$ rpki-client -vvf rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/3AD34AA4B66F11EAAA29FB47C4F9AE02.roa File: 3AD34AA4B66F11EAAA29FB47C4F9AE02.roa (raw, json) Hash identifier: CYmOlMGoeQXLhgY7vPpgwvztx9vwkWkFwNVuEcQyFhM= Subject key identifier: E8:C2:0A:CC:BB:93:8F:40:D6:6B:55:3B:D8:38:D7:CD:F7:6F:29:63 Certificate issuer: /CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Certificate serial: 095D Authority key identifier: 11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/3AD34AA4B66F11EAAA29FB47C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:02:10 +0000 ROA not before: Wed 08 Oct 2025 20:21:53 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134521 IP address blocks: 103.35.124.0/24 maxlen: 24 103.35.125.0/24 maxlen: 24 103.35.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2397 (0x95d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911849D, serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Validity Not Before: Oct 8 20:21:53 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a46302-329c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:75:64:ed:59:d2:94:4b:02:b0:5c:1a:54:fc: ba:bd:0b:92:eb:11:a1:e5:0e:50:3c:4e:6e:1d:4c: 4f:fb:ca:12:74:0e:5d:a1:eb:ed:a4:fb:2f:3d:7b: 3e:68:42:17:f5:af:3e:cf:27:a3:69:ab:7f:e2:15: 85:ac:79:de:f2:94:ac:04:46:cc:23:76:6a:6f:e3: c6:09:4a:c6:ea:a9:94:5d:f2:8d:44:3c:49:35:bb: a3:b1:6d:23:fe:69:23:aa:32:9b:3c:e3:6d:7b:56: 76:00:ec:26:b3:2f:7c:51:b1:6a:cf:c5:d2:f5:10: bc:8c:bd:89:1f:18:e1:17:81:c4:12:ee:2d:ab:a6: bb:b7:77:45:9e:29:ab:92:10:d3:a0:31:1d:0f:db: c3:6c:51:3c:2d:a5:28:12:e9:a0:56:4d:b2:1b:16: 19:f8:07:46:6d:eb:b2:01:13:df:74:b3:14:5a:f6: 1e:89:16:fd:22:d3:35:3f:f8:53:72:1d:8c:c4:44: f2:cc:24:dd:3f:27:83:ec:42:0e:d3:4d:8f:33:ca: 49:40:bb:22:2a:90:b3:7a:21:ba:ba:d5:42:80:aa: 2f:39:ee:d3:2e:bf:fa:a9:22:63:d9:e9:83:18:e0: 2f:cc:51:13:8c:83:db:3c:e2:98:51:26:56:65:be: 1f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C2:0A:CC:BB:93:8F:40:D6:6B:55:3B:D8:38:D7:CD:F7:6F:29:63 X509v3 Authority Key Identifier: keyid:11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/3AD34AA4B66F11EAAA29FB47C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.35.124.0/23 103.35.127.0/24 Signature Algorithm: sha256WithRSAEncryption 66:e6:f9:f8:40:bb:9b:a5:58:0d:67:ae:5d:fc:14:ec:8b:21: fd:b7:90:c1:22:38:10:31:d9:7b:57:62:97:32:ec:bd:0c:29: 5c:03:fd:0e:7b:ee:38:bd:48:dc:b7:3b:04:e7:fb:33:83:20: 78:d6:6c:1f:93:16:ef:60:c0:c3:23:db:b2:62:b4:7f:ef:83: 52:5f:2d:ad:1e:08:ff:e4:36:18:36:c4:7b:9d:85:fd:7e:97: d3:1c:87:8e:25:1b:47:7c:27:27:73:0c:5a:7d:32:09:2e:e0: 32:a4:5d:e9:20:61:65:2d:d6:c8:1f:31:97:28:fe:0c:e1:6b: 07:d3:6e:5c:0d:b1:c2:ce:6a:69:7e:db:56:f0:4e:cb:0a:d5: 88:9b:3f:34:71:2c:2e:a3:75:bb:fa:1c:f3:74:ef:05:ba:47: 7d:cd:53:58:28:aa:2f:94:63:69:ae:5d:b5:be:d7:20:8f:5a: fd:4d:bf:0b:25:54:c3:54:fd:b9:1b:48:01:96:dd:6f:a2:9d: 3e:a1:ab:5f:59:17:70:72:df:f0:c5:dd:b0:44:73:62:02:85: a9:1d:2a:f8:4b:f2:17:6e:79:d8:4f:7c:2a:9e:f7:05:99:a5: f2:bd:ff:bd:ad:f7:1f:f9:6c:7a:2f:fc:22:bd:54:aa:cc:82: 60:82:6a:c1 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg0OUQxMTAvBgNVBAUTKDExQzk3MjdDQTUyOTJDRTVEQTVENzBCQTg4MkJDMkQ2 NDNGNDEwODUwHhcNMjUxMDA4MjAyMTUzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjMwMi0zMjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnVk7VnSlEsCsFwaVPy6vQuS6xGh5Q5QPE5uHUxP+8oSdA5doevtpPsvPXs+ aEIX9a8+zyejaat/4hWFrHne8pSsBEbMI3Zqb+PGCUrG6qmUXfKNRDxJNbujsW0j /mkjqjKbPONte1Z2AOwmsy98UbFqz8XS9RC8jL2JHxjhF4HEEu4tq6a7t3dFnimr khDToDEdD9vDbFE8LaUoEumgVk2yGxYZ+AdGbeuyARPfdLMUWvYeiRb9ItM1P/hT ch2MxETyzCTdPyeD7EIO002PM8pJQLsiKpCzeiG6utVCgKovOe7TLr/6qSJj2emD GOAvzFETjIPbPOKYUSZWZb4f+wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFOjCCsy7 k49A1mtVO9g41833byljMB8GA1UdIwQYMBaAFBHJcnylKSzl2l1wuogrwtZD9BCF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODQ5RC80NDFBNzI2NEI2 NkUxMUVBOUIwODcyNDdDNEY5QUUwMi9FY2x5ZktVcExPWGFYWEM2aUN2QzFrUDBF SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VjbHlmS1VwTE9YYVhYQzZpQ3ZDMWtQMEVJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg0OUQvNDQxQTcyNjRCNjZFMTFFQTlCMDg3MjQ3QzRGOUFFMDIvM0FEMzRBQTRC NjZGMTFFQUFBMjlGQjQ3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZyN8AwQAZyN/MA0GCSqGSIb3DQEBCwUAA4IBAQBm5vn4QLubpVgN Z65d/BTsiyH9t5DBIjgQMdl7V2KXMuy9DClcA/0Oe+44vUjctzsE5/szgyB41mwf kxbvYMDDI9uyYrR/74NSXy2tHgj/5DYYNsR7nYX9fpfTHIeOJRtHfCcncwxafTIJ LuAypF3pIGFlLdbIHzGXKP4M4WsH025cDbHCzmppfttW8E7LCtWImz80cSwuo3W7 +hzzdO8Fukd9zVNYKKovlGNprl21vtcgj1r9Tb8LJVTDVP25G0gBlt1vop0+oatf WRdwct/wxd2wRHNiAoWpHSr4S/IXbnnYT3wqnvcFmaXyvf+9rfcf+Wx6L/wivVSq zIJggmrB -----END CERTIFICATE-----Generated at Thu Mar 26 15:00:52 2026 by rpki-client