$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/35A46D4E1A5611EE93742844C4F9AE02.roa File: 35A46D4E1A5611EE93742844C4F9AE02.roa (raw, json) Hash identifier: ebN5g/mLZ+iv553qbwuex8M4P6A1JM4zrqLcn9GGHns= Subject key identifier: FC:1D:26:8D:45:94:EB:C4:60:04:13:BC:B4:60:84:59:0C:40:4A:2C Certificate issuer: /CN=A91FB095/serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Certificate serial: 0215 Authority key identifier: B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/35A46D4E1A5611EE93742844C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:15:30 +0000 ROA not before: Mon 19 Jan 2026 02:22:17 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 142647 IP address blocks: 103.66.148.0/24 maxlen: 24 103.66.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB095, serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Validity Not Before: Jan 19 02:22:17 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a51cf2-5c05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:37:50:e2:4a:d0:e0:7a:4b:c9:73:8f:db:ae: 3c:46:47:e5:c5:b2:d8:1e:33:f4:91:96:5d:07:f7: 44:fa:48:fc:c3:34:6c:74:22:5c:a1:6f:ac:f8:26: 62:23:2d:ca:9c:d5:96:78:85:e6:70:0c:79:9d:a6: a8:9b:e2:89:13:20:62:2c:e3:fc:a1:54:4f:4f:0f: e7:70:45:6c:5c:23:42:8c:b1:8c:d8:4e:b6:4c:da: 70:e3:3a:5a:24:f8:c3:21:37:ef:dd:04:80:ac:84: 29:c1:e9:88:26:1e:e6:27:b8:8b:ad:d0:6b:b6:34: 60:ca:77:fd:25:d3:bb:16:27:47:6f:44:7e:96:d8: fc:9c:58:31:a8:62:68:79:1d:68:f5:11:7d:1b:b7: 89:46:5a:8e:d2:5c:df:ba:08:df:ca:75:11:f1:c3: 6e:75:e4:62:f3:ee:84:44:26:6f:48:15:cd:17:54: 11:be:43:98:83:47:bb:c0:25:66:48:b7:c5:12:31: 01:cf:06:11:23:9b:2e:a4:84:2c:ca:6c:c3:87:76: 68:d2:df:54:7b:5c:93:11:29:53:17:23:55:52:a4: 9d:af:13:84:0e:44:28:96:31:c4:c4:ad:f8:99:27: 36:64:b5:8e:a3:d7:8d:d0:19:83:a1:69:66:1c:30: ab:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:1D:26:8D:45:94:EB:C4:60:04:13:BC:B4:60:84:59:0C:40:4A:2C X509v3 Authority Key Identifier: keyid:B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/35A46D4E1A5611EE93742844C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.66.148.0/23 Signature Algorithm: sha256WithRSAEncryption 06:74:e4:55:d4:90:df:76:22:ec:2b:37:af:3d:7d:cc:01:d7: f8:97:23:c9:8a:0e:dd:dc:34:b2:0f:d0:73:59:b8:6d:7f:ee: 7d:c0:0e:10:a8:88:0d:ce:5b:74:07:9c:36:63:83:ec:54:01: dc:ed:b2:09:4c:0d:55:e0:7a:47:9e:a5:42:a5:12:bc:78:2c: 2d:9e:1a:eb:44:a8:01:81:52:59:51:e6:31:ea:36:7b:f9:42: ce:1a:9b:cd:2c:8e:43:e8:29:49:52:a9:64:05:db:8a:46:60: 22:dc:bd:bc:96:36:c0:ff:87:e9:04:f0:1d:74:41:45:53:67: cf:0f:7f:bc:55:e1:8d:57:20:5f:c1:af:d5:b1:fc:8e:d9:09: f3:ba:d4:f5:05:62:7e:c8:2d:7d:88:1d:4d:ea:1a:b0:16:d8: 98:93:1d:a8:d2:f9:94:5c:46:39:3e:83:fe:b3:3b:2a:e4:cb: b2:85:5a:f5:02:74:02:26:8a:1b:99:d7:39:4f:b1:d6:ff:a4: 35:cc:66:d5:0f:6f:68:ad:0d:d0:fc:7b:d9:e0:0f:85:1c:58: 7d:35:a5:44:e3:26:a0:f9:8d:1b:23:70:8d:46:04:c2:d2:e0: 3d:3f:af:3e:90:b2:86:72:08:83:b5:3c:6b:0b:81:24:da:dd: d4:96:2b:1f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwOTUxMTAvBgNVBAUTKEIyOTExMDIxNTQ0NzIxODNDRjUwRDJBRTZGQTMwRTFC REUzNDJCRjQwHhcNMjYwMTE5MDIyMjE3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWNmMi01YzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojdQ4krQ4HpLyXOP2648RkflxbLYHjP0kZZdB/dE+kj8wzRsdCJcoW+s+CZi Iy3KnNWWeIXmcAx5naaom+KJEyBiLOP8oVRPTw/ncEVsXCNCjLGM2E62TNpw4zpa JPjDITfv3QSArIQpwemIJh7mJ7iLrdBrtjRgynf9JdO7FidHb0R+ltj8nFgxqGJo eR1o9RF9G7eJRlqO0lzfugjfynUR8cNudeRi8+6ERCZvSBXNF1QRvkOYg0e7wCVm SLfFEjEBzwYRI5supIQsymzDh3Zo0t9Ue1yTESlTFyNVUqSdrxOEDkQoljHExK34 mSc2ZLWOo9eN0BmDoWlmHDCrUwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPwdJo1F lOvEYAQTvLRghFkMQEosMB8GA1UdIwQYMBaAFLKRECFURyGDz1DSrm+jDhveNCv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjA5NS9BQUJFQjU2QTFB NTMxMUVFQTQ2MDg4MTRDNEY5QUUwMi9zcEVRSVZSSElZUFBVTkt1YjZNT0c5NDBL X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NwRVFJVlJISVlQUFVOS3ViNk1PRzk0MEtfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkIwOTUvQUFCRUI1NkExQTUzMTFFRUE0NjA4ODE0QzRGOUFFMDIvMzVBNDZENEUx QTU2MTFFRTkzNzQyODQ0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ0KUMA0GCSqGSIb3DQEBCwUAA4IBAQAGdORV1JDfdiLsKzevPX3M Adf4lyPJig7d3DSyD9BzWbhtf+59wA4QqIgNzlt0B5w2Y4PsVAHc7bIJTA1V4HpH nqVCpRK8eCwtnhrrRKgBgVJZUeYx6jZ7+ULOGpvNLI5D6ClJUqlkBduKRmAi3L28 ljbA/4fpBPAddEFFU2fPD3+8VeGNVyBfwa/VsfyO2QnzutT1BWJ+yC19iB1N6hqw FtiYkx2o0vmUXEY5PoP+szsq5MuyhVr1AnQCJoobmdc5T7HW/6Q1zGbVD29orQ3Q /HvZ4A+FHFh9NaVE4yag+Y0bI3CNRgTC0uA9P68+kLKGcgiDtTxrC4Ek2t3Ulisf -----END CERTIFICATE-----Generated at Thu Mar 26 16:21:18 2026 by rpki-client