$ rpki-client -vvf rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/DD530B9222B111EDA3B74073C4F9AE02.roa File: DD530B9222B111EDA3B74073C4F9AE02.roa (raw, json) Hash identifier: R54akjGxTnzxhQ5eWup+gnTX3b1EgVjuqEvhFW0utCw= Subject key identifier: 2E:4D:F6:47:92:46:E4:3D:12:E2:47:A8:71:16:58:90:D0:EB:94:F6 Certificate issuer: /CN=A9142AA2/serialNumber=8EC4E3FAFD509128AEC2C0879E6AF9139E15EAB6 Certificate serial: 02DB Authority key identifier: 8E:C4:E3:FA:FD:50:91:28:AE:C2:C0:87:9E:6A:F9:13:9E:15:EA:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsTj-v1QkSiuwsCHnmr5E54V6rY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/DD530B9222B111EDA3B74073C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:51:21 +0000 ROA not before: Thu 25 Dec 2025 01:21:35 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 149170 IP address blocks: 103.177.208.0/23 maxlen: 23 103.177.208.0/24 maxlen: 24 103.177.209.0/24 maxlen: 24 2400:3d60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/jsTj-v1QkSiuwsCHnmr5E54V6rY.crl rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/jsTj-v1QkSiuwsCHnmr5E54V6rY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsTj-v1QkSiuwsCHnmr5E54V6rY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142AA2, serialNumber=8EC4E3FAFD509128AEC2C0879E6AF9139E15EAB6 Validity Not Before: Dec 25 01:21:35 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46079-8536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7c:69:75:bc:8b:ac:69:5f:ed:c0:b8:04:ee: 22:5e:5f:43:45:5f:0b:d5:37:e0:5e:21:ce:d1:10: 73:da:54:c9:79:f3:4f:87:9d:56:2d:c5:87:2a:95: 34:4d:e3:a1:0c:49:3f:2d:ca:1e:cf:36:10:fe:35: a4:26:aa:03:cf:38:75:11:c8:23:c1:ba:7a:e5:db: 33:f6:69:5f:a6:48:92:88:51:ef:3a:17:28:3b:c0: e5:33:c5:40:12:dc:1f:05:ad:9c:0a:4e:d5:66:7e: ee:3b:15:58:ae:1d:cf:1b:08:b6:0a:fd:22:25:66: b1:b2:22:9a:d4:0b:f7:21:ba:28:2e:6e:ed:f1:a5: 22:84:64:8f:57:20:df:dc:89:f3:8a:0e:96:bf:7e: f2:fb:4a:bd:60:e0:ff:a1:92:c7:97:a4:dc:42:d0: 9d:ce:db:69:19:1d:a1:01:1d:22:01:2b:98:9d:a0: 8f:56:ec:4a:27:59:85:61:30:12:c4:e7:3f:da:0f: 5c:66:0b:33:50:10:da:9e:c9:6e:fa:b1:a2:8c:5c: 1f:37:20:14:cb:b3:35:f4:b0:93:14:86:57:fa:28: 75:af:f3:c1:36:f0:3b:ec:9d:77:c8:63:92:fd:c6: a9:7e:61:04:e1:76:5d:36:9f:1d:89:48:94:6f:37: 54:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:4D:F6:47:92:46:E4:3D:12:E2:47:A8:71:16:58:90:D0:EB:94:F6 X509v3 Authority Key Identifier: keyid:8E:C4:E3:FA:FD:50:91:28:AE:C2:C0:87:9E:6A:F9:13:9E:15:EA:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/jsTj-v1QkSiuwsCHnmr5E54V6rY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsTj-v1QkSiuwsCHnmr5E54V6rY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/DD530B9222B111EDA3B74073C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.177.208.0/23 