$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/32B76C00562411E79589C739C4F9AE02.roa File: 32B76C00562411E79589C739C4F9AE02.roa (raw, json) Hash identifier: NVMButox852Cn69pCAO8rFw/WuD1j68THVioCka2Ig8= Subject key identifier: A5:30:22:8E:A1:5A:6F:91:2B:24:CC:DA:BE:36:6E:22:B9:63:9B:4B Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 2470 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/32B76C00562411E79589C739C4F9AE02.roa Signing time: Wed 08 Apr 2026 16:22:35 +0000 ROA not before: Wed 08 Apr 2026 16:22:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24441 IP address blocks: 103.5.230.0/23 maxlen: 24 103.28.242.0/23 maxlen: 24 202.7.52.0/22 maxlen: 24 202.84.72.0/21 maxlen: 24 202.93.8.0/21 maxlen: 24 2404:cc00::/32 maxlen: 48 2404:cc00::/48 maxlen: 48 2404:cc00:1::/48 maxlen: 48 2404:cc00:2::/48 maxlen: 48 2404:cc00:3::/48 maxlen: 48 2404:cc00:4::/48 maxlen: 48 2404:cc00:5::/48 maxlen: 48 2404:cc00:6::/48 maxlen: 48 2404:cc00:7::/48 maxlen: 48 2404:cc00:8::/48 maxlen: 48 2404:cc00:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:45:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9328 (0x2470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Apr 8 16:22:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d680cb-07dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:65:ec:57:b0:a4:5e:66:b1:21:45:db:a0:99: fe:10:f5:7f:4d:59:0a:60:71:76:26:15:bc:94:5b: e1:a3:c7:6e:54:3f:e3:18:27:39:1f:47:a5:13:46: fa:e2:ec:77:b3:3f:c9:be:c9:09:c6:8f:82:3b:9d: 1b:10:be:fd:bb:0f:af:d2:18:dc:45:4d:6b:38:69: 94:0d:e2:71:6b:fc:e8:a7:70:91:74:cf:34:38:15: 49:90:66:a4:08:a5:50:cc:49:d0:ab:55:e5:ba:d7: 40:d7:49:c3:2a:c5:d9:f8:a3:a5:64:27:fd:c2:71: 07:7d:dc:8b:4d:ba:0d:41:f0:c7:31:18:c0:94:b2: 80:dd:5f:bc:2b:2a:cd:e6:9b:d2:be:f4:a6:9a:ef: df:22:d7:64:c3:b7:8d:71:1b:4d:c8:e4:7d:cc:c0: 60:0b:31:9e:b4:9a:5c:96:da:d7:65:9e:92:55:d4: 6d:04:27:47:00:5f:37:1d:dc:2e:ce:19:3c:bb:71: 07:11:83:b8:91:86:1f:68:d1:9b:1d:7e:99:6e:53: cc:8e:68:01:a2:fe:5c:76:48:1d:4c:66:cd:05:d6: 84:9f:a4:55:1c:4d:31:39:d4:b5:3f:ad:a1:39:ec: ca:2a:0c:1c:fe:3e:24:13:0d:0a:d5:b7:bb:5a:de: bd:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:30:22:8E:A1:5A:6F:91:2B:24:CC:DA:BE:36:6E:22:B9:63:9B:4B X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/32B76C00562411E79589C739C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.5.230.0/23 103.28.242.0/23 202.7.52.0/22 202.84.72.0/21 202.93.8.0/21 IPv6: 2404:cc00::/32 Signature Algorithm: sha256WithRSAEncryption a9:1c:f6:01:cc:94:ab:6c:20:45:32:cd:42:a2:0a:cd:d4:5f: f4:42:f8:31:a9:41:1b:5b:bd:e5:52:7c:94:cb:02:6f:b9:6b: c8:43:f6:aa:e0:36:b4:59:c6:a5:6b:5b:f1:30:b1:56:44:1c: e5:b5:f7:b5:82:43:4d:0f:bc:d3:ed:33:8e:b6:68:f8:d4:94: 83:5c:47:8d:b8:3b:e8:05:35:46:94:29:12:16:82:53:d2:41: cf:e9:12:9e:49:cf:ee:d5:e9:b5:25:2b:26:66:3b:78:ea:cc: 69:69:30:57:e5:a9:ae:f0:b6:f2:0d:4f:e0:7b:3c:bd:6e:e4: f7:3e:28:56:15:97:8b:f4:f2:3c:50:77:94:df:bb:c8:ac:dc: 92:cc:bc:0d:17:a9:e2:13:5d:8e:58:55:8d:36:92:a5:99:84: 79:18:de:2b:97:cb:88:f2:c7:19:c7:41:3e:3d:79:08:0a:6e: ac:2a:a8:38:b0:6a:c7:bc:f7:a5:ac:57:f4:c8:e1:58:60:da: db:f5:61:e7:6c:d0:68:54:79:26:0f:15:58:ff:dd:9c:2e:cd: 56:e9:ee:3b:04:68:85:95:7a:74:59:7e:9a:46:8b:bf:7e:87: bb:ca:f5:71:de:93:fe:c3:95:72:8c:a0:dd:7c:11:47:ed:5d: fa:c6:93:41 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICJHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjYwNDA4MTYyMjM1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ2ODBjYi0wN2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2XsV7CkXmaxIUXboJn+EPV/TVkKYHF2JhW8lFvho8duVD/jGCc5H0elE0b6 4ux3sz/JvskJxo+CO50bEL79uw+v0hjcRU1rOGmUDeJxa/zop3CRdM80OBVJkGak CKVQzEnQq1XlutdA10nDKsXZ+KOlZCf9wnEHfdyLTboNQfDHMRjAlLKA3V+8KyrN 5pvSvvSmmu/fItdkw7eNcRtNyOR9zMBgCzGetJpcltrXZZ6SVdRtBCdHAF83Hdwu zhk8u3EHEYO4kYYfaNGbHX6ZblPMjmgBov5cdkgdTGbNBdaEn6RVHE0xOdS1P62h OezKKgwc/j4kEw0K1be7Wt69rQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFKUwIo6h Wm+RKyTM2r42biK5Y5tLMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QzYvOERGRTYyODg3OEExMTFFNUFERTk3MDgyQzRGOUFFMDIvMzJCNzZDMDA1 NjI0MTFFNzk1ODlDNzM5QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQBZwXmAwQBZxzyAwQCygc0AwQDylRIAwQDyl0IMA0EAgACMAcDBQAk BMwAMA0GCSqGSIb3DQEBCwUAA4IBAQCpHPYBzJSrbCBFMs1CogrN1F/0QvgxqUEb W73lUnyUywJvuWvIQ/aq4Da0Wcala1vxMLFWRBzltfe1gkNND7zT7TOOtmj41JSD XEeNuDvoBTVGlCkSFoJT0kHP6RKeSc/u1em1JSsmZjt46sxpaTBX5amu8LbyDU/g ezy9buT3PihWFZeL9PI8UHeU37vIrNySzLwNF6niE12OWFWNNpKlmYR5GN4rl8uI 8scZx0E+PXkICm6sKqg4sGrHvPelrFf0yOFYYNrb9WHnbNBoVHkmDxVY/92cLs1W 6e47BGiFlXp0WX6aRou/foe7yvVx3pP+w5VyjKDdfBFH7V36xpNB -----END CERTIFICATE-----Generated at Fri Apr 17 23:35:34 2026 by rpki-client