$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/32B76C00562411E79589C739C4F9AE02.roa File: 32B76C00562411E79589C739C4F9AE02.roa (raw, json) Hash identifier: UhOsRuv328ibsD6Eq+bltfZ6G75BexkhspAPfUdHDZ0= Subject key identifier: C1:34:ED:33:91:5C:94:42:11:4F:7F:D9:78:54:DF:F1:40:13:AD:86 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 2454 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/32B76C00562411E79589C739C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:28:00 +0000 ROA not before: Mon 28 Apr 2025 16:23:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24441 IP address blocks: 103.5.230.0/23 maxlen: 24 103.28.242.0/23 maxlen: 24 202.7.52.0/22 maxlen: 24 202.84.72.0/21 maxlen: 24 202.93.8.0/21 maxlen: 24 2404:cc00::/32 maxlen: 48 2404:cc00::/48 maxlen: 48 2404:cc00:1::/48 maxlen: 48 2404:cc00:2::/48 maxlen: 48 2404:cc00:3::/48 maxlen: 48 2404:cc00:4::/48 maxlen: 48 2404:cc00:5::/48 maxlen: 48 2404:cc00:6::/48 maxlen: 48 2404:cc00:7::/48 maxlen: 48 2404:cc00:8::/48 maxlen: 48 2404:cc00:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9300 (0x2454) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Apr 28 16:23:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a422c0-d1f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6e:6a:57:08:0a:8c:39:f4:f7:19:a0:a8:1b: 6b:70:db:17:d9:42:6b:85:9f:1d:7e:cb:e9:db:56: 44:58:7e:93:d8:0e:ca:3a:66:6a:be:d4:fe:65:d1: 3c:26:e7:0f:25:c8:58:e3:94:85:62:d2:c3:b3:28: a2:3e:a7:5b:3c:32:5b:15:06:e7:01:86:8c:0e:25: 4f:bb:58:01:52:ee:b6:3a:d4:90:53:93:1b:d2:33: 44:71:81:88:f9:d5:0d:cd:3e:5a:c9:33:20:5d:5c: 37:8d:e9:4d:97:07:85:26:5a:2a:46:43:4f:3c:fd: cd:88:16:40:b6:ab:f7:90:82:e8:4e:85:33:37:06: 47:86:07:f9:e5:11:67:fc:f9:1b:8b:9b:9a:26:16: 70:6d:0b:10:78:53:ee:06:7d:00:e2:23:3e:3c:4f: d2:14:91:95:3f:ae:83:44:0c:28:3b:ca:bb:a4:03: 95:95:3d:a1:73:9f:3f:8e:fb:c7:f9:39:80:29:8a: e0:a0:50:1e:b5:dd:c2:47:73:b0:2c:a5:6a:71:6d: b1:b8:66:45:ef:12:7e:47:d5:08:09:fd:ce:88:05: 61:4f:7a:5a:ca:bf:13:57:00:bb:50:fe:96:fc:0c: 18:40:84:30:41:f5:a1:0d:7d:41:6f:45:07:ce:45: 15:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:34:ED:33:91:5C:94:42:11:4F:7F:D9:78:54:DF:F1:40:13:AD:86 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/32B76C00562411E79589C739C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.5.230.0/23 103.28.242.0/23 202.7.52.0/22 202.84.72.0/21 202.93.8.0/21 IPv6: 2404:cc00::/32 Signature Algorithm: sha256WithRSAEncryption 15:8b:38:ea:00:6f:d9:10:e2:22:8c:80:bb:68:70:80:7b:d8: 01:84:17:4c:aa:8d:d9:7d:03:df:f4:9b:d8:7b:e0:bd:ab:ff: 50:98:1a:19:6a:ef:e0:b5:03:b7:45:f9:82:0d:00:44:9a:c4: 23:c6:e5:85:8f:80:1f:6a:ea:ad:18:99:0c:18:b3:de:51:ed: 22:37:7e:e2:58:01:d7:3d:26:41:2b:7b:4f:42:f5:ae:db:85: 39:7f:58:de:ee:ef:38:e3:84:62:0d:6b:cc:9e:44:bd:f7:35: 48:7d:41:f5:85:8f:88:c1:67:68:70:9c:0a:85:27:a7:b7:cb: 48:cb:af:0e:d6:45:f8:f6:d2:33:c6:e5:2c:6c:70:d6:06:56: 1f:3d:aa:5a:63:79:87:b5:a4:c7:83:cc:b2:d5:f0:eb:50:98: ed:69:89:95:82:30:78:2f:9e:92:69:e7:62:a7:92:30:41:ad: 8e:2a:de:1c:b6:0a:3d:d6:94:f8:be:9f:53:a9:1e:54:44:b8: 75:b6:ba:da:ba:ad:33:ac:bc:57:a3:d7:6b:89:93:d7:f7:d8: 36:3e:d3:42:f9:a7:2a:cf:21:44:e5:cf:d2:a9:a6:a0:dc:49: 7b:f6:f0:88:b7:a0:a5:54:2f:6f:56:34:f8:c3:10:cf:cf:21: 87:62:79:f3 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICJFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUwNDI4MTYyMzE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjJjMC1kMWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArW5qVwgKjDn09xmgqBtrcNsX2UJrhZ8dfsvp21ZEWH6T2A7KOmZqvtT+ZdE8 JucPJchY45SFYtLDsyiiPqdbPDJbFQbnAYaMDiVPu1gBUu62OtSQU5Mb0jNEcYGI +dUNzT5ayTMgXVw3jelNlweFJloqRkNPPP3NiBZAtqv3kILoToUzNwZHhgf55RFn /Pkbi5uaJhZwbQsQeFPuBn0A4iM+PE/SFJGVP66DRAwoO8q7pAOVlT2hc58/jvvH +TmAKYrgoFAetd3CR3OwLKVqcW2xuGZF7xJ+R9UICf3OiAVhT3payr8TVwC7UP6W /AwYQIQwQfWhDX1Bb0UHzkUVOQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFME07TOR XJRCEU9/2XhU3/FAE62GMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QzYvOERGRTYyODg3OEExMTFFNUFERTk3MDgyQzRGOUFFMDIvMzJCNzZDMDA1 NjI0MTFFNzk1ODlDNzM5QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQBZwXmAwQBZxzyAwQCygc0AwQDylRIAwQDyl0IMA0EAgACMAcDBQAk BMwAMA0GCSqGSIb3DQEBCwUAA4IBAQAVizjqAG/ZEOIijIC7aHCAe9gBhBdMqo3Z fQPf9JvYe+C9q/9QmBoZau/gtQO3RfmCDQBEmsQjxuWFj4AfauqtGJkMGLPeUe0i N37iWAHXPSZBK3tPQvWu24U5f1je7u8444RiDWvMnkS99zVIfUH1hY+IwWdocJwK hSent8tIy68O1kX49tIzxuUsbHDWBlYfPapaY3mHtaTHg8yy1fDrUJjtaYmVgjB4 L56Saedip5IwQa2OKt4ctgo91pT4vp9TqR5URLh1trrauq0zrLxXo9driZPX99g2 PtNC+acqzyFE5c/Sqaag3El79vCIt6ClVC9vVjT4wxDPzyGHYnnz -----END CERTIFICATE-----Generated at Mon Mar 2 18:07:44 2026 by rpki-client