IPv6: 2400:3d60::/32 Signature Algorithm: sha256WithRSAEncryption 0b:dd:f8:92:74:06:5d:55:11:ba:e8:42:33:0d:58:af:59:c2: 52:e0:63:02:7f:19:28:6a:68:44:65:8e:85:31:25:29:6a:57: 26:7c:9e:92:87:39:55:da:83:91:a1:9f:49:04:ad:f3:34:aa: 06:05:f9:5a:0b:25:b4:d3:a3:37:f0:c0:fb:4e:5e:22:64:a3: 89:07:dd:16:db:7a:ce:f5:44:c0:db:b2:a3:6a:7f:17:90:e7: 2a:a1:7a:bf:8c:26:fd:f9:83:a6:93:db:73:8a:bb:c3:21:b5: c2:1f:eb:03:f8:75:a6:df:20:c4:01:2f:65:ac:dd:63:ab:51: 14:a4:63:1c:e9:fe:b5:7d:cc:62:c8:ed:aa:8b:6c:25:ee:4c: 1b:92:c8:6a:23:b5:c9:f0:ae:2e:93:73:4d:b9:e1:03:73:98: ac:74:e0:f9:b4:43:8c:b8:64:97:bf:12:d0:f7:68:3f:e7:f9: 8a:67:e6:53:db:8f:21:07:8f:23:b3:be:c8:13:03:10:cd:ef: 1b:40:c7:c4:87:8c:e6:3b:e3:15:f2:98:83:9d:ae:99:d6:ba: 23:11:8a:f8:e0:43:fe:21:b2:31:42:b5:6a:75:bf:9b:5d:3e: 8a:fc:68:75:71:d5:8d:9c:ae:55:1c:52:9c:74:3b:0d:12:69: 33:49:a9:1d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBQTIxMTAvBgNVBAUTKDhFQzRFM0ZBRkQ1MDkxMjhBRUMyQzA4NzlFNkFGOTEz OUUxNUVBQjYwHhcNMjUxMjI1MDEyMTM1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjA3OS04NTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3xpdbyLrGlf7cC4BO4iXl9DRV8L1TfgXiHO0RBz2lTJefNPh51WLcWHKpU0 TeOhDEk/LcoezzYQ/jWkJqoDzzh1Ecgjwbp65dsz9mlfpkiSiFHvOhcoO8DlM8VA EtwfBa2cCk7VZn7uOxVYrh3PGwi2Cv0iJWaxsiKa1Av3IbooLm7t8aUihGSPVyDf 3Inzig6Wv37y+0q9YOD/oZLHl6TcQtCdzttpGR2hAR0iASuYnaCPVuxKJ1mFYTAS xOc/2g9cZgszUBDanslu+rGijFwfNyAUy7M19LCTFIZX+ih1r/PBNvA77J13yGOS /capfmEE4XZdNp8diUiUbzdUowIDAQABo4ICbzCCAmswHQYDVR0OBBYEFC5N9keS RuQ9EuJHqHEWWJDQ65T2MB8GA1UdIwQYMBaAFI7E4/r9UJEorsLAh55q+ROeFeq2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkFBMi8zREE4QTk0NDIy QTIxMUVEQkM4QTZDODBDNEY5QUUwMi9qc1RqLXYxUWtTaXV3c0NIbm1yNUU1NFY2 clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzVGotdjFRa1NpdXdzQ0hubXI1RTU0VjZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJBQTIvM0RBOEE5NDQyMkEyMTFFREJDOEE2QzgwQzRGOUFFMDIvREQ1MzBCOTIy MkIxMTFFREEzQjc0MDczQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ7HQMA0EAgACMAcDBQAkAD1gMA0GCSqGSIb3DQEBCwUAA4IBAQAL 3fiSdAZdVRG66EIzDVivWcJS4GMCfxkoamhEZY6FMSUpalcmfJ6ShzlV2oORoZ9J BK3zNKoGBflaCyW006M38MD7Tl4iZKOJB90W23rO9UTA27Kjan8XkOcqoXq/jCb9 +YOmk9tzirvDIbXCH+sD+HWm3yDEAS9lrN1jq1EUpGMc6f61fcxiyO2qi2wl7kwb kshqI7XJ8K4uk3NNueEDc5isdOD5tEOMuGSXvxLQ92g/5/mKZ+ZT248hB48js77I EwMQze8bQMfEh4zmO+MV8piDna6Z1rojEYr44EP+IbIxQrVqdb+bXT6K/Gh1cdWN nK5VHFKcdDsNEmkzSakd -----END CERTIFICATE-----Generated at Mon Mar 2 11:54:44 2026 by rpki-client