$ rpki-client -vvf rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa File: DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa (raw, json) Hash identifier: QQ04clgDlq/iSdNCQgiJAr76DYCKTHAdHCQwRcpdMwQ= Subject key identifier: 87:DB:60:91:A2:6D:E5:F6:1F:0A:8A:6B:4E:F0:72:A7:DB:71:50:24 Certificate issuer: /CN=A919F450/serialNumber=9CDF8CE90BF79F8C148D1F761F994D821B249C71 Certificate serial: 04EA Authority key identifier: 9C:DF:8C:E9:0B:F7:9F:8C:14:8D:1F:76:1F:99:4D:82:1B:24:9C:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:58:18 +0000 ROA not before: Mon 25 Aug 2025 00:36:44 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134596 IP address blocks: 103.121.28.0/23 maxlen: 23 103.121.28.0/24 maxlen: 24 103.121.29.0/24 maxlen: 24 103.121.30.0/24 maxlen: 24 103.121.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.crl rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 23:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1258 (0x4ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F450, serialNumber=9CDF8CE90BF79F8C148D1F761F994D821B249C71 Validity Not Before: Aug 25 00:36:44 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a40dba-495d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dc:f7:77:26:44:5e:f5:9c:78:68:61:a0:88: 2b:85:52:61:52:ef:65:e1:d2:29:29:66:c4:fa:48: 8b:79:bf:90:cd:40:01:29:3b:86:d1:43:11:9d:45: 9e:ad:d7:12:86:8b:9d:59:49:77:85:29:4b:c9:f1: 25:a2:c6:ed:39:51:2f:89:d7:3f:0c:a7:7b:1c:ed: 7b:23:91:ff:66:62:9c:57:74:e8:31:95:d7:a0:62: c9:8d:96:6a:df:6c:aa:8e:0c:57:c3:dc:c2:cf:3b: e3:49:22:e1:72:c4:3c:15:36:4e:8c:82:d4:3c:e2: db:62:45:6d:99:06:14:49:33:e2:70:b5:86:18:2e: c0:8f:d7:68:36:aa:74:1b:d5:f5:ce:38:b1:b1:fc: 6c:48:73:c8:fb:2d:59:be:59:8b:0f:b1:a3:93:91: 4c:fb:d2:5c:9e:65:1b:44:68:98:19:b8:35:2a:94: a9:b5:23:a9:ac:cb:d7:e4:54:98:1d:5c:81:11:fb: f6:3f:3b:f9:db:1f:5a:26:3f:8d:fb:32:60:09:45: 08:cf:bd:f2:13:3a:9f:12:67:c5:a0:2b:a2:3e:40: 5e:f3:5b:f0:1f:41:42:9f:c6:ca:58:fe:c2:f5:a0: 2a:da:19:c4:aa:0f:40:32:94:6f:a9:2c:79:d7:69: 38:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:DB:60:91:A2:6D:E5:F6:1F:0A:8A:6B:4E:F0:72:A7:DB:71:50:24 X509v3 Authority Key Identifier: keyid:9C:DF:8C:E9:0B:F7:9F:8C:14:8D:1F:76:1F:99:4D:82:1B:24:9C:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.121.28.0/22 Signature Algorithm: sha256WithRSAEncryption 84:0b:32:36:43:55:fb:dc:16:ad:78:81:64:00:79:fa:b2:73: 96:f8:26:8e:07:10:b9:0e:35:97:8f:22:03:0b:2e:d6:b6:8f: 53:11:b6:b9:16:69:ee:f4:42:8c:b1:9c:46:3b:0f:84:2a:9b: 06:ed:a2:49:4d:48:f4:6b:ae:c6:9c:7d:45:5e:53:1b:e6:c2: 6a:9e:fe:4b:be:b8:d9:96:3d:16:17:54:07:43:52:db:57:39: 5f:7a:e1:e9:c4:b2:8b:e9:53:16:94:ed:78:0a:ca:15:6d:a5: f0:e1:9d:e4:e7:cb:f4:15:97:36:ba:6d:cb:eb:c3:4e:e0:4f: 9d:65:8d:af:34:8c:d7:26:09:65:15:29:47:34:39:2c:41:09: ea:54:62:1f:b8:24:40:84:c5:a6:31:05:93:b1:a1:ff:ec:95: 04:13:7c:37:4a:55:b6:5e:05:94:73:3f:1f:37:09:f4:4f:b6: 5d:03:34:dd:07:21:1d:8f:03:ca:fa:8c:74:67:6b:85:71:75: 60:59:63:41:25:93:a0:b8:51:7f:83:01:90:6c:8d:b4:cc:f8: 98:0a:b0:5c:59:a2:fc:2f:41:5a:7a:b2:31:37:b9:f6:27:0c: 5e:60:cf:39:7c:63:57:9d:8a:26:aa:e5:75:6c:29:33:3b:2e: 20:f1:72:1c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY0NTAxMTAvBgNVBAUTKDlDREY4Q0U5MEJGNzlGOEMxNDhEMUY3NjFGOTk0RDgy MUIyNDlDNzEwHhcNMjUwODI1MDAzNjQ0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGRiYS00OTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtz3dyZEXvWceGhhoIgrhVJhUu9l4dIpKWbE+kiLeb+QzUABKTuG0UMRnUWe rdcShoudWUl3hSlLyfElosbtOVEvidc/DKd7HO17I5H/ZmKcV3ToMZXXoGLJjZZq 32yqjgxXw9zCzzvjSSLhcsQ8FTZOjILUPOLbYkVtmQYUSTPicLWGGC7Aj9doNqp0 G9X1zjixsfxsSHPI+y1ZvlmLD7Gjk5FM+9JcnmUbRGiYGbg1KpSptSOprMvX5FSY HVyBEfv2Pzv52x9aJj+N+zJgCUUIz73yEzqfEmfFoCuiPkBe81vwH0FCn8bKWP7C 9aAq2hnEqg9AMpRvqSx512k4ZwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIfbYJGi beX2HwqKa07wcqfbcVAkMB8GA1UdIwQYMBaAFJzfjOkL95+MFI0fdh+ZTYIbJJxx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjQ1MC9COTgxNzFEQTUz NDYxMUVDOUI5MEE0N0JDNEY5QUUwMi9uTi1NNlF2M240d1VqUjkySDVsTmdoc2tu SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25OLU02UXYzbjR3VWpSOTJINWxOZ2hza25IRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY0NTAvQjk4MTcxREE1MzQ2MTFFQzlCOTBBNDdCQzRGOUFFMDIvRERFMkJCN0M1 MzQ4MTFFQzhGRkJEQjdDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3kcMA0GCSqGSIb3DQEBCwUAA4IBAQCECzI2Q1X73BateIFkAHn6 snOW+CaOBxC5DjWXjyIDCy7Wto9TEba5Fmnu9EKMsZxGOw+EKpsG7aJJTUj0a67G nH1FXlMb5sJqnv5LvrjZlj0WF1QHQ1LbVzlfeuHpxLKL6VMWlO14CsoVbaXw4Z3k 58v0FZc2um3L68NO4E+dZY2vNIzXJgllFSlHNDksQQnqVGIfuCRAhMWmMQWTsaH/ 7JUEE3w3SlW2XgWUcz8fNwn0T7ZdAzTdByEdjwPK+ox0Z2uFcXVgWWNBJZOguFF/ gwGQbI20zPiYCrBcWaL8L0FaerIxN7n2JwxeYM85fGNXnYomquV1bCkzOy4g8XIc -----END CERTIFICATE-----Generated at Tue Mar 3 04:25:35 2026 by rpki-client