$ rpki-client -vvf rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/35CBA9EC70D311F08BF5B035C4F9AE02.roa File: 35CBA9EC70D311F08BF5B035C4F9AE02.roa (raw, json) Hash identifier: nJ1vYtdsXfeT0k12QEfSHKja0MiLNjEpDEZqyjvHy0M= Subject key identifier: 30:22:23:D4:15:C8:9D:45:3A:4A:25:53:3F:3E:37:A5:BE:E1:13:9B Certificate issuer: /CN=A911BAD6/serialNumber=5332F9AF3052CF3F85EABDD0AAD681523952E656 Certificate serial: 02B1 Authority key identifier: 53:32:F9:AF:30:52:CF:3F:85:EA:BD:D0:AA:D6:81:52:39:52:E6:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/35CBA9EC70D311F08BF5B035C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:00:00 +0000 ROA not before: Mon 23 Feb 2026 01:21:50 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 150319 IP address blocks: 103.10.195.0/24 maxlen: 24 2001:df1:4dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.crl rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 689 (0x2b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BAD6, serialNumber=5332F9AF3052CF3F85EABDD0AAD681523952E656 Validity Not Before: Feb 23 01:21:50 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a589d0-e381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:57:83:c6:5f:1b:d0:6e:52:23:46:c4:e8:38: 4e:24:37:ab:dd:21:bd:5a:90:45:a5:a3:67:10:36: e2:d7:81:b0:65:0a:b3:f1:46:7d:b4:5d:2f:77:d0: d6:7d:91:ac:2d:c7:f2:c7:c5:f4:f7:b7:44:1a:7c: 0a:54:01:db:bc:2c:67:03:6c:e2:db:b2:17:11:eb: e9:ad:3a:a9:a7:6d:76:ec:8d:25:d3:89:a8:86:fd: b4:04:89:03:57:e5:c7:c8:d3:89:1d:1c:35:be:8a: e1:88:95:c0:99:64:ed:2c:b0:94:88:da:43:32:ef: 6e:ba:64:f7:7b:b0:7a:67:e0:9d:a3:31:df:7d:37: 11:f6:85:a8:8b:65:12:2c:17:3f:18:8d:06:1f:ff: d1:d0:1c:68:f8:6e:d2:5a:23:ed:27:dc:ac:e9:1a: 11:60:8a:4b:83:48:70:45:f9:44:01:8b:65:92:68: 8d:bc:40:c4:8b:3a:57:2c:a8:3e:a5:1a:64:12:e4: 46:15:ca:2f:7f:ab:fe:dd:9a:e7:73:50:b3:eb:bf: 17:cf:06:46:b9:91:74:fd:60:fa:16:87:70:ec:81: b0:39:eb:46:cd:d5:38:4f:09:62:c7:30:82:fd:34: f5:0c:13:8e:a1:2c:b6:67:be:4c:bf:92:ee:95:15: 19:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:22:23:D4:15:C8:9D:45:3A:4A:25:53:3F:3E:37:A5:BE:E1:13:9B X509v3 Authority Key Identifier: keyid:53:32:F9:AF:30:52:CF:3F:85:EA:BD:D0:AA:D6:81:52:39:52:E6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/35CBA9EC70D311F08BF5B035C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.10.195.0/24 IPv6: 2001:df1:4dc0::/48 Signature Algorithm: sha256WithRSAEncryption c3:38:01:37:45:2c:36:98:bd:79:d5:43:0b:0e:79:15:38:85: 