$ rpki-client -vvf rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/535436609D0511F0BAF1837CC4F9AE02.roa File: 535436609D0511F0BAF1837CC4F9AE02.roa (raw, json) Hash identifier: 0A1AOVsjVRyjkOa0stdyBH8yBCmf007m2jZE8cgy4HM= Subject key identifier: E8:2D:3A:FA:46:E1:83:7B:15:DC:9C:1C:BA:B6:02:9E:78:08:58:C3 Certificate issuer: /CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Certificate serial: 0735 Authority key identifier: 1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/535436609D0511F0BAF1837CC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:30:39 +0000 ROA not before: Mon 29 Sep 2025 07:24:25 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 31898 IP address blocks: 202.151.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1845 (0x735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B477B, serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Validity Not Before: Sep 29 07:24:25 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4316f-b82c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:50:a7:51:3b:75:86:bf:eb:e7:59:5a:b4:44: 49:f2:00:2f:b7:f8:04:66:6e:51:39:89:a0:76:27: f2:98:e6:11:0a:d4:93:cf:77:fc:13:50:25:f9:54: 84:e1:cd:27:29:98:e9:cf:b6:8c:5b:54:2c:a7:ae: 17:3c:ed:b5:d4:16:a9:45:c6:ef:3c:e4:56:4d:65: 5b:dc:04:fc:d2:df:02:30:85:2b:76:27:db:a0:35: 98:48:d9:ee:e2:05:78:37:a4:f4:93:7a:bd:fe:ab: c6:86:45:9e:0e:b5:64:7a:e0:0b:32:8a:71:10:8c: 50:06:3f:9f:c4:4d:67:81:b9:a6:10:0b:b1:5c:ef: 7f:23:0e:41:25:5e:a2:da:0d:f5:74:80:23:6d:33: df:e7:6f:a7:5e:a4:57:19:8f:0b:c8:37:f7:4a:6f: 10:2b:5b:64:64:cd:22:f0:93:64:53:e0:8b:0f:f6: 4c:ed:dc:9e:9c:33:c9:5d:b0:03:f9:58:dc:40:7b: de:66:9c:a4:68:4e:68:0b:6c:2e:c8:17:19:97:1d: 32:72:24:ee:84:87:28:e8:90:f3:85:24:41:b7:94: 3c:99:85:92:9c:52:eb:19:57:01:9c:ac:75:54:8e: 45:c0:4a:2d:1f:da:01:4f:ed:b6:d7:81:2e:a9:7b: f5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:2D:3A:FA:46:E1:83:7B:15:DC:9C:1C:BA:B6:02:9E:78:08:58:C3 X509v3 Authority Key Identifier: keyid:1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/535436609D0511F0BAF1837CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.151.34.0/24 Signature Algorithm: sha256WithRSAEncryption 43:07:8e:7a:df:6a:38:8c:21:8d:7d:e7:a2:bf:cb:89:f5:be: 94:30:86:4f:b8:d7:d7:aa:3c:fa:27:e9:be:2c:ed:9f:8e:82: b5:79:e4:17:8c:f2:a6:5b:91:30:91:54:43:9d:cc:9e:67:89: b5:31:0f:2b:47:ae:26:c8:6b:fa:7d:25:95:5c:12:c4:7f:16: c0:c7:51:66:35:7d:55:49:75:b2:d4:21:43:a4:e1:3d:9c:d1: d1:1b:c0:f4:31:ca:8a:77:c3:38:b6:7d:e1:de:43:e3:6d:42: 7b:a7:38:ed:e5:53:de:a6:71:30:57:5a:4c:46:2c:01:4c:59: 94:d2:9e:7c:df:e9:54:8f:33:60:08:53:3d:0b:14:56:39:be: 47:91:09:c8:ad:c0:0a:f9:0b:63:4d:66:34:83:ef:da:57:67: 82:45:b2:0b:39:67:b6:42:5f:5b:8d:9f:fd:ac:c1:fb:66:08: d2:c6:95:da:cb:a4:2c:04:02:1f:fb:d5:25:2f:34:09:ad:5a: f6:bb:2c:ac:91:e8:e1:f6:c7:c8:6a:a7:f8:e7:c4:68:22:24: 56:30:28:7c:5a:fc:0b:bd:29:62:53:3a:a7:6a:2d:b0:5b:f7: 47:2f:8e:4f:6b:ec:1e:dd:ed:a7:e8:dc:73:d5:68:17:4a:cd: 7a:f3:de:e5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3N0IxMTAvBgNVBAUTKDFGQzRERkQwMERBQzM0QThFQjg0NjNEMzk1MUMyMkEz NDU4MzdBQzkwHhcNMjUwOTI5MDcyNDI1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzE2Zi1iODJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FCnUTt1hr/r51latERJ8gAvt/gEZm5ROYmgdifymOYRCtSTz3f8E1Al+VSE 4c0nKZjpz7aMW1Qsp64XPO211BapRcbvPORWTWVb3AT80t8CMIUrdifboDWYSNnu 4gV4N6T0k3q9/qvGhkWeDrVkeuALMopxEIxQBj+fxE1ngbmmEAuxXO9/Iw5BJV6i 2g31dIAjbTPf52+nXqRXGY8LyDf3Sm8QK1tkZM0i8JNkU+CLD/ZM7dyenDPJXbAD +VjcQHveZpykaE5oC2wuyBcZlx0yciTuhIco6JDzhSRBt5Q8mYWSnFLrGVcBnKx1 VI5FwEotH9oBT+2214EuqXv17wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOgtOvpG 4YN7FdycHLq2Ap54CFjDMB8GA1UdIwQYMBaAFB/E39ANrDSo64Rj05UcIqNFg3rJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDc3Qi8xQzI1NjI3MDcy NTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05LanJoR1BUbFJ3aW8wV0Rl c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g4VGYwQTJzTktqcmhHUFRsUndpbzBXRGVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQ3N0IvMUMyNTYyNzA3MjUwMTFFQkI2NDhGODRFQzRGOUFFMDIvNTM1NDM2NjA5 RDA1MTFGMEJBRjE4MzdDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAypciMA0GCSqGSIb3DQEBCwUAA4IBAQBDB45632o4jCGNfeeiv8uJ 9b6UMIZPuNfXqjz6J+m+LO2fjoK1eeQXjPKmW5EwkVRDncyeZ4m1MQ8rR64myGv6 fSWVXBLEfxbAx1FmNX1VSXWy1CFDpOE9nNHRG8D0McqKd8M4tn3h3kPjbUJ7pzjt 5VPepnEwV1pMRiwBTFmU0p583+lUjzNgCFM9CxRWOb5HkQnIrcAK+QtjTWY0g+/a V2eCRbILOWe2Ql9bjZ/9rMH7ZgjSxpXay6QsBAIf+9UlLzQJrVr2uyyskejh9sfI aqf458RoIiRWMCh8WvwLvSliUzqnai2wW/dHL45Pa+we3e2n6Nxz1WgXSs16897l -----END CERTIFICATE-----Generated at Thu Mar 26 09:13:23 2026 by rpki-client