$ rpki-client -vvf rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/35CBA9EC70D311F08BF5B035C4F9AE02.roa File: 35CBA9EC70D311F08BF5B035C4F9AE02.roa (raw, json) Hash identifier: 6GCQQu7D+v15FcvMPj4zlPGTd0KwDANgs9qpWDNZhN4= Subject key identifier: BE:20:3F:F0:EE:A7:6F:5C:3D:C7:73:52:A0:4F:93:8B:1C:09:BF:7A Certificate issuer: /CN=A911BAD6/serialNumber=5332F9AF3052CF3F85EABDD0AAD681523952E656 Certificate serial: 0232 Authority key identifier: 53:32:F9:AF:30:52:CF:3F:85:EA:BD:D0:AA:D6:81:52:39:52:E6:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/35CBA9EC70D311F08BF5B035C4F9AE02.roa Signing time: Mon 04 Aug 2025 01:34:49 +0000 ROA not before: Mon 04 Aug 2025 01:34:49 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 150319 IP address blocks: 103.10.195.0/24 maxlen: 24 2001:df1:4dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.crl rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BAD6, serialNumber=5332F9AF3052CF3F85EABDD0AAD681523952E656 Validity Not Before: Aug 4 01:34:49 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68900e39-68a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7a:37:a8:97:96:ff:35:43:8c:1d:66:91:ea: 19:de:ba:7c:be:02:49:10:2f:76:c7:a7:7d:11:3e: 8a:16:3b:6c:88:98:84:b4:d9:7b:1d:07:58:d8:be: c6:f8:a5:46:b4:ad:36:33:c2:f5:19:1e:05:35:9d: 55:6c:9e:81:b4:15:48:d2:68:a7:12:1e:39:1b:27: 42:b5:cc:a6:2a:be:da:56:97:e5:48:51:47:da:d1: 60:7f:08:18:dc:b7:de:1a:31:0d:d0:5e:39:38:b2: e1:a6:bf:f7:65:89:3a:88:b5:55:bf:08:ce:97:dd: 75:db:18:28:67:e6:cc:77:c4:1d:dd:44:25:4f:6f: 29:10:77:8f:09:8e:33:ed:8c:27:3b:e7:b9:ee:cd: dc:34:4b:a7:5c:a2:99:cd:fd:33:68:00:cc:fb:9d: 94:76:db:0b:ed:c1:f6:1a:5a:eb:ce:8c:98:a1:cf: b2:2c:92:74:2c:e3:21:eb:30:10:6b:74:ef:e4:b0: d6:a6:70:fb:e7:8c:0f:32:2c:d4:84:be:b8:9a:09: e0:f0:0c:60:71:09:58:5a:41:68:a9:b8:f7:30:9c: 53:80:66:59:09:95:5b:0f:72:06:6c:6c:e9:b2:1c: 19:92:a5:59:60:fe:f4:00:59:78:a7:6a:09:c3:14: 5d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:20:3F:F0:EE:A7:6F:5C:3D:C7:73:52:A0:4F:93:8B:1C:09:BF:7A X509v3 Authority Key Identifier: keyid:53:32:F9:AF:30:52:CF:3F:85:EA:BD:D0:AA:D6:81:52:39:52:E6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/35CBA9EC70D311F08BF5B035C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.195.0/24 IPv6: 2001:df1:4dc0::/48 Signature Algorithm: sha256WithRSAEncryption 39:0b:cc:93:a8:e9:9a:b4:be:07:22:91:44:ba:c3:f6:04:f5: 