$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/DA0AD156799211EFADCD2257C4F9AE02.roa File: DA0AD156799211EFADCD2257C4F9AE02.roa (raw, json) Hash identifier: knZ5ekXVEf4sYcirbL+CCT4b4jXdUdcrAEg+dwXTAho= Subject key identifier: 8B:D1:07:DF:AB:C0:E3:FA:38:62:E0:A9:C3:7F:A1:36:B7:96:20:37 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 0546 Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/DA0AD156799211EFADCD2257C4F9AE02.roa Signing time: Mon 15 Sep 2025 00:05:25 +0000 ROA not before: Mon 15 Sep 2025 00:05:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132372 IP address blocks: 103.168.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:12:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1350 (0x546) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Sep 15 00:05:25 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68c75845-1779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c6:55:b1:4c:b9:03:58:df:98:8e:17:af:27: 6b:ca:4a:61:a1:9d:20:c7:a8:77:d1:53:8a:5d:63: bc:84:e6:dc:13:c6:4f:4b:b6:7d:75:81:0f:6c:4c: 00:53:d3:27:cb:14:bd:45:85:1f:73:aa:16:de:3b: ab:65:65:0f:29:27:52:d6:60:19:2c:85:44:6d:1b: 43:48:65:3c:6b:3f:8b:3c:c3:83:de:3d:1d:3f:a9: ad:fa:d3:54:1e:86:c0:af:48:4d:61:08:2c:f4:c7: a7:e3:74:0d:40:ef:75:26:10:e7:c9:4c:f8:11:16: e0:78:94:6c:10:d1:e5:b4:5e:f1:95:6b:9f:b3:99: 39:be:7e:2e:06:46:14:d6:62:76:4c:b3:68:93:43: fe:48:8d:0f:e8:e7:db:57:a1:ae:2b:95:fc:32:8d: f6:65:4a:c3:27:5a:d5:ec:87:94:cd:ce:c9:3f:7f: d8:11:e2:35:f5:cd:6c:25:b1:4d:52:53:e7:08:63: eb:a3:79:0e:75:76:90:e6:a4:56:2c:23:4d:1a:39: 1b:24:61:3e:4a:e7:37:02:19:e9:8b:2f:20:1d:d0: 83:e3:d6:76:40:e1:3f:31:bf:cb:1b:30:61:9c:d9: fb:99:59:55:a1:74:c7:d5:62:e7:85:97:d0:6e:2d: 8b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D1:07:DF:AB:C0:E3:FA:38:62:E0:A9:C3:7F:A1:36:B7:96:20:37 X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/DA0AD156799211EFADCD2257C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.105.0/24 Signature Algorithm: sha256WithRSAEncryption a1:4f:c1:85:b4:f1:b6:2d:32:bf:c0:ae:74:23:5b:e0:83:58: f2:74:a5:a0:48:79:9d:40:63:de:68:1f:08:40:8a:0a:91:f4: b5:06:d7:96:5c:6d:46:3e:b2:ea:ef:75:42:ac:4a:ab:2d:e7: 4c:cb:b5:f8:c6:30:11:89:a1:98:21:10:91:78:85:ac:df:ef: 79:af:d3:ab:fc:6d:81:48:a3:c7:37:e8:fd:ed:0c:3e:47:c3: 0a:fe:cc:ae:a0:19:d4:a7:19:b5:17:0d:0f:94:ec:7b:81:0f: 1a:a3:ab:16:dd:9e:84:6f:39:9a:d7:60:5d:9a:dc:4f:58:2a: a1:fd:c0:78:d7:5b:e0:24:6c:54:e4:80:ec:66:42:91:86:bb: e1:d3:bd:54:57:3a:5e:fe:c5:9c:a2:21:50:de:2f:6c:a9:02: 0a:ca:c4:71:ed:8c:79:85:f9:5b:f9:b0:1f:88:83:6f:e2:cb: 4e:94:e1:3c:c3:2a:0e:d5:5c:0d:31:ca:f4:18:cc:03:9f:fa: e4:06:95:28:b8:a4:1e:14:c8:cd:e1:61:47:21:0b:e1:80:64: 2c:8a:e3:85:e0:3f:79:f7:d4:61:6b:ec:68:6e:d5:1b:75:7b: c0:0f:96:f7:e1:eb:ac:3f:ca:b9:18:1d:c4:4b:b5:6f:64:1b: 9e:29:ab:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjUwOTE1MDAwNTI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM3NTg0NS0xNzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8ZVsUy5A1jfmI4XrydrykphoZ0gx6h30VOKXWO8hObcE8ZPS7Z9dYEPbEwA U9MnyxS9RYUfc6oW3jurZWUPKSdS1mAZLIVEbRtDSGU8az+LPMOD3j0dP6mt+tNU HobAr0hNYQgs9Men43QNQO91JhDnyUz4ERbgeJRsENHltF7xlWufs5k5vn4uBkYU 1mJ2TLNok0P+SI0P6OfbV6GuK5X8Mo32ZUrDJ1rV7IeUzc7JP3/YEeI19c1sJbFN UlPnCGPro3kOdXaQ5qRWLCNNGjkbJGE+Suc3Ahnpiy8gHdCD49Z2QOE/Mb/LGzBh nNn7mVlVoXTH1WLnhZfQbi2L9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIvRB9+r wOP6OGLgqcN/oTa3liA3MB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ5QkUvQjA5QzNDRTIxMTdCMTFFQzgwRTQyMTQzQzRGOUFFMDIvREEwQUQxNTY3 OTkyMTFFRkFEQ0QyMjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqGkwDQYJKoZIhvcNAQELBQADggEBAKFPwYW08bYtMr/A rnQjW+CDWPJ0paBIeZ1AY95oHwhAigqR9LUG15ZcbUY+survdUKsSqst50zLtfjG MBGJoZghEJF4hazf73mv06v8bYFIo8c36P3tDD5Hwwr+zK6gGdSnGbUXDQ+U7HuB DxqjqxbdnoRvOZrXYF2a3E9YKqH9wHjXW+AkbFTkgOxmQpGGu+HTvVRXOl7+xZyi IVDeL2ypAgrKxHHtjHmF+Vv5sB+Ig2/iy06U4TzDKg7VXA0xyvQYzAOf+uQGlSi4 pB4UyM3hYUchC+GAZCyK44XgP3n31GFr7Ghu1Rt1e8APlvfh66w/yrkYHcRLtW9k G54pqyM= -----END CERTIFICATE-----Generated at Mon Oct 20 14:45:41 2025 by rpki-client