$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/32758AB4A54011F0ADC9D13BC4F9AE02.roa File: 32758AB4A54011F0ADC9D13BC4F9AE02.roa (raw, json) Hash identifier: QjFvESci20D4rlZANt8++cDFTKLxTPMJmHxTZ8tiizg= Subject key identifier: EF:FB:20:93:BA:47:C4:84:40:90:19:9A:8C:3F:4D:9F:C5:0E:36:53 Certificate issuer: /CN=A91C2663/serialNumber=1A97C2F4711F7BC802E268AC66F110862BE57888 Certificate serial: 2399 Authority key identifier: 1A:97:C2:F4:71:1F:7B:C8:02:E2:68:AC:66:F1:10:86:2B:E5:78:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/32758AB4A54011F0ADC9D13BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:34:51 +0000 ROA not before: Fri 30 Jan 2026 16:13:27 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 30456 IP address blocks: 103.241.212.0/22 maxlen: 24 202.165.124.0/22 maxlen: 22 202.165.124.0/24 maxlen: 24 202.165.125.0/24 maxlen: 24 202.165.126.0/24 maxlen: 24 202.165.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.crl rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9113 (0x2399) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2663, serialNumber=1A97C2F4711F7BC802E268AC66F110862BE57888 Validity Not Before: Jan 30 16:13:27 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a486cb-9270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f9:d2:e7:0a:76:13:9a:7c:d9:e0:8c:7c:fd: 3b:f5:cc:4b:84:e6:b2:ff:ee:0c:d1:99:c9:49:9e: a5:8c:85:61:04:e5:8c:b2:24:98:10:5d:65:ac:e5: 45:1a:45:50:5a:80:f6:91:b6:74:58:57:6d:63:9a: de:89:e4:19:dd:5e:a5:cd:9d:6c:2a:15:9c:12:b0: 0f:9e:99:8b:20:24:3c:8d:59:b6:28:7c:8d:12:11: da:83:ed:53:58:a9:b3:a6:29:59:07:67:fd:b2:ad: f1:ae:57:37:6e:d3:c6:6a:b5:51:2a:0a:13:b9:ba: 92:e6:60:41:ed:52:32:24:5e:07:14:ed:d9:c3:19: 80:58:39:ba:c2:95:96:5c:f5:87:54:84:b8:9c:8a: a6:dc:dd:3e:6c:f3:5a:40:94:ab:48:07:e5:c7:dd: c7:81:88:08:9b:c2:31:c5:0a:4f:39:85:f6:2a:9e: 80:71:5a:c5:d5:b8:e5:2a:87:c2:65:b9:6f:ba:2b: e2:6b:e7:40:a1:a2:14:f4:b8:71:94:5c:73:bb:9b: 1c:5c:fd:2e:fb:cc:b1:97:af:6f:0c:e6:93:62:74: 1b:d8:90:8c:32:1a:1e:e0:ae:01:0d:98:d3:a9:ac: 83:45:13:92:59:d9:39:0e:93:97:ce:f3:8f:4a:26: 04:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:FB:20:93:BA:47:C4:84:40:90:19:9A:8C:3F:4D:9F:C5:0E:36:53 X509v3 Authority Key Identifier: keyid:1A:97:C2:F4:71:1F:7B:C8:02:E2:68:AC:66:F1:10:86:2B:E5:78:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/32758AB4A54011F0ADC9D13BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.241.212.0/22 202.165.124.0/22 Signature Algorithm: