$ rpki-client -vvf rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/2E4BBE4EB4B511EF8A24821EC4F9AE02.roa File: 2E4BBE4EB4B511EF8A24821EC4F9AE02.roa (raw, json) Hash identifier: XjB4kRy9tL8HjPAuoxnetVpAUd8foef1DiSnbt9EdB8= Subject key identifier: 24:CA:99:AB:FB:93:7B:B3:5C:43:B4:79:9B:4B:02:44:ED:FE:0D:CC Certificate issuer: /CN=A9158131/serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Certificate serial: 0B3C Authority key identifier: C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/2E4BBE4EB4B511EF8A24821EC4F9AE02.roa Signing time: Sat 30 Aug 2025 19:40:52 +0000 ROA not before: Sat 30 Aug 2025 19:40:52 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 64018 IP address blocks: 103.35.168.0/24 maxlen: 24 103.35.169.0/24 maxlen: 24 103.35.170.0/24 maxlen: 24 103.35.171.0/24 maxlen: 24 2403:2d40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2876 (0xb3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158131, serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Validity Not Before: Aug 30 19:40:52 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b353c4-f128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4d:5c:13:3e:a0:c4:15:03:06:15:4e:a6:68: 77:14:1b:5d:8e:69:b8:4a:4d:71:06:1a:3c:91:33: 55:8c:61:31:4c:27:c7:ab:a8:4a:fa:ce:a5:c7:18: 47:bf:67:89:2b:cc:a7:4b:ca:57:92:c2:ed:73:ab: b4:0c:dc:bd:b3:84:5f:08:f8:37:43:24:3d:21:ae: 01:ca:2b:6e:a2:0a:81:37:1f:0c:6a:3c:bc:ee:5f: 9e:56:b1:01:72:fc:06:c3:ca:46:0a:44:ed:37:16: 18:0c:71:45:a9:a3:65:0f:74:c9:5d:75:d7:71:1b: 3d:08:41:df:bf:f4:9e:39:fa:2f:cd:b8:f3:6c:2c: ce:b1:a8:df:a3:32:ea:ac:24:14:22:db:af:ba:d3: f0:16:94:d2:05:af:c7:48:14:65:04:4f:96:a1:2c: 80:bd:14:18:47:98:67:6e:a7:fa:16:74:68:51:7b: e8:3c:77:9c:d8:18:69:bf:f3:14:01:a9:b5:84:02: 52:ad:a3:da:c7:89:9f:65:17:6f:60:6e:f7:9e:ef: d2:12:6d:19:80:9d:bc:5b:e5:f5:92:6d:1e:b9:fd: eb:7b:82:ca:18:79:6d:be:48:9d:e6:0e:d6:e2:8b: 09:ac:db:e9:05:b9:fe:e8:02:a8:ec:4f:24:36:36: a0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:CA:99:AB:FB:93:7B:B3:5C:43:B4:79:9B:4B:02:44:ED:FE:0D:CC X509v3 Authority Key Identifier: keyid:C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/2E4BBE4EB4B511EF8A24821EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.168.0/22 IPv6: 2403:2d40::/32 Signature Algorithm: sha256WithRSAEncryption 35:b6:53:28:e1:6e:89:f0:ac:42:ab:be:ae:ee:bf:54:18:af: b6:67:96:70:64:20:f1:54:3a:49:49:28:68:a9:19:0d:66:e4: a4:a9:67:0d:f3:a0:60:60:9d:6a:86:4a:f5:49:42:b2:fe:8b: f4:fe:1e:20:76:1a:c2:5d:ca:5c:5d:1b:37:a2:b6:b1:e5:f9: 60:e9:c7:17:e3:b8:79:87:6e:25:f1:93:e5:15:ac:f8:79:d8: 2f:7c:ed:f1:3d:24:a3:bc:87:e7:f0:0c:bd:bb:53:2a:ae:69: 74:17:42:d4:1c:34:b2:07:76:f1:b5:71:03:bf:68:12:b4:e8: 4b:6e:7e:7b:45:e1:88:54:7d:18:b0:14:3f:1b:ec:f8:ab:88: 34:38:12:bc:34:14:7c:e5:34:aa:0f:37:e4:ed:6b:f5:67:89: 3e:c7:0d:60:e0:cb:e9:6a:2f:39:e6:ef:f9:b0:37:57:38:7a: e5:6c:d4:30:14:a0:a6:ea:85:50:f2:4d:25:03:93:cc:72:43: 82:c6:fb:df:de:ca:66:97:a0:3e:85:aa:b8:de:8a:38:88:81: 5d:8c:46:0b:57:d7:f7:03:b4:98:ed:9c:1b:73:c4:98:8c:8e: 7a:43:6d:61:25:df:6a:85:7b:ec:e3:67:c5:f6:a9:17:2b:c6: d8:82:01:bf -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgxMzExMTAvBgNVBAUTKEM3OUJCRUFBNjYyNDFFRUNGMDFDMzAzMzVEQjE4RUYy QjNGNTYwMjYwHhcNMjUwODMwMTk0MDUyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzNTNjNC1mMTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq01cEz6gxBUDBhVOpmh3FBtdjmm4Sk1xBho8kTNVjGExTCfHq6hK+s6lxxhH v2eJK8ynS8pXksLtc6u0DNy9s4RfCPg3QyQ9Ia4ByituogqBNx8Majy87l+eVrEB cvwGw8pGCkTtNxYYDHFFqaNlD3TJXXXXcRs9CEHfv/SeOfovzbjzbCzOsajfozLq rCQUItuvutPwFpTSBa/HSBRlBE+WoSyAvRQYR5hnbqf6FnRoUXvoPHec2Bhpv/MU Aam1hAJSraPax4mfZRdvYG73nu/SEm0ZgJ28W+X1km0euf3re4LKGHltvkid5g7W 4osJrNvpBbn+6AKo7E8kNjagDwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCTKmav7 k3uzXEO0eZtLAkTt/g3MMB8GA1UdIwQYMBaAFMebvqpmJB7s8BwwM12xjvKz9WAm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODEzMS85ODJBQjZFNjQ4 QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1endIREF6WGJHTzhyUDFZ Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1dS1xbVlrSHV6d0hEQXpYYkdPOHJQMVlDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgxMzEvOTgyQUI2RTY0OEIxMTFFQTk2QTA2QzdFQzRGOUFFMDIvMkU0QkJFNEVC NEI1MTFFRjhBMjQ4MjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnI6gwDQQCAAIwBwMFACQDLUAwDQYJKoZIhvcNAQELBQAD ggEBADW2UyjhbonwrEKrvq7uv1QYr7ZnlnBkIPFUOklJKGipGQ1m5KSpZw3zoGBg nWqGSvVJQrL+i/T+HiB2GsJdylxdGzeitrHl+WDpxxfjuHmHbiXxk+UVrPh52C98 7fE9JKO8h+fwDL27UyquaXQXQtQcNLIHdvG1cQO/aBK06EtufntF4YhUfRiwFD8b 7PiriDQ4Erw0FHzlNKoPN+Tta/VniT7HDWDgy+lqLznm7/mwN1c4euVs1DAUoKbq hVDyTSUDk8xyQ4LG+9/eymaXoD6FqrjeijiIgV2MRgtX1/cDtJjtnBtzxJiMjnpD bWEl32qFe+zjZ8X2qRcrxtiCAb8= -----END CERTIFICATE-----Generated at Fri Sep 19 05:53:52 2025 by rpki-client