$ rpki-client -vvf rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/2E4BBE4EB4B511EF8A24821EC4F9AE02.roa File: 2E4BBE4EB4B511EF8A24821EC4F9AE02.roa (raw, json) Hash identifier: jgODBf90PLIekmliPOAF3OzdEJpw9Z8/WZ9KJk+7ktg= Subject key identifier: 49:7F:6C:F7:9E:49:C8:F2:0B:F4:FE:C4:0C:E7:FC:86:3B:75:8B:F1 Certificate issuer: /CN=A9158131/serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Certificate serial: 0BB2 Authority key identifier: C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/2E4BBE4EB4B511EF8A24821EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:30:23 +0000 ROA not before: Mon 06 Oct 2025 19:50:24 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 64018 IP address blocks: 103.35.168.0/24 maxlen: 24 103.35.169.0/24 maxlen: 24 103.35.170.0/24 maxlen: 24 103.35.171.0/24 maxlen: 24 2403:2d40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2994 (0xbb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158131, serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Validity Not Before: Oct 6 19:50:24 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4699f-f759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:a5:3f:cf:31:97:ea:30:88:b6:1a:72:db:76: 9b:82:3e:15:0d:2f:f9:4c:2c:81:cd:98:ce:3c:33: ad:64:7f:9d:70:7d:ec:23:d2:e7:15:c0:6d:dd:c7: d4:03:d1:3f:60:a1:23:97:8c:36:b1:8c:f6:bc:49: 8d:f2:02:ac:2d:0a:98:3d:c0:e0:96:ae:52:d3:d9: 22:95:e9:3f:e8:5e:ff:67:42:83:a6:ba:b7:a7:50: ab:10:96:99:10:f6:b7:57:b7:ee:95:74:4e:88:e0: f1:bb:08:3e:ca:9a:7b:a8:95:81:69:d2:e8:97:06: 2c:45:82:bd:c8:bb:cd:ce:fe:2b:fe:bd:19:be:12: 3c:af:7d:54:24:bb:98:a8:07:23:ad:e2:8e:df:17: 95:7d:4d:b2:9d:7f:92:1d:83:43:7f:19:b1:ea:90: 2a:04:48:0c:cb:5a:84:37:60:b9:49:50:ba:b8:e2: 3f:d1:37:d9:6f:ac:14:4b:a1:8e:fb:00:0f:9c:19: af:2f:0b:5e:34:a9:c8:28:2b:e3:54:93:7a:a7:14: 38:03:7b:39:c0:86:c9:2b:45:f1:32:ad:91:74:68: f2:04:44:ba:1a:59:2d:ae:5c:ff:d4:d5:d0:cf:48: df:05:94:d4:32:d4:13:4f:1e:98:1a:ef:6a:ee:0b: e7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:7F:6C:F7:9E:49:C8:F2:0B:F4:FE:C4:0C:E7:FC:86:3B:75:8B:F1 X509v3 Authority Key Identifier: keyid:C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/2E4BBE4EB4B511EF8A24821EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.35.168.0/22 IPv6: 2403:2d40::/32 Signature Algorithm: sha256WithRSAEncryption 2f:1a:f6:50:57:4d:47:77:f9:fc:08:7f:71:f1:df:ca:b3:34: 45:1b:0c:aa:24:8f:7d:90:49:a2:94:db:d0:ce:72:b5:3b:76: 19:6f:7b:76:b3:ed:ce:62:e5:6f:a2:81:e6:fc:da:c6:e9:7b: 27:8b:d0:fd:f4:81:cc:bc:e2:55:73:e6:19:4d:a2:66:10:62: a5:8e:1f:8c:cc:db:6d:c9:d9:73:b6:c1:6a:b2:26:5c:4d:a1: 0e:90:85:4b:8d:0e:83:3c:72:da:85:8e:f9:2d:3b:20:97:5e: 77:a3:c7:70:db:3c:e7:ed:08:22:6d:72:94:76:ef:dc:37:39: 58:a8:fe:b5:3d:4f:0b:ac:4d:4c:10:b9:50:e7:00:40:fe:40: 59:17:03:ea:09:29:e3:25:1e:ef:39:57:83:6a:1d:c7:c4:05: 2f:92:8d:1e:29:77:f9:61:26:16:d5:b5:f0:a2:63:7b:8d:37: 12:dc:25:c8:be:d5:fe:92:8d:1b:71:ad:10:75:0d:5c:10:4f: 6e:dc:97:07:77:0c:ea:27:80:d6:28:f9:12:6d:56:bd:1c:60: fb:b4:c5:87:84:27:f4:ff:f8:71:cd:43:fb:59:30:0c:dd:f5: 4d:f9:02:5e:ad:53:12:38:7e:a3:54:3a:c6:31:9f:2d:94:41: bb:00:99:b3 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICC7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgxMzExMTAvBgNVBAUTKEM3OUJCRUFBNjYyNDFFRUNGMDFDMzAzMzVEQjE4RUYy QjNGNTYwMjYwHhcNMjUxMDA2MTk1MDI0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njk5Zi1mNzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAg6U/zzGX6jCIthpy23abgj4VDS/5TCyBzZjOPDOtZH+dcH3sI9LnFcBt3cfU A9E/YKEjl4w2sYz2vEmN8gKsLQqYPcDglq5S09kilek/6F7/Z0KDprq3p1CrEJaZ EPa3V7fulXROiODxuwg+ypp7qJWBadLolwYsRYK9yLvNzv4r/r0ZvhI8r31UJLuY qAcjreKO3xeVfU2ynX+SHYNDfxmx6pAqBEgMy1qEN2C5SVC6uOI/0TfZb6wUS6GO +wAPnBmvLwteNKnIKCvjVJN6pxQ4A3s5wIbJK0XxMq2RdGjyBES6Glktrlz/1NXQ z0jfBZTUMtQTTx6YGu9q7gvnawIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEl/bPee ScjyC/T+xAzn/IY7dYvxMB8GA1UdIwQYMBaAFMebvqpmJB7s8BwwM12xjvKz9WAm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODEzMS85ODJBQjZFNjQ4 QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1endIREF6WGJHTzhyUDFZ Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1dS1xbVlrSHV6d0hEQXpYYkdPOHJQMVlDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgxMzEvOTgyQUI2RTY0OEIxMTFFQTk2QTA2QzdFQzRGOUFFMDIvMkU0QkJFNEVC NEI1MTFFRjhBMjQ4MjFFQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZyOoMA0EAgACMAcDBQAkAy1AMA0GCSqGSIb3DQEBCwUAA4IBAQAv GvZQV01Hd/n8CH9x8d/KszRFGwyqJI99kEmilNvQznK1O3YZb3t2s+3OYuVvooHm /NrG6Xsni9D99IHMvOJVc+YZTaJmEGKljh+MzNttydlztsFqsiZcTaEOkIVLjQ6D PHLahY75LTsgl153o8dw2zzn7QgibXKUdu/cNzlYqP61PU8LrE1MELlQ5wBA/kBZ FwPqCSnjJR7vOVeDah3HxAUvko0eKXf5YSYW1bXwomN7jTcS3CXIvtX+ko0bca0Q dQ1cEE9u3JcHdwzqJ4DWKPkSbVa9HGD7tMWHhCf0//hxzUP7WTAM3fVN+QJerVMS OH6jVDrGMZ8tlEG7AJmz -----END CERTIFICATE-----Generated at Thu Mar 26 15:15:39 2026 by rpki-client