sha256WithRSAEncryption 75:43:f3:db:d2:2c:5c:2f:cf:3e:89:ee:2f:78:58:a4:1f:f8: 4f:fb:49:4e:16:99:37:95:ee:dd:3a:b7:f2:c7:92:b0:56:24: 74:b0:96:69:c4:0c:ec:3e:8d:82:c5:7f:bc:d9:2f:02:ef:01: bc:a1:38:31:b9:0f:56:c2:63:14:b9:7b:6b:47:39:82:be:bb: e7:44:53:38:55:37:74:20:3d:06:12:6a:2b:12:a3:cc:d8:4d: 74:fd:ae:a4:a0:35:9d:4c:79:39:7e:2d:65:c1:bf:3a:42:e3: 47:1a:0a:d3:81:c7:ca:20:f0:bc:5a:f8:d5:a0:26:2a:88:83: 9d:1b:56:1b:4e:76:a5:21:73:fc:1e:b0:6b:ab:ef:24:c0:03: 3c:4e:64:1a:9a:4b:26:43:17:13:c6:44:07:19:1e:40:3d:16: 36:cd:b4:a6:bc:15:fc:1e:49:95:0e:9f:75:bd:aa:23:f7:2c: 29:19:be:f2:47:00:09:6e:2d:0c:52:0e:81:b5:26:6c:a3:97: 07:9b:41:79:1b:e3:4a:23:36:27:9b:b3:2c:ed:38:5f:95:ad: 0d:ee:97:6e:64:cd:78:0e:03:43:8b:fe:5b:15:b2:93:8a:d4: e4:42:92:15:55:46:5a:ab:6d:2e:0e:47:61:f5:a7:b5:81:e2: 19:3f:08:4e -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICI5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NjMxMTAvBgNVBAUTKDFBOTdDMkY0NzExRjdCQzgwMkUyNjhBQzY2RjExMDg2 MkJFNTc4ODgwHhcNMjYwMTMwMTYxMzI3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODZjYi05MjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfnS5wp2E5p82eCMfP079cxLhOay/+4M0ZnJSZ6ljIVhBOWMsiSYEF1lrOVF GkVQWoD2kbZ0WFdtY5reieQZ3V6lzZ1sKhWcErAPnpmLICQ8jVm2KHyNEhHag+1T WKmzpilZB2f9sq3xrlc3btPGarVRKgoTubqS5mBB7VIyJF4HFO3ZwxmAWDm6wpWW XPWHVIS4nIqm3N0+bPNaQJSrSAflx93HgYgIm8IxxQpPOYX2Kp6AcVrF1bjlKofC Zblvuivia+dAoaIU9LhxlFxzu5scXP0u+8yxl69vDOaTYnQb2JCMMhoe4K4BDZjT qayDRROSWdk5DpOXzvOPSiYEAwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFO/7IJO6 R8SEQJAZmow/TZ/FDjZTMB8GA1UdIwQYMBaAFBqXwvRxH3vIAuJorGbxEIYr5XiI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY2My9COEFFRjEzOEE5 NEMxMUU1ODI5MUNBNjdDNEY5QUUwMi9HcGZDOUhFZmU4Z0M0bWlzWnZFUWhpdmxl SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dwZkM5SEVmZThnQzRtaXNadkVRaGl2bGVJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI2NjMvQjhBRUYxMzhBOTRDMTFFNTgyOTFDQTY3QzRGOUFFMDIvMzI3NThBQjRB NTQwMTFGMEFEQzlEMTNCQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ/HUAwQCyqV8MA0GCSqGSIb3DQEBCwUAA4IBAQB1Q/Pb0ixcL88+ ie4veFikH/hP+0lOFpk3le7dOrfyx5KwViR0sJZpxAzsPo2CxX+82S8C7wG8oTgx uQ9WwmMUuXtrRzmCvrvnRFM4VTd0ID0GEmorEqPM2E10/a6koDWdTHk5fi1lwb86 QuNHGgrTgcfKIPC8WvjVoCYqiIOdG1YbTnalIXP8HrBrq+8kwAM8TmQamksmQxcT xkQHGR5APRY2zbSmvBX8HkmVDp91vaoj9ywpGb7yRwAJbi0MUg6BtSZso5cHm0F5 G+NKIzYnm7Ms7Thfla0N7pduZM14DgNDi/5bFbKTitTkQpIVVUZaq20uDkdh9ae1 geIZPwhO -----END CERTIFICATE-----Generated at Mon Mar 2 11:10:38 2026 by rpki-client