$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/35E2088CDEDC11F09573FB8A516F56BC.roa File: 35E2088CDEDC11F09573FB8A516F56BC.roa (raw, json) Hash identifier: Pkdcinjik27aP1313/FsgkfOJBBKQKn1ifEErEuk2l8= Subject key identifier: 0F:A5:95:E7:CD:0B:D3:23:6F:24:43:A1:50:E2:5B:61:FC:C1:C8:F0 Certificate issuer: /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Certificate serial: 0A52 Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/35E2088CDEDC11F09573FB8A516F56BC.roa Signing time: Sat 02 May 2026 20:25:27 +0000 ROA not before: Sat 02 May 2026 20:25:27 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 142002 IP address blocks: 103.43.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2642 (0xa52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E509, serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Validity Not Before: May 2 20:25:27 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69f65db6-203e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4b:e7:56:af:6e:6a:ed:65:8b:41:66:cf:d8: 5e:a8:a2:16:5c:12:23:48:b5:b5:91:27:3b:dd:34: 4f:0e:40:ef:b2:ee:86:80:77:96:40:e2:91:38:dd: 57:f7:d0:1a:a7:e8:b9:70:47:13:42:7f:e0:24:0e: 51:67:e3:03:b9:d0:a5:ef:26:4e:a5:a3:0c:6b:6d: ea:92:be:fb:a1:0e:3a:c8:91:61:67:2d:ef:de:93: 08:6c:de:0d:af:32:2a:dc:14:f8:f5:95:17:51:1f: 00:97:d6:f7:3f:c5:de:fe:62:fe:b0:01:b5:6e:cf: 21:42:8a:7c:45:1b:37:8f:0f:b0:b0:73:10:99:5d: cc:87:70:60:77:a6:1f:36:6c:f0:72:7e:26:d9:78: 3d:22:6c:73:cf:1b:40:88:19:e3:a9:32:30:28:6d: b6:48:37:ed:cf:b3:d7:0e:c6:4d:ff:47:63:70:71: 39:1a:d1:bb:d7:56:b5:6a:9c:2d:c0:ec:19:22:9d: 56:7e:35:57:ac:eb:ef:40:30:21:eb:4d:8e:2d:22: aa:28:38:47:8f:26:4a:31:f6:39:76:4b:b7:09:d6: 7c:51:dd:ac:3f:6e:8a:22:2c:53:fe:ed:6d:86:a7: ae:09:87:56:cf:82:93:27:af:d3:89:c4:a4:3f:64: c9:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:A5:95:E7:CD:0B:D3:23:6F:24:43:A1:50:E2:5B:61:FC:C1:C8:F0 X509v3 Authority Key Identifier: keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/35E2088CDEDC11F09573FB8A516F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.43.87.0/24 Signature Algorithm: sha256WithRSAEncryption 30:03:8e:1e:bf:a0:8c:87:cf:2f:e6:61:34:97:00:ec:60:2d: 54:e3:bd:bf:57:1b:92:f7:18:90:02:7f:5b:20:31:8c:f1:cc: d9:03:f7:8b:2e:58:d6:f7:66:b0:bb:bb:b2:2d:e9:eb:dd:67: d3:31:80:c9:08:5a:c6:74:2e:1e:43:16:a6:24:6e:4f:77:a0: 0c:d0:74:5d:09:6c:d1:5f:aa:9d:70:c0:de:ff:5a:0d:b3:05: a1:b6:02:51:98:db:59:01:b9:8d:26:9a:c4:cb:5e:e5:63:59: 17:4b:1e:26:48:da:31:a7:e3:33:0e:d4:3c:44:58:63:0a:63: ae:a1:13:9a:dc:2b:c3:86:64:8d:00:c9:0f:e0:7b:76:c9:8c: 67:8a:02:ed:ae:1b:06:f8:f7:56:2d:e4:da:97:4b:77:3c:ba: 22:82:c1:43:b9:c1:21:0f:b5:02:4b:9f:b1:12:00:4a:d3:76: 93:6d:67:b5:d5:26:e1:91:ee:10:9f:62:41:e3:b1:a7:a4:e1: ed:5a:7e:a1:1c:aa:14:72:f8:87:2c:62:60:7e:8c:7e:47:74: 81:b4:47:80:a9:ff:17:b9:e3:8d:7e:a6:9a:9a:28:ad:70:f6: f1:72:cc:cb:36:42:19:37:09:cd:54:e7:0e:94:fa:d9:d2:65: 4f:12:3d:b8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICClIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDkxMTAvBgNVBAUTKEFBOEUxQkUzNjI0MjQwREMzMzAyMDQ3RkI0MUE3RDRF NDc4MDhFRjgwHhcNMjYwNTAyMjAyNTI3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2NWRiNi0yMDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0vnVq9uau1li0Fmz9heqKIWXBIjSLW1kSc73TRPDkDvsu6GgHeWQOKRON1X 99Aap+i5cEcTQn/gJA5RZ+MDudCl7yZOpaMMa23qkr77oQ46yJFhZy3v3pMIbN4N rzIq3BT49ZUXUR8Al9b3P8Xe/mL+sAG1bs8hQop8RRs3jw+wsHMQmV3Mh3Bgd6Yf Nmzwcn4m2Xg9ImxzzxtAiBnjqTIwKG22SDftz7PXDsZN/0djcHE5GtG711a1apwt wOwZIp1WfjVXrOvvQDAh602OLSKqKDhHjyZKMfY5dku3CdZ8Ud2sP26KIixT/u1t hqeuCYdWz4KTJ6/TicSkP2TJXwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA+llefN C9MjbyRDoVDiW2H8wcjwMB8GA1UdIwQYMBaAFKqOG+NiQkDcMwIEf7QafU5HgI74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwOS83OUVBNTkxRUE3 QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FOd3pBZ1JfdEJwOVRrZUFq dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvNGI0MkpDUU53ekFnUl90QnA5VGtlQWp2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU1MDkvNzlFQTU5MUVBN0JEMTFFQUFBQTYyOTQ4QzRGOUFFMDIvMzVFMjA4OENE RURDMTFGMDk1NzNGQjhBNTE2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZytXMA0GCSqGSIb3DQEBCwUAA4IBAQAwA44ev6CMh88v5mE0lwDs YC1U472/VxuS9xiQAn9bIDGM8czZA/eLLljW92awu7uyLenr3WfTMYDJCFrGdC4e QxamJG5Pd6AM0HRdCWzRX6qdcMDe/1oNswWhtgJRmNtZAbmNJprEy17lY1kXSx4m SNoxp+MzDtQ8RFhjCmOuoROa3CvDhmSNAMkP4Ht2yYxnigLtrhsG+PdWLeTal0t3 PLoigsFDucEhD7UCS5+xEgBK03aTbWe11Sbhke4Qn2JB47GnpOHtWn6hHKoUcviH LGJgfox+R3SBtEeAqf8XueONfqaamiitcPbxcszLNkIZNwnNVOcOlPrZ0mVPEj24 -----END CERTIFICATE-----Generated at Wed May 13 15:48:22 2026 by rpki-client