$ rpki-client -vvf rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa File: 32503D0625FC11EE9A575E36C4F9AE02.roa (raw, json) Hash identifier: E4BYO8S8atdNdn1B59YnCfwOxbQ/suDtHbC6tcpb/eY= Subject key identifier: E8:30:3A:58:38:F4:B4:8C:41:0B:AC:45:64:20:86:8F:34:E9:81:D7 Certificate issuer: /CN=A917FED9/serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Certificate serial: 01F5 Authority key identifier: C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:34:42 +0000 ROA not before: Thu 31 Jul 2025 04:11:23 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151498 IP address blocks: 103.234.126.0/23 maxlen: 23 2001:df2:a8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:25:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FED9, serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Validity Not Before: Jul 31 04:11:23 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a3ec12-3bd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:41:2d:7b:c8:54:0f:27:09:f6:99:97:f3:f3: de:6d:b3:d8:e7:26:ea:dc:6d:1d:74:e0:a6:2d:ae: cb:1d:62:a9:4f:ea:81:b1:ea:4b:a9:39:30:a7:6e: 2f:90:2c:ca:e7:5f:4f:f9:9e:1b:a3:ef:46:2e:db: a5:2a:8f:e3:c7:f1:c4:7c:28:14:e4:a8:8b:3c:46: 9a:f5:e5:4e:14:71:1f:5d:b8:cb:b8:75:b1:32:de: 40:b1:da:d4:ea:6a:57:ed:f4:1a:1c:79:98:f4:86: 82:d2:93:16:c8:ea:b6:41:75:1e:c7:50:68:de:40: d0:47:0a:d4:6b:f0:ac:bb:80:50:19:e3:d2:9c:04: 0c:40:2f:fc:05:2c:f1:cc:72:ea:34:3d:88:75:9d: 22:c4:35:a7:e6:bb:db:03:dd:be:55:d2:58:5c:99: bb:fe:56:e3:85:a5:b4:41:2f:ae:00:18:6c:37:00: 37:c6:2a:bb:2f:93:6c:09:95:14:f8:6b:03:aa:66: c5:e3:24:13:fd:d1:3d:d3:57:4f:8e:94:cd:d2:83: 80:c6:07:d5:a5:78:77:7c:bb:77:34:b4:6a:3b:fa: 2e:e1:63:f8:fb:42:a5:d6:16:da:93:28:6f:54:61: dc:26:5d:e6:99:45:33:0e:ea:81:ed:26:50:a5:04: 7f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:30:3A:58:38:F4:B4:8C:41:0B:AC:45:64:20:86:8F:34:E9:81:D7 X509v3 Authority Key Identifier: keyid:C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.234.126.0/23 IPv6: 2001:df2:a8c0::/48 Signature Algorithm: sha256WithRSAEncryption ac:d9:5c:1d:3d:b2:83:40:ed:ea:d0:16:03:6d:b6:c1:a5:97: 04:f2:6d:07:e4:9e:54:fb:26:74:0d:24:8a:8c:70:14:ca:75: 02:de:f0:18:c6:42:d2:08:5b:2c:8a:95:28:07:b1:f2:92:0c: f3:00:02:9d:2e:81:cd:b9:d0:6b:d9:15:8d:27:80:29:f4:ca: 09:2c:d6:04:65:86:7c:e4:43:13:9e:58:ac:dd:07:12:19:b5: df:0d:2c:1d:d3:9e:43:4a:b7:e4:32:5b:a2:8e:69:42:8e:bb: cf:0e:b6:48:7b:b1:71:ed:fa:b2:2f:fd:a9:24:e2:5f:aa:54: 8a:6d:c1:70:0b:f2:ed:2d:ee:2b:09:ab:58:4b:01:0f:6c:6c: 4a:98:c1:70:52:7d:8b:47:a5:ea:31:e7:a4:8e:45:78:fa:5f: 03:7d:b7:86:67:ec:5a:07:4c:9a:06:64:e7:32:2c:c5:14:3f: ea:f3:bd:24:38:e5:e7:fe:47:84:1a:1f:46:0e:f9:a0:32:50: e2:60:9f:a9:78:c6:87:46:fc:db:3f:e1:3d:85:db:d1:15:5a: 4a:53:7e:78:0f:26:04:60:2f:86:8a:0a:f9:c9:3c:2b:31:a8: 8c:7b:c0:9c:3d:05:1d:5a:c2:1a:3b:aa:4a:8c:5c:3c:bf:07: bd:d0:c6:b2 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZFRDkxMTAvBgNVBAUTKEMxM0E5RjYyQTE0QjA1MTAzQzVBQzU3NTZGOTc2NTky ODg4QTQ5NUEwHhcNMjUwNzMxMDQxMTIzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWMxMi0zYmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UEte8hUDycJ9pmX8/PebbPY5ybq3G0ddOCmLa7LHWKpT+qBsepLqTkwp24v kCzK519P+Z4bo+9GLtulKo/jx/HEfCgU5KiLPEaa9eVOFHEfXbjLuHWxMt5AsdrU 6mpX7fQaHHmY9IaC0pMWyOq2QXUex1Bo3kDQRwrUa/Csu4BQGePSnAQMQC/8BSzx zHLqND2IdZ0ixDWn5rvbA92+VdJYXJm7/lbjhaW0QS+uABhsNwA3xiq7L5NsCZUU +GsDqmbF4yQT/dE901dPjpTN0oOAxgfVpXh3fLt3NLRqO/ou4WP4+0Kl1hbakyhv VGHcJl3mmUUzDuqB7SZQpQR/CwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOgwOlg4 9LSMQQusRWQgho806YHXMB8GA1UdIwQYMBaAFME6n2KhSwUQPFrFdW+XZZKIikla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkVEOS9DMEJBOEFBRTIy MUIxMUVFQTUwOEQ2MkVDNEY5QUUwMi93VHFmWXFGTEJSQThXc1YxYjVkbGtvaUtT Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUcWZZcUZMQlJBOFdzVjFiNWRsa29pS1NWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZFRDkvQzBCQThBQUUyMjFCMTFFRUE1MDhENjJFQzRGOUFFMDIvMzI1MDNEMDYy NUZDMTFFRTlBNTc1RTM2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ+p+MA8EAgACMAkDBwAgAQ3yqMAwDQYJKoZIhvcNAQELBQADggEB AKzZXB09soNA7erQFgNttsGllwTybQfknlT7JnQNJIqMcBTKdQLe8BjGQtIIWyyK lSgHsfKSDPMAAp0ugc250GvZFY0ngCn0ygks1gRlhnzkQxOeWKzdBxIZtd8NLB3T nkNKt+QyW6KOaUKOu88Otkh7sXHt+rIv/akk4l+qVIptwXAL8u0t7isJq1hLAQ9s bEqYwXBSfYtHpeox56SORXj6XwN9t4Zn7FoHTJoGZOcyLMUUP+rzvSQ45ef+R4Qa H0YO+aAyUOJgn6l4xodG/Ns/4T2F29EVWkpTfngPJgRgL4aKCvnJPCsxqIx7wJw9 BR1awho7qkqMXDy/B73QxrI= -----END CERTIFICATE-----Generated at Mon Mar 2 16:46:59 2026 by rpki-client