$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35E95924844811EAB301615FC4F9AE02.roa File: 35E95924844811EAB301615FC4F9AE02.roa (raw, json) Hash identifier: +xVk+rs8Sk3ot4BG/sDDsstuP19HaQF04qYw2FT/AjU= Subject key identifier: B2:37:AE:C2:20:4E:9C:44:34:E6:8D:9A:3E:B7:7A:69:CE:8C:6B:86 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 37DF Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35E95924844811EAB301615FC4F9AE02.roa Signing time: Thu 16 Apr 2026 15:14:50 +0000 ROA not before: Thu 16 Apr 2026 15:14:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 17539 IP address blocks: 221.120.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14303 (0x37df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 16 15:14:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e0fcea-470d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:15:d7:92:1e:07:81:af:e9:79:bd:bf:df:8e: 81:99:4f:55:4e:23:08:3e:e3:e0:cc:19:a7:93:44: 1d:f1:ed:2e:c8:8a:f2:d6:09:7f:13:4e:d7:0c:6b: 5c:76:73:34:69:b6:d8:41:a9:b8:ad:a1:8c:c1:c6: e0:cc:03:08:82:8a:e8:1e:56:8d:7d:c7:9c:78:90: 52:ad:70:2c:70:22:94:f5:e1:d9:c7:a8:80:5f:b1: 90:ed:0b:72:aa:ae:b7:fd:57:32:ea:d5:fc:23:19: 71:1a:cd:fe:1e:0c:3c:eb:59:7a:c1:8a:47:bb:95: 36:10:a2:9b:0d:4b:68:ce:97:fc:af:5b:cb:d8:2f: 8d:e4:f8:a8:7b:33:3c:33:12:f6:68:5a:31:4f:43: 02:de:09:b8:c1:25:e2:f4:9b:c4:5a:96:08:f9:2d: c5:f2:ff:22:7c:38:4f:db:6a:95:f1:90:89:6e:df: d8:0f:9e:ad:f5:77:43:90:d1:39:c1:36:ec:df:62: b0:6d:c4:b5:40:32:6b:5d:9c:b6:ab:71:f6:27:d7: 8e:ff:9a:a1:81:bb:e8:ce:44:19:9d:65:21:07:9a: 02:c2:21:56:e4:99:53:37:76:ed:48:a1:04:13:51: 19:12:a7:3d:20:9d:b5:c3:de:52:36:73:50:f5:50: da:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:37:AE:C2:20:4E:9C:44:34:E6:8D:9A:3E:B7:7A:69:CE:8C:6B:86 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35E95924844811EAB301615FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 221.120.213.0/24 Signature Algorithm: sha256WithRSAEncryption bd:e4:56:9c:c4:d5:a7:f7:7e:17:a3:4b:f6:d7:2e:92:96:58: a2:ec:44:47:6f:b4:83:cf:4b:c4:5c:d5:c8:13:33:2e:f3:a4: 47:2e:e0:66:23:de:fc:17:b6:73:2c:fc:cf:e3:db:82:08:fd: c5:d2:8b:04:6d:fc:85:d2:43:e2:bb:72:02:ca:59:59:6e:ee: 03:4f:a3:63:59:d6:39:e9:51:fa:bd:74:06:a2:a6:a5:78:a0: 7d:51:e8:f2:3a:75:6c:bc:c2:01:bf:91:d6:e9:34:bc:0d:f4: 08:d6:07:db:8e:56:27:61:6f:86:ab:1e:c2:aa:f9:25:1e:1a: 17:e4:6b:fb:57:6f:82:68:66:97:b5:a9:03:36:aa:ba:6a:50: 0e:f1:19:e6:9d:9f:6b:e0:46:1f:89:bf:ff:32:cb:49:f5:d0: 3b:25:20:b0:ff:c9:cf:6e:b9:86:b7:7f:7d:29:64:08:eb:c5: 2b:dc:62:82:e8:c6:49:60:05:44:ad:18:97:99:b3:72:7f:02: 51:70:53:58:2b:de:e7:85:c4:ec:88:7b:7a:60:0f:84:5f:57: 7c:98:9e:bf:dc:8e:be:44:01:9f:a5:61:31:a6:57:82:e6:b3: b8:0e:e6:c5:24:99:71:07:f0:6c:43:b2:7b:9e:f7:8b:e2:94: 64:8e:3b:1a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICN98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjYwNDE2MTUxNDUwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUwZmNlYS00NzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxXXkh4Hga/peb2/346BmU9VTiMIPuPgzBmnk0Qd8e0uyIry1gl/E07XDGtc dnM0abbYQam4raGMwcbgzAMIgoroHlaNfceceJBSrXAscCKU9eHZx6iAX7GQ7Qty qq63/Vcy6tX8IxlxGs3+Hgw861l6wYpHu5U2EKKbDUtozpf8r1vL2C+N5PioezM8 MxL2aFoxT0MC3gm4wSXi9JvEWpYI+S3F8v8ifDhP22qV8ZCJbt/YD56t9XdDkNE5 wTbs32KwbcS1QDJrXZy2q3H2J9eO/5qhgbvozkQZnWUhB5oCwiFW5JlTN3btSKEE E1EZEqc9IJ21w95SNnNQ9VDaXwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLI3rsIg TpxENOaNmj63emnOjGuGMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvMzVFOTU5MjQ4 NDQ4MTFFQUIzMDE2MTVGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA3XjVMA0GCSqGSIb3DQEBCwUAA4IBAQC95FacxNWn934Xo0v21y6S llii7ERHb7SDz0vEXNXIEzMu86RHLuBmI978F7ZzLPzP49uCCP3F0osEbfyF0kPi u3ICyllZbu4DT6NjWdY56VH6vXQGoqaleKB9UejyOnVsvMIBv5HW6TS8DfQI1gfb jlYnYW+Gqx7CqvklHhoX5Gv7V2+CaGaXtakDNqq6alAO8RnmnZ9r4EYfib//MstJ 9dA7JSCw/8nPbrmGt399KWQI68Ur3GKC6MZJYAVErRiXmbNyfwJRcFNYK97nhcTs iHt6YA+EX1d8mJ6/3I6+RAGfpWExpleC5rO4DubFJJlxB/BsQ7J7nveL4pRkjjsa -----END CERTIFICATE-----Generated at Fri Apr 17 06:47:32 2026 by rpki-client