04:32:78:c7:ec:82:80:0d:2f:9d:51:ae:f1:17:76:c0:5c:59: 5c:95:31:f6:d0:ac:6c:ae:d4:71:10:87:46:ae:e5:c3:a0:ce: 19:11:6e:9e:8d:bb:56:9b:a0:ad:ff:e8:86:b6:1a:c8:a9:4e: 94:f2:20:86:79:14:1b:40:42:81:d9:62:20:ce:60:f0:7d:35: 4b:f4:1c:b9:c2:c4:12:3f:27:52:a4:c0:27:5e:a5:ad:a6:cb: 0b:54:5f:1c:1a:de:4f:6a:6d:3e:8f:9f:89:d2:1e:c9:c7:fa: 83:75:22:b5:39:a7:ae:dc:d0:3f:e9:49:c6:3c:3c:50:96:cb: fe:fb:87:a7:ea:a1:f5:8b:70:fc:24:76:cf:58:a9:0d:f3:1f: 70:aa:78:79:28:92:88:c5:a1:1f:73:c2:6c:16:34:db:04:a4: b5:d7:46:17:09:7a:02:f2:51:74:a7:81:c1:48:ba:f2:4b:a7: 04:f6:7b:2b:12:07:cc:83:93:ec:ae:d2:9d:17:9a:a6:15:9b: 34:32:3e:74:14:6d:f5:b4:93:6d:91:7d:99:a0:93:c0:87:83: 93:4e:1c:2b:d9:90:e2:e1:8b:7f:c0:f8:87:62:82:b2:fc:ff: 9e:5b:36:2c -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICArEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBRDYxMTAvBgNVBAUTKDUzMzJGOUFGMzA1MkNGM0Y4NUVBQkREMEFBRDY4MTUy Mzk1MkU2NTYwHhcNMjYwMjIzMDEyMTUwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODlkMC1lMzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk1eDxl8b0G5SI0bE6DhOJDer3SG9WpBFpaNnEDbi14GwZQqz8UZ9tF0vd9DW fZGsLcfyx8X097dEGnwKVAHbvCxnA2zi27IXEevprTqpp2127I0l04mohv20BIkD V+XHyNOJHRw1vorhiJXAmWTtLLCUiNpDMu9uumT3e7B6Z+CdozHffTcR9oWoi2US LBc/GI0GH//R0Bxo+G7SWiPtJ9ys6RoRYIpLg0hwRflEAYtlkmiNvEDEizpXLKg+ pRpkEuRGFcovf6v+3Zrnc1Cz678XzwZGuZF0/WD6Fodw7IGwOetGzdU4TwlixzCC /TT1DBOOoSy2Z75Mv5LulRUZqwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFDAiI9QV yJ1FOkolUz8+N6W+4RObMB8GA1UdIwQYMBaAFFMy+a8wUs8/heq90KrWgVI5UuZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkFENi9ENjRGNEU5QzNB RjIxMUVEQTg0MkM1NzZDNEY5QUUwMi9Vekw1cnpCU3p6LUY2cjNRcXRhQlVqbFM1 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6TDVyekJTenotRjZyM1FxdGFCVWpsUzVsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJBRDYvRDY0RjRFOUMzQUYyMTFFREE4NDJDNTc2QzRGOUFFMDIvMzVDQkE5RUM3 MEQzMTFGMDhCRjVCMDM1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZwrDMA8EAgACMAkDBwAgAQ3xTcAwDQYJKoZIhvcNAQELBQADggEB AMM4ATdFLDaYvXnVQwsOeRU4hQQyeMfsgoANL51RrvEXdsBcWVyVMfbQrGyu1HEQ h0au5cOgzhkRbp6Nu1aboK3/6Ia2GsipTpTyIIZ5FBtAQoHZYiDOYPB9NUv0HLnC xBI/J1KkwCdepa2mywtUXxwa3k9qbT6Pn4nSHsnH+oN1IrU5p67c0D/pScY8PFCW y/77h6fqofWLcPwkds9YqQ3zH3CqeHkokojFoR9zwmwWNNsEpLXXRhcJegLyUXSn gcFIuvJLpwT2eysSB8yDk+yu0p0XmqYVmzQyPnQUbfW0k22RfZmgk8CHg5NOHCvZ kOLhi3/A+IdigrL8/55bNiw= -----END CERTIFICATE-----Generated at Mon Mar 2 23:24:12 2026 by rpki-client