$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/35A2418C45AE11ECB857890EC4F9AE02.roa File: 35A2418C45AE11ECB857890EC4F9AE02.roa (raw, json) Hash identifier: 1S4BYpNOabN3d/LnYoJIPgaMIRT82AJo33zkA94dJ9s= Subject key identifier: 87:92:71:99:68:C5:A2:70:9F:6E:7C:A1:2F:61:B6:57:70:A1:AE:FC Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 0530 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/35A2418C45AE11ECB857890EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:30:22 +0000 ROA not before: Sun 05 Oct 2025 00:26:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 64098 IP address blocks: 103.73.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Oct 5 00:26:13 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a477ae-a58e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:d7:20:5d:93:f0:55:41:56:7d:37:b7:48:f3: db:04:96:1a:bc:7e:fb:df:fb:ab:91:9d:fd:b5:2c: 5a:5a:04:96:4d:fe:98:7f:28:b0:78:c4:92:6f:93: f6:6f:d2:ae:5c:46:ba:86:bd:04:e0:3d:2d:1b:c7: 7f:88:ab:c8:45:8a:fe:1f:ec:5a:3f:94:33:85:cd: da:1d:c8:f5:8e:6c:46:5f:6a:10:df:05:1e:41:7e: ed:0a:01:4b:b7:c8:dd:be:ce:36:50:aa:b2:d4:bf: 63:9f:51:13:94:64:c8:b9:1b:8f:a5:02:85:31:e8: f0:75:3a:5e:10:87:42:23:67:4b:1a:e4:d5:53:10: a1:72:90:e9:05:07:6a:de:4b:d3:40:e7:ca:be:ac: 66:4a:70:dc:da:86:a3:47:fe:86:63:2e:1f:5c:0b: 26:43:4d:9d:45:75:e1:43:d6:82:2c:f5:b2:03:51: a2:c3:f6:d8:16:63:01:41:a9:b3:d4:77:9e:22:89: 3b:7f:68:92:88:f0:1a:4d:9b:53:0c:10:c2:83:5e: e7:6e:bc:f2:75:75:19:4f:3b:58:9b:07:08:5b:32: a5:d3:05:22:8e:16:85:1e:8d:37:6e:49:4b:f4:30: a7:13:b7:88:61:86:35:9e:a8:95:6b:6e:73:db:8c: a0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:92:71:99:68:C5:A2:70:9F:6E:7C:A1:2F:61:B6:57:70:A1:AE:FC X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/35A2418C45AE11ECB857890EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.73.84.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:0b:3c:36:2d:4d:dd:8a:97:39:a9:ea:7c:6b:b5:cc:c3:fa: 49:f0:d3:f9:c1:11:f7:b6:ea:6a:4a:eb:9b:3d:71:c8:23:35: 76:ae:a0:be:1e:84:be:d3:3e:34:0f:f8:41:1c:a8:1e:d2:58: 2b:27:a6:d3:74:7b:9b:24:57:be:3f:05:17:b4:49:c8:4c:72: d1:2d:c4:18:0e:a5:68:6d:97:51:36:69:6a:67:21:65:9b:22: 0c:3a:c4:6e:23:68:62:91:4d:92:2e:a4:bd:bb:0e:4b:ce:29: e2:1f:76:28:92:d5:f4:a1:00:02:a8:70:a3:86:8f:d3:19:6f: 61:34:3c:8f:5f:7a:5e:80:16:0b:b1:e0:c7:15:22:ef:08:3c: 55:ce:9e:a9:40:ea:57:30:95:20:42:6e:69:e7:88:e3:67:76: 22:9d:e0:89:1f:01:ea:b5:6e:f6:d4:1c:f2:9f:00:49:7a:7b: d5:1b:54:3b:16:9e:bc:21:70:68:e9:4f:8a:7d:08:96:f6:8e: b0:36:11:1f:e4:0b:ca:a1:3e:77:ea:37:18:f3:b4:09:c7:3e: a5:39:99:c0:8b:38:f1:11:b5:aa:ef:f0:0b:a4:c9:ea:de:76: 16:4f:75:93:e6:51:3f:fe:59:fc:52:32:98:e0:41:2b:19:74: 3c:53:79:b4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjUxMDA1MDAyNjEzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzdhZS1hNThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjtcgXZPwVUFWfTe3SPPbBJYavH773/urkZ39tSxaWgSWTf6YfyiweMSSb5P2 b9KuXEa6hr0E4D0tG8d/iKvIRYr+H+xaP5Qzhc3aHcj1jmxGX2oQ3wUeQX7tCgFL t8jdvs42UKqy1L9jn1ETlGTIuRuPpQKFMejwdTpeEIdCI2dLGuTVUxChcpDpBQdq 3kvTQOfKvqxmSnDc2oajR/6GYy4fXAsmQ02dRXXhQ9aCLPWyA1Giw/bYFmMBQamz 1HeeIok7f2iSiPAaTZtTDBDCg17nbrzydXUZTztYmwcIWzKl0wUijhaFHo03bklL 9DCnE7eIYYY1nqiVa25z24ygtQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIeScZlo xaJwn258oS9htldwoa78MB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQzNTcvQjg0QjEwRUM0NUE4MTFFQzhCMTQwNTU4QzRGOUFFMDIvMzVBMjQxOEM0 NUFFMTFFQ0I4NTc4OTBFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ0lUMA0GCSqGSIb3DQEBCwUAA4IBAQCeCzw2LU3dipc5qep8a7XM w/pJ8NP5wRH3tupqSuubPXHIIzV2rqC+HoS+0z40D/hBHKge0lgrJ6bTdHubJFe+ PwUXtEnITHLRLcQYDqVobZdRNmlqZyFlmyIMOsRuI2hikU2SLqS9uw5LziniH3Yo ktX0oQACqHCjho/TGW9hNDyPX3pegBYLseDHFSLvCDxVzp6pQOpXMJUgQm5p54jj Z3YineCJHwHqtW721BzynwBJenvVG1Q7Fp68IXBo6U+KfQiW9o6wNhEf5AvKoT53 6jcY87QJxz6lOZnAizjxEbWq7/ALpMnq3nYWT3WT5lE//ln8UjKY4EErGXQ8U3m0 -----END CERTIFICATE-----Generated at Mon Mar 2 16:46:45 2026 by rpki-client