$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/35341F3E4EAE11EF811DC17BC4F9AE02.roa File: 35341F3E4EAE11EF811DC17BC4F9AE02.roa (raw, json) Hash identifier: 48dDt0a+xzb3indd8/ODeap3gsGRYkl9Ae79hCnDlqg= Subject key identifier: 8B:CC:E9:34:17:9F:EF:EA:87:BA:DC:77:87:26:F0:82:29:74:18:50 Certificate issuer: /CN=A91CE3C4/serialNumber=B6FD6F4B4FB7C3247C599299B2E8BAFB5A8BBA72 Certificate serial: 0711 Authority key identifier: B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/35341F3E4EAE11EF811DC17BC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:30:45 +0000 ROA not before: Wed 30 Apr 2025 22:33:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198949 IP address blocks: 194.193.16.0/24 maxlen: 24 194.193.17.0/24 maxlen: 24 194.193.18.0/24 maxlen: 24 194.193.19.0/24 maxlen: 24 194.193.28.0/24 maxlen: 24 194.193.29.0/24 maxlen: 24 194.193.30.0/24 maxlen: 24 194.193.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.crl rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1809 (0x711) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3C4, serialNumber=B6FD6F4B4FB7C3247C599299B2E8BAFB5A8BBA72 Validity Not Before: Apr 30 22:33:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a59105-81f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f9:46:0d:e2:1d:db:f8:5e:de:6a:38:39:05: 03:eb:28:69:e3:21:b7:9a:c8:b3:2b:5a:48:5a:d0: 01:b8:09:c6:53:04:96:f2:ba:14:bd:c2:63:b5:ea: 17:ac:82:84:49:ab:fa:04:5a:44:8c:0d:e0:aa:c0: 89:e7:fb:e2:8a:74:76:ee:12:24:85:bb:1a:e7:e9: d2:05:ca:e1:6e:ca:80:e4:38:c8:37:e0:74:c3:a8: 27:e7:68:93:06:da:ee:5f:53:44:b5:b3:5d:66:81: ca:14:55:68:6e:cc:ee:30:72:3f:9e:0c:d5:fc:47: 3b:6d:b2:49:28:1f:28:82:41:3f:68:8d:31:69:6a: 1e:fc:42:57:65:84:0b:92:af:a3:1a:38:e8:96:df: 8e:3b:73:3d:a9:7d:1e:f3:b6:52:1a:f0:59:4c:8a: a3:9f:d7:f2:00:ac:2a:7e:e3:b4:70:8d:0c:f7:fb: 85:83:bb:7f:d9:9f:c2:33:87:33:55:e0:82:c1:5c: 96:ab:15:c9:d1:87:2a:1b:67:9b:64:f3:07:58:57: 0f:ef:e8:5e:4b:f5:a9:c2:93:ce:96:ae:3e:4b:06: f8:27:52:65:6d:1a:1a:dd:86:70:31:43:26:54:24: fa:a2:bd:2a:07:35:b8:7a:63:c6:17:a8:7f:8c:a6: 7e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CC:E9:34:17:9F:EF:EA:87:BA:DC:77:87:26:F0:82:29:74:18:50 X509v3 Authority Key Identifier: keyid:B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/35341F3E4EAE11EF811DC17BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 194.193.16.0/22 194.193.28.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:51:76:fd:41:18:ec:66:48:60:2e:67:4d:0e:58:c1:32:c9: 6d:6e:eb:90:6b:37:5a:3b:57:18:dc:ae:65:0d:fb:d2:96:3a: 63:7b:25:09:4c:af:44:bd:a2:75:6f:08:73:c0:ac:7c:d2:3e: 07:87:67:eb:5a:b3:40:58:42:d8:b0:69:0a:b2:fb:3d:4c:44: dd:15:87:10:4b:44:a2:92:56:41:46:be:b7:e4:15:83:b0:d9: 4f:c6:90:98:ff:c9:88:b3:f4:92:99:f7:03:73:47:89:8c:45: c8:51:bc:37:f5:7e:fb:4b:48:03:45:33:2f:55:07:13:39:1b: 89:b4:e9:17:7e:97:25:1e:0c:55:fa:29:80:d2:cb:d2:14:51: 2b:34:bf:88:56:83:59:f1:e2:c9:d8:89:a0:50:92:4a:d6:40: 2c:b1:7c:cb:ff:b1:f0:ad:2e:86:3c:ea:82:67:d6:ef:4c:75: 4c:85:6e:06:f0:97:7e:da:50:bb:9d:41:d2:ae:b7:02:79:38: 23:37:8d:d0:29:f8:1f:99:24:0d:b4:cb:73:5e:dd:ed:46:31: b3:eb:ef:2f:2a:92:38:aa:f0:46:f4:01:22:0e:68:be:0a:73: 21:d0:b5:7c:c2:92:ac:4e:51:f3:c5:33:21:89:8d:82:69:2f: 18:22:34:d2 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQzQxMTAvBgNVBAUTKEI2RkQ2RjRCNEZCN0MzMjQ3QzU5OTI5OUIyRThCQUZC NUE4QkJBNzIwHhcNMjUwNDMwMjIzMzUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTEwNS04MWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPlGDeId2/he3mo4OQUD6yhp4yG3msizK1pIWtABuAnGUwSW8roUvcJjteoX rIKESav6BFpEjA3gqsCJ5/viinR27hIkhbsa5+nSBcrhbsqA5DjIN+B0w6gn52iT BtruX1NEtbNdZoHKFFVobszuMHI/ngzV/Ec7bbJJKB8ogkE/aI0xaWoe/EJXZYQL kq+jGjjolt+OO3M9qX0e87ZSGvBZTIqjn9fyAKwqfuO0cI0M9/uFg7t/2Z/CM4cz VeCCwVyWqxXJ0YcqG2ebZPMHWFcP7+heS/WpwpPOlq4+Swb4J1JlbRoa3YZwMUMm VCT6or0qBzW4emPGF6h/jKZ+owIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIvM6TQX n+/qh7rcd4cm8IIpdBhQMB8GA1UdIwQYMBaAFLb9b0tPt8MkfFmSmbLouvtai7py MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNDNC82REQ5RjMzNDdG OTcxMUVCQUREQzVGMTVDNEY5QUUwMi90djF2UzAtM3d5UjhXWktac3VpNi0xcUx1 bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3R2MXZTMC0zd3lSOFdaS1pzdWk2LTFxTHVuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQzQvNkREOUYzMzQ3Rjk3MTFFQkFEREM1RjE1QzRGOUFFMDIvMzUzNDFGM0U0 RUFFMTFFRjgxMURDMTdCQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCwsEQAwQCwsEcMA0GCSqGSIb3DQEBCwUAA4IBAQA7UXb9QRjsZkhg LmdNDljBMsltbuuQazdaO1cY3K5lDfvSljpjeyUJTK9EvaJ1bwhzwKx80j4Hh2fr WrNAWELYsGkKsvs9TETdFYcQS0SiklZBRr635BWDsNlPxpCY/8mIs/SSmfcDc0eJ jEXIUbw39X77S0gDRTMvVQcTORuJtOkXfpclHgxV+imA0svSFFErNL+IVoNZ8eLJ 2ImgUJJK1kAssXzL/7HwrS6GPOqCZ9bvTHVMhW4G8Jd+2lC7nUHSrrcCeTgjN43Q KfgfmSQNtMtzXt3tRjGz6+8vKpI4qvBG9AEiDmi+CnMh0LV8wpKsTlHzxTMhiY2C aS8YIjTS -----END CERTIFICATE-----Generated at Thu Mar 26 07:12:59 2026 by rpki-client