$ rpki-client -vvf rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/DA21D1C8DF0711EFA13DFF77C4F9AE02.roa File: DA21D1C8DF0711EFA13DFF77C4F9AE02.roa (raw, json) Hash identifier: 1lIzFQEALQy8v+QadRa7FoXrMcnKcVBzKsOnfc22ih8= Subject key identifier: FD:53:2F:64:F1:D8:55:0E:AA:2C:78:E9:DD:CE:5E:B7:03:23:9D:BB Certificate issuer: /CN=A917F854/serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762 Certificate serial: 0124 Authority key identifier: E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/DA21D1C8DF0711EFA13DFF77C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:12:43 +0000 ROA not before: Thu 23 Oct 2025 07:49:44 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153562 IP address blocks: 103.110.124.0/24 maxlen: 24 103.110.124.0/28 maxlen: 28 103.110.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F854, serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762 Validity Not Before: Oct 23 07:49:44 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a5a8eb-7d8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:91:b6:29:62:4b:d2:65:75:6c:41:51:2b:41: 0c:e7:12:8f:e0:20:b0:ad:4f:47:0e:5b:d8:e1:fc: 6a:1e:46:00:90:0f:38:9b:6e:0c:49:82:1a:50:b2: 42:7a:38:eb:aa:b1:08:aa:4a:f9:5f:0b:ae:04:c0: 1c:c4:7e:0b:6a:52:0d:80:7e:50:6c:a6:4c:48:5d: b2:74:a4:15:9e:fc:c6:ba:60:ef:05:c7:7a:62:ce: d5:e1:e5:dd:14:03:43:f7:2a:26:bf:1d:0b:b9:54: 57:89:21:4e:18:e4:45:75:d5:f4:e4:d0:e9:e3:7b: 23:5b:62:b5:49:d6:c0:da:fd:4b:59:39:b1:90:36: 13:18:9a:6a:6a:2a:87:35:80:ee:3b:da:b9:0a:60: fe:b5:e6:e1:37:ed:e2:f8:af:de:f8:fa:09:54:a1: c9:45:ae:b2:0f:e1:58:cf:16:6c:c8:12:13:08:3a: 41:15:d2:e2:bc:0a:f4:96:67:e7:f5:7b:84:2f:a6: 96:45:ac:4e:0d:cc:b2:b0:9d:85:1e:f8:fe:04:6c: a6:ef:16:ea:dc:5f:25:da:ca:bf:ca:07:28:67:d9: a7:1c:0d:83:81:3b:f9:59:46:1e:9d:b8:b7:c9:04: 16:36:fc:cc:15:c8:df:df:c2:f8:58:6c:77:e5:de: 37:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:53:2F:64:F1:D8:55:0E:AA:2C:78:E9:DD:CE:5E:B7:03:23:9D:BB X509v3 Authority Key Identifier: keyid:E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/DA21D1C8DF0711EFA13DFF77C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.110.124.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:89:09:53:d9:c2:ab:29:94:0c:46:8a:2b:7a:b7:a4:bd:62: bc:22:9b:4b:7f:db:84:fb:77:ef:8f:a4:f6:b3:77:b9:37:3f: 1a:73:ba:04:e0:f5:2a:eb:0c:21:8d:41:48:9f:4e:af:e1:41: a7:da:8a:a2:ef:1b:0e:76:7f:71:d9:dd:62:1e:25:ea:8e:6e: de:8b:08:04:ad:d7:46:35:75:ec:7d:74:43:bc:9d:e8:7c:37: 25:cb:ae:f9:c1:ea:35:17:74:42:15:c5:3d:71:e7:6e:b6:d9: 3d:af:9e:82:2b:5c:da:58:39:63:04:a3:4b:42:60:19:ba:ff: af:4b:f0:dd:f7:94:bf:19:d3:9b:8e:00:5c:68:d9:3d:06:97: 89:84:8b:f7:10:ef:c9:6e:80:3c:0a:6e:2c:ca:89:42:b3:80: 86:4b:77:d4:37:0e:15:c2:35:99:43:0f:bd:45:c1:b9:63:55: f1:12:35:b3:8f:10:f0:51:37:1e:b3:ef:2b:7c:46:9d:dd:af: a1:ec:8f:27:39:06:b1:5c:d7:97:db:e6:f2:2e:a8:32:29:fd: a7:4a:2c:01:34:5d:56:07:1f:2f:6e:88:cd:f9:21:c9:11:11: c7:17:1a:1a:39:64:70:72:8c:77:5a:df:ca:81:4a:52:22:63: bc:9c:b2:c8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NTQxMTAvBgNVBAUTKEUxMUE0NzJGODQ5RkEzRDY2M0NBODdDQTY2MzNFQ0U3 RDhEMDA3NjIwHhcNMjUxMDIzMDc0OTQ0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YThlYi03ZDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpG2KWJL0mV1bEFRK0EM5xKP4CCwrU9HDlvY4fxqHkYAkA84m24MSYIaULJC ejjrqrEIqkr5XwuuBMAcxH4LalINgH5QbKZMSF2ydKQVnvzGumDvBcd6Ys7V4eXd FAND9yomvx0LuVRXiSFOGORFddX05NDp43sjW2K1SdbA2v1LWTmxkDYTGJpqaiqH NYDuO9q5CmD+tebhN+3i+K/e+PoJVKHJRa6yD+FYzxZsyBITCDpBFdLivAr0lmfn 9XuEL6aWRaxODcyysJ2FHvj+BGym7xbq3F8l2sq/ygcoZ9mnHA2DgTv5WUYenbi3 yQQWNvzMFcjf38L4WGx35d43pQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFP1TL2Tx 2FUOqix46d3OXrcDI527MB8GA1UdIwQYMBaAFOEaRy+En6PWY8qHymYz7OfY0Adi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg1NC9BODk2NDY2MDc5 OUIxMUVGODExRjkwMTlDNEY5QUUwMi80UnBITDRTZm85Wmp5b2ZLWmpQczU5alFC MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRScEhMNFNmbzlaanlvZktaalBzNTlqUUIySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Y4NTQvQTg5NjQ2NjA3OTlCMTFFRjgxMUY5MDE5QzRGOUFFMDIvREEyMUQxQzhE RjA3MTFFRkExM0RGRjc3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ258MA0GCSqGSIb3DQEBCwUAA4IBAQAqiQlT2cKrKZQMRoorerek vWK8IptLf9uE+3fvj6T2s3e5Nz8ac7oE4PUq6wwhjUFIn06v4UGn2oqi7xsOdn9x 2d1iHiXqjm7eiwgErddGNXXsfXRDvJ3ofDcly675weo1F3RCFcU9ceduttk9r56C K1zaWDljBKNLQmAZuv+vS/Dd95S/GdObjgBcaNk9BpeJhIv3EO/JboA8Cm4syolC s4CGS3fUNw4VwjWZQw+9RcG5Y1XxEjWzjxDwUTces+8rfEad3a+h7I8nOQaxXNeX 2+byLqgyKf2nSiwBNF1WBx8vbojN+SHJERHHFxoaOWRwcox3Wt/KgUpSImO8nLLI -----END CERTIFICATE-----Generated at Thu Mar 26 07:48:46 2026 by rpki-client