$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/902F47663C0111EAB6CB9936C4F9AE02.roa File: 902F47663C0111EAB6CB9936C4F9AE02.roa (raw, json) Hash identifier: VuSr3kOQUjg9+28LT7ROPq/HuUEw9XEa1A4ZWRbVfXk= Subject key identifier: FB:A1:02:96:E0:22:E4:BB:F6:BE:AD:BE:58:74:C0:59:96:11:A9:31 Certificate issuer: /CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Certificate serial: 0BC8 Authority key identifier: 35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/902F47663C0111EAB6CB9936C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:44:06 +0000 ROA not before: Fri 02 May 2025 19:27:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.136.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3016 (0xbc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35BB, serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Validity Not Before: May 2 19:27:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42686-adf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ca:a9:cc:41:00:94:0d:ba:57:6d:dd:4d:71: 00:08:95:f9:9e:79:b0:02:b1:72:d3:b7:ef:29:55: bd:95:bb:0d:fd:8e:8f:12:4c:e0:b0:4c:cd:54:c4: e9:17:83:93:1d:07:1b:03:12:5d:2f:58:7b:9f:e2: 2f:f6:de:03:6f:cf:31:84:d7:d1:61:a2:b1:d2:c5: 7b:12:d6:0e:ae:1f:a3:3b:5c:1c:21:76:40:e1:68: dd:87:09:04:75:a1:2e:c8:12:82:76:41:83:b6:0e: cf:f5:c5:fb:3c:ba:57:c5:42:2d:c8:4c:94:b1:7c: 50:4e:8c:8b:c9:5f:23:11:8d:09:b4:0c:8c:f0:37: 5c:7c:21:1e:75:6d:c4:59:3f:55:e3:69:63:7e:d6: 59:7e:05:3e:fc:87:d4:ae:c6:41:ad:91:ae:a7:d7: af:8b:3a:34:d3:62:76:5c:c8:7c:65:3c:06:fc:28: 46:59:7a:b3:d1:c4:85:a9:01:f4:89:6b:08:ea:81: 71:99:e0:0d:36:6b:bd:d1:5e:35:04:bc:67:7e:fc: bb:39:9e:3f:8f:00:6d:83:a5:bb:80:8c:d4:48:b7: e9:a1:75:ad:13:64:9c:b7:d5:97:78:60:7b:9c:1f: 9f:09:96:92:aa:f3:da:0d:ef:59:3c:d3:28:92:51: 92:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A1:02:96:E0:22:E4:BB:F6:BE:AD:BE:58:74:C0:59:96:11:A9:31 X509v3 Authority Key Identifier: keyid:35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/902F47663C0111EAB6CB9936C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.136.10.0/24 Signature Algorithm: sha256WithRSAEncryption 86:74:a3:0c:30:8b:fd:f4:62:87:5d:e6:85:29:ef:af:41:31: 3a:a4:9b:68:7b:0a:f8:50:aa:e0:ba:76:b7:a6:59:0d:3c:8f: 6b:9d:ad:5d:fb:ac:38:cd:36:c9:d7:2a:0c:78:6b:8b:64:ac: a7:a6:6c:ca:c4:f5:f5:fb:2d:40:30:72:57:54:b3:d2:10:92: f0:ef:71:0c:9d:56:cc:94:97:78:0d:35:8f:f1:3c:9b:69:8b: 86:99:99:cb:df:a9:49:5b:76:88:52:98:a4:59:e5:c6:28:84: f7:87:ea:20:c0:f0:f4:a5:62:d1:b4:81:ad:78:92:64:7f:f8: a3:ab:14:c7:24:0a:84:b2:a1:84:00:0b:04:3f:8d:5d:18:88: ab:50:d4:84:af:4e:62:13:1e:9f:26:09:77:cd:66:6c:98:d4: 41:a2:76:e6:4e:71:fa:2f:32:a7:d1:f6:96:e2:f3:36:55:58: b7:5b:36:68:8a:cf:b0:a8:52:f8:d1:0f:de:b0:67:dc:98:a4: a5:f1:62:9b:25:22:dc:a4:04:df:d4:6f:ba:ba:77:1c:fe:72: 00:c7:28:1c:99:3d:a6:e2:58:01:7b:94:3e:89:1c:ba:70:68: bc:7e:89:69:f9:9e:0e:23:c6:72:ed:14:42:a7:37:eb:dc:4e: a2:48:9d:c8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1QkIxMTAvBgNVBAUTKDM1RjU4RDg2MUM0MUJERkVBNDZCOEM3MjkwQjFBQUM2 NzBFN0NDMUIwHhcNMjUwNTAyMTkyNzUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjY4Ni1hZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsqpzEEAlA26V23dTXEACJX5nnmwArFy07fvKVW9lbsN/Y6PEkzgsEzNVMTp F4OTHQcbAxJdL1h7n+Iv9t4Db88xhNfRYaKx0sV7EtYOrh+jO1wcIXZA4WjdhwkE daEuyBKCdkGDtg7P9cX7PLpXxUItyEyUsXxQToyLyV8jEY0JtAyM8DdcfCEedW3E WT9V42ljftZZfgU+/IfUrsZBrZGup9evizo002J2XMh8ZTwG/ChGWXqz0cSFqQH0 iWsI6oFxmeANNmu90V41BLxnfvy7OZ4/jwBtg6W7gIzUSLfpoXWtE2Sct9WXeGB7 nB+fCZaSqvPaDe9ZPNMoklGS0wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPuhApbg IuS79r6tvlh0wFmWEakxMB8GA1UdIwQYMBaAFDX1jYYcQb3+pGuMcpCxqsZw58wb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzVCQi81Nzg5QjFBNDND MDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZmNmthNHh5a0xHcXhuRG56 QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mV05oaHhCdmY2a2E0eHlrTEdxeG5EbnpCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjM1QkIvNTc4OUIxQTQzQzAwMTFFQUI4MTc5NzM0QzRGOUFFMDIvOTAyRjQ3NjYz QzAxMTFFQUI2Q0I5OTM2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ4gKMA0GCSqGSIb3DQEBCwUAA4IBAQCGdKMMMIv99GKHXeaFKe+v QTE6pJtoewr4UKrguna3plkNPI9rna1d+6w4zTbJ1yoMeGuLZKynpmzKxPX1+y1A MHJXVLPSEJLw73EMnVbMlJd4DTWP8TybaYuGmZnL36lJW3aIUpikWeXGKIT3h+og wPD0pWLRtIGteJJkf/ijqxTHJAqEsqGEAAsEP41dGIirUNSEr05iEx6fJgl3zWZs mNRBonbmTnH6LzKn0faW4vM2VVi3WzZois+wqFL40Q/esGfcmKSl8WKbJSLcpATf 1G+6uncc/nIAxygcmT2m4lgBe5Q+iRy6cGi8folp+Z4OI8Zy7RRCpzfr3E6iSJ3I -----END CERTIFICATE-----Generated at Thu Mar 26 03:40:47 2026 by rpki-client