$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB92D/6BE2CAD0BD3211ED84A82809C4F9AE02/99B10EC4BD3511ED837DED0DC4F9AE02.roa File: 99B10EC4BD3511ED837DED0DC4F9AE02.roa (raw, json) Hash identifier: iWpNZB3n2UibkskDbVUZsMZsn9SaUs1f7OrKJsA5Vis= Subject key identifier: 05:22:1A:F7:7E:39:68:56:8F:4B:FC:6B:CB:24:AB:4A:12:A9:FD:89 Certificate issuer: /CN=A91AB92D/serialNumber=7DD85EC439786FD42E0BF7B72137765F05D0E9FA Certificate serial: 0235 Authority key identifier: 7D:D8:5E:C4:39:78:6F:D4:2E:0B:F7:B7:21:37:76:5F:05:D0:E9:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fdhexDl4b9QuC_e3ITd2XwXQ6fo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB92D/6BE2CAD0BD3211ED84A82809C4F9AE02/99B10EC4BD3511ED837DED0DC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:32:31 +0000 ROA not before: Mon 03 Mar 2025 04:57:00 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 150723 IP address blocks: 103.99.35.0/24 maxlen: 24 2001:df1:e7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB92D/6BE2CAD0BD3211ED84A82809C4F9AE02/fdhexDl4b9QuC_e3ITd2XwXQ6fo.crl rsync://rpki.apnic.net/member_repository/A91AB92D/6BE2CAD0BD3211ED84A82809C4F9AE02/fdhexDl4b9QuC_e3ITd2XwXQ6fo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fdhexDl4b9QuC_e3ITd2XwXQ6fo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 565 (0x235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB92D, serialNumber=7DD85EC439786FD42E0BF7B72137765F05D0E9FA Validity Not Before: Mar 3 04:57:00 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3dd7f-6a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0f:39:1c:50:2f:e9:2f:b3:54:61:80:72:f3: c8:91:af:3b:46:f6:37:20:bb:08:3b:21:1d:61:56: a4:e3:d1:82:9b:5c:64:9e:f4:9c:d4:84:ee:a9:8f: 5a:6e:0a:d2:76:2c:44:02:2d:4a:2d:5f:4a:9a:fc: 79:ab:62:a2:b1:46:2d:9b:f3:ef:24:50:ab:09:78: d5:cf:bb:3b:58:19:67:80:3c:a1:4b:30:1d:2d:b4: 7e:b1:2e:6c:ed:0e:b2:87:f2:97:e8:d5:25:2d:df: d5:a5:45:45:a7:21:86:41:0a:e9:67:78:2a:8c:e0: e4:81:91:70:4d:c3:8c:53:de:af:5e:db:8b:1d:55: ea:62:f7:df:48:62:53:da:72:cb:87:b9:88:87:8c: 7d:52:d0:55:0d:9c:54:73:50:77:f4:76:a2:81:6b: 1c:62:1b:bd:81:34:1b:b6:d5:e3:85:10:bf:bb:ce: 3e:2d:49:01:81:de:23:d7:55:09:c1:4c:3d:56:80: 1e:09:3b:50:39:ff:39:c9:c9:3b:28:85:c2:d4:54: 01:ca:46:09:1e:1a:4c:8e:14:df:fa:03:0f:e6:98: de:5d:d8:71:5d:a1:cc:58:8b:cf:9a:04:3c:ab:8b: 49:93:14:88:e0:12:50:ec:b3:50:b1:d7:ca:3e:c7: 56:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:22:1A:F7:7E:39:68:56:8F:4B:FC:6B:CB:24:AB:4A:12:A9:FD:89 X509v3 Authority Key Identifier: keyid:7D:D8:5E:C4:39:78:6F:D4:2E:0B:F7:B7:21:37:76:5F:05:D0:E9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB92D/6BE2CAD0BD3211ED84A82809C4F9AE02/fdhexDl4b9QuC_e3ITd2XwXQ6fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fdhexDl4b9QuC_e3ITd2XwXQ6fo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB92D/6BE2CAD0BD3211ED84A82809C4F9AE02/99B10EC4BD3511ED837DED0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.35.0/24 IPv6: 2001:df1:e7c0::/48 Signature Algorithm: sha256WithRSAEncryption 59:ac:ef:f7:c4:7c:c0:06:1f:b5:c1:50:b5:10:94:01:17:9d: fa:37:50:8d:b5:75:c2:c1:7a:eb:b3:70:38:15:52:41:87:01: 95:d4:9c:a9:57:47:a8:35:1e:a9:4e:67:d1:30:ce:df:65:db: ee:de:34:bb:0c:2c:e0:2a:87:a6:bd:58:70:7a:5d:6b:d9:1e: 10:33:51:03:27:c8:f3:2b:fa:06:1c:5e:8b:b7:b5:f5:60:28: 47:24:7e:24:40:ed:a9:1f:40:46:07:71:b4:53:cd:1d:41:1f: ba:04:e4:4e:56:53:de:2e:23:33:eb:fd:e9:cb:db:9d:0c:07: 55:10:7a:b4:20:93:10:2d:7b:ae:d4:1b:a3:59:16:6b:7d:82: 71:ce:84:d0:c0:4b:e8:71:82:fa:14:87:92:fe:87:8b:c9:4d: c1:9e:3f:b7:53:fc:2a:58:e2:59:bf:58:81:94:64:5b:7c:43: 20:f6:37:77:d3:e0:89:ff:cf:38:9f:67:58:1e:3e:c8:00:8d: 7d:88:e0:71:af:1f:39:e6:68:a2:18:02:97:f2:db:02:d8:21: ea:9c:d8:dc:fe:8c:60:10:3d:8d:d1:f6:f6:1a:1c:13:38:d4: 64:b8:8b:11:b0:90:5b:20:15:d5:d0:43:07:05:27:a5:13:c7: 3a:43:25:87 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5MkQxMTAvBgNVBAUTKDdERDg1RUM0Mzk3ODZGRDQyRTBCRjdCNzIxMzc3NjVG MDVEMEU5RkEwHhcNMjUwMzAzMDQ1NzAwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGQ3Zi02YTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuw85HFAv6S+zVGGAcvPIka87RvY3ILsIOyEdYVak49GCm1xknvSc1ITuqY9a bgrSdixEAi1KLV9Kmvx5q2KisUYtm/PvJFCrCXjVz7s7WBlngDyhSzAdLbR+sS5s 7Q6yh/KX6NUlLd/VpUVFpyGGQQrpZ3gqjODkgZFwTcOMU96vXtuLHVXqYvffSGJT 2nLLh7mIh4x9UtBVDZxUc1B39HaigWscYhu9gTQbttXjhRC/u84+LUkBgd4j11UJ wUw9VoAeCTtQOf85yck7KIXC1FQBykYJHhpMjhTf+gMP5pjeXdhxXaHMWIvPmgQ8 q4tJkxSI4BJQ7LNQsdfKPsdW9QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAUiGvd+ OWhWj0v8a8skq0oSqf2JMB8GA1UdIwQYMBaAFH3YXsQ5eG/ULgv3tyE3dl8F0On6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjkyRC82QkUyQ0FEMEJE MzIxMUVEODRBODI4MDlDNEY5QUUwMi9mZGhleERsNGI5UXVDX2UzSVRkMlh3WFE2 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZkaGV4RGw0YjlRdUNfZTNJVGQyWHdYUTZmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI5MkQvNkJFMkNBRDBCRDMyMTFFRDg0QTgyODA5QzRGOUFFMDIvOTlCMTBFQzRC RDM1MTFFRDgzN0RFRDBEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ2MjMA8EAgACMAkDBwAgAQ3x58AwDQYJKoZIhvcNAQELBQADggEB AFms7/fEfMAGH7XBULUQlAEXnfo3UI21dcLBeuuzcDgVUkGHAZXUnKlXR6g1HqlO Z9Ewzt9l2+7eNLsMLOAqh6a9WHB6XWvZHhAzUQMnyPMr+gYcXou3tfVgKEckfiRA 7akfQEYHcbRTzR1BH7oE5E5WU94uIzPr/enL250MB1UQerQgkxAte67UG6NZFmt9 gnHOhNDAS+hxgvoUh5L+h4vJTcGeP7dT/CpY4lm/WIGUZFt8QyD2N3fT4In/zzif Z1gePsgAjX2I4HGvHznmaKIYApfy2wLYIeqc2Nz+jGAQPY3R9vYaHBM41GS4ixGw kFsgFdXQQwcFJ6UTxzpDJYc= -----END CERTIFICATE-----Generated at Mon Mar 2 03:58:44 2026 by rpki-client