$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/359322B2D1E711EDB90DBF27C4F9AE02.roa File: 359322B2D1E711EDB90DBF27C4F9AE02.roa (raw, json) Hash identifier: kxn0Dg877a3vfvZmxRWSok8mv3qj9xPRSNnHx7tUEbQ= Subject key identifier: D2:6D:FD:8F:85:C9:41:29:47:DD:09:4E:A9:13:E3:E6:EC:71:35:5E Certificate issuer: /CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Certificate serial: 023A Authority key identifier: FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/359322B2D1E711EDB90DBF27C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:58:07 +0000 ROA not before: Fri 29 Aug 2025 03:51:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135069 IP address blocks: 103.96.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC1D, serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Validity Not Before: Aug 29 03:51:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5976f-2d06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3a:3e:c6:49:4d:b4:99:32:da:42:f1:1c:f0: 76:93:59:23:51:cd:22:d7:53:a0:ca:bd:78:29:58: fd:b7:44:ba:31:3f:e0:25:84:f9:b4:20:ef:e9:50: a0:f6:91:a3:43:da:1b:70:aa:0b:07:ea:6f:03:a5: 77:f0:af:8a:49:8c:9f:c8:83:55:19:38:24:02:74: c3:18:33:94:0f:65:32:9c:db:9b:58:df:7d:52:f8: db:87:d3:23:ee:67:b3:47:59:5e:91:70:fd:db:3c: c6:4f:c2:1b:05:fe:d7:bd:50:1a:c8:85:70:0e:a5: a8:5d:66:92:e1:4e:80:96:13:61:8e:77:a7:0b:67: 02:95:e0:bb:ea:82:91:8d:c8:75:7f:a0:c9:01:7b: df:c4:c4:be:47:b0:44:aa:fd:d7:3c:f1:1f:6d:66: 80:7c:c9:d6:77:de:00:32:16:30:8c:90:ee:7b:99: 4a:3e:e3:71:03:08:63:e9:33:e2:b5:16:53:40:43: ca:ad:0e:b1:f3:66:74:f5:a9:57:90:30:c9:25:16: e4:5b:c1:4c:d4:5e:71:c1:1b:88:3a:92:db:26:df: a9:a7:b2:0f:53:15:00:16:f1:5e:f5:c3:51:d8:c2: 87:3e:1b:a4:02:87:a5:7f:b3:ac:cf:33:23:67:a0: bb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:6D:FD:8F:85:C9:41:29:47:DD:09:4E:A9:13:E3:E6:EC:71:35:5E X509v3 Authority Key Identifier: keyid:FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/359322B2D1E711EDB90DBF27C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.96.84.0/22 Signature Algorithm: sha256WithRSAEncryption 50:98:aa:23:61:74:de:a3:77:bd:5a:11:ac:6c:5e:57:22:19: 39:68:c0:9a:f7:77:37:b7:86:01:22:e6:2f:4a:2b:0a:03:27: 5d:7c:29:d8:91:5e:f9:99:fe:f0:e5:fc:5c:23:96:6f:2f:61: 5f:c3:95:de:bd:02:53:99:ba:b0:47:ba:19:25:f9:51:98:fd: 93:0d:1f:26:79:05:e5:c9:d6:d2:df:a2:70:99:ca:8f:ff:72: e5:81:ce:13:3a:90:3d:4e:a9:ff:e6:16:3a:97:85:d3:81:55: 91:53:92:58:26:46:3a:31:ff:bb:45:59:ea:50:78:06:3a:70: 46:90:9d:32:af:8b:77:ec:ad:4d:e5:38:0f:00:dd:bc:50:ed: 55:6c:e1:2e:05:e2:a8:3e:cd:8a:87:56:5c:20:ce:d9:87:b3: d5:cf:ac:a8:13:c0:9b:a4:14:5e:dc:e8:75:50:df:a7:22:0a: 96:3e:b0:7e:f0:6d:b3:b1:67:a8:b0:e9:f9:c5:9a:c2:eb:45: 87:8b:c2:08:87:d3:56:8a:a9:91:8f:7d:fc:17:38:93:2e:82: ea:ed:70:89:9c:85:fb:c5:81:af:b5:4a:07:df:cd:ac:34:27: be:76:36:92:5c:01:d5:5c:1f:66:ca:98:2e:aa:e1:35:03:9b: 68:c3:2f:02 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNDMUQxMTAvBgNVBAUTKEZCMDE5N0Q4MDJBNjYxODZFODQwQkQ2MkU4OEVFNDBF RDk1RTk1MjkwHhcNMjUwODI5MDM1MTQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTc2Zi0yZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDo+xklNtJky2kLxHPB2k1kjUc0i11Ogyr14KVj9t0S6MT/gJYT5tCDv6VCg 9pGjQ9obcKoLB+pvA6V38K+KSYyfyINVGTgkAnTDGDOUD2UynNubWN99Uvjbh9Mj 7mezR1lekXD92zzGT8IbBf7XvVAayIVwDqWoXWaS4U6AlhNhjnenC2cCleC76oKR jch1f6DJAXvfxMS+R7BEqv3XPPEfbWaAfMnWd94AMhYwjJDue5lKPuNxAwhj6TPi tRZTQEPKrQ6x82Z09alXkDDJJRbkW8FM1F5xwRuIOpLbJt+pp7IPUxUAFvFe9cNR 2MKHPhukAoelf7OszzMjZ6C74QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNJt/Y+F yUEpR90JTqkT4+bscTVeMB8GA1UdIwQYMBaAFPsBl9gCpmGG6EC9YuiO5A7ZXpUp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0MxRC84Q0ZFMUQ5QUQx RTIxMUVEOTIzQzYxMUZDNEY5QUUwMi8td0dYMkFLbVlZYm9RTDFpNkk3a0R0bGVs U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy13R1gyQUttWVlib1FMMWk2STdrRHRsZWxTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNDMUQvOENGRTFEOUFEMUUyMTFFRDkyM0M2MTFGQzRGOUFFMDIvMzU5MzIyQjJE MUU3MTFFREI5MERCRjI3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ2BUMA0GCSqGSIb3DQEBCwUAA4IBAQBQmKojYXTeo3e9WhGsbF5X Ihk5aMCa93c3t4YBIuYvSisKAyddfCnYkV75mf7w5fxcI5ZvL2Ffw5XevQJTmbqw R7oZJflRmP2TDR8meQXlydbS36JwmcqP/3Llgc4TOpA9Tqn/5hY6l4XTgVWRU5JY JkY6Mf+7RVnqUHgGOnBGkJ0yr4t37K1N5TgPAN28UO1VbOEuBeKoPs2Kh1ZcIM7Z h7PVz6yoE8CbpBRe3Oh1UN+nIgqWPrB+8G2zsWeosOn5xZrC60WHi8IIh9NWiqmR j338FziTLoLq7XCJnIX7xYGvtUoH382sNCe+djaSXAHVXB9mypguquE1A5towy8C -----END CERTIFICATE-----Generated at Thu Mar 26 06:14:29 2026 by rpki-client