$ rpki-client -vvf rpki.apnic.net/member_repository/A9160DDD/34824B9EB33C11F0B95D4054C4F9AE02/8BA5F114B33C11F0B890EE54C4F9AE02.roa File: 8BA5F114B33C11F0B890EE54C4F9AE02.roa (raw, json) Hash identifier: NE2eXCQMzk7qVx293u2lcJ27LjuwxAu1DrsesQw1Ntw= Subject key identifier: F5:C5:7A:B6:4A:C4:D2:0D:4F:EE:B0:A2:0A:B7:3A:CB:F5:42:C5:1A Certificate issuer: /CN=A9160DDD/serialNumber=51A68EDD2DF2B7BFF67A66109BD739CA9BB238C4 Certificate serial: 02 Authority key identifier: 51:A6:8E:DD:2D:F2:B7:BF:F6:7A:66:10:9B:D7:39:CA:9B:B2:38:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaaO3S3yt7_2emYQm9c5ypuyOMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160DDD/34824B9EB33C11F0B95D4054C4F9AE02/8BA5F114B33C11F0B890EE54C4F9AE02.roa Signing time: Mon 27 Oct 2025 13:55:07 +0000 ROA not before: Mon 27 Oct 2025 13:55:07 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153293 IP address blocks: 103.177.114.0/24 maxlen: 24 103.177.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160DDD/34824B9EB33C11F0B95D4054C4F9AE02/UaaO3S3yt7_2emYQm9c5ypuyOMQ.crl rsync://rpki.apnic.net/member_repository/A9160DDD/34824B9EB33C11F0B95D4054C4F9AE02/UaaO3S3yt7_2emYQm9c5ypuyOMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaaO3S3yt7_2emYQm9c5ypuyOMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 08:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160DDD, serialNumber=51A68EDD2DF2B7BFF67A66109BD739CA9BB238C4 Validity Not Before: Oct 27 13:55:07 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ff79bb-b4f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:9a:e5:0f:31:36:29:86:49:b8:bb:d5:52:ae: e0:3b:8a:e7:e6:0d:41:47:05:51:b5:32:2e:1f:70: 81:9a:1b:55:74:f2:af:53:89:3b:e2:db:b6:0d:7c: 51:75:8e:53:dd:0f:ed:34:23:92:9c:5a:20:2f:3c: 16:a3:58:ee:ce:7e:2b:10:bc:8f:de:3b:c2:31:c0: d9:91:20:33:27:10:2e:52:c4:b7:10:a3:ea:12:fb: 05:59:d9:01:2c:83:34:85:89:0d:86:71:c7:a3:de: 21:ed:47:f3:81:e9:c8:5d:b5:6c:be:9f:44:8c:35: d6:42:e8:58:03:bd:f2:e2:c7:63:92:b5:26:07:92: b8:af:9c:bf:eb:19:f8:42:4f:78:29:5c:3c:b3:1c: 99:a8:30:76:27:c6:ca:d5:0b:01:0c:d1:cc:26:e8: e5:8c:07:5d:83:49:9b:50:fa:33:ad:8c:a4:0f:57: a0:18:60:4f:90:44:a9:39:5f:fd:8f:24:3a:53:af: 27:5d:2e:ac:81:19:79:bc:b3:43:c6:94:e9:12:f7: c9:e2:66:ba:18:20:be:61:9d:e9:ce:8a:de:59:23: ea:d5:a8:cb:cc:ef:5b:75:b6:de:1c:31:e9:9f:a8: 2c:26:a7:01:d5:89:6f:b4:86:ce:81:d8:a3:76:7c: f3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C5:7A:B6:4A:C4:D2:0D:4F:EE:B0:A2:0A:B7:3A:CB:F5:42:C5:1A X509v3 Authority Key Identifier: keyid:51:A6:8E:DD:2D:F2:B7:BF:F6:7A:66:10:9B:D7:39:CA:9B:B2:38:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160DDD/34824B9EB33C11F0B95D4054C4F9AE02/UaaO3S3yt7_2emYQm9c5ypuyOMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaaO3S3yt7_2emYQm9c5ypuyOMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160DDD/34824B9EB33C11F0B95D4054C4F9AE02/8BA5F114B33C11F0B890EE54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.114.