$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/F647E58E768A11F081B6114EC4F9AE02.roa File: F647E58E768A11F081B6114EC4F9AE02.roa (raw, json) Hash identifier: b+LJPs4oTEgbYPuw4xScIN07auG4DRm4dHLb6FQ37PY= Subject key identifier: 80:80:DC:29:87:9A:7E:C5:3F:E1:89:79:6D:C2:0D:D9:58:8E:4B:66 Certificate issuer: /CN=A91C9350/serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Certificate serial: 354C Authority key identifier: CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/F647E58E768A11F081B6114EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:32:49 +0000 ROA not before: Mon 11 Aug 2025 08:12:46 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 62597 IP address blocks: 103.35.248.0/24 maxlen: 24 103.35.249.0/24 maxlen: 24 103.35.250.0/24 maxlen: 24 2402:cf80::/32 maxlen: 32 2402:cf80::/48 maxlen: 48 2402:cf80:100::/44 maxlen: 48 2402:cf80:1000::/48 maxlen: 48 2402:cf80:1003::/48 maxlen: 48 2402:cf80:1004::/48 maxlen: 48 2402:cf80:1005::/48 maxlen: 48 2402:cf80:1006::/48 maxlen: 48 2402:cf80:6259::/48 maxlen: 48 2402:cf80:7ffe::/48 maxlen: 48 2402:cf80:7fff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13644 (0x354c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9350, serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Validity Not Before: Aug 11 08:12:46 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a47841-b1b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:c2:1a:3a:96:19:6b:66:e7:a6:66:81:be:b8: a6:3b:50:85:6b:8d:4a:34:1f:5a:c1:d3:78:41:aa: 81:d8:f3:5d:22:c6:aa:f7:5f:06:02:65:bd:f2:f3: 74:e2:91:13:d5:e9:9b:3e:58:c0:57:ca:41:41:ca: e0:26:10:3a:42:32:98:02:60:57:94:5d:0d:5b:ac: 9e:cd:f8:e8:ac:84:05:69:f5:eb:b2:5a:42:37:0f: 7e:51:39:57:f1:47:34:c7:99:d1:ae:5c:7c:8e:e1: 6c:ee:ef:96:00:4c:c3:42:35:b8:49:05:80:a0:8d: c4:39:2b:93:2d:c9:85:85:f6:8e:2b:86:08:52:94: 69:e5:de:2c:c4:bf:51:1c:61:13:35:f9:5c:bc:7b: 3c:ce:00:92:42:b0:09:68:78:a8:0f:24:3d:74:7f: 47:15:a9:54:6e:bf:b5:74:40:64:15:ab:23:79:14: 5a:56:cc:72:9f:a6:f0:0e:be:fc:77:e4:34:e9:1e: a9:11:9c:9f:e1:51:8a:da:91:93:a1:33:f5:b0:c9: 5f:e2:e3:eb:91:e3:b0:7a:c8:a7:52:fc:71:db:07: a8:d3:36:0d:a2:ab:bf:9d:41:ce:2e:53:93:1a:ce: f2:80:4b:ee:3b:cc:8c:de:23:ec:87:0c:d3:7e:83: d5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:80:DC:29:87:9A:7E:C5:3F:E1:89:79:6D:C2:0D:D9:58:8E:4B:66 X509v3 Authority Key Identifier: keyid:CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/F647E58E768A11F081B6114EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.35.248.0-103.35.250.255 IPv6: 2402:cf80::/32 