$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC0C9/C5DABEEA5FB411F08203447DC4F9AE02/35AFBD5AE0D011F09634A562536F56BC.roa File: 35AFBD5AE0D011F09634A562536F56BC.roa (raw, json) Hash identifier: Xu7NiqZL9JdGnjrkCnt/wdoZ7leyujbZwGzelNxEsxs= Subject key identifier: 2E:F2:B8:B6:69:3B:72:AD:39:4A:23:1D:EF:EE:AC:6B:73:A0:93:B4 Certificate issuer: /CN=A91CC0C9/serialNumber=47B577B9C8ABE2C3600C5B4E793FF4D47B650620 Certificate serial: EE Authority key identifier: 47:B5:77:B9:C8:AB:E2:C3:60:0C:5B:4E:79:3F:F4:D4:7B:65:06:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R7V3ucir4sNgDFtOeT_01HtlBiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC0C9/C5DABEEA5FB411F08203447DC4F9AE02/35AFBD5AE0D011F09634A562536F56BC.roa Signing time: Wed 20 May 2026 06:26:12 +0000 ROA not before: Wed 20 May 2026 06:26:12 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137933 IP address blocks: 43.224.30.0/24 maxlen: 24 43.224.31.0/24 maxlen: 24 45.117.144.0/24 maxlen: 24 45.119.252.0/24 maxlen: 24 45.119.253.0/24 maxlen: 24 45.120.77.0/24 maxlen: 24 103.43.68.0/24 maxlen: 24 103.46.226.0/24 maxlen: 24 103.46.227.0/24 maxlen: 24 103.50.89.0/24 maxlen: 24 103.54.46.0/24 maxlen: 32 103.57.203.0/24 maxlen: 24 103.82.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC0C9/C5DABEEA5FB411F08203447DC4F9AE02/R7V3ucir4sNgDFtOeT_01HtlBiA.crl rsync://rpki.apnic.net/member_repository/A91CC0C9/C5DABEEA5FB411F08203447DC4F9AE02/R7V3ucir4sNgDFtOeT_01HtlBiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R7V3ucir4sNgDFtOeT_01HtlBiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 07:14:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC0C9, serialNumber=47B577B9C8ABE2C3600C5B4E793FF4D47B650620 Validity Not Before: May 20 06:26:12 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6a0d5404-2194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f3:e1:54:27:77:67:a0:20:22:8b:b8:99:b6: 70:cb:68:ae:af:1f:94:77:07:cc:55:59:c0:3e:46: 0f:d6:4c:d0:08:c7:fb:fa:67:7d:c3:26:e7:da:d0: a3:52:de:b8:88:01:90:c1:45:d8:42:5f:3e:dc:27: 00:b7:ae:a4:8a:3e:1a:4b:a4:52:89:a9:a8:e6:d4: e8:85:5c:86:1f:a9:14:03:e2:18:e0:96:ec:81:5b: 00:c3:e9:29:97:ce:92:a7:f4:26:f1:90:eb:9a:42: 11:00:1e:d6:65:c8:fd:53:65:eb:20:93:81:35:55: a0:76:b3:94:cf:80:52:0f:6e:0d:7a:ff:c4:1c:18: 42:39:11:d6:ed:8e:06:93:8d:98:80:b1:a4:ec:d7: d3:3e:e4:29:01:5a:1a:6b:a5:db:85:6b:84:55:94: c2:69:16:95:6a:9a:dc:ad:08:1c:a9:85:65:e0:b4: 89:29:eb:51:30:25:60:5b:02:3e:97:7b:c8:3b:63: a9:be:90:42:fc:0a:d5:48:63:5e:2c:e1:6e:3c:fd: c6:12:a7:3f:12:23:7a:6e:1e:02:d2:27:5b:0f:ea: c2:2c:9a:e5:2f:b0:e8:09:7a:ca:3e:65:bb:8a:4d: 00:88:63:9e:39:e4:18:ea:e7:d6:e0:89:ff:84:50: 28:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F2:B8:B6:69:3B:72:AD:39:4A:23:1D:EF:EE:AC:6B:73:A0:93:B4 X509v3 Authority Key Identifier: