$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/03706138786411EC8624EB12C4F9AE02.roa File: 03706138786411EC8624EB12C4F9AE02.roa (raw, json) Hash identifier: EGqbfoF9jJWPU0BnzC3V2PXkWe0y4Oy0kA3ja8zkkX8= Subject key identifier: 0C:E0:53:46:B7:5C:48:29:B5:E0:5D:84:4A:47:B9:20:29:87:F5:7B Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 0999 Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/03706138786411EC8624EB12C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:23:00 +0000 ROA not before: Fri 28 Mar 2025 21:13:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 34440 IP address blocks: 103.35.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2457 (0x999) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Mar 28 21:13:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a475f3-6388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6a:53:fb:5b:b1:17:29:44:ed:05:25:4c:47: e4:05:ff:64:b0:27:21:f9:47:a5:5d:f1:51:a7:0d: 73:7b:1c:a4:71:a0:bc:15:43:2f:37:d9:c9:e1:56: 0e:64:5f:29:4d:c4:df:0e:c2:ed:4a:ab:13:c4:09: d8:9c:71:b4:37:eb:df:18:d2:52:b6:15:b4:a2:fd: 30:d3:8d:96:d0:31:8d:bc:6b:97:e0:7c:86:18:84: 36:01:78:8b:88:e7:a3:ae:32:2f:b5:fe:48:20:71: 4b:87:4f:83:dd:74:e7:09:fb:bb:ab:f1:be:53:bd: 91:2b:f5:7d:b8:d8:4f:1a:bf:aa:ce:41:64:41:26: a6:45:75:04:03:ce:02:4a:14:da:83:f2:03:50:02: 7e:69:f5:b1:92:72:72:08:1e:df:c0:16:50:23:b0: 3d:71:c5:aa:a1:4f:4c:09:f9:e4:28:2a:7c:21:c4: ab:36:06:d1:87:3e:bf:b9:83:18:89:06:eb:bc:e2: 18:10:51:15:9d:aa:af:ba:1f:df:83:36:3b:f0:15: 9a:9c:c4:c8:38:2e:84:fa:20:26:b2:b5:58:93:2d: e8:6c:e4:c8:2f:ec:24:52:ed:bf:19:10:e9:38:f4: cd:0e:aa:22:19:76:a7:1c:83:a3:e8:9d:b4:91:2c: 24:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:E0:53:46:B7:5C:48:29:B5:E0:5D:84:4A:47:B9:20:29:87:F5:7B X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/03706138786411EC8624EB12C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.35.91.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:da:df:65:99:3f:72:24:f7:40:19:22:1c:15:ff:06:a7:54: 79:9f:cf:05:38:7c:ed:69:95:e9:66:ea:cc:af:e3:c1:44:90: 34:2e:f1:db:08:aa:b1:0f:11:89:c2:c5:4c:eb:0c:91:24:ed: 63:66:ff:b2:4f:4a:be:12:68:b6:0d:c7:48:fa:0e:77:85:98: b9:57:79:69:e1:8b:e8:d7:c4:d3:6c:d8:61:e5:24:0f:c9:c0: b0:bf:1e:44:51:b1:7a:1b:96:99:18:43:20:95:63:f9:c5:79: 24:9f:72:8d:d0:3c:02:38:e4:f5:60:42:17:36:bd:26:cf:ba: 5e:b0:a1:81:ca:5c:03:89:2c:4c:3a:b9:2f:24:fd:1c:26:f1: b4:92:d6:5a:6a:1d:ec:7c:eb:7a:08:e1:3b:f9:b3:a8:49:73: b6:61:e6:eb:eb:8e:1a:4f:53:8e:a4:81:43:a6:4e:a2:5e:8f: cb:13:d0:86:5d:c7:e0:5f:3f:fa:8a:c8:31:d9:a0:9b:ab:72: f4:52:a8:81:5e:90:f5:dc:40:b2:ab:c8:71:fb:08:a9:60:73: 69:21:99:8a:ea:f6:38:0c:ac:31:a8:5d:2d:ff:bd:c3:de:9f: cc:87:59:95:86:13:6f:6c:02:37:98:f6:f0:e5:c1:12:2f:0e: bd:7f:5e:3e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjUwMzI4MjExMzQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzVmMy02Mzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2pT+1uxFylE7QUlTEfkBf9ksCch+UelXfFRpw1zexykcaC8FUMvN9nJ4VYO ZF8pTcTfDsLtSqsTxAnYnHG0N+vfGNJSthW0ov0w042W0DGNvGuX4HyGGIQ2AXiL iOejrjIvtf5IIHFLh0+D3XTnCfu7q/G+U72RK/V9uNhPGr+qzkFkQSamRXUEA84C ShTag/IDUAJ+afWxknJyCB7fwBZQI7A9ccWqoU9MCfnkKCp8IcSrNgbRhz6/uYMY iQbrvOIYEFEVnaqvuh/fgzY78BWanMTIOC6E+iAmsrVYky3obOTIL+wkUu2/GRDp OPTNDqoiGXanHIOj6J20kSwkTQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAzgU0a3 XEgpteBdhEpHuSAph/V7MB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMEExNjIwOEFBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvMDM3MDYxMzg3 ODY0MTFFQzg2MjRFQjEyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZyNbMA0GCSqGSIb3DQEBCwUAA4IBAQAO2t9lmT9yJPdAGSIcFf8G p1R5n88FOHztaZXpZurMr+PBRJA0LvHbCKqxDxGJwsVM6wyRJO1jZv+yT0q+Emi2 DcdI+g53hZi5V3lp4Yvo18TTbNhh5SQPycCwvx5EUbF6G5aZGEMglWP5xXkkn3KN 0DwCOOT1YEIXNr0mz7pesKGBylwDiSxMOrkvJP0cJvG0ktZaah3sfOt6COE7+bOo SXO2Yebr644aT1OOpIFDpk6iXo/LE9CGXcfgXz/6isgx2aCbq3L0UqiBXpD13ECy q8hx+wipYHNpIZmK6vY4DKwxqF0t/73D3p/Mh1mVhhNvbAI3mPbw5cESLw69f14+ -----END CERTIFICATE-----Generated at Mon Mar 2 17:41:46 2026 by rpki-client