$ rpki-client -vvf rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/C3835BF6B9A311EEB293524AC4F9AE02.roa File: C3835BF6B9A311EEB293524AC4F9AE02.roa (raw, json) Hash identifier: LgvzbH2Wh3cXgvtAocTygSfF5GcgHU1jmYJ8OJmW4QA= Subject key identifier: AE:11:EB:E5:B1:79:7B:4D:51:BC:AB:5F:CB:FF:E0:65:C8:2E:C5:CF Certificate issuer: /CN=A91A352E/serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Certificate serial: 0210 Authority key identifier: EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/C3835BF6B9A311EEB293524AC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:55:09 +0000 ROA not before: Mon 09 Feb 2026 07:53:02 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147024 IP address blocks: 103.173.32.0/23 maxlen: 23 103.173.32.0/24 maxlen: 24 103.173.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A352E, serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Validity Not Before: Feb 9 07:53:02 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46f6d-72b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:07:70:22:a7:cb:bf:21:4d:6c:2e:54:20:e0: 7a:ef:e8:30:32:5c:e6:a7:31:4d:f3:88:af:bd:97: 48:1c:06:4d:14:37:c0:0a:77:7c:68:6f:f4:ff:16: 6b:2c:48:fa:84:53:67:f3:dc:7b:07:c1:b3:93:57: 8c:0c:41:13:f1:e2:fa:ce:68:30:f4:e2:bb:4b:e8: e6:18:e0:b8:c5:a9:a3:ea:17:da:dd:b3:40:94:fd: 4f:02:e5:d8:b9:da:58:82:48:71:dd:bd:a0:02:9e: b3:2e:2d:83:15:73:50:80:5a:42:19:84:4b:f5:14: 3b:13:44:8c:3b:8f:2c:3f:f0:44:d3:62:75:44:04: 7e:25:19:56:4d:db:09:46:00:eb:46:be:12:33:6b: fc:fa:2b:de:ac:15:b8:7f:ca:89:37:20:fb:8d:cc: 1b:d2:90:16:7e:12:42:24:61:45:2c:f9:16:48:92: 4d:f2:59:98:11:1b:2d:66:e0:9e:8f:a6:f1:d8:0f: b9:5b:56:14:6c:69:8a:8d:2f:c8:63:a1:46:bb:0b: 72:ae:74:0e:c7:72:5d:fb:17:41:3e:24:39:5f:64: ad:7b:4e:4a:6b:fb:3e:54:9c:4a:8c:e3:51:58:6d: cd:11:d9:88:57:05:9b:6e:02:99:57:08:16:a9:a8: f6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:11:EB:E5:B1:79:7B:4D:51:BC:AB:5F:CB:FF:E0:65:C8:2E:C5:CF X509v3 Authority Key Identifier: keyid:EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/C3835BF6B9A311EEB293524AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.173.32.0/23 Signature Algorithm: sha256WithRSAEncryption ba:50:13:67:aa:6b:b8:b9:98:a3:32:8a:09:6b:bb:21:d4:96: 34:34:b7:88:0c:d7:51:07:b2:24:99:77:0e:5e:85:ae:f6:5f: 71:b1:2f:38:23:2c:d5:f0:ad:d7:76:f4:98:22:58:65:30:98: b3:99:dd:02:d1:40:36:1b:68:05:b2:5b:7c:04:5a:0e:2e:21: a3:86:ae:38:5f:5f:e8:ce:fe:51:75:6a:3a:21:6c:55:fa:dc: 0c:99:53:67:23:27:3b:06:a3:04:63:60:bf:fa:b3:2d:25:c4: d3:1c:10:f4:93:f8:5c:02:3b:19:b7:19:83:d6:28:6c:b9:bd: 98:d3:84:c5:a6:79:c9:63:26:11:ce:25:02:d6:cd:0a:5f:8f: ee:a5:8b:21:8c:55:96:d5:a8:65:58:63:6a:bf:4e:3b:09:7b: 05:e4:84:9e:6d:15:19:78:2d:9d:79:f9:22:8f:92:6c:67:3e: c5:d1:f7:12:ca:d8:68:b4:0d:91:c6:20:93:a5:6e:3e:a8:5c: f8:22:6a:14:fc:fc:92:1b:ab:1b:f4:e5:e2:49:c4:d1:20:87: 9b:ba:73:7c:9f:da:75:51:ca:fb:be:63:d7:7b:2b:a0:55:04: d7:1e:47:98:87:f9:54:fe:e8:99:a8:df:92:72:3e:02:ac:b4: fa:8f:e8:a0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM1MkUxMTAvBgNVBAUTKEVGNjcwMkE3RDBBRUM4MzRERUZCOEY0MTY4QjJGRThG NEQ1ODQzRTgwHhcNMjYwMjA5MDc1MzAyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmY2ZC03MmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAdwIqfLvyFNbC5UIOB67+gwMlzmpzFN84ivvZdIHAZNFDfACnd8aG/0/xZr LEj6hFNn89x7B8Gzk1eMDEET8eL6zmgw9OK7S+jmGOC4xamj6hfa3bNAlP1PAuXY udpYgkhx3b2gAp6zLi2DFXNQgFpCGYRL9RQ7E0SMO48sP/BE02J1RAR+JRlWTdsJ RgDrRr4SM2v8+iverBW4f8qJNyD7jcwb0pAWfhJCJGFFLPkWSJJN8lmYERstZuCe j6bx2A+5W1YUbGmKjS/IY6FGuwtyrnQOx3Jd+xdBPiQ5X2Ste05Ka/s+VJxKjONR WG3NEdmIVwWbbgKZVwgWqaj2wwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFK4R6+Wx eXtNUbyrX8v/4GXILsXPMB8GA1UdIwQYMBaAFO9nAqfQrsg03vuPQWiy/o9NWEPo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzUyRS9EQzMzNTk3QzBC NjAxMUVFQjMyMjA0MUFDNEY5QUUwMi83MmNDcDlDdXlEVGUtNDlCYUxMLWowMVlR LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyY0NwOUN1eURUZS00OUJhTEwtajAxWVEtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM1MkUvREMzMzU5N0MwQjYwMTFFRUIzMjIwNDFBQzRGOUFFMDIvQzM4MzVCRjZC OUEzMTFFRUIyOTM1MjRBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ60gMA0GCSqGSIb3DQEBCwUAA4IBAQC6UBNnqmu4uZijMooJa7sh 1JY0NLeIDNdRB7IkmXcOXoWu9l9xsS84IyzV8K3XdvSYIlhlMJizmd0C0UA2G2gF slt8BFoOLiGjhq44X1/ozv5RdWo6IWxV+twMmVNnIyc7BqMEY2C/+rMtJcTTHBD0 k/hcAjsZtxmD1ihsub2Y04TFpnnJYyYRziUC1s0KX4/upYshjFWW1ahlWGNqv047 CXsF5ISebRUZeC2defkij5JsZz7F0fcSythotA2RxiCTpW4+qFz4ImoU/PySG6sb 9OXiScTRIIebunN8n9p1Ucr7vmPXeyugVQTXHkeYh/lU/uiZqN+Scj4CrLT6j+ig -----END CERTIFICATE-----Generated at Mon Mar 2 08:17:32 2026 by rpki-client