$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35575C68844811EAB301615FC4F9AE02.roa File: 35575C68844811EAB301615FC4F9AE02.roa (raw, json) Hash identifier: IpJzY/E3RfTD/Jty42OF5cBR7XD15VMXMCEpMRRL3LU= Subject key identifier: 2F:53:34:F7:45:1F:B8:37:24:3C:5A:1E:DA:BC:B3:E1:6A:CD:E2:9B Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36C5 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35575C68844811EAB301615FC4F9AE02.roa Signing time: Sat 22 Mar 2025 15:01:14 +0000 ROA not before: Sat 22 Mar 2025 15:01:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 15347 IP address blocks: 203.135.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14021 (0x36c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:01:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0ba-f700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:59:f2:1e:19:a1:5c:3e:88:31:9e:49:28:8e: ec:f9:8b:6e:b1:9c:9f:e3:27:f9:7d:58:b3:4b:5e: be:91:6c:0a:57:47:72:44:12:d9:b7:4b:35:e5:b1: 96:41:1e:f3:76:9a:af:82:ef:7a:08:7f:00:20:8d: 61:2a:6e:cf:d1:3f:37:9e:58:b8:a8:fd:8d:c9:41: c4:57:ef:7d:25:bb:6f:c6:0b:b0:39:c3:d7:12:05: 60:41:45:7b:e8:95:9d:65:99:19:fa:9f:20:13:e2: 4c:8d:4a:ed:db:60:be:a0:01:b9:8f:12:2d:b6:af: 91:a9:70:38:88:5c:8c:a1:f8:ba:ba:37:d3:4b:68: f2:fb:47:e2:e5:31:fe:b9:93:ed:57:ce:f6:17:4a: 5e:d9:cd:04:12:21:43:6d:4b:73:b1:7a:c6:a1:d2: 54:00:ba:3e:fd:aa:e5:0c:42:3d:6c:83:ce:13:6b: 15:04:50:55:92:b0:f3:25:81:97:02:00:19:a3:08: 89:c7:e2:08:0d:c4:6b:71:ba:3f:ee:b0:3c:42:61: f1:f0:e7:9f:ae:6b:ba:1b:a7:e2:aa:5b:4b:c1:aa: cf:69:dd:06:42:f0:8f:c8:45:f4:6c:54:d7:dc:96: 38:f0:7c:19:a3:94:a6:44:05:45:a3:ec:52:41:76: df:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:53:34:F7:45:1F:B8:37:24:3C:5A:1E:DA:BC:B3:E1:6A:CD:E2:9B X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35575C68844811EAB301615FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.135.1.0/24 Signature Algorithm: sha256WithRSAEncryption bf:a2:a8:94:09:03:77:3c:29:c8:b8:44:91:c9:1a:c0:3d:a3: 19:85:33:74:8f:4f:8d:83:63:62:49:ea:e0:be:34:8d:10:9b: 96:3d:a7:85:95:4f:3d:f4:25:45:b1:b7:6e:e1:1f:c7:f8:5f: a7:2d:3e:38:94:52:56:5f:74:22:04:82:07:85:b4:2a:6d:8a: f1:dc:cc:f4:4b:86:e0:31:d3:17:eb:39:43:1e:28:8b:c1:fe: d5:62:d8:a1:d7:06:87:e5:4a:ee:ed:8c:60:6d:01:df:87:6c: 42:db:07:ad:bf:8f:d4:d2:77:5b:f7:5b:37:53:7e:5e:f6:ec: 98:3f:72:19:c8:ab:a4:44:a0:da:66:57:c5:52:fb:c9:29:3d: b0:a5:78:42:e0:94:f8:9a:91:c2:63:0a:6f:86:83:c0:b7:4c: 60:53:94:67:92:48:7d:24:9d:07:7c:31:b7:62:a4:e4:12:8f: 60:b6:d2:ec:0a:97:14:c6:64:86:a5:ad:b6:e2:b1:5e:70:b0: b5:38:05:6c:c8:f7:a4:86:aa:c9:6c:d3:85:29:f4:a9:58:83: 7a:38:e0:a1:31:53:a6:7b:5d:79:18:c3:7f:31:82:ff:ec:e1: 8e:5c:02:f4:07:9e:bb:89:97:8e:84:e7:62:35:c7:f4:f1:3c: 4c:2e:9f:6a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTE0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBiYS1mNzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslnyHhmhXD6IMZ5JKI7s+YtusZyf4yf5fVizS16+kWwKV0dyRBLZt0s15bGW QR7zdpqvgu96CH8AII1hKm7P0T83nli4qP2NyUHEV+99JbtvxguwOcPXEgVgQUV7 6JWdZZkZ+p8gE+JMjUrt22C+oAG5jxIttq+RqXA4iFyMofi6ujfTS2jy+0fi5TH+ uZPtV872F0pe2c0EEiFDbUtzsXrGodJUALo+/arlDEI9bIPOE2sVBFBVkrDzJYGX AgAZowiJx+IIDcRrcbo/7rA8QmHx8Oefrmu6G6fiqltLwarPad0GQvCPyEX0bFTX 3JY48HwZo5SmRAVFo+xSQXbfoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC9TNPdF H7g3JDxaHtq8s+FqzeKbMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvMzU1NzVDNjg4 NDQ4MTFFQUIzMDE2MTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLhwEwDQYJKoZIhvcNAQELBQADggEBAL+iqJQJA3c8Kci4 RJHJGsA9oxmFM3SPT42DY2JJ6uC+NI0Qm5Y9p4WVTz30JUWxt27hH8f4X6ctPjiU UlZfdCIEggeFtCptivHczPRLhuAx0xfrOUMeKIvB/tVi2KHXBoflSu7tjGBtAd+H bELbB62/j9TSd1v3WzdTfl727Jg/chnIq6REoNpmV8VS+8kpPbCleELglPiakcJj Cm+Gg8C3TGBTlGeSSH0knQd8MbdipOQSj2C20uwKlxTGZIalrbbisV5wsLU4BWzI 96SGqsls04Up9KlYg3o44KExU6Z7XXkYw38xgv/s4Y5cAvQHnruJl46E52I1x/Tx PEwun2o= -----END CERTIFICATE-----Generated at Wed Nov 5 11:47:48 2025 by rpki-client