70:e8:7b:de:c2:b2:5c:38:b9:94:7a:ca:2e:b4:f4:c2:c9:7b: 60:eb:29:81:52:a0:d0:c3:70:45:be:93:7f:69:0b:89:8a:ec: 97:a8:8d:de:d4:b8:48:26:8a:f3:fe:e9:26:94:20:b0:04:5d: f2:13:cd:35:83:a5:21:a5:39:35:ce:3a:f7:b0:45:4d:ac:43: c6:5b:90:8e:a1:3f:00:b0:0b:d7:b2:2f:af:44:41:c2:8b:93: 22:34:70:d6:8a:a0:71:5d:31:6f:ac:91:27:0c:d1:f6:03:d3: 84:2b:7a:d9:31:91:a1:06:3c:c3:d8:0e:77:29:84:a3:9a:19: 75:17:77:82:15:d2:ed:00:98:ca:90:fe:00:fe:df:52:02:5f: 4e:2d:5b:e7:fb:ed:7c:3e:8c:e2:ad:cd:e9:fb:d3:1a:59:6a: b6:17:20:67:bb:62:3d:50:e3:55:02:03:07:4b:e4:66:01:6f: 63:d0:0d:9c:82:b0:a0:3a:b7:c3:3d:39:d9:e5:be:66:7b:5f: cb:9e:f5:e4:9f:fc:5c:d5:1c:50:58:21:04:de:ed:d4:dd:a6: ae:73:7c:b1:6a:a4:17:63:4c:18:1e:c8:01:ea:ca:62:e9:77: e6:dc:3f:b8 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBRDYxMTAvBgNVBAUTKDUzMzJGOUFGMzA1MkNGM0Y4NUVBQkREMEFBRDY4MTUy Mzk1MkU2NTYwHhcNMjUwODA0MDEzNDQ5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwMGUzOS02OGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHo3qJeW/zVDjB1mkeoZ3rp8vgJJEC92x6d9ET6KFjtsiJiEtNl7HQdY2L7G +KVGtK02M8L1GR4FNZ1VbJ6BtBVI0minEh45GydCtcymKr7aVpflSFFH2tFgfwgY 3LfeGjEN0F45OLLhpr/3ZYk6iLVVvwjOl9112xgoZ+bMd8Qd3UQlT28pEHePCY4z 7YwnO+e57s3cNEunXKKZzf0zaADM+52UdtsL7cH2GlrrzoyYoc+yLJJ0LOMh6zAQ a3Tv5LDWpnD754wPMizUhL64mgng8AxgcQlYWkFoqbj3MJxTgGZZCZVbD3IGbGzp shwZkqVZYP70AFl4p2oJwxRd8QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFL4gP/Du p29cPcdzUqBPk4scCb96MB8GA1UdIwQYMBaAFFMy+a8wUs8/heq90KrWgVI5UuZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkFENi9ENjRGNEU5QzNB RjIxMUVEQTg0MkM1NzZDNEY5QUUwMi9Vekw1cnpCU3p6LUY2cjNRcXRhQlVqbFM1 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6TDVyekJTenotRjZyM1FxdGFCVWpsUzVsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJBRDYvRDY0RjRFOUMzQUYyMTFFREE4NDJDNTc2QzRGOUFFMDIvMzVDQkE5RUM3 MEQzMTFGMDhCRjVCMDM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnCsMwDwQCAAIwCQMHACABDfFNwDANBgkqhkiG9w0BAQsF AAOCAQEAOQvMk6jpmrS+ByKRRLrD9gT1cOh73sKyXDi5lHrKLrT0wsl7YOspgVKg 0MNwRb6Tf2kLiYrsl6iN3tS4SCaK8/7pJpQgsARd8hPNNYOlIaU5Nc4697BFTaxD xluQjqE/ALAL17Ivr0RBwouTIjRw1oqgcV0xb6yRJwzR9gPThCt62TGRoQY8w9gO dymEo5oZdRd3ghXS7QCYypD+AP7fUgJfTi1b5/vtfD6M4q3N6fvTGllqthcgZ7ti PVDjVQIDB0vkZgFvY9ANnIKwoDq3wz052eW+Zntfy5715J/8XNUcUFghBN7t1N2m rnN8sWqkF2NMGB7IAerKYul35tw/uA== -----END CERTIFICATE-----Generated at Wed Nov 5 09:53:15 2025 by rpki-client