$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/35A803641F1C11ECAD024E53C4F9AE02.roa File: 35A803641F1C11ECAD024E53C4F9AE02.roa (raw, json) Hash identifier: XbIp4elLJp1qu0Ppo4cUH0HSgtw5D5sigsmfPksT1oI= Subject key identifier: AC:FB:2C:47:06:DD:61:E7:B7:82:D5:74:2A:BC:B4:08:B1:3E:07:18 Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 0873 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/35A803641F1C11ECAD024E53C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:44:23 +0000 ROA not before: Wed 08 Oct 2025 22:24:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 18159 IP address blocks: 202.124.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2163 (0x873) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 8 22:24:30 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48907-6d1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:c6:05:f0:17:37:be:9c:6d:04:6b:3c:89:d9: a2:4c:4f:d4:10:c3:7a:a7:ab:d6:03:2c:f1:e9:be: 63:77:e3:7f:af:eb:c3:d5:61:f4:a5:de:d0:a3:b6: 18:76:6a:c9:55:e8:af:00:f1:ca:e1:26:02:ce:11: 4e:ed:45:00:64:6b:36:c2:42:21:d6:29:a2:f5:7e: 9e:15:3e:3a:07:0e:69:92:f0:63:ab:cc:48:b0:bc: 21:9d:b1:6b:76:73:f5:d0:61:4c:ae:2e:49:e9:20: 60:65:05:51:7a:d5:cc:e8:fd:87:f0:80:e3:13:8a: 9e:3b:d8:fa:28:0f:2a:12:5e:5c:86:0c:f3:02:bd: 7d:28:a9:0b:fc:86:e7:63:7b:c0:5d:31:8c:17:c1: 2d:25:25:11:7b:34:c3:52:ac:bf:40:e0:ab:ed:51: fe:4a:80:b7:87:34:b5:0f:b4:52:4e:69:c5:6f:16: 9d:35:b4:05:f6:ea:c9:d1:8c:21:2e:4d:d9:37:32: bf:ae:dd:ad:79:9b:9b:ac:61:ad:ff:5f:77:f1:bb: a0:bd:35:44:88:c0:5b:c0:b9:d0:ed:12:f1:fb:e3: 1f:78:cc:27:24:e7:63:41:71:bf:24:7d:44:ad:c8: bd:b4:85:e8:8a:bd:f1:a6:b5:12:4b:fd:cd:8f:b8: 14:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:FB:2C:47:06:DD:61:E7:B7:82:D5:74:2A:BC:B4:08:B1:3E:07:18 X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/35A803641F1C11ECAD024E53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.124.100.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:c5:0b:6b:b4:bd:03:3a:c2:5f:98:72:ab:c6:05:28:90:f8: 89:98:0c:cd:cc:3e:96:a7:bf:99:d1:fc:f8:34:0f:5e:5b:9a: 2d:d1:9d:70:3b:6a:0c:44:1e:78:27:5c:92:ce:ab:fe:10:f1: 34:76:77:5f:07:4a:44:e7:ce:06:7b:0d:d7:91:88:fe:60:68: 98:4d:1a:b7:21:db:75:2d:2c:57:6b:fa:d3:8d:94:fa:29:3d: ac:95:df:e8:5a:97:f9:2b:48:d8:68:ea:72:b7:e9:32:5f:ba: 0d:8f:70:c6:cc:be:3f:1a:0e:f4:02:38:3b:2b:fc:74:f1:7e: 07:6b:a7:14:d2:77:8c:96:4a:7a:df:72:5b:b9:24:48:49:6a: 69:d4:bb:96:70:fb:c0:1a:5a:c8:b8:ea:b5:35:57:8c:56:1c: 98:1e:ab:5e:62:96:3e:48:0a:0d:35:54:c7:8f:78:bb:29:e4: 3e:91:60:d3:b2:40:d0:45:8c:d5:21:09:8a:9e:a1:67:32:2e: dc:8f:6e:b2:b4:c4:b2:1a:68:3f:6b:b1:67:49:83:21:01:d9: 00:1e:a1:e5:8f:19:9d:2e:e4:15:0c:85:a3:5b:8a:65:45:42: d4:ac:ae:d7:f6:c4:e1:fb:11:b8:5a:8e:7a:43:db:73:a9:82: 4b:30:9c:72 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjUxMDA4MjIyNDMwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODkwNy02ZDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkMYF8Bc3vpxtBGs8idmiTE/UEMN6p6vWAyzx6b5jd+N/r+vD1WH0pd7Qo7YY dmrJVeivAPHK4SYCzhFO7UUAZGs2wkIh1imi9X6eFT46Bw5pkvBjq8xIsLwhnbFr dnP10GFMri5J6SBgZQVRetXM6P2H8IDjE4qeO9j6KA8qEl5chgzzAr19KKkL/Ibn Y3vAXTGMF8EtJSURezTDUqy/QOCr7VH+SoC3hzS1D7RSTmnFbxadNbQF9urJ0Ywh Lk3ZNzK/rt2teZubrGGt/1938bugvTVEiMBbwLnQ7RLx++MfeMwnJOdjQXG/JH1E rci9tIXoir3xprUSS/3Nj7gUKwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKz7LEcG 3WHnt4LVdCq8tAixPgcYMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvMzVBODAzNjQx RjFDMTFFQ0FEMDI0RTUzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAynxkMA0GCSqGSIb3DQEBCwUAA4IBAQCPxQtrtL0DOsJfmHKrxgUo kPiJmAzNzD6Wp7+Z0fz4NA9eW5ot0Z1wO2oMRB54J1ySzqv+EPE0dndfB0pE584G ew3XkYj+YGiYTRq3Idt1LSxXa/rTjZT6KT2sld/oWpf5K0jYaOpyt+kyX7oNj3DG zL4/Gg70Ajg7K/x08X4Ha6cU0neMlkp633JbuSRISWpp1LuWcPvAGlrIuOq1NVeM VhyYHqteYpY+SAoNNVTHj3i7KeQ+kWDTskDQRYzVIQmKnqFnMi7cj26ytMSyGmg/ a7FnSYMhAdkAHqHljxmdLuQVDIWjW4plRULUrK7X9sTh+xG4Wo56Q9tzqYJLMJxy -----END CERTIFICATE-----Generated at Mon Mar 2 05:57:53 2026 by rpki-client