Signature Algorithm: sha256WithRSAEncryption 48:e5:0e:09:7e:65:dc:c1:ba:57:72:1b:19:47:52:89:e6:d4: 15:20:f7:b3:10:13:c8:55:e4:38:4d:52:22:77:c7:4b:ed:3e: 85:41:be:dc:62:ae:4a:be:45:03:98:41:02:67:46:89:4d:0d: 46:74:01:5e:79:ab:a4:40:5e:2c:6a:e1:73:f3:13:99:6d:17: 57:a8:a3:bf:57:cc:50:00:4c:7f:1c:86:3e:b1:74:e3:d3:6e: 55:3a:32:e2:d8:5f:ba:fc:97:82:d3:a0:8d:e7:02:7a:20:cb: 4d:f3:9a:b9:6a:7f:89:a0:79:2b:b6:e9:16:58:83:07:9e:83: d8:8f:10:96:25:88:2c:af:4f:14:f5:01:c4:c8:77:e5:25:36: 20:68:c1:ed:fe:55:bc:ca:39:ed:71:b8:99:44:ec:44:ae:06: 25:39:03:c3:dd:60:e6:07:5b:7d:d9:9b:5c:84:7a:00:73:b6: ba:ae:a5:1d:5a:a1:3f:c8:50:ca:e3:75:fa:30:37:e5:43:02: 5c:61:c9:35:5a:f3:bc:11:df:1c:d1:cb:af:ae:ec:f2:df:94: 48:39:66:65:3d:24:69:ed:3d:ed:d4:be:53:a1:d2:8b:89:b1: 81:48:90:a0:9e:71:ab:71:e6:17:96:e5:4d:a3:1a:cb:5b:3b: a0:44:cf:a8 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICNUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzNTAxMTAvBgNVBAUTKENGNzA2RDgxNDdENzc5MjA3RDk5QUY5QUQzOURENUYy REZFNTlERTQwHhcNMjUwODExMDgxMjQ2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Nzg0MS1iMWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgsIaOpYZa2bnpmaBvrimO1CFa41KNB9awdN4QaqB2PNdIsaq918GAmW98vN0 4pET1embPljAV8pBQcrgJhA6QjKYAmBXlF0NW6yezfjorIQFafXrslpCNw9+UTlX 8Uc0x5nRrlx8juFs7u+WAEzDQjW4SQWAoI3EOSuTLcmFhfaOK4YIUpRp5d4sxL9R HGETNflcvHs8zgCSQrAJaHioDyQ9dH9HFalUbr+1dEBkFasjeRRaVsxyn6bwDr78 d+Q06R6pEZyf4VGK2pGToTP1sMlf4uPrkeOwesinUvxx2weo0zYNoqu/nUHOLlOT Gs7ygEvuO8yM3iPshwzTfoPVBwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFICA3CmH mn7FP+GJeW3CDdlYjktmMB8GA1UdIwQYMBaAFM9wbYFH13kgfZmvmtOd1fLf5Z3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTM1MC8zOTEzQkNBMDFE ODcxMUUyQjQyQjAyREYwOEIwMkNEMi96M0J0Z1VmWGVTQjltYS1hMDUzVjh0X2xu ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozQnRnVWZYZVNCOW1hLWEwNTNWOHRfbG5lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkzNTAvMzkxM0JDQTAxRDg3MTFFMkI0MkIwMkRGMDhCMDJDRDIvRjY0N0U1OEU3 NjhBMTFGMDgxQjYxMTRFQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAU BAIAATAOMAwDBANnI/gDBABnI/owDQQCAAIwBwMFACQCz4AwDQYJKoZIhvcNAQEL BQADggEBAEjlDgl+ZdzBuldyGxlHUonm1BUg97MQE8hV5DhNUiJ3x0vtPoVBvtxi rkq+RQOYQQJnRolNDUZ0AV55q6RAXixq4XPzE5ltF1eoo79XzFAATH8chj6xdOPT blU6MuLYX7r8l4LToI3nAnogy03zmrlqf4mgeSu26RZYgweeg9iPEJYliCyvTxT1 AcTId+UlNiBowe3+VbzKOe1xuJlE7ESuBiU5A8PdYOYHW33Zm1yEegBztrqupR1a oT/IUMrjdfowN+VDAlxhyTVa87wR3xzRy6+u7PLflEg5ZmU9JGntPe3UvlOh0ouJ sYFIkKCecatx5heW5U2jGstbO6BEz6g= -----END CERTIFICATE-----Generated at Thu Mar 26 07:58:25 2026 by rpki-client