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:6e:96:b0:75:8d:90:82:09:f4:24:66:96:4a:bf:00:59:c2: cf:50:6c:80:c7:69:ef:32:48:b4:09:34:60:52:d4:54:eb:64: c4:b1:c6:4a:b3:02:09:1b:45:f4:a7:84:a8:4c:32:53:64:ec: d2:6b:30:f1:53:9a:e4:2f:07:77:5e:d4:04:16:77:bf:a5:45: e1:95:7e:84:ad:e9:be:a7:5c:7e:ce:89:d5:fa:cf:8c:59:1c: ca:b7:18:e0:dd:f2:f3:ee:72:10:d7:9c:5b:74:4f:ab:18:31: e9:b2:5a:39:a6:d1:19:ba:98:14:42:d6:1a:8a:01:c9:73:c3: 22:96:85:1a:a6:c3:2d:78:f1:69:90:a4:ac:89:09:f6:f8:23: b8:73:b0:8e:9d:59:41:c5:4c:85:7b:6d:80:da:2c:73:a7:11: 06:31:b3:37:f3:30:49:66:83:6c:f9:1c:20:30:89:59:04:68: 1f:82:7d:19:43:ba:e1:9b:e2:d8:f2:63:85:92:96:0b:2e:8b: 51:9c:93:02:7d:95:3a:00:df:10:0e:4e:f6:f2:4a:f2:f3:4f: c3:91:d0:be:89:d7:d6:11:ed:36:b9:a1:46:e9:10:5c:14:33: 97:08:7f:a3:55:35:b9:83:3c:fc:9d:1d:fc:b7:d5:5e:17:6a: 3b:95:07:80 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MERERDExMC8GA1UEBRMoNTFBNjhFREQyREYyQjdCRkY2N0E2NjEwOUJENzM5Q0E5 QkIyMzhDNDAeFw0yNTEwMjcxMzU1MDdaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZmY3OWJiLWI0ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVmuUPMTYphkm4u9VSruA7iufmDUFHBVG1Mi4fcIGaG1V08q9TiTvi27YNfFF1 jlPdD+00I5KcWiAvPBajWO7OfisQvI/eO8IxwNmRIDMnEC5SxLcQo+oS+wVZ2QEs gzSFiQ2Gccej3iHtR/OB6chdtWy+n0SMNdZC6FgDvfLix2OStSYHkrivnL/rGfhC T3gpXDyzHJmoMHYnxsrVCwEM0cwm6OWMB12DSZtQ+jOtjKQPV6AYYE+QRKk5X/2P JDpTryddLqyBGXm8s0PGlOkS98niZroYIL5hnenOit5ZI+rVqMvM71t1tt4cMemf qCwmpwHViW+0hs6B2KN2fPNbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU9cV6tkrE 0g1P7rCiCrc6y/VCxRowHwYDVR0jBBgwFoAUUaaO3S3yt7/2emYQm9c5ypuyOMQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwRERELzM0ODI0QjlFQjMz QzExRjBCOTVENDA1NEM0RjlBRTAyL1VhYU8zUzN5dDdfMmVtWVFtOWM1eXB1eU9N US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVWFhTzNTM3l0N18yZW1ZUW05YzV5cHV5T01RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MERERC8zNDgyNEI5RUIzM0MxMUYwQjk1RDQwNTRDNEY5QUUwMi84QkE1RjExNEIz M0MxMUYwQjg5MEVFNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWexcjANBgkqhkiG9w0BAQsFAAOCAQEALW6WsHWNkIIJ9CRm lkq/AFnCz1BsgMdp7zJItAk0YFLUVOtkxLHGSrMCCRtF9KeEqEwyU2Ts0msw8VOa 5C8Hd17UBBZ3v6VF4ZV+hK3pvqdcfs6J1frPjFkcyrcY4N3y8+5yENecW3RPqxgx 6bJaOabRGbqYFELWGooByXPDIpaFGqbDLXjxaZCkrIkJ9vgjuHOwjp1ZQcVMhXtt gNosc6cRBjGzN/MwSWaDbPkcIDCJWQRoH4J9GUO64Zvi2PJjhZKWCy6LUZyTAn2V OgDfEA5O9vJK8vNPw5HQvonX1hHtNrmhRukQXBQzlwh/o1U1uYM8/J0d/LfVXhdq O5UHgA== -----END CERTIFICATE-----Generated at Wed Nov 5 07:42:40 2025 by rpki-client