$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/35A803641F1C11ECAD024E53C4F9AE02.roa File: 35A803641F1C11ECAD024E53C4F9AE02.roa (raw, json) Hash identifier: cSxGZRj937axZ3zvkYARaKr7TQtG85OziJi2pYDyKp4= Subject key identifier: 4F:46:DD:A4:65:3F:DD:3E:98:2E:0B:8A:E9:13:49:B1:10:62:30:E5 Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 07F8 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/35A803641F1C11ECAD024E53C4F9AE02.roa Signing time: Wed 08 Oct 2025 22:24:30 +0000 ROA not before: Wed 08 Oct 2025 22:24:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 18159 IP address blocks: 202.124.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 23:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2040 (0x7f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 8 22:24:30 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6e49e-9f77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3b:cc:5d:17:c7:de:d8:9f:1b:b1:29:1b:33: 98:af:08:67:5e:c4:c6:ad:37:35:98:c4:58:54:bd: 8c:23:e4:e6:88:d8:0c:6f:d9:65:81:ed:87:d9:ca: 9d:71:ec:df:b1:18:e3:b7:87:76:32:b2:26:5f:27: f8:1f:a0:8f:69:3c:97:fa:be:47:00:1f:80:06:02: 23:d8:8f:d2:9f:2f:fe:ae:cb:2a:dc:e1:25:6f:b3: b5:90:3a:d2:f5:64:cf:ba:96:60:a6:71:7d:40:89: 6b:09:9b:f9:08:05:e1:e6:4d:57:8c:31:f1:6f:e7: 27:5b:3e:f9:df:dc:e9:61:af:6b:ec:e4:1d:3e:39: f2:a2:08:84:16:7d:4a:82:74:82:ee:5b:22:89:2b: 83:1c:2b:27:08:7d:fe:c8:e9:e5:15:78:c3:02:88: eb:e8:c0:26:ae:86:c0:26:41:5e:22:84:89:0a:de: 6e:fa:5f:e2:59:48:ff:24:2e:9f:c1:2f:ca:e7:9b: 21:e5:d4:ef:63:3b:86:1f:a3:1f:49:0a:f2:3f:33: e9:d7:b7:bc:03:1e:d7:52:2e:c2:f3:74:e7:e2:3c: 5a:a8:39:3a:ba:2e:86:32:63:32:c1:23:a1:0d:51: a7:48:3f:c3:41:b7:51:0c:62:bd:d5:62:d7:5b:14: 27:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:46:DD:A4:65:3F:DD:3E:98:2E:0B:8A:E9:13:49:B1:10:62:30:E5 X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/35A803641F1C11ECAD024E53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.124.100.0/24 Signature Algorithm: sha256WithRSAEncryption a4:b2:5b:db:1a:06:69:b4:fe:ee:31:42:69:52:df:77:f2:01: 6a:28:16:ac:15:2b:aa:8a:0f:8f:1d:78:d1:ed:b8:3d:ea:b1: bd:fb:83:8d:7e:e2:14:8f:72:3f:50:84:a6:e9:bf:b9:ee:1e: 73:82:73:50:84:da:6d:38:03:1e:14:d8:1d:45:7b:5e:78:bc: 44:42:7b:dd:a0:14:ac:29:1f:3c:2f:f3:20:a9:e2:38:0d:b2: 4d:c2:e1:96:40:83:52:7e:f1:95:8a:23:9f:dc:34:c4:25:27: 5c:8b:ab:24:5b:8a:79:87:d3:85:da:01:22:e7:e0:83:cd:c8: d2:4a:dd:8c:00:30:47:1b:c1:d2:14:f6:a5:12:59:60:fd:07: 8b:e6:9f:03:9c:c0:61:da:ef:7d:88:62:f6:ca:d8:4c:06:56: 4d:7f:7a:79:94:60:2b:c8:ad:6a:77:52:a9:cd:a9:f3:90:ca: 3c:00:62:5a:e0:54:12:a4:05:2c:25:6f:18:4c:8c:f1:d0:e0: a6:9e:42:f1:fd:df:ec:b1:57:2f:ce:2e:83:db:c6:4b:af:fe: 8a:55:8c:59:b5:3b:38:bd:ca:f2:f2:48:88:2d:c4:dc:f4:ba: b8:5d:ab:e1:21:03:40:4c:27:6b:8b:db:f7:2d:d3:6e:2b:e7: 18:1d:c1:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjUxMDA4MjIyNDMwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZTQ5ZS05Zjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujvMXRfH3tifG7EpGzOYrwhnXsTGrTc1mMRYVL2MI+TmiNgMb9llge2H2cqd cezfsRjjt4d2MrImXyf4H6CPaTyX+r5HAB+ABgIj2I/Sny/+rssq3OElb7O1kDrS 9WTPupZgpnF9QIlrCZv5CAXh5k1XjDHxb+cnWz7539zpYa9r7OQdPjnyogiEFn1K gnSC7lsiiSuDHCsnCH3+yOnlFXjDAojr6MAmrobAJkFeIoSJCt5u+l/iWUj/JC6f wS/K55sh5dTvYzuGH6MfSQryPzPp17e8Ax7XUi7C83Tn4jxaqDk6ui6GMmMywSOh DVGnSD/DQbdRDGK91WLXWxQn4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFE9G3aRl P90+mC4LiukTSbEQYjDlMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvMzVBODAzNjQx RjFDMTFFQ0FEMDI0RTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKfGQwDQYJKoZIhvcNAQELBQADggEBAKSyW9saBmm0/u4x QmlS33fyAWooFqwVK6qKD48deNHtuD3qsb37g41+4hSPcj9QhKbpv7nuHnOCc1CE 2m04Ax4U2B1Fe154vERCe92gFKwpHzwv8yCp4jgNsk3C4ZZAg1J+8ZWKI5/cNMQl J1yLqyRbinmH04XaASLn4IPNyNJK3YwAMEcbwdIU9qUSWWD9B4vmnwOcwGHa732I YvbK2EwGVk1/enmUYCvIrWp3UqnNqfOQyjwAYlrgVBKkBSwlbxhMjPHQ4KaeQvH9 3+yxVy/OLoPbxkuv/opVjFm1Ozi9yvLySIgtxNz0urhdq+EhA0BMJ2uL2/ct024r 5xgdwY0= -----END CERTIFICATE-----Generated at Thu Oct 23 01:27:10 2025 by rpki-client