$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa File: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (raw, json) Hash identifier: 9Mz8rV54HoMelrPRHK31KXuQst4w6EzFVX+5Qn5V6r8= Subject key identifier: DA:1A:28:F7:C9:40:39:58:57:46:20:BD:5A:83:EC:93:D0:BE:45:42 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 03FC Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:00:37 +0000 ROA not before: Wed 21 May 2025 01:17:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 125 IP address blocks: 103.35.217.0/24 maxlen: 24 103.232.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1020 (0x3fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: May 21 01:17:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42a65-3163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f5:f9:19:d0:77:06:63:1e:28:8c:19:41:33: bb:15:4f:88:e6:e2:77:33:15:d1:a8:e5:29:3b:e0: 18:15:44:ca:ff:55:47:af:cf:af:83:55:83:7b:e4: e5:cf:8e:c7:a2:bc:73:aa:cb:7c:0f:d6:9d:df:03: 96:60:f4:08:ce:34:b7:dd:98:25:08:6a:98:9f:ae: 4a:83:97:4b:cb:8f:8d:04:70:38:35:93:c6:68:eb: a9:04:8a:83:48:4c:34:18:58:e3:d9:0a:04:97:63: fa:9e:af:ef:20:25:a3:20:87:f2:25:27:12:cc:fe: a8:13:ff:da:ba:15:d1:a3:d8:0a:ac:eb:be:54:ce: b2:47:6d:1a:27:62:32:45:5f:22:85:f6:d7:c5:48: 03:59:4b:31:9a:db:69:1a:0c:2f:3a:5c:e1:8a:9e: aa:a2:20:5b:2b:e0:b6:47:61:9e:f5:21:2c:76:1a: de:ff:8c:12:44:59:0d:60:7f:ad:40:9e:87:d7:00: 6f:4d:3d:82:cb:e8:3b:d3:cc:c3:52:d7:4a:be:04: 8c:f7:df:8f:2b:db:ff:1d:78:da:ea:ee:59:e5:cf: cb:ca:9f:98:9c:58:59:8c:22:c8:8e:f4:e2:74:b3: 8a:81:c1:f4:c0:ae:3a:43:68:23:fd:f6:18:3e:67: 8a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:1A:28:F7:C9:40:39:58:57:46:20:BD:5A:83:EC:93:D0:BE:45:42 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.35.217.0/24 103.232.224.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:ca:0d:24:53:f2:3a:3a:26:1f:ef:36:ee:ad:f9:da:15:75: ea:a7:b9:44:34:46:7d:a5:71:10:ca:4f:4f:5e:a3:f6:7b:c6: 61:fe:43:f3:a9:11:24:77:62:98:2e:a8:9c:72:95:dc:54:5d: 12:c4:19:4b:ef:44:29:a2:37:c5:7f:5f:ad:77:a0:36:bb:90: d3:4f:30:73:61:07:3b:3b:d6:ca:a4:ca:83:b3:52:8b:04:1f: e1:20:22:f3:af:84:e5:0d:dd:6d:d6:67:c2:3f:cb:fb:80:8a: 1a:4a:09:30:26:ea:1e:85:0d:0d:6c:49:ab:4d:19:e2:af:ec: c8:8f:0e:e9:84:08:58:6d:a1:83:25:56:d6:ff:57:d5:56:86: 58:27:74:c0:2e:f4:76:d7:53:05:d4:b0:68:8e:c7:64:57:e8: 04:ed:2f:25:61:c2:9c:57:65:64:74:14:43:c1:c7:f1:56:f0: 7f:31:e1:68:f9:3d:8d:5b:6f:ea:12:73:a5:71:1e:b1:11:ce: 43:f0:4a:84:4a:0d:9c:cc:7a:f4:04:7e:16:27:b7:a4:ab:19: f4:3a:4c:e6:23:61:ce:36:ce:bb:00:45:db:0c:ba:56:11:09: 89:1c:39:f2:75:80:73:99:b4:79:6c:7d:1d:d4:cc:2e:12:09: d1:86:c7:f9 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICA/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjUwNTIxMDExNzQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmE2NS0zMTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfX5GdB3BmMeKIwZQTO7FU+I5uJ3MxXRqOUpO+AYFUTK/1VHr8+vg1WDe+Tl z47Horxzqst8D9ad3wOWYPQIzjS33ZglCGqYn65Kg5dLy4+NBHA4NZPGaOupBIqD SEw0GFjj2QoEl2P6nq/vICWjIIfyJScSzP6oE//auhXRo9gKrOu+VM6yR20aJ2Iy RV8ihfbXxUgDWUsxmttpGgwvOlzhip6qoiBbK+C2R2Ge9SEsdhre/4wSRFkNYH+t QJ6H1wBvTT2Cy+g708zDUtdKvgSM99+PK9v/HXja6u5Z5c/Lyp+YnFhZjCLIjvTi dLOKgcH0wK46Q2gj/fYYPmeK0QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNoaKPfJ QDlYV0YgvVqD7JPQvkVCMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI4NzUvQzI1REUwRTZCNEU4MTFFQzk4MEM0NDcxQzRGOUFFMDIvQUJCMUVFNjRC NEVEMTFFQ0JBM0QwMTZGQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZyPZAwQAZ+jgMA0GCSqGSIb3DQEBCwUAA4IBAQAbyg0kU/I6OiYf 7zburfnaFXXqp7lENEZ9pXEQyk9PXqP2e8Zh/kPzqREkd2KYLqiccpXcVF0SxBlL 70QpojfFf1+td6A2u5DTTzBzYQc7O9bKpMqDs1KLBB/hICLzr4TlDd1t1mfCP8v7 gIoaSgkwJuoehQ0NbEmrTRnir+zIjw7phAhYbaGDJVbW/1fVVoZYJ3TALvR211MF 1LBojsdkV+gE7S8lYcKcV2VkdBRDwcfxVvB/MeFo+T2NW2/qEnOlcR6xEc5D8EqE Sg2czHr0BH4WJ7ekqxn0OkzmI2HONs67AEXbDLpWEQmJHDnydYBzmbR5bH0d1Mwu EgnRhsf5 -----END CERTIFICATE-----Generated at Mon Mar 2 07:10:59 2026 by rpki-client