$ rpki-client -vvf rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa File: DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa (raw, json) Hash identifier: KOxvpAve/GDsWOamZ1PG3jAU4MwWgXyKqq+f/Ul6wII= Subject key identifier: EC:BB:CA:5D:18:47:2D:2F:95:8E:14:C6:F7:11:07:66:32:F7:B3:4C Certificate issuer: /CN=A919F450/serialNumber=9CDF8CE90BF79F8C148D1F761F994D821B249C71 Certificate serial: 0487 Authority key identifier: 9C:DF:8C:E9:0B:F7:9F:8C:14:8D:1F:76:1F:99:4D:82:1B:24:9C:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa Signing time: Mon 25 Aug 2025 00:36:44 +0000 ROA not before: Mon 25 Aug 2025 00:36:44 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134596 IP address blocks: 103.121.28.0/23 maxlen: 23 103.121.28.0/24 maxlen: 24 103.121.29.0/24 maxlen: 24 103.121.30.0/24 maxlen: 24 103.121.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.crl rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F450, serialNumber=9CDF8CE90BF79F8C148D1F761F994D821B249C71 Validity Not Before: Aug 25 00:36:44 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68abb01c-63c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b7:bb:b4:3d:30:4a:3e:35:90:19:9f:71:9b: 1e:7d:8a:67:1b:91:30:25:38:90:84:8e:2e:ef:af: 22:6a:44:ee:d2:b5:5e:44:3e:de:0b:83:e8:2e:81: 26:69:b2:dc:59:42:cf:0d:d8:b9:37:c6:b4:be:35: 2c:b1:b6:a4:8f:05:63:60:66:46:a3:2e:7e:34:90: fe:77:c2:4d:d6:26:40:ca:d1:e7:f4:14:f7:4c:5c: 3e:75:f5:ab:b6:3a:6e:46:2d:be:be:27:63:02:fc: e5:ff:1f:e6:02:fe:35:7a:36:b3:2a:6c:26:62:a0: 7b:93:0c:53:14:a8:38:13:28:a7:df:eb:22:86:a6: 38:f8:fc:5c:1f:8f:59:67:70:dd:5b:3a:23:f6:49: 50:11:6d:48:1d:f5:08:8c:5d:77:45:bc:e1:ef:9b: c7:1b:d1:cd:15:50:fd:dc:50:b6:ea:09:63:e7:02: fe:35:60:95:d5:16:99:68:d8:55:71:ba:fa:29:3e: 40:f3:15:82:7d:3c:59:e4:f8:ac:89:85:42:27:14: 71:9b:0c:4a:3c:aa:c8:63:67:b0:c7:28:aa:28:1b: 41:71:bb:6a:cd:fd:fc:a0:63:e5:66:84:a7:1b:38: 48:3e:99:2b:2c:89:5a:0e:fb:c3:9b:b7:9a:08:0a: 64:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BB:CA:5D:18:47:2D:2F:95:8E:14:C6:F7:11:07:66:32:F7:B3:4C X509v3 Authority Key Identifier: keyid:9C:DF:8C:E9:0B:F7:9F:8C:14:8D:1F:76:1F:99:4D:82:1B:24:9C:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.28.0/22 Signature Algorithm: sha256WithRSAEncryption 26:88:ab:fa:bc:d0:b1:76:16:bd:ed:24:1b:da:49:32:f7:6b: 12:1c:2c:2e:fa:3a:9e:fa:97:e0:16:c4:1e:b4:3b:44:5f:d2: 98:e2:c2:17:5b:50:59:f2:fd:85:d9:01:15:4f:bd:63:4b:5f: ef:cf:c2:03:2e:88:51:d5:e3:4f:6c:0c:4a:68:8a:12:91:36: 3f:59:39:94:86:f1:b4:ef:51:7e:a0:58:0d:c5:92:a6:25:6f: cc:a4:76:09:7e:72:cb:a0:57:0a:88:e7:b8:1a:c9:3d:69:4f: fb:d3:54:02:08:39:11:94:d3:e6:2b:5d:b9:44:c5:a6:96:59: 3f:3b:c9:f9:f1:db:cc:47:45:58:6f:32:df:35:5d:f4:c3:d2: 65:1a:98:7b:ef:04:1b:41:38:ad:51:da:c7:3a:95:5c:bf:56: 00:f9:04:ea:f9:bd:7b:dd:30:1b:9c:b5:33:e3:f1:77:a9:d5: 12:62:4b:c7:c3:33:75:f3:57:4a:ea:33:2d:92:5c:bd:f8:ef: c8:92:0e:33:10:d6:c7:63:6d:e8:2c:5d:91:c5:b2:91:9d:3d: ea:79:96:bd:6c:38:db:d3:0d:b9:74:e3:76:c4:93:85:22:b6: 22:d1:3a:e6:1e:80:30:a8:46:6a:d9:c8:be:f0:35:98:8d:4e: 15:2f:d3:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY0NTAxMTAvBgNVBAUTKDlDREY4Q0U5MEJGNzlGOEMxNDhEMUY3NjFGOTk0RDgy MUIyNDlDNzEwHhcNMjUwODI1MDAzNjQ0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFiYjAxYy02M2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7e7tD0wSj41kBmfcZsefYpnG5EwJTiQhI4u768iakTu0rVeRD7eC4PoLoEm abLcWULPDdi5N8a0vjUssbakjwVjYGZGoy5+NJD+d8JN1iZAytHn9BT3TFw+dfWr tjpuRi2+vidjAvzl/x/mAv41ejazKmwmYqB7kwxTFKg4Eyin3+sihqY4+PxcH49Z Z3DdWzoj9klQEW1IHfUIjF13Rbzh75vHG9HNFVD93FC26glj5wL+NWCV1RaZaNhV cbr6KT5A8xWCfTxZ5PisiYVCJxRxmwxKPKrIY2ewxyiqKBtBcbtqzf38oGPlZoSn GzhIPpkrLIlaDvvDm7eaCApkMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOy7yl0Y Ry0vlY4UxvcRB2Yy97NMMB8GA1UdIwQYMBaAFJzfjOkL95+MFI0fdh+ZTYIbJJxx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjQ1MC9COTgxNzFEQTUz NDYxMUVDOUI5MEE0N0JDNEY5QUUwMi9uTi1NNlF2M240d1VqUjkySDVsTmdoc2tu SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25OLU02UXYzbjR3VWpSOTJINWxOZ2hza25IRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY0NTAvQjk4MTcxREE1MzQ2MTFFQzlCOTBBNDdCQzRGOUFFMDIvRERFMkJCN0M1 MzQ4MTFFQzhGRkJEQjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneRwwDQYJKoZIhvcNAQELBQADggEBACaIq/q80LF2Fr3t JBvaSTL3axIcLC76Op76l+AWxB60O0Rf0pjiwhdbUFny/YXZARVPvWNLX+/PwgMu iFHV409sDEpoihKRNj9ZOZSG8bTvUX6gWA3FkqYlb8ykdgl+csugVwqI57gayT1p T/vTVAIIORGU0+YrXblExaaWWT87yfnx28xHRVhvMt81XfTD0mUamHvvBBtBOK1R 2sc6lVy/VgD5BOr5vXvdMBuctTPj8Xep1RJiS8fDM3XzV0rqMy2SXL3478iSDjMQ 1sdjbegsXZHFspGdPep5lr1sONvTDbl043bEk4UitiLROuYegDCoRmrZyL7wNZiN ThUv06g= -----END CERTIFICATE-----Generated at Mon Oct 20 13:42:10 2025 by rpki-client