$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa File: 35A768B8563B11EC94608B5BC4F9AE02.roa (raw, json) Hash identifier: l7BnLnchZpy3V0jQTXDCx9KU7qJONYm3aNxaqwd5cQs= Subject key identifier: DD:DC:12:82:26:31:15:48:23:62:81:0F:2A:F6:20:C2:5E:C0:97:61 Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 0626 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:08:11 +0000 ROA not before: Wed 08 Oct 2025 06:53:10 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 13335 IP address blocks: 103.172.110.0/23 maxlen: 23 125.3.192.0/21 maxlen: 21 203.168.192.0/20 maxlen: 20 222.167.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 23:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1574 (0x626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Oct 8 06:53:10 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58bbb-f97d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e2:e6:43:99:3b:95:e5:0c:ea:84:95:50:21: b7:73:58:bc:f7:e3:f5:ae:eb:5c:b8:f9:59:75:0c: 64:f4:39:71:e7:c0:c7:0d:90:c7:85:d4:ae:83:cf: 0a:d6:f6:2f:3f:ee:19:7d:a4:c5:c4:2e:7a:eb:25: 49:fa:ca:0d:a5:27:27:6a:fe:ac:63:d3:aa:38:e3: 1f:c4:e4:15:0f:b9:2a:69:29:71:25:a8:09:f1:de: 29:71:5f:05:74:a0:f0:b4:65:ee:7f:62:3b:80:2c: 1a:ef:1d:b2:6c:8f:6e:71:a1:2f:90:73:a3:a9:e2: fc:e1:ba:14:e8:bb:94:8b:30:8d:ed:6d:26:95:e1: 4a:19:da:bc:1a:20:bb:62:0f:8e:94:dc:b8:3c:c8: 8c:98:e0:ab:07:8e:d2:64:ef:b4:35:4c:1f:37:a8: 94:5c:b5:a5:0b:1c:04:11:d4:5d:13:3b:84:ab:e9: 34:8c:46:99:85:98:99:a5:81:fd:23:25:7f:bc:9f: 9d:c8:96:b0:91:24:0e:99:20:95:cf:d6:06:9f:58: a9:39:3f:50:96:5b:f5:f7:bf:c7:09:b8:90:11:40: 47:ec:7a:d1:ea:bd:3b:d6:80:4a:c6:76:2c:04:c5: e6:b0:ad:74:4c:d3:bc:9c:5c:be:40:41:6e:0b:b1: 49:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DC:12:82:26:31:15:48:23:62:81:0F:2A:F6:20:C2:5E:C0:97:61 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.172.110.0/23 125.3.192.0/21 203.168.192.0/20 222.167.32.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:62:31:16:99:da:9a:3f:5e:c1:1f:ff:21:67:0c:b1:53:b1: e5:f3:d7:aa:d9:a6:81:6b:28:eb:0c:64:74:de:8c:a5:3d:26: dc:e3:e8:f0:f9:2b:c9:a9:7a:7d:3f:07:e6:d6:ba:2c:02:a0: e0:32:14:bc:dd:06:1e:51:9a:47:43:82:df:54:16:24:e7:3d: 4c:4c:0b:a3:21:7c:bc:3c:8c:7b:d3:27:f9:d7:cd:29:0b:b9: 05:97:24:0e:61:86:f6:84:a9:65:73:41:b0:b2:29:ac:68:bf: 22:73:8c:51:6d:d3:a1:6a:06:4c:40:d8:3b:9f:54:99:c0:b4: f2:51:2f:a4:cc:e4:e3:7a:e8:b5:d9:9e:c1:00:93:8a:f3:33: 33:36:a7:83:ca:fd:24:61:93:e4:58:a8:2a:9b:c1:f5:8b:8a: 43:3a:a8:06:2b:e2:ed:6c:5a:72:8d:cd:ba:98:a8:5c:19:4a: 28:bf:54:d6:06:16:f7:be:74:09:eb:95:24:87:23:8a:5c:b5: 18:7b:03:0a:1e:fa:91:f0:15:c6:f4:05:06:56:8b:66:36:90: 6c:0c:89:f7:49:c2:dd:17:7b:f4:df:07:9e:83:89:a5:db:e6: 54:25:8d:b4:cb:0a:bc:73:3a:37:82:fa:f8:9a:80:88:30:bc: f7:dc:99:e4 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICBiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUxMDA4MDY1MzEwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGJiYi1mOTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuLmQ5k7leUM6oSVUCG3c1i89+P1rutcuPlZdQxk9Dlx58DHDZDHhdSug88K 1vYvP+4ZfaTFxC566yVJ+soNpScnav6sY9OqOOMfxOQVD7kqaSlxJagJ8d4pcV8F dKDwtGXuf2I7gCwa7x2ybI9ucaEvkHOjqeL84boU6LuUizCN7W0mleFKGdq8GiC7 Yg+OlNy4PMiMmOCrB47SZO+0NUwfN6iUXLWlCxwEEdRdEzuEq+k0jEaZhZiZpYH9 IyV/vJ+dyJawkSQOmSCVz9YGn1ipOT9Qllv197/HCbiQEUBH7HrR6r071oBKxnYs BMXmsK10TNO8nFy+QEFuC7FJKQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFN3cEoIm MRVII2KBDyr2IMJewJdhMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvMzVBNzY4Qjg1 NjNCMTFFQzk0NjA4QjVCQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQBZ6xuAwQDfQPAAwQEy6jAAwQC3qcgMA0GCSqGSIb3DQEBCwUAA4IB AQCcYjEWmdqaP17BH/8hZwyxU7Hl89eq2aaBayjrDGR03oylPSbc4+jw+SvJqXp9 Pwfm1rosAqDgMhS83QYeUZpHQ4LfVBYk5z1MTAujIXy8PIx70yf5180pC7kFlyQO YYb2hKllc0GwsimsaL8ic4xRbdOhagZMQNg7n1SZwLTyUS+kzOTjeui12Z7BAJOK 8zMzNqeDyv0kYZPkWKgqm8H1i4pDOqgGK+LtbFpyjc26mKhcGUoov1TWBhb3vnQJ 65UkhyOKXLUYewMKHvqR8BXG9AUGVotmNpBsDIn3ScLdF3v03weeg4ml2+ZUJY20 ywq8czo3gvr4moCIMLz33Jnk -----END CERTIFICATE-----Generated at Wed Mar 4 14:26:10 2026 by rpki-client