$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa File: 350711FA881211EE9710F928C4F9AE02.roa (raw, json) Hash identifier: /Sl1+zcuYzALlR5FExQ8VOIo7ICRp9RWUJXD4AKkevs= Subject key identifier: B9:8C:50:9E:3A:B6:92:89:36:5E:5E:C0:A5:42:35:1E:27:1E:BB:28 Certificate issuer: /CN=A91E6856/serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Certificate serial: 0EE4 Authority key identifier: 53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:36:15 +0000 ROA not before: Sat 30 Aug 2025 18:08:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24433 IP address blocks: 203.15.122.0/24 maxlen: 24 203.27.220.0/23 maxlen: 24 2405:140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3812 (0xee4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Validity Not Before: Aug 30 18:08:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a424af-4357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2a:ee:ec:52:cd:61:d1:56:7a:80:04:85:dd: b4:67:3d:f1:93:05:d5:bc:50:93:19:69:4a:b2:b8: 00:25:d6:91:a8:ea:03:b0:c4:94:65:61:ad:72:6e: 6f:a2:b5:06:5a:9a:28:b7:d0:b9:13:37:7c:59:81: 66:96:47:03:79:26:85:1e:bd:67:ff:f2:7b:71:34: 62:47:84:cc:90:46:cd:00:f3:56:49:00:10:86:a2: cf:bb:c8:0b:8c:2c:73:e9:6c:ea:66:a4:f1:5f:31: 95:c1:0e:92:0f:29:17:67:6f:2e:a4:c9:54:e1:f6: 74:3b:a0:52:91:c8:bd:1f:a9:15:77:1b:01:4f:14: ad:ab:22:83:7a:a3:62:bf:1b:86:ee:47:a9:4b:1e: 1e:62:74:58:ba:55:7c:0f:db:2a:35:cd:a9:de:fc: 48:24:d5:2a:48:e8:95:bc:1c:e9:44:53:62:39:5e: 33:b9:a9:d7:40:90:93:d5:ac:4f:85:85:51:a7:43: ff:90:a4:57:de:ec:8a:3f:68:08:2a:2b:bd:3b:74: 99:58:de:d4:ee:03:83:c5:d9:17:fa:ca:48:6f:ec: bb:aa:35:ab:09:3c:09:64:a7:f9:dd:98:b6:3b:aa: 22:c0:33:07:6c:fa:a3:4c:a5:67:59:14:f0:9d:f1: b4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:8C:50:9E:3A:B6:92:89:36:5E:5E:C0:A5:42:35:1E:27:1E:BB:28 X509v3 Authority Key Identifier: keyid:53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.15.122.0/24 203.27.220.0/23 IPv6: 2405:140::/32 Signature Algorithm: sha256WithRSAEncryption 2b:59:d8:9f:1e:c3:e7:dc:ab:33:a9:44:43:6f:26:f2:a5:bc: ca:7c:03:fc:ba:a9:a7:f0:16:d6:cc:a7:9e:55:0f:92:f9:83: f5:54:81:5f:8e:ea:be:e3:07:ab:22:57:f8:e7:db:3e:ed:27: a2:56:99:4e:b0:72:3a:c3:1b:7c:3a:bd:e7:04:d1:db:9a:70: 4d:e3:2a:53:0a:71:9c:ba:e7:be:f7:34:2f:47:0a:20:d7:7a: e5:e8:4f:8c:14:d4:4c:29:03:a7:3d:d9:b0:ad:d7:dc:fb:60: 31:ad:b0:c4:91:ee:8d:cf:c9:71:85:9b:ad:9a:0d:2c:e0:f6: 3b:82:a2:52:f6:34:aa:49:dd:2e:75:dd:25:ca:74:3b:74:97: 29:c5:a9:a5:0f:8b:cc:ed:57:93:24:ca:45:4b:ca:f0:66:db: 19:66:c4:56:cf:c8:10:dc:aa:b5:97:14:ed:d0:c4:9a:d3:65: 60:bd:95:b6:cb:df:16:f1:d0:b3:f9:15:d2:3f:c9:8c:bf:1a: 1c:6e:69:27:4a:39:c9:66:f4:17:eb:39:b5:e9:4c:ad:17:f0: f7:e6:7f:31:2a:52:46:e5:ed:76:9c:b5:e8:7d:16:45:8a:a3: e4:c0:2d:fe:ad:b0:0e:c8:00:14:62:5c:de:af:9c:c8:21:fa: 84:1c:4b:5d -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDUzODI2NDJFQkQ3OTlBMEY4Mjg2RDA2NTQ4MjlFRDc2 ODQzMEY5RTQwHhcNMjUwODMwMTgwODI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjRhZi00MzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyru7FLNYdFWeoAEhd20Zz3xkwXVvFCTGWlKsrgAJdaRqOoDsMSUZWGtcm5v orUGWpoot9C5Ezd8WYFmlkcDeSaFHr1n//J7cTRiR4TMkEbNAPNWSQAQhqLPu8gL jCxz6WzqZqTxXzGVwQ6SDykXZ28upMlU4fZ0O6BSkci9H6kVdxsBTxStqyKDeqNi vxuG7kepSx4eYnRYulV8D9sqNc2p3vxIJNUqSOiVvBzpRFNiOV4zuanXQJCT1axP hYVRp0P/kKRX3uyKP2gIKiu9O3SZWN7U7gODxdkX+spIb+y7qjWrCTwJZKf53Zi2 O6oiwDMHbPqjTKVnWRTwnfG0twIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFLmMUJ46 tpKJNl5ewKVCNR4nHrsoMB8GA1UdIwQYMBaAFFOCZC69eZoPgobQZUgp7XaEMPnk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yQ0Q0NUZCQTlF MjQxMUU5QjE0M0JFNzFDNEY5QUUwMi9VNEprTHIxNW1nLUNodEJsU0NudGRvUXct ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0SmtMcjE1bWctQ2h0QmxTQ250ZG9Rdy1lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTY4NTYvMkNENDVGQkE5RTI0MTFFOUIxNDNCRTcxQzRGOUFFMDIvMzUwNzExRkE4 ODEyMTFFRTk3MTBGOTI4QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAyw96AwQByxvcMA0EAgACMAcDBQAkBQFAMA0GCSqGSIb3DQEBCwUA A4IBAQArWdifHsPn3KszqURDbybypbzKfAP8uqmn8BbWzKeeVQ+S+YP1VIFfjuq+ 4werIlf459s+7SeiVplOsHI6wxt8Or3nBNHbmnBN4ypTCnGcuue+9zQvRwog13rl 6E+MFNRMKQOnPdmwrdfc+2AxrbDEke6Nz8lxhZutmg0s4PY7gqJS9jSqSd0udd0l ynQ7dJcpxamlD4vM7VeTJMpFS8rwZtsZZsRWz8gQ3Kq1lxTt0MSa02VgvZW2y98W 8dCz+RXSP8mMvxocbmknSjnJZvQX6zm16UytF/D35n8xKlJG5e12nLXofRZFiqPk wC3+rbAOyAAUYlzer5zIIfqEHEtd -----END CERTIFICATE-----Generated at Thu Mar 26 12:41:33 2026 by rpki-client