$ rpki-client -vvf rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa File: 32503D0625FC11EE9A575E36C4F9AE02.roa (raw, json) Hash identifier: ix29bsGlLpd8X3I5lYtgyW8aauIK9oofMObGbc/Vtng= Subject key identifier: 28:95:62:E7:FE:E2:3C:D2:9A:90:9A:A9:EC:92:87:FF:A7:D5:66:2D Certificate issuer: /CN=A917FED9/serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Certificate serial: 022C Authority key identifier: C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa Signing time: Thu 11 Jun 2026 05:29:48 +0000 ROA not before: Thu 11 Jun 2026 05:29:48 +0000 ROA not after: Thu 30 Sep 2027 00:00:00 +0000 asID: 151498 IP address blocks: 103.234.126.0/23 maxlen: 23 2001:df2:a8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:46:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FED9, serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Validity Not Before: Jun 11 05:29:48 2026 GMT Not After : Sep 30 00:00:00 2027 GMT Subject: CN=6a2a47cb-302e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1b:0f:d6:58:36:04:cb:fe:a2:2a:f5:8f:67: 3f:81:fa:0d:9d:dd:4e:a1:0d:59:f5:aa:98:0c:2e: 0d:63:da:99:6a:9c:3d:29:05:41:31:8d:26:18:0f: a5:39:ba:3b:b6:0f:08:a7:78:32:a4:38:48:2e:de: bb:9a:2c:33:c5:7c:af:2f:72:d7:8f:26:b8:9f:17: ab:e5:7c:14:e8:4f:03:4e:ff:5f:12:3e:8c:f5:91: 20:4f:dc:6d:a1:d6:08:63:f8:0b:ad:0c:c8:18:82: 93:cc:cf:95:52:0d:3d:b3:3d:b4:55:8b:81:11:8c: 32:98:b4:98:3a:0a:41:3b:83:81:ea:dc:03:f1:b2: 67:35:3f:16:69:f1:06:1b:34:07:1b:80:95:72:4b: 99:e9:c6:3d:c2:5a:2a:cd:8b:67:0b:2d:45:a2:cb: 70:2d:6a:76:c8:63:f6:08:34:8b:e9:f8:7a:38:2f: 93:fb:5c:40:66:05:7d:01:b5:e6:51:35:42:b0:7f: 7f:c2:31:bf:79:2d:32:89:ec:a7:3a:88:c2:7a:c2: 7a:59:cd:6c:19:82:10:f0:e0:3f:8b:bc:52:f1:12: ee:c9:1d:c3:9f:1b:d0:18:37:6e:cd:7d:32:4e:74: 10:94:dd:88:4a:4a:7f:34:5c:50:00:9f:5a:bb:66: 7c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:95:62:E7:FE:E2:3C:D2:9A:90:9A:A9:EC:92:87:FF:A7:D5:66:2D X509v3 Authority Key Identifier: keyid:C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.234.126.0/23 IPv6: 2001:df2:a8c0::/48 Signature Algorithm: sha256WithRSAEncryption 76:aa:b7:ff:5e:fc:b6:81:1d:b9:75:c5:db:0e:5e:b1:cf:ba: 88:e3:d2:e6:1f:1e:5c:c3:c5:11:9c:94:63:3d:63:22:6f:d6: 03:8d:79:d2:ef:f3:ac:f4:b5:4f:83:8e:a5:0d:78:2b:d4:5b: 32:ca:12:18:8b:12:a6:35:36:af:85:5f:19:da:c4:0b:94:a4: 35:9a:bf:2f:dd:a6:bb:f0:24:7e:df:5c:7c:0f:90:e1:04:d3: d5:8f:3d:52:78:84:79:f2:ce:4c:d6:6c:df:b3:79:f0:cf:eb: 27:48:65:cf:1e:09:12:0d:7a:50:7a:57:ee:6f:64:6f:20:0f: cc:1d:58:0b:ab:d6:4d:53:a3:24:0b:67:46:18:a6:e9:78:e7: c3:5e:89:0c:cd:38:99:e0:05:4d:ce:47:c2:b7:6a:72:b6:bf: 8b:dd:9d:a8:4b:cd:d3:84:c1:5d:87:c9:11:c1:44:4f:a8:12: 4e:81:55:d4:13:c3:d8:45:58:bf:bd:c2:f0:ac:52:f5:52:a3: 43:cc:2c:5f:04:b4:3c:75:23:fa:95:77:7b:f6:50:c8:18:9e: 6d:cc:46:83:0d:aa:2e:eb:6d:65:cb:08:5d:6f:74:a2:d3:d9: 5f:62:db:87:e9:a8:dc:b9:b4:3c:11:53:3f:55:97:7b:d0:ed: e6:fd:1b:4c -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZFRDkxMTAvBgNVBAUTKEMxM0E5RjYyQTE0QjA1MTAzQzVBQzU3NTZGOTc2NTky ODg4QTQ5NUEwHhcNMjYwNjExMDUyOTQ4WhcNMjcwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJhNDdjYi0zMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hsP1lg2BMv+oir1j2c/gfoNnd1OoQ1Z9aqYDC4NY9qZapw9KQVBMY0mGA+l Obo7tg8Ip3gypDhILt67miwzxXyvL3LXjya4nxer5XwU6E8DTv9fEj6M9ZEgT9xt odYIY/gLrQzIGIKTzM+VUg09sz20VYuBEYwymLSYOgpBO4OB6twD8bJnNT8WafEG GzQHG4CVckuZ6cY9wloqzYtnCy1FostwLWp2yGP2CDSL6fh6OC+T+1xAZgV9AbXm UTVCsH9/wjG/eS0yieynOojCesJ6Wc1sGYIQ8OA/i7xS8RLuyR3DnxvQGDduzX0y TnQQlN2ISkp/NFxQAJ9au2Z87wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCiVYuf+ 4jzSmpCaqeySh/+n1WYtMB8GA1UdIwQYMBaAFME6n2KhSwUQPFrFdW+XZZKIikla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkVEOS9DMEJBOEFBRTIy MUIxMUVFQTUwOEQ2MkVDNEY5QUUwMi93VHFmWXFGTEJSQThXc1YxYjVkbGtvaUtT Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUcWZZcUZMQlJBOFdzVjFiNWRsa29pS1NWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZFRDkvQzBCQThBQUUyMjFCMTFFRUE1MDhENjJFQzRGOUFFMDIvMzI1MDNEMDYy NUZDMTFFRTlBNTc1RTM2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ+p+MA8EAgACMAkDBwAgAQ3yqMAwDQYJKoZIhvcNAQELBQADggEB AHaqt/9e/LaBHbl1xdsOXrHPuojj0uYfHlzDxRGclGM9YyJv1gONedLv86z0tU+D jqUNeCvUWzLKEhiLEqY1Nq+FXxnaxAuUpDWavy/dprvwJH7fXHwPkOEE09WPPVJ4 hHnyzkzWbN+zefDP6ydIZc8eCRINelB6V+5vZG8gD8wdWAur1k1ToyQLZ0YYpul4 58NeiQzNOJngBU3OR8K3anK2v4vdnahLzdOEwV2HyRHBRE+oEk6BVdQTw9hFWL+9 wvCsUvVSo0PMLF8EtDx1I/qVd3v2UMgYnm3MRoMNqi7rbWXLCF1vdKLT2V9i24fp qNy5tDwRUz9Vl3vQ7eb9G0w= -----END CERTIFICATE-----Generated at Sat Jun 13 08:29:52 2026 by rpki-client