$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/DA0A5C9280BE11EB88ED2418C4F9AE02.roa File: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (raw, json) Hash identifier: bJm8x/jB8mtzKPQKI3Nnf1xFyPp1oMwYrBpRRhfwUbw= Subject key identifier: C2:5A:BD:0D:B0:52:04:78:48:1C:AD:04:09:9D:27:4B:71:3C:2C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0CF0 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/DA0A5C9280BE11EB88ED2418C4F9AE02.roa Signing time: Thu 18 Sep 2025 18:28:11 +0000 ROA not before: Thu 18 Sep 2025 18:28:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134599 IP address blocks: 103.121.36.0/24 maxlen: 24 103.121.37.0/24 maxlen: 24 103.121.38.0/24 maxlen: 24 103.121.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:50:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3312 (0xcf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Sep 18 18:28:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68cc4f3a-e25e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:86:94:b6:21:86:1a:de:a2:a9:ff:09:d6:8c: 24:03:3a:8f:cc:a1:80:8e:68:90:73:15:14:b7:55: a6:9b:c3:53:57:2b:d3:ed:b7:c8:4d:00:45:5b:fb: 09:1b:38:13:c9:f4:99:45:31:41:b6:57:3b:4f:4c: a9:c2:58:19:94:54:0f:ca:ef:04:c8:8d:a7:3b:a0: 3e:45:34:68:3f:cd:8f:39:0a:93:a2:7b:bc:a2:3e: bd:e9:8b:f0:1e:42:e4:c8:72:ce:ed:21:26:ab:c5: b7:98:51:b0:ba:2f:c3:95:67:68:3f:31:31:7b:c3: 39:94:24:1d:b0:a8:67:87:db:58:12:e3:fb:75:f1: 7a:92:94:6c:b2:d5:64:1f:27:8d:47:0c:aa:e2:30: b9:7e:61:4e:5f:a1:67:ee:3f:51:20:79:73:b8:7a: eb:66:77:2f:42:c1:63:c5:c8:be:39:58:cf:5c:cd: 70:0a:88:e7:c4:f2:b6:5a:35:03:6e:99:f2:4a:d4: 64:f9:85:ff:e0:77:73:9b:69:84:e8:77:24:d8:18: 6d:08:b6:95:30:14:56:f9:d8:c3:fe:87:8f:e1:c8: de:93:d8:b1:bb:36:4a:db:3c:39:85:44:5e:a3:e9: 23:fd:df:4e:93:57:49:4b:80:1b:77:7d:53:17:27: 35:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:5A:BD:0D:B0:52:04:78:48:1C:AD:04:09:9D:27:4B:71:3C:2C:44 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/DA0A5C9280BE11EB88ED2418C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.36.0/22 Signature Algorithm: sha256WithRSAEncryption 51:9b:f2:43:fc:64:4f:c8:b2:3d:9e:bb:2a:d4:26:c8:13:e8: 38:26:d3:b2:23:f3:3e:f6:90:19:c8:46:25:aa:f4:e8:23:2f: 29:52:8f:f0:a2:80:04:08:b8:a2:b6:9d:b6:7c:16:d4:32:af: 44:0a:23:a7:3a:0f:04:44:3f:a8:37:fe:2f:91:ef:90:41:d8: 56:c7:4a:8d:a2:c4:0c:65:34:f0:8d:d3:85:2a:8d:06:9d:8c: a5:b5:79:d5:b3:26:33:8e:cf:fd:b1:98:16:61:3f:fd:27:da: 28:80:de:b1:f2:08:76:ee:d3:59:2a:3d:e0:7c:82:2e:bc:76: 1d:c5:85:a5:f3:38:66:2c:8d:07:67:d2:c0:d1:22:ed:96:75: e1:1b:ad:a6:4d:b9:9c:44:6f:74:81:25:9f:31:a2:51:a8:49: c6:69:5e:be:60:4f:3e:1a:c3:e7:88:4c:18:f0:08:66:bd:97: 73:e3:7f:e9:ca:92:62:12:89:99:e3:f0:70:d4:1c:3b:54:e0: 3c:92:78:e2:a7:80:ba:b4:82:68:7b:f0:bc:49:7c:4c:4f:54: dd:61:91:45:5b:d3:d5:67:d9:86:e6:93:8e:e4:66:5a:b5:b0: 61:cb:5b:0d:4f:9f:f5:98:24:92:40:e9:90:9d:e9:4f:1f:1b: 34:a5:c0:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwOTE4MTgyODExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjNGYzYS1lMjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYaUtiGGGt6iqf8J1owkAzqPzKGAjmiQcxUUt1Wmm8NTVyvT7bfITQBFW/sJ GzgTyfSZRTFBtlc7T0ypwlgZlFQPyu8EyI2nO6A+RTRoP82POQqTonu8oj696Yvw HkLkyHLO7SEmq8W3mFGwui/DlWdoPzExe8M5lCQdsKhnh9tYEuP7dfF6kpRsstVk HyeNRwyq4jC5fmFOX6Fn7j9RIHlzuHrrZncvQsFjxci+OVjPXM1wCojnxPK2WjUD bpnyStRk+YX/4Hdzm2mE6Hck2BhtCLaVMBRW+djD/oeP4cjek9ixuzZK2zw5hURe o+kj/d9Ok1dJS4Abd31TFyc1xwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMJavQ2w UgR4SBytBAmdJ0txPCxEMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg5MTgvRTk4RkRGRDRGNjcyMTFFOTkxRUQwQjE2QzRGOUFFMDIvREEwQTVDOTI4 MEJFMTFFQjg4RUQyNDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneSQwDQYJKoZIhvcNAQELBQADggEBAFGb8kP8ZE/Isj2e uyrUJsgT6Dgm07Ij8z72kBnIRiWq9OgjLylSj/CigAQIuKK2nbZ8FtQyr0QKI6c6 DwREP6g3/i+R75BB2FbHSo2ixAxlNPCN04UqjQadjKW1edWzJjOOz/2xmBZhP/0n 2iiA3rHyCHbu01kqPeB8gi68dh3FhaXzOGYsjQdn0sDRIu2WdeEbraZNuZxEb3SB JZ8xolGoScZpXr5gTz4aw+eITBjwCGa9l3Pjf+nKkmISiZnj8HDUHDtU4DySeOKn gLq0gmh78LxJfExPVN1hkUVb09Vn2Ybmk47kZlq1sGHLWw1Pn/WYJJJA6ZCd6U8f GzSlwG0= -----END CERTIFICATE-----Generated at Mon Oct 20 16:13:00 2025 by rpki-client