keyid:47:B5:77:B9:C8:AB:E2:C3:60:0C:5B:4E:79:3F:F4:D4:7B:65:06:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC0C9/C5DABEEA5FB411F08203447DC4F9AE02/R7V3ucir4sNgDFtOeT_01HtlBiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R7V3ucir4sNgDFtOeT_01HtlBiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC0C9/C5DABEEA5FB411F08203447DC4F9AE02/35AFBD5AE0D011F09634A562536F56BC.roa sbgp-ipAddrBlock: critical IPv4: 43.224.30.0/23 45.117.144.0/24 45.119.252.0/23 45.120.77.0/24 103.43.68.0/24 103.46.226.0/23 103.50.89.0/24 103.54.46.0/24 103.57.203.0/24 103.82.140.0/24 Signature Algorithm: sha256WithRSAEncryption 26:c5:88:6d:0b:3f:56:fa:43:de:7f:24:b5:70:0b:59:7b:59: 27:01:58:44:23:53:88:9f:c8:fc:53:ef:3a:a8:06:7b:9b:25: 51:70:b6:45:f6:95:7e:6e:ce:db:76:b2:1d:40:a1:73:c6:ed: c3:47:91:4c:ea:da:bc:24:d1:b2:f6:ba:9b:4e:c4:a8:f9:d2: 7a:29:23:84:4d:01:ea:0f:4f:08:00:a1:d2:a0:04:99:6f:2c: 0d:28:73:be:ed:e7:d7:a9:76:9f:8d:6d:ff:ab:12:c9:56:e3: e3:a7:89:61:d3:7b:36:cb:77:98:a3:ab:18:bc:89:bd:b2:57: 9f:57:bb:ce:83:fa:39:36:9b:7b:45:95:08:26:ce:3e:81:7e: 2f:5c:34:e4:b9:d6:68:9f:de:f9:c3:e7:8c:17:21:12:6d:35: a8:fa:c9:e7:dc:f4:8a:d8:20:b0:97:0a:76:81:d0:41:d4:97: ed:df:c9:72:54:cc:63:32:ff:c2:0b:99:d0:7d:c1:85:af:77: c2:8c:48:ab:46:ad:59:66:15:98:77:97:10:98:ba:48:55:b5: bf:d4:20:26:c7:ce:30:ac:1a:66:50:4c:96:b0:af:ac:00:ad: a3:36:2a:d5:cf:0c:67:17:ec:33:09:28:af:51:b8:2b:40:79: cb:e8:1c:72 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MwQzkxMTAvBgNVBAUTKDQ3QjU3N0I5QzhBQkUyQzM2MDBDNUI0RTc5M0ZGNEQ0 N0I2NTA2MjAwHhcNMjYwNTIwMDYyNjEyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBkNTQwNC0yMTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvPhVCd3Z6AgIou4mbZwy2iurx+UdwfMVVnAPkYP1kzQCMf7+md9wybn2tCj Ut64iAGQwUXYQl8+3CcAt66kij4aS6RSiamo5tTohVyGH6kUA+IY4JbsgVsAw+kp l86Sp/Qm8ZDrmkIRAB7WZcj9U2XrIJOBNVWgdrOUz4BSD24Nev/EHBhCORHW7Y4G k42YgLGk7NfTPuQpAVoaa6XbhWuEVZTCaRaVaprcrQgcqYVl4LSJKetRMCVgWwI+ l3vIO2OpvpBC/ArVSGNeLOFuPP3GEqc/EiN6bh4C0idbD+rCLJrlL7DoCXrKPmW7 ik0AiGOeOeQY6ufW4In/hFAoAwIDAQABo4ICljCCApIwHQYDVR0OBBYEFC7yuLZp O3KtOUojHe/urGtzoJO0MB8GA1UdIwQYMBaAFEe1d7nIq+LDYAxbTnk/9NR7ZQYg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzBDOS9DNURBQkVFQTVG QjQxMUYwODIwMzQ0N0RDNEY5QUUwMi9SN1YzdWNpcjRzTmdERnRPZVRfMDFIdGxC aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I3VjN1Y2lyNHNOZ0RGdE9lVF8wMUh0bEJpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0MwQzkvQzVEQUJFRUE1RkI0MTFGMDgyMDM0NDdEQzRGOUFFMDIvMzVBRkJENUFF MEQwMTFGMDk2MzRBNTYyNTM2RjU2QkMucm9hMFUGCCsGAQUFBwEHAQH/BEYwRDBC BAIAATA8AwQBK+AeAwQALXWQAwQBLXf8AwQALXhNAwQAZytEAwQBZy7iAwQAZzJZ AwQAZzYuAwQAZznLAwQAZ1KMMA0GCSqGSIb3DQEBCwUAA4IBAQAmxYhtCz9W+kPe fyS1cAtZe1knAVhEI1OIn8j8U+86qAZ7myVRcLZF9pV+bs7bdrIdQKFzxu3DR5FM 6tq8JNGy9rqbTsSo+dJ6KSOETQHqD08IAKHSoASZbywNKHO+7efXqXafjW3/qxLJ VuPjp4lh03s2y3eYo6sYvIm9slefV7vOg/o5Npt7RZUIJs4+gX4vXDTkudZon975 w+eMFyESbTWo+snn3PSK2CCwlwp2gdBB1Jft38lyVMxjMv/CC5nQfcGFr3fCjEir Rq1ZZhWYd5cQmLpIVbW/1CAmx84wrBpmUEyWsK+sAK2jNirVzwxnF+wzCSivUbgr QHnL6Bxy -----END CERTIFICATE-----Generated at Sat Jun 13 13:28:42 2026 by rpki-client