$ rpki-client -vvf rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/DD530B9222B111EDA3B74073C4F9AE02.roa File: DD530B9222B111EDA3B74073C4F9AE02.roa (raw, json) Hash identifier: caiPqFBT56PFVGqwt7KrkmELhW0jd+zU9JbUXBLl7o4= Subject key identifier: 53:79:87:01:40:24:64:70:21:B4:BC:29:57:7F:B7:E2:47:A9:E3:66 Certificate issuer: /CN=A9142AA2/serialNumber=8EC4E3FAFD509128AEC2C0879E6AF9139E15EAB6 Certificate serial: 0289 Authority key identifier: 8E:C4:E3:FA:FD:50:91:28:AE:C2:C0:87:9E:6A:F9:13:9E:15:EA:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsTj-v1QkSiuwsCHnmr5E54V6rY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/DD530B9222B111EDA3B74073C4F9AE02.roa Signing time: Mon 06 Oct 2025 02:35:58 +0000 ROA not before: Mon 06 Oct 2025 02:35:58 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149170 IP address blocks: 103.177.208.0/23 maxlen: 23 103.177.208.0/24 maxlen: 24 103.177.209.0/24 maxlen: 24 2400:3d60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/jsTj-v1QkSiuwsCHnmr5E54V6rY.crl rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/jsTj-v1QkSiuwsCHnmr5E54V6rY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsTj-v1QkSiuwsCHnmr5E54V6rY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142AA2, serialNumber=8EC4E3FAFD509128AEC2C0879E6AF9139E15EAB6 Validity Not Before: Oct 6 02:35:58 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68e32b0e-d488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0b:cc:eb:0d:14:0c:c5:23:54:fb:f5:4c:94: 75:c3:d8:96:7b:9d:53:be:3b:e3:d6:49:98:bf:b0: b9:2b:ce:7d:44:d0:f0:13:62:74:05:eb:ee:e1:56: cb:8f:60:01:66:ac:bd:6f:ce:bd:02:c0:98:86:f0: 4c:f4:4b:e3:b9:ef:79:ca:e3:ea:27:06:14:ac:fa: f6:b9:9a:0a:fc:6a:80:01:0b:87:00:3f:02:d8:99: fa:b0:79:ff:72:8d:8f:c5:9a:13:6c:81:d3:22:74: da:39:48:15:62:c8:6c:f5:54:ab:5e:93:46:ec:cb: dc:09:c5:a8:22:f9:a8:28:e0:4c:8f:91:3b:23:e4: 90:e1:d9:b4:4b:b3:8a:6c:01:82:03:a8:86:f9:6d: 84:cf:b0:4d:bc:58:bb:d9:ce:de:f7:e7:28:78:f2: 65:91:fd:6b:20:41:b4:01:57:d9:92:4c:07:bf:30: cb:ee:b7:9b:c4:11:ed:70:33:37:d6:8f:d4:e5:f1: e9:e2:f8:bc:27:3f:49:11:9a:db:4f:1b:f1:2a:a8: 46:e8:ad:ba:91:86:29:9c:d3:3c:19:82:b7:22:49: 28:96:6c:2f:66:cf:41:d0:b3:7b:cd:ab:4f:ac:af: 54:cd:e3:f9:fb:18:5c:e8:8f:7a:34:0d:bf:14:ac: d6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:79:87:01:40:24:64:70:21:B4:BC:29:57:7F:B7:E2:47:A9:E3:66 X509v3 Authority Key Identifier: keyid:8E:C4:E3:FA:FD:50:91:28:AE:C2:C0:87:9E:6A:F9:13:9E:15:EA:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/jsTj-v1QkSiuwsCHnmr5E54V6rY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsTj-v1QkSiuwsCHnmr5E54V6rY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/DD530B9222B111EDA3B74073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.208.0/23 