$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa File: 35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa (raw, json) Hash identifier: fyTpRXaLemZhNDBM3gpMKafp5N6Q8cViUDzIODGW4Po= Subject key identifier: 80:DF:3A:3C:48:97:38:0B:49:F7:FE:A4:C6:74:25:C4:6E:98:11:32 Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Certificate serial: 08C4 Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:43:05 +0000 ROA not before: Fri 04 Apr 2025 21:34:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23711 IP address blocks: 202.41.141.0/24 maxlen: 24 2001:dd8:16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2244 (0x8c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B536, serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Validity Not Before: Apr 4 21:34:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a45e89-9f65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:3a:2a:e9:8d:ce:3b:9c:c9:34:be:18:45:22: 7b:7d:ae:ab:01:79:ac:51:b4:7d:38:80:0a:45:81: da:63:2f:60:cc:21:f7:56:51:d5:73:0a:e4:91:3c: 38:3e:f6:83:dc:78:84:7e:f8:ad:f8:3e:08:0b:9e: 1a:22:8d:5d:b8:d6:b0:f6:b7:98:5b:a8:db:6c:e4: cc:4f:c1:5c:2a:d9:dd:73:b2:a1:f4:c6:17:f2:ca: dc:41:0f:16:41:bc:89:6d:5e:ae:58:a0:f1:a7:dc: 66:99:b8:04:95:f5:eb:db:a5:f3:c0:0d:2d:a2:c0: f7:cc:de:92:c0:e9:f8:e1:f9:da:33:9e:92:68:f8: bf:62:f6:6b:0b:6b:17:7d:20:0f:a0:50:a9:4f:e2: a1:7c:91:ed:c2:d8:17:25:37:ee:cd:74:64:0e:d5: 3f:5c:de:92:1f:07:ac:9b:cb:30:5d:53:42:95:b0: 26:c4:18:dc:04:04:d5:22:e6:7d:b6:81:1e:5c:e7: e5:f0:e3:f9:40:39:8d:2b:fa:1f:49:e0:eb:90:e3: a7:de:84:30:1b:af:57:ae:00:20:0d:99:d9:93:be: dd:43:0e:b4:14:7e:8f:0a:89:50:97:1d:97:26:74: f8:b6:a5:5c:bf:0b:18:33:76:f0:3a:46:9d:71:ae: 09:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:DF:3A:3C:48:97:38:0B:49:F7:FE:A4:C6:74:25:C4:6E:98:11:32 X509v3 Authority Key Identifier: keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.41.141.0/24 IPv6: 2001:dd8:16::/48 Signature Algorithm: sha256WithRSAEncryption 8b:39:fc:d6:20:1f:1b:16:5a:5b:1f:ce:13:df:39:be:b5:7a: fd:bf:e6:ce:a1:87:91:52:4f:7d:9b:70:49:f9:7e:a3:1b:c6: 20:42:55:76:a9:32:f5:24:1a:f0:e4:d2:74:90:aa:7d:52:49: ec:e7:3c:09:5b:1c:7a:9b:7a:39:be:8d:7e:f4:cd:bc:82:87: b3:16:02:8b:24:cd:87:03:0c:08:0f:9f:da:c8:ad:4b:37:5b: 6f:d3:f7:ce:de:98:6e:c5:b1:b5:4b:44:0d:9f:2c:07:0b:de: 0d:35:83:89:5f:6d:ff:24:1d:eb:de:6c:fa:ea:75:5e:6d:08: 47:dd:af:ab:d8:94:f3:95:77:5d:49:fb:5c:97:9c:24:e1:44: 86:98:3e:7a:47:37:73:50:06:3c:c7:2b:00:95:af:bf:08:39: c0:2d:d3:8c:2d:11:36:b7:d3:66:91:c5:4a:75:be:7e:61:db: e6:f6:fe:2d:d6:e8:cb:1d:b8:e1:49:20:60:75:e2:96:d9:ff: 51:d9:c8:d7:5d:14:8a:cc:be:e3:fd:a5:22:ff:a6:77:66:93: 01:08:47:48:d5:fb:c7:10:de:4e:98:20:b1:fd:cc:e1:52:49: 08:95:69:35:b2:08:b2:7a:b9:ca:eb:e5:14:0d:27:5d:50:b0: 70:97:4e:36 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MzYxMTAvBgNVBAUTKDgyMTBENDM3NTY2NTRCMTA3MDVENUFCM0YzN0JGMDFB NzhCNzhDNDcwHhcNMjUwNDA0MjEzNDMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWU4OS05ZjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnToq6Y3OO5zJNL4YRSJ7fa6rAXmsUbR9OIAKRYHaYy9gzCH3VlHVcwrkkTw4 PvaD3HiEfvit+D4IC54aIo1duNaw9reYW6jbbOTMT8FcKtndc7Kh9MYX8srcQQ8W QbyJbV6uWKDxp9xmmbgElfXr26XzwA0tosD3zN6SwOn44fnaM56SaPi/YvZrC2sX fSAPoFCpT+KhfJHtwtgXJTfuzXRkDtU/XN6SHwesm8swXVNClbAmxBjcBATVIuZ9 toEeXOfl8OP5QDmNK/ofSeDrkOOn3oQwG69XrgAgDZnZk77dQw60FH6PColQlx2X JnT4tqVcvwsYM3bwOkadca4JEQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFIDfOjxI lzgLSff+pMZ0JcRumBEyMB8GA1UdIwQYMBaAFIIQ1DdWZUsQcF1as/N78Bp4t4xH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUzNi9FNEM4ODk3MkVC NzQxMUVBQkEwQTlFNDhDNEY5QUUwMi9naERVTjFabFN4QndYVnF6ODN2d0duaTNq RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doRFVOMVpsU3hCd1hWcXo4M3Z3R25pM2pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MzYvRTRDODg5NzJFQjc0MTFFQUJBMEE5RTQ4QzRGOUFFMDIvMzVBOENGMUVF QzI0MTFFQThCMEREQTJDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAyimNMA8EAgACMAkDBwAgAQ3YABYwDQYJKoZIhvcNAQELBQADggEB AIs5/NYgHxsWWlsfzhPfOb61ev2/5s6hh5FST32bcEn5fqMbxiBCVXapMvUkGvDk 0nSQqn1SSeznPAlbHHqbejm+jX70zbyCh7MWAoskzYcDDAgPn9rIrUs3W2/T987e mG7FsbVLRA2fLAcL3g01g4lfbf8kHevebPrqdV5tCEfdr6vYlPOVd11J+1yXnCTh RIaYPnpHN3NQBjzHKwCVr78IOcAt04wtETa302aRxUp1vn5h2+b2/i3W6MsduOFJ IGB14pbZ/1HZyNddFIrMvuP9pSL/pndmkwEIR0jV+8cQ3k6YILH9zOFSSQiVaTWy CLJ6ucrr5RQNJ11QsHCXTjY= -----END CERTIFICATE-----Generated at Mon Mar 2 20:15:11 2026 by rpki-client