$ rpki-client -vvf rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa File: 32503D0625FC11EE9A575E36C4F9AE02.roa (raw, json) Hash identifier: coDJ25CP62J5iPaE/zCXs0A10y/EaRgWhlToPaB3W0E= Subject key identifier: 34:DB:B4:05:6E:5A:50:D2:2E:97:DC:EB:78:8F:18:EE:09:67:FF:27 Certificate issuer: /CN=A917FED9/serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Certificate serial: 0186 Authority key identifier: C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa Signing time: Thu 31 Jul 2025 04:11:23 +0000 ROA not before: Thu 31 Jul 2025 04:11:23 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151498 IP address blocks: 103.234.126.0/23 maxlen: 23 2001:df2:a8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 03:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FED9, serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Validity Not Before: Jul 31 04:11:23 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688aeceb-94b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:55:b1:cd:37:a3:66:43:25:b8:54:2f:e6:5f: c7:1a:7e:29:e6:4b:c7:b3:f3:6c:f1:ee:a0:eb:1d: b3:2c:25:52:11:30:01:2f:f0:1f:be:37:79:41:09: 8f:09:51:d4:5a:11:65:58:9e:22:3e:0c:7d:8c:3a: 52:c4:4b:56:e6:a4:c4:ad:f3:cc:ea:61:58:73:35: c2:48:89:db:ff:1d:2b:46:37:08:ea:ca:25:8d:6e: c4:17:7b:81:02:b8:b8:ec:e4:9e:d4:0d:b3:05:5a: 7f:60:a7:89:98:8a:5d:c3:5a:ba:e9:75:dc:92:04: 96:24:9b:42:d3:a7:85:a6:28:f3:74:00:cf:6f:d1: 14:85:aa:61:25:dc:0e:d3:79:1f:38:98:43:43:e2: 7e:09:df:11:c9:5a:19:0d:ed:5c:c4:c3:cf:e3:28: 4f:f8:bd:b1:90:ca:0a:38:f8:f6:eb:8a:f1:d8:69: 42:13:95:bd:9a:11:a6:dd:0f:ff:ea:32:26:cf:a6: cd:7a:cc:d2:2c:03:fc:41:ec:36:92:a4:69:48:45: 2f:19:b2:24:2a:12:a5:60:63:40:d2:ee:73:18:71: 57:75:4c:a8:55:e9:6a:6b:a2:5d:85:62:41:de:6c: 59:57:b5:7c:72:23:76:48:86:38:1d:7f:61:09:cf: 2e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:DB:B4:05:6E:5A:50:D2:2E:97:DC:EB:78:8F:18:EE:09:67:FF:27 X509v3 Authority Key Identifier: keyid:C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.126.0/23 IPv6: 2001:df2:a8c0::/48 Signature Algorithm: sha256WithRSAEncryption 72:11:0c:2a:12:26:4b:ab:1b:fa:03:7e:35:cc:76:e6:fe:fa: 9a:a0:3e:90:99:e0:c5:78:c7:2d:eb:f9:9c:0c:94:a5:99:ca: d3:fc:5f:71:ee:99:37:42:37:82:98:b5:bf:a6:2d:ad:fa:34: 84:18:76:23:d4:f2:67:d0:72:4d:b5:fa:54:5c:29:2c:a8:58: 56:f2:ae:e6:2d:42:e1:b9:23:70:ec:80:64:b6:d6:aa:c5:d4: dc:b0:eb:06:79:c1:71:ad:38:0f:2c:38:b0:81:52:e2:4a:b7: e2:b2:e7:91:4d:a9:9c:f0:da:6b:c8:ce:f7:a0:be:b1:49:5d: 58:c3:e4:24:0e:19:a7:56:96:70:c7:c3:83:7c:a8:7f:1f:1f: 2b:96:82:cd:a8:c0:b9:4c:b2:f2:c2:38:81:13:e9:5a:36:f0: ba:a9:be:81:b1:7a:43:ac:ae:85:76:cf:56:5a:3f:88:a1:e6: 39:e3:8e:df:a7:d7:de:95:16:e5:33:d2:62:29:2a:4d:2d:19: f8:46:f3:f8:2b:03:68:87:c6:5e:68:92:d2:e2:b4:c2:50:fb: 30:17:1c:f4:36:6d:e0:01:21:36:8f:e9:cc:2c:34:ad:c3:e1: 58:2f:85:ef:48:6c:4c:fe:f9:75:68:99:14:b9:41:4d:a5:45: 3d:25:3f:c6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZFRDkxMTAvBgNVBAUTKEMxM0E5RjYyQTE0QjA1MTAzQzVBQzU3NTZGOTc2NTky ODg4QTQ5NUEwHhcNMjUwNzMxMDQxMTIzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhZWNlYi05NGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVWxzTejZkMluFQv5l/HGn4p5kvHs/Ns8e6g6x2zLCVSETABL/Afvjd5QQmP CVHUWhFlWJ4iPgx9jDpSxEtW5qTErfPM6mFYczXCSInb/x0rRjcI6soljW7EF3uB Ari47OSe1A2zBVp/YKeJmIpdw1q66XXckgSWJJtC06eFpijzdADPb9EUhaphJdwO 03kfOJhDQ+J+Cd8RyVoZDe1cxMPP4yhP+L2xkMoKOPj264rx2GlCE5W9mhGm3Q// 6jImz6bNeszSLAP8Qew2kqRpSEUvGbIkKhKlYGNA0u5zGHFXdUyoVelqa6JdhWJB 3mxZV7V8ciN2SIY4HX9hCc8u/QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDTbtAVu WlDSLpfc63iPGO4JZ/8nMB8GA1UdIwQYMBaAFME6n2KhSwUQPFrFdW+XZZKIikla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkVEOS9DMEJBOEFBRTIy MUIxMUVFQTUwOEQ2MkVDNEY5QUUwMi93VHFmWXFGTEJSQThXc1YxYjVkbGtvaUtT Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUcWZZcUZMQlJBOFdzVjFiNWRsa29pS1NWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZFRDkvQzBCQThBQUUyMjFCMTFFRUE1MDhENjJFQzRGOUFFMDIvMzI1MDNEMDYy NUZDMTFFRTlBNTc1RTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn6n4wDwQCAAIwCQMHACABDfKowDANBgkqhkiG9w0BAQsF AAOCAQEAchEMKhImS6sb+gN+Ncx25v76mqA+kJngxXjHLev5nAyUpZnK0/xfce6Z N0I3gpi1v6Ytrfo0hBh2I9TyZ9ByTbX6VFwpLKhYVvKu5i1C4bkjcOyAZLbWqsXU 3LDrBnnBca04Dyw4sIFS4kq34rLnkU2pnPDaa8jO96C+sUldWMPkJA4Zp1aWcMfD g3yofx8fK5aCzajAuUyy8sI4gRPpWjbwuqm+gbF6Q6yuhXbPVlo/iKHmOeOO36fX 3pUW5TPSYikqTS0Z+Ebz+CsDaIfGXmiS0uK0wlD7MBcc9DZt4AEhNo/pzCw0rcPh WC+F70hsTP75dWiZFLlBTaVFPSU/xg== -----END CERTIFICATE-----Generated at Tue Aug 12 22:52:31 2025 by rpki-client