:b7:04:79:ca:3b:fc:06:77:b5:95:d9:44:58:29: 9d:11:6e:a1:10:f8:db:67:c9:79:c7:c8:c9:f0:ce: fa:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E7:35:77:DC:89:FE:55:48:50:C4:35:D7:17:08:BE:65:61:FC:18 X509v3 Authority Key Identifier: keyid:D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/421FF25E18AD11EF99EAA661C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.28.144.0/22 IPv6: 2401:a2a0::/32 Signature Algorithm: sha256WithRSAEncryption 1d:82:7d:c4:9a:94:f1:ec:bb:b9:71:26:30:55:90:a1:aa:69: 7d:c7:23:22:99:93:00:12:92:22:9e:1c:72:47:68:36:be:a7: ef:35:76:16:82:37:59:3d:45:11:03:4e:17:70:4b:a4:75:6f: ca:1c:fd:69:2d:3c:38:43:b4:88:14:ff:6b:0f:cd:23:b3:0f: e4:35:4d:1c:b9:d6:ae:a7:24:04:19:7d:a6:47:55:2f:7d:98: f2:20:18:ac:90:8a:d3:2e:a3:00:a0:f7:61:5e:68:77:f9:7a: c5:bb:fa:d2:58:8c:ae:58:f4:08:73:d5:f6:bb:28:fc:39:bc: af:ad:06:a0:17:1d:d8:b5:31:2f:3b:48:6c:d6:b9:7f:54:e8: 1e:fb:0f:01:ba:41:bb:21:81:1f:33:37:6c:9f:32:cf:b0:34: 6a:09:e3:b2:69:6c:0e:ad:90:37:e3:f0:1c:a4:9b:3d:4e:d6: 10:c5:a2:f8:bc:08:4e:b0:89:0c:64:88:7c:d0:93:65:af:30: 04:e6:9b:32:41:cc:3b:e7:06:37:94:a3:19:eb:25:df:a4:92: 48:2e:1c:5f:09:5b:e6:47:ec:a4:ea:cc:a7:17:31:86:47:ce: c4:c5:e8:bf:1d:c5:a1:b9:7d:5c:a9:33:1e:42:a3:b8:94:37: 37:ed:d6:22 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQwOEExMTAvBgNVBAUTKEQwREVDRjEwOEQyNjgwMUI3Qzk3RTM0OTAyOUFGMUZD RjkwQTg1NUUwHhcNMjYwMTA1MDY1NTE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTY2MC02NDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Gullapb3bfIzsuHQ8tPyKZeYfqoSo0W//1Wn0ee3qc69wULTCjRucaCWD6t +wL0m4mjvyL8aWqWDhl98I7M7jaaXGkxqIQAjtwip20DgTof/5RHaKRIi4MQQpo5 aI6q1idzSwSxxzjF4sWRZL59M6ra0jBd1TJ+UsCt6Zqt4fXdHh1dS8dZ951J7WD0 WkABII2igq/TrgTNhnaL7tqgdEcEnkfWDoojbhVfttgBrEuh5qkCBogoW0p9Qbts buGWNVJwXA6HyUsHsIOwOlRYip0ZJBb531Fqo6agw3ub5B2itwR5yjv8Bne1ldlE WCmdEW6hEPjbZ8l5x8jJ8M76gQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPLnNXfc if5VSFDENdcXCL5lYfwYMB8GA1UdIwQYMBaAFNDezxCNJoAbfJfjSQKa8fz5CoVe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDA4QS8xODg0NUY2QzE4 QUMxMUVGQjZGNDgxMzdDNEY5QUUwMi8wTjdQRUkwbWdCdDhsLU5KQXByeF9Qa0to VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBON1BFSTBtZ0J0OGwtTkpBcHJ4X1BrS2hWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQwOEEvMTg4NDVGNkMxOEFDMTFFRkI2RjQ4MTM3QzRGOUFFMDIvNDIxRkYyNUUx OEFEMTFFRjk5RUFBNjYxQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZxyQMA0EAgACMAcDBQAkAaKgMA0GCSqGSIb3DQEBCwUAA4IBAQAd gn3EmpTx7Lu5cSYwVZChqml9xyMimZMAEpIinhxyR2g2vqfvNXYWgjdZPUURA04X cEukdW/KHP1pLTw4Q7SIFP9rD80jsw/kNU0cudaupyQEGX2mR1UvfZjyIBiskIrT LqMAoPdhXmh3+XrFu/rSWIyuWPQIc9X2uyj8ObyvrQagFx3YtTEvO0hs1rl/VOge +w8BukG7IYEfMzdsnzLPsDRqCeOyaWwOrZA34/AcpJs9TtYQxaL4vAhOsIkMZIh8 0JNlrzAE5psyQcw75wY3lKMZ6yXfpJJILhxfCVvmR+yk6synFzGGR87Exei/HcWh uX1cqTMeQqO4lDc37dYi -----END CERTIFICATE-----Generated at Mon Mar 2 11:41:06 2026 by rpki-client