$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/32B76C00562411E79589C739C4F9AE02.roa File: 32B76C00562411E79589C739C4F9AE02.roa (raw, json) Hash identifier: kqhMnfAhDmR4IZ0Axmi5T1EoQ78FgGAVuc9AOLKd1P0= Subject key identifier: 8F:3D:E1:15:3B:31:B6:DC:E3:0F:FF:F3:C2:D7:51:46:DE:27:32:05 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 23B4 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/32B76C00562411E79589C739C4F9AE02.roa Signing time: Mon 28 Apr 2025 16:23:16 +0000 ROA not before: Mon 28 Apr 2025 16:23:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24441 IP address blocks: 103.5.230.0/23 maxlen: 24 103.28.242.0/23 maxlen: 24 202.7.52.0/22 maxlen: 24 202.84.72.0/21 maxlen: 24 202.93.8.0/21 maxlen: 24 2404:cc00::/32 maxlen: 48 2404:cc00::/48 maxlen: 48 2404:cc00:1::/48 maxlen: 48 2404:cc00:2::/48 maxlen: 48 2404:cc00:3::/48 maxlen: 48 2404:cc00:4::/48 maxlen: 48 2404:cc00:5::/48 maxlen: 48 2404:cc00:6::/48 maxlen: 48 2404:cc00:7::/48 maxlen: 48 2404:cc00:8::/48 maxlen: 48 2404:cc00:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9140 (0x23b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Apr 28 16:23:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680fab73-7b29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:30:e8:f6:b7:93:af:52:bf:b1:b6:08:2b:f0: 8c:50:76:1e:21:9f:2b:51:b2:f7:f2:c2:55:65:f1: 47:21:75:de:e3:a2:c9:d3:21:a4:c4:cf:53:d2:c2: c8:f5:35:fc:60:7d:a2:84:49:aa:06:ee:15:f2:dc: 2d:a7:00:29:95:4d:b7:93:02:b4:e6:a6:b8:1f:9a: 1f:30:dd:bc:73:ba:61:49:44:14:9d:ef:63:50:79: 2c:e8:99:77:ac:e3:70:5a:ea:b4:29:52:c2:bc:e3: 29:2a:65:f5:8b:9e:8f:61:f5:48:07:be:48:b2:7b: 45:6d:37:89:28:26:b1:37:07:e0:80:59:63:40:80: a9:15:7e:0a:c2:55:78:97:02:47:54:c8:c9:08:7f: b2:c3:77:34:35:7c:ec:fe:78:5b:22:a0:76:95:87: e5:c9:19:23:ad:76:fa:73:dc:35:c7:c1:0a:f8:0c: ff:53:7c:4a:76:ed:8c:b0:a7:40:9e:cb:fe:8d:26: 84:0b:a7:4e:28:10:21:10:e6:fb:89:1d:25:c0:df: ba:ea:3a:ee:81:0b:27:a4:a1:19:d6:9b:69:f8:44: 0f:af:ae:1f:a4:33:f9:bd:f0:f3:c3:aa:78:c1:8a: f3:3a:22:14:4f:2a:02:5f:9b:e6:73:1e:cb:fa:79: 43:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:3D:E1:15:3B:31:B6:DC:E3:0F:FF:F3:C2:D7:51:46:DE:27:32:05 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/32B76C00562411E79589C739C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.230.0/23 103.28.242.0/23 202.7.52.0/22 202.84.72.0/21 202.93.8.0/21 IPv6: 2404:cc00::/32 Signature Algorithm: sha256WithRSAEncryption 16:17:c4:38:4b:94:19:cd:33:2d:eb:da:1c:78:85:b4:d5:77: 45:e6:f8:94:92:35:b7:5d:25:96:d2:a9:0c:18:87:79:ce:a1: f4:53:4f:5e:d0:a9:0d:de:f8:a9:e7:56:ac:90:ba:df:5a:53: 21:21:30:75:e0:b5:60:ae:28:03:17:c3:72:06:8e:87:e7:f7: 90:1e:91:e3:ed:a7:d7:0a:da:60:cf:a4:07:ab:1a:92:57:56: ef:bf:2f:c0:87:fb:6e:70:e4:c4:6e:21:45:d6:ce:5d:01:67: 51:fe:51:08:47:c2:ca:bd:07:eb:3d:6e:07:d1:62:14:fe:68: 16:f6:60:a7:8d:91:d1:10:5a:65:9d:ec:82:1b:8a:06:98:16: 96:80:0f:fa:bf:3b:f3:27:7c:08:05:9c:92:e6:40:59:e8:1c: 2c:08:b4:64:1c:05:00:e0:09:82:72:bf:fe:30:24:f7:d9:09: 92:c0:0c:8e:f9:ba:ba:ac:96:cb:c5:5f:8c:2b:2d:6c:3f:26: 2e:13:7d:73:bd:91:a1:bf:e3:18:58:fc:95:bf:54:c4:f1:6c: 5e:bb:5c:39:06:4e:92:b9:c6:71:eb:a0:01:70:18:21:e6:9b: 34:11:69:06:a6:1f:7b:34:80:5a:10:d9:dc:91:27:57:79:e0: 2a:7c:0a:92 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICI7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUwNDI4MTYyMzE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBmYWI3My03YjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zDo9reTr1K/sbYIK/CMUHYeIZ8rUbL38sJVZfFHIXXe46LJ0yGkxM9T0sLI 9TX8YH2ihEmqBu4V8twtpwAplU23kwK05qa4H5ofMN28c7phSUQUne9jUHks6Jl3 rONwWuq0KVLCvOMpKmX1i56PYfVIB75IsntFbTeJKCaxNwfggFljQICpFX4KwlV4 lwJHVMjJCH+yw3c0NXzs/nhbIqB2lYflyRkjrXb6c9w1x8EK+Az/U3xKdu2MsKdA nsv+jSaEC6dOKBAhEOb7iR0lwN+66jrugQsnpKEZ1ptp+EQPr64fpDP5vfDzw6p4 wYrzOiIUTyoCX5vmcx7L+nlDnwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFI894RU7 Mbbc4w//88LXUUbeJzIFMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QzYvOERGRTYyODg3OEExMTFFNUFERTk3MDgyQzRGOUFFMDIvMzJCNzZDMDA1 NjI0MTFFNzk1ODlDNzM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAFnBeYDBAFnHPIDBALKBzQDBAPKVEgDBAPKXQgwDQQCAAIw BwMFACQEzAAwDQYJKoZIhvcNAQELBQADggEBABYXxDhLlBnNMy3r2hx4hbTVd0Xm +JSSNbddJZbSqQwYh3nOofRTT17QqQ3e+KnnVqyQut9aUyEhMHXgtWCuKAMXw3IG jofn95AekePtp9cK2mDPpAerGpJXVu+/L8CH+25w5MRuIUXWzl0BZ1H+UQhHwsq9 B+s9bgfRYhT+aBb2YKeNkdEQWmWd7IIbigaYFpaAD/q/O/MnfAgFnJLmQFnoHCwI tGQcBQDgCYJyv/4wJPfZCZLADI75urqslsvFX4wrLWw/Ji4TfXO9kaG/4xhY/JW/ VMTxbF67XDkGTpK5xnHroAFwGCHmmzQRaQamH3s0gFoQ2dyRJ1d54Cp8CpI= -----END CERTIFICATE-----Generated at Sun Jun 15 09:58:58 2025 by rpki-client