IPv6: 2400:3d60::/32 Signature Algorithm: sha256WithRSAEncryption 15:e9:da:82:1d:7c:b2:66:f8:b4:6c:5a:22:ef:07:80:32:98: 26:34:28:57:02:0c:2a:70:34:89:8f:b2:7a:09:83:05:82:84: 3d:82:02:9d:42:d4:56:1a:df:07:ef:7e:95:fe:81:10:83:75: 8d:14:63:7a:23:28:0d:30:6a:9c:4c:4a:ca:1f:9b:f4:70:4b: 79:d2:4f:81:e4:ee:0e:f5:63:67:72:20:ee:fa:d6:29:a0:88: b5:22:48:61:87:e8:e0:2e:ef:44:2c:f7:2e:f7:90:10:e5:b0: f0:b0:29:69:7e:cf:85:92:0b:c7:e9:e3:4e:c9:3f:26:95:69: e3:c3:f5:62:43:93:ed:a8:89:55:95:f0:84:c3:a8:72:8a:55: 3e:fd:d4:4d:0e:c2:41:dd:fe:05:5b:c3:0f:3b:6f:1f:cc:a0: e0:f4:bd:69:5a:f6:f3:c5:46:88:78:32:d1:a8:b6:36:3f:34: 28:c8:63:a4:00:91:e6:78:ea:14:8f:9d:44:ec:3c:0d:62:f8: 1f:72:49:87:08:69:db:07:75:cd:39:98:48:5d:c2:fe:8a:ec: 41:ce:e8:6d:8d:9e:cd:88:d7:ad:34:a6:6b:cf:85:78:e0:c7: a7:e1:b0:6c:33:6a:66:f9:8f:d5:15:1e:cb:aa:92:78:61:19: f6:5a:50:62 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBQTIxMTAvBgNVBAUTKDhFQzRFM0ZBRkQ1MDkxMjhBRUMyQzA4NzlFNkFGOTEz OUUxNUVBQjYwHhcNMjUxMDA2MDIzNTU4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUzMmIwZS1kNDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4AvM6w0UDMUjVPv1TJR1w9iWe51Tvjvj1kmYv7C5K859RNDwE2J0Bevu4VbL j2ABZqy9b869AsCYhvBM9Evjue95yuPqJwYUrPr2uZoK/GqAAQuHAD8C2Jn6sHn/ co2PxZoTbIHTInTaOUgVYshs9VSrXpNG7MvcCcWoIvmoKOBMj5E7I+SQ4dm0S7OK bAGCA6iG+W2Ez7BNvFi72c7e9+coePJlkf1rIEG0AVfZkkwHvzDL7rebxBHtcDM3 1o/U5fHp4vi8Jz9JEZrbTxvxKqhG6K26kYYpnNM8GYK3IkkolmwvZs9B0LN7zatP rK9UzeP5+xhc6I96NA2/FKzW3QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFN5hwFA JGRwIbS8KVd/t+JHqeNmMB8GA1UdIwQYMBaAFI7E4/r9UJEorsLAh55q+ROeFeq2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkFBMi8zREE4QTk0NDIy QTIxMUVEQkM4QTZDODBDNEY5QUUwMi9qc1RqLXYxUWtTaXV3c0NIbm1yNUU1NFY2 clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzVGotdjFRa1NpdXdzQ0hubXI1RTU0VjZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJBQTIvM0RBOEE5NDQyMkEyMTFFREJDOEE2QzgwQzRGOUFFMDIvREQ1MzBCOTIy MkIxMTFFREEzQjc0MDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnsdAwDQQCAAIwBwMFACQAPWAwDQYJKoZIhvcNAQELBQAD ggEBABXp2oIdfLJm+LRsWiLvB4AymCY0KFcCDCpwNImPsnoJgwWChD2CAp1C1FYa 3wfvfpX+gRCDdY0UY3ojKA0wapxMSsofm/RwS3nST4Hk7g71Y2dyIO761imgiLUi SGGH6OAu70Qs9y73kBDlsPCwKWl+z4WSC8fp407JPyaVaePD9WJDk+2oiVWV8ITD qHKKVT791E0OwkHd/gVbww87bx/MoOD0vWla9vPFRoh4MtGotjY/NCjIY6QAkeZ4 6hSPnUTsPA1i+B9ySYcIadsHdc05mEhdwv6K7EHO6G2Nns2I1600pmvPhXjgx6fh sGwzamb5j9UVHsuqknhhGfZaUGI= -----END CERTIFICATE-----Generated at Mon Oct 20 19:48:01 2025 by rpki-client