$ rpki-client -vvf rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/DC10E79AABF211F0AF7B0010C4F9AE02.roa File: DC10E79AABF211F0AF7B0010C4F9AE02.roa (raw, json) Hash identifier: oKvufsvZ365M3eiTvHVz+l4Cs1W/yryEEt8TEPNakIg= Subject key identifier: 6D:CD:F6:4E:F8:65:68:02:76:F9:DB:E0:83:CF:3E:45:0B:BA:36:84 Certificate issuer: /CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Certificate serial: E1 Authority key identifier: 2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/DC10E79AABF211F0AF7B0010C4F9AE02.roa Signing time: Sat 18 Oct 2025 07:20:01 +0000 ROA not before: Sat 18 Oct 2025 07:20:01 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.4.20.0/22 maxlen: 24 202.9.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:29:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144DEA, serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Validity Not Before: Oct 18 07:20:01 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68f33fa1-5db1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9e:f3:3c:ee:4a:e2:02:6a:91:89:6a:10:0a: 16:7f:37:fe:4e:b0:28:87:6c:33:7f:3d:67:67:ee: 4a:89:00:7b:97:23:8c:14:26:21:50:38:b7:02:e2: a2:6d:af:55:d6:5d:35:4d:aa:79:0a:ce:36:2d:cb: 09:0a:91:d1:c5:5d:c0:76:66:3f:9c:2f:51:9c:7c: c4:9f:c2:f7:5f:50:42:3b:1b:7b:59:50:c7:9a:91: 21:53:63:40:db:9b:a3:64:21:87:2f:16:cf:36:d5: ed:1c:f7:58:86:e3:9e:74:35:4a:4b:f7:66:fe:58: 76:6d:8a:f8:0b:d6:d8:0c:8c:8f:8d:f0:e0:06:24: bb:0f:e2:d7:ca:b7:78:1d:12:b9:a7:dd:11:65:0c: 6e:a7:a9:d6:84:21:12:eb:b4:f9:c2:0b:4c:59:0d: 55:76:7e:09:4a:2b:7a:1b:59:1b:18:22:55:8f:b0: 84:d5:4b:e8:3f:71:06:ee:a1:bd:52:da:00:d4:4d: 59:9b:5d:25:f0:c5:82:59:0e:75:1b:a8:e2:28:96: 82:53:0d:0a:4f:0d:68:fb:f3:8d:fe:6c:61:7c:71: dc:4f:a9:93:88:df:0a:67:5b:d2:2c:d1:45:10:b0: 5e:02:ed:bd:12:cd:98:7b:f9:d5:58:39:0e:b3:e2: e6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:CD:F6:4E:F8:65:68:02:76:F9:DB:E0:83:CF:3E:45:0B:BA:36:84 X509v3 Authority Key Identifier: keyid:2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/DC10E79AABF211F0AF7B0010C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.4.20.0/22 202.9.60.0/22 Signature Algorithm: sha256WithRSAEncryption 62:e9:55:1a:35:da:26:13:d6:da:f6:a1:46:c7:41:d3:a1:4a: 98:5a:ca:07:c5:81:c5:ba:3b:58:fc:2b:b3:ee:76:c0:08:2e: a4:ef:8b:64:79:ff:11:b0:00:6f:d2:31:48:f5:76:f3:ce:76: e6:c6:40:e2:b6:5a:a8:a5:7a:63:99:fa:2d:63:f5:ae:f1:9a: 3d:77:e9:0c:6a:c6:ac:a5:ff:ff:c5:64:f2:a8:ba:66:d3:7b: 20:b6:20:cc:9b:04:b0:68:b8:14:c7:ac:87:88:1a:67:01:2b: 61:63:b4:5b:44:fe:6c:da:67:9f:17:52:59:99:c9:56:f1:a5: 97:7e:c1:7c:30:aa:fe:40:f5:0b:80:6f:22:04:64:90:b0:da: 95:a4:07:39:5f:bb:d5:46:9e:9d:3f:0f:d9:a7:44:ac:b0:b4: 1d:15:c7:c9:45:26:e2:6b:02:29:22:c8:05:e8:fa:e0:5f:1d: bf:73:25:84:bf:39:92:70:cd:18:34:cc:a5:36:65:9d:0b:17: 34:7c:f9:46:52:eb:b2:48:e4:ae:79:4c:26:57:13:78:ba:6d: cf:21:54:8c:15:ec:57:5e:0c:47:13:dd:95:14:25:f4:e2:7e: a3:a9:5c:01:2a:40:94:4b:da:ed:a7:30:19:2e:bb:fb:5a:50: 86:b3:83:09 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRERUExMTAvBgNVBAUTKDJCQ0FDRjYxNjVCNTg3NDA1OTBFNTk3MTg0MzNEODE4 M0ZGOTQ2NkQwHhcNMjUxMDE4MDcyMDAxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzM2ZhMS01ZGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtp7zPO5K4gJqkYlqEAoWfzf+TrAoh2wzfz1nZ+5KiQB7lyOMFCYhUDi3AuKi ba9V1l01Tap5Cs42LcsJCpHRxV3AdmY/nC9RnHzEn8L3X1BCOxt7WVDHmpEhU2NA 25ujZCGHLxbPNtXtHPdYhuOedDVKS/dm/lh2bYr4C9bYDIyPjfDgBiS7D+LXyrd4 HRK5p90RZQxup6nWhCES67T5wgtMWQ1Vdn4JSit6G1kbGCJVj7CE1UvoP3EG7qG9 UtoA1E1Zm10l8MWCWQ51G6jiKJaCUw0KTw1o+/ON/mxhfHHcT6mTiN8KZ1vSLNFF ELBeAu29Es2Ye/nVWDkOs+LmKwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFG3N9k74 ZWgCdvnb4IPPPkULujaEMB8GA1UdIwQYMBaAFCvKz2FltYdAWQ5ZcYQz2Bg/+UZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NERFQS8zQkY1RjJFMDVB RTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgwQlpEbGx4aERQWUdEXzVS bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4clBZV1cxaDBCWkRsbHhoRFBZR0RfNVJtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRERUEvM0JGNUYyRTA1QUUxMTFFRkE3NTYzQzJDQzRGOUFFMDIvREMxMEU3OUFB QkYyMTFGMEFGN0IwMDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnBBQDBALKCTwwDQYJKoZIhvcNAQELBQADggEBAGLpVRo1 2iYT1tr2oUbHQdOhSphaygfFgcW6O1j8K7PudsAILqTvi2R5/xGwAG/SMUj1dvPO dubGQOK2WqilemOZ+i1j9a7xmj136Qxqxqyl///FZPKoumbTeyC2IMybBLBouBTH rIeIGmcBK2FjtFtE/mzaZ58XUlmZyVbxpZd+wXwwqv5A9QuAbyIEZJCw2pWkBzlf u9VGnp0/D9mnRKywtB0Vx8lFJuJrAikiyAXo+uBfHb9zJYS/OZJwzRg0zKU2ZZ0L FzR8+UZS67JI5K55TCZXE3i6bc8hVIwV7FdeDEcT3ZUUJfTifqOpXAEqQJRL2u2n MBkuu/taUIazgwk= -----END CERTIFICATE-----Generated at Mon Oct 20 10:10:38 2025 by rpki-client