$ rpki-client -vvf rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/C2D236E6B70E11EAAE6CE049C4F9AE02.roa File: C2D236E6B70E11EAAE6CE049C4F9AE02.roa (raw, json) Hash identifier: pLBLNv9Fb/TNHhGRqbBg8XhYWJCps7AirU8MPmkm88Y= Subject key identifier: C3:EB:67:81:BE:B2:45:A4:14:26:CB:AF:71:59:36:38:15:CD:A7:D4 Certificate issuer: /CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Certificate serial: 090E Authority key identifier: 11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/C2D236E6B70E11EAAE6CE049C4F9AE02.roa Signing time: Wed 08 Oct 2025 20:21:54 +0000 ROA not before: Wed 08 Oct 2025 20:21:54 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 63399 IP address blocks: 103.35.126.0/24 maxlen: 24 2402:c580::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2318 (0x90e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911849D, serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Validity Not Before: Oct 8 20:21:54 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6c7e1-96b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5e:df:63:f4:ca:85:d4:ba:f8:74:1b:c3:e5: 77:9d:63:48:4b:61:b3:9a:5c:56:c1:97:19:f8:2f: 18:55:a0:cb:89:c1:70:5d:f0:ed:50:5b:40:c2:de: 61:88:10:7c:4f:a2:41:5d:e0:de:d3:33:0b:84:82: 06:20:ab:92:fd:d5:55:7a:a0:58:2a:cc:c1:91:ed: 40:88:64:58:43:8b:1d:56:d0:78:cf:30:a4:7d:b9: 07:cf:96:aa:98:98:ee:c1:52:e5:18:60:52:30:f4: fd:e9:9f:aa:18:55:38:93:f3:37:14:3f:4e:1c:ca: 95:da:1c:25:48:63:5d:62:3d:ee:22:09:22:b0:6d: 49:31:f2:6f:d0:c9:88:64:4c:84:9b:d1:1b:f6:e3: d5:74:42:f2:90:10:6f:21:da:dd:be:18:83:65:e3: 33:fe:62:b0:e4:62:15:31:ee:fd:c8:7d:57:c5:25: 14:be:ff:5c:57:0e:62:81:6e:32:78:8e:8e:cd:87: 7a:4d:4d:76:be:18:b0:f7:88:98:bf:a5:e7:fa:4f: 9d:f6:ff:77:16:e0:0d:2c:2c:20:b6:90:a9:3e:00: 43:29:f2:31:fe:db:ac:56:a3:2c:57:97:a8:39:a3: 79:3e:7c:57:45:e6:5e:04:b4:17:d9:45:e6:11:c7: e7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:EB:67:81:BE:B2:45:A4:14:26:CB:AF:71:59:36:38:15:CD:A7:D4 X509v3 Authority Key Identifier: keyid:11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/C2D236E6B70E11EAAE6CE049C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.126.0/24 IPv6: 2402:c580::/32 Signature Algorithm: sha256WithRSAEncryption 61:2b:36:1c:f0:ef:e2:33:44:d6:a4:f9:b5:c9:bf:f7:65:78: 06:c1:bc:19:fd:21:2f:57:ba:c6:c5:95:6a:b9:8b:07:5c:09: 59:53:ec:8a:64:2f:92:3b:7c:cb:05:3f:c8:a1:8d:6d:bc:b5: 9d:33:c3:61:2c:d9:8b:fd:a5:97:0b:e4:52:3b:68:31:2e:e1: 46:d4:7c:a0:b5:c2:1e:c3:97:c8:d3:81:82:73:cc:c1:de:fd: ce:7a:c7:23:94:08:33:e0:1b:00:c1:ae:24:bb:8a:98:16:8b: 8c:b1:d1:88:f5:11:f9:03:27:25:0d:8e:3d:26:23:4a:d4:c3: a4:3c:80:98:50:98:70:9c:86:ed:85:57:fb:aa:4c:2c:52:4f: cc:50:6e:62:20:34:df:66:a0:d9:71:68:63:3a:95:11:e6:c1: bb:e4:6b:5c:89:43:85:eb:1d:1f:09:a4:d4:18:71:0b:ff:cd: 1a:1f:c9:4e:c8:39:32:fb:7f:d1:1c:92:42:f1:6a:58:78:4f: 3e:d8:5f:c0:15:73:7a:0a:d2:61:bd:a4:47:91:37:88:14:f2: ba:67:da:77:30:a1:9f:df:8a:9e:8f:80:c0:32:82:bc:59:27: 63:37:8d:2b:7b:86:64:6d:a3:43:d3:57:7d:47:0c:90:9b:9e: 12:96:b1:eb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg0OUQxMTAvBgNVBAUTKDExQzk3MjdDQTUyOTJDRTVEQTVENzBCQTg4MkJDMkQ2 NDNGNDEwODUwHhcNMjUxMDA4MjAyMTU0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2YzdlMS05NmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtl7fY/TKhdS6+HQbw+V3nWNIS2GzmlxWwZcZ+C8YVaDLicFwXfDtUFtAwt5h iBB8T6JBXeDe0zMLhIIGIKuS/dVVeqBYKszBke1AiGRYQ4sdVtB4zzCkfbkHz5aq mJjuwVLlGGBSMPT96Z+qGFU4k/M3FD9OHMqV2hwlSGNdYj3uIgkisG1JMfJv0MmI ZEyEm9Eb9uPVdELykBBvIdrdvhiDZeMz/mKw5GIVMe79yH1XxSUUvv9cVw5igW4y eI6OzYd6TU12vhiw94iYv6Xn+k+d9v93FuANLCwgtpCpPgBDKfIx/tusVqMsV5eo OaN5PnxXReZeBLQX2UXmEcfnnQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMPrZ4G+ skWkFCbLr3FZNjgVzafUMB8GA1UdIwQYMBaAFBHJcnylKSzl2l1wuogrwtZD9BCF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODQ5RC80NDFBNzI2NEI2 NkUxMUVBOUIwODcyNDdDNEY5QUUwMi9FY2x5ZktVcExPWGFYWEM2aUN2QzFrUDBF SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VjbHlmS1VwTE9YYVhYQzZpQ3ZDMWtQMEVJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg0OUQvNDQxQTcyNjRCNjZFMTFFQTlCMDg3MjQ3QzRGOUFFMDIvQzJEMjM2RTZC NzBFMTFFQUFFNkNFMDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnI34wDQQCAAIwBwMFACQCxYAwDQYJKoZIhvcNAQELBQAD ggEBAGErNhzw7+IzRNak+bXJv/dleAbBvBn9IS9XusbFlWq5iwdcCVlT7IpkL5I7 fMsFP8ihjW28tZ0zw2Es2Yv9pZcL5FI7aDEu4UbUfKC1wh7Dl8jTgYJzzMHe/c56 xyOUCDPgGwDBriS7ipgWi4yx0Yj1EfkDJyUNjj0mI0rUw6Q8gJhQmHCchu2FV/uq TCxST8xQbmIgNN9moNlxaGM6lRHmwbvka1yJQ4XrHR8JpNQYcQv/zRofyU7IOTL7 f9EckkLxalh4Tz7YX8AVc3oK0mG9pEeRN4gU8rpn2ncwoZ/fip6PgMAygrxZJ2M3 jSt7hmRto0PTV31HDJCbnhKWses= -----END CERTIFICATE-----Generated at Tue Nov 4 17:18:39 2025 by rpki-client