$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/32DFCCDCEB8011EAAB806163C4F9AE02.roa File: 32DFCCDCEB8011EAAB806163C4F9AE02.roa (raw, json) Hash identifier: lFKHdRG/VsHJ+DcVPofYkA6W4POH4suRyuwB6wTeuGE= Subject key identifier: 51:22:3D:91:E8:BD:98:03:77:F2:1F:C7:89:AB:04:19:54:A8:25:25 Certificate issuer: /CN=A91EEEB8/serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Certificate serial: 355D Authority key identifier: E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/32DFCCDCEB8011EAAB806163C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:01:34 +0000 ROA not before: Thu 02 Oct 2025 15:11:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133418 IP address blocks: 103.136.123.0/24 maxlen: 24 2404:8e80:4::/48 maxlen: 48 2404:8e80:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13661 (0x355d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEEB8, serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Validity Not Before: Oct 2 15:11:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a47efe-b442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:db:cf:a0:55:6c:32:bd:f4:24:83:5d:7f:80: ff:85:75:c9:c1:50:b0:25:0c:2c:e1:0d:6e:91:df: 13:1f:fa:c2:31:d4:46:7a:18:b2:31:49:b2:1f:31: 24:19:09:67:71:f4:41:b8:a9:4d:1b:8a:ba:0f:89: c3:47:4c:af:f4:59:ea:03:39:fa:9c:a8:60:a7:80: 59:a5:c7:c0:ff:15:bb:47:b3:00:17:a2:02:b2:e3: d4:40:84:6a:8f:28:02:16:14:7a:92:93:89:39:0d: 04:59:ed:55:89:12:0a:cb:fe:ad:65:fc:80:76:87: dd:dc:d9:94:9e:f2:91:17:34:80:20:76:58:bd:41: 76:5f:ce:5c:d5:57:e1:ae:65:39:42:b4:1c:57:82: 9e:72:a2:7a:e1:0d:67:39:4c:83:bd:04:27:9e:a7: db:2d:33:f9:26:bf:be:94:1d:c2:ef:78:0c:20:e0: 76:81:35:23:02:8c:74:14:cd:9a:0f:57:99:17:1f: 64:68:eb:43:6b:55:be:d7:68:a7:1e:a8:d4:dd:8d: 67:1d:e3:35:db:6f:57:cf:09:45:74:11:f3:eb:90: 1a:c5:4c:c5:74:98:68:cb:57:b7:6d:55:97:db:83: c5:58:76:9b:ae:5f:0b:6a:42:4b:44:83:57:0f:00: 51:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:22:3D:91:E8:BD:98:03:77:F2:1F:C7:89:AB:04:19:54:A8:25:25 X509v3 Authority Key Identifier: keyid:E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/32DFCCDCEB8011EAAB806163C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.136.123.0/24 IPv6: 2404:8e80:4::/48 2404:8e80:8::/48 Signature Algorithm: sha256WithRSAEncryption 8d:29:0c:6c:7e:b4:12:60:d6:3a:cd:df:cf:e2:90:07:01:75: 19:3f:f2:ed:74:97:8d:8b:64:7b:97:01:ce:ba:d5:6b:08:1a: c2:be:df:17:b7:2d:f2:e1:16:1b:d9:8d:a8:dc:12:f7:a2:64: 13:42:a9:18:6e:8a:1c:99:38:c6:12:9b:0c:20:63:ff:9e:bb: ce:9f:02:b2:a4:0a:cd:1f:97:d2:5e:d0:0b:3a:ca:1b:46:dd: d7:a2:88:78:5c:a8:0e:e8:0e:81:c5:80:fb:61:06:39:ad:85: ae:f3:03:08:ce:30:79:f4:5d:34:a2:95:7b:68:2f:02:21:fa: b0:b5:c2:fe:ac:27:08:e8:26:db:43:2b:5f:e7:4c:47:69:b0: 8f:a8:e5:09:03:b1:e0:5d:f8:cd:d6:e6:cf:c3:88:30:7e:49: 5b:46:f9:94:ae:7d:4d:12:08:76:5c:96:eb:28:5e:30:ee:20: e6:d7:5d:d4:92:7e:bd:c9:e7:80:c1:b7:da:8d:b0:4f:e8:36: b6:fe:dc:1f:3d:3f:18:04:25:88:ea:c8:a4:42:ec:be:eb:f7: a2:b6:1d:a3:c6:2d:1f:f4:31:c9:c5:63:3b:b4:18:dd:f3:94: af:00:ff:24:3f:e9:12:e5:bb:4d:9a:d1:8e:c5:ab:59:f7:63: b2:8a:43:9b -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICNV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFQjgxMTAvBgNVBAUTKEU2MjJDODExNEYzRjI0QUE2QTgwN0M4MTQxRTM5NjRC NTUxQkI5MzAwHhcNMjUxMDAyMTUxMTIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2VmZS1iNDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl9vPoFVsMr30JINdf4D/hXXJwVCwJQws4Q1ukd8TH/rCMdRGehiyMUmyHzEk GQlncfRBuKlNG4q6D4nDR0yv9FnqAzn6nKhgp4BZpcfA/xW7R7MAF6ICsuPUQIRq jygCFhR6kpOJOQ0EWe1ViRIKy/6tZfyAdofd3NmUnvKRFzSAIHZYvUF2X85c1Vfh rmU5QrQcV4KecqJ64Q1nOUyDvQQnnqfbLTP5Jr++lB3C73gMIOB2gTUjAox0FM2a D1eZFx9kaOtDa1W+12inHqjU3Y1nHeM1229XzwlFdBHz65AaxUzFdJhoy1e3bVWX 24PFWHabrl8LakJLRINXDwBRtwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFFEiPZHo vZgDd/Ifx4mrBBlUqCUlMB8GA1UdIwQYMBaAFOYiyBFPPySqaoB8gUHjlktVG7kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUVCOC84RTBGMkNCNjFE QTExMUUyQjkwNkJDOTMwOEIwMkNEMi81aUxJRVU4X0pLcