$ rpki-client -vvf rpki.apnic.net/member_repository/A9190D72/6AC989F0D48211EE87D5D724C4F9AE02/35D2294C4AB511EF87AB161BC4F9AE02.roa File: 35D2294C4AB511EF87AB161BC4F9AE02.roa (raw, json) Hash identifier: PDwtIQMH7CUi+ETshPcgYy3XMt2b+vkH5kQDyN2jN0E= Subject key identifier: 2D:5B:9F:4E:AB:E0:00:FF:EE:8B:66:2B:67:4A:1F:F8:C1:FC:8B:B9 Certificate issuer: /CN=A9190D72/serialNumber=A54CB7742AABCF4E58E5D4C1F3B9D12DAD91B406 Certificate serial: 0187 Authority key identifier: A5:4C:B7:74:2A:AB:CF:4E:58:E5:D4:C1:F3:B9:D1:2D:AD:91:B4:06 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pUy3dCqrz05Y5dTB87nRLa2RtAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190D72/6AC989F0D48211EE87D5D724C4F9AE02/35D2294C4AB511EF87AB161BC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:40:07 +0000 ROA not before: Thu 27 Mar 2025 05:11:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136557 IP address blocks: 157.20.104.0/24 maxlen: 24 157.20.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190D72/6AC989F0D48211EE87D5D724C4F9AE02/pUy3dCqrz05Y5dTB87nRLa2RtAY.crl rsync://rpki.apnic.net/member_repository/A9190D72/6AC989F0D48211EE87D5D724C4F9AE02/pUy3dCqrz05Y5dTB87nRLa2RtAY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pUy3dCqrz05Y5dTB87nRLa2RtAY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 03:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190D72, serialNumber=A54CB7742AABCF4E58E5D4C1F3B9D12DAD91B406 Validity Not Before: Mar 27 05:11:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a59337-2f1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:09:46:92:8e:32:7b:57:a9:5a:47:83:74:a9: 1a:54:13:cf:5d:0e:71:10:97:66:6a:12:75:31:5e: 59:50:fa:6c:92:9e:51:04:13:28:d2:0f:79:01:34: 70:85:34:e7:69:65:2b:56:e7:c2:78:5a:6c:a6:80: ea:8c:9e:a6:25:a6:f2:83:e1:ae:d5:6a:71:55:5f: 4e:bc:ed:81:55:d1:81:c5:63:4c:90:90:c4:5a:d9: 85:90:86:df:36:78:5a:da:d9:c0:6d:a9:a1:ca:a4: 31:ce:5d:14:48:c6:f0:2b:8a:bf:a2:6f:9d:33:56: 6e:49:3a:cc:6b:b1:74:71:56:f9:52:85:5b:4f:3d: e6:f4:6f:17:4e:7b:37:4d:5f:50:ec:d6:ae:ca:3a: 2e:0c:d1:dc:50:de:79:18:09:30:d8:80:e3:08:07: 12:e0:15:cc:74:89:d9:bc:c4:a8:fb:94:4f:f5:76: d0:71:de:55:32:50:ab:8a:f8:0f:a5:b9:0c:03:f9: dc:b0:fd:d3:33:2d:13:59:89:28:cc:b1:38:71:35: 95:7d:b3:1a:4a:94:b9:b9:86:c6:6d:20:c2:8a:f0: 33:55:aa:61:35:78:e4:6b:74:a1:f2:04:4e:a5:58: a9:4b:3c:50:18:f9:59:1c:6d:db:72:ac:9f:91:22: 5f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:5B:9F:4E:AB:E0:00:FF:EE:8B:66:2B:67:4A:1F:F8:C1:FC:8B:B9 X509v3 Authority Key Identifier: keyid:A5:4C:B7:74:2A:AB:CF:4E:58:E5:D4:C1:F3:B9:D1:2D:AD:91:B4:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190D72/6AC989F0D48211EE87D5D724C4F9AE02/pUy3dCqrz05Y5dTB87nRLa2RtAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pUy3dCqrz05Y5dTB87nRLa2RtAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190D72/6AC989F0D48211EE87D5D724C4F9AE02/35D2294C4AB511EF87AB161BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.104.0/23 Signature Algorithm: sha256WithRSAEncryption 54:7a:31:4c:14:0e:32:ed:10:f4:52:fe:ce:96:87:dc:36:bf: 4d:4b:07:09:e3:b8:6f:af:33:39:1d:91:b9:bb:61:65:2c:c5: 19:76:17:2b:12:f1:95:8f:3b:db:23:09:16:48:c4:a3:49:28: 4e:a6:39:d9:c9:d7:64:fc:87:6c:6a:f0:3d:57:9f:44:38:b1: e8:08:56:73:6f:18:f7:6b:73:f1:b5:c6:e6:92:da:5d:03:5d: 09:1c:8d:97:6e:55:be:13:df:8d:72:06:6e:40:9a:39:42:d9: d9:3a:8a:ad:e8:9a:4f:27:b9:2c:3c:60:ab:d4:ba:79:ae:ee: a4:1e:9c:fd:d3:59:7f:0e:fb:f0:1e:93:04:bd:4b:5d:01:e5: 88:46:78:f1:52:4f:68:d5:64:23:66:56:09:ab:79:b5:32:84: 29:55:70:0c:87:0b:48:d4:42:9a:04:30:d2:f6:46:e2:1f:7d: 0a:3e:e7:b1:e2:38:1f:83:e0:eb:1a:f8:da:ec:b4:36:c7:ff: b3:09:df:92:20:94:44:5d:c9:58:61:c9:ed:34:5c:f6:81:e9: fb:ec:dd:b4:74:26:2f:05:8c:04:95:c9:7f:37:2b:91:40:da: bd:a8:6a:ae:a1:23:bb:c2:a5:e7:fb:4f:1c:a9:04:7d:8b:b1: 2a:fd:13:25 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBENzIxMTAvBgNVBAUTKEE1NENCNzc0MkFBQkNGNEU1OEU1RDRDMUYzQjlEMTJE QUQ5MUI0MDYwHhcNMjUwMzI3MDUxMTQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTMzNy0yZjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QlGko4ye1epWkeDdKkaVBPPXQ5xEJdmahJ1MV5ZUPpskp5RBBMo0g95ATRw hTTnaWUrVufCeFpspoDqjJ6mJabyg+Gu1WpxVV9OvO2BVdGBxWNMkJDEWtmFkIbf Nnha2tnAbamhyqQxzl0USMbwK4q/om+dM1ZuSTrMa7F0cVb5UoVbTz3m9G8XTns3 TV9Q7NauyjouDNHcUN55GAkw2IDjCAcS4BXMdInZvMSo+5RP9XbQcd5VMlCrivgP pbkMA/ncsP3TMy0TWYkozLE4cTWVfbMaSpS5uYbGbSDCivAzVaphNXjka3Sh8gRO pVipSzxQGPlZHG3bcqyfkSJfrQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC1bn06r 4AD/7otmK2dKH/jB/Iu5MB8GA1UdIwQYMBaAFKVMt3Qqq89OWOXUwfO50S2tkbQG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEQ3Mi82QUM5ODlGMEQ0 ODIxMUVFODdENUQ3MjRDNEY5QUUwMi9wVXkzZENxcnowNVk1ZFRCODduUkxhMlJ0 QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BVeTNkQ3FyejA1WTVkVEI4N25STGEyUnRBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTBENzIvNkFDOTg5RjBENDgyMTFFRTg3RDVENzI0QzRGOUFFMDIvMzVEMjI5NEM0 QUI1MTFFRjg3QUIxNjFCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRRoMA0GCSqGSIb3DQEBCwUAA4IBAQBUejFMFA4y7RD0Uv7Olofc Nr9NSwcJ47hvrzM5HZG5u2FlLMUZdhcrEvGVjzvbIwkWSMSjSShOpjnZyddk/Ids avA9V59EOLHoCFZzbxj3a3PxtcbmktpdA10JHI2XblW+E9+NcgZuQJo5QtnZOoqt 6JpPJ7ksPGCr1Lp5ru6kHpz901l/DvvwHpMEvUtdAeWIRnjxUk9o1WQjZlYJq3m1 MoQpVXAMhwtI1EKaBDDS9kbiH30KPuex4jgfg+DrGvja7LQ2x/+zCd+SIJREXclY YcntNFz2gen77N20dCYvBYwElcl/NyuRQNq9qGquoSO7wqXn+08cqQR9i7Eq/RMl -----END CERTIFICATE-----Generated at Sat Mar 7 22:29:54 2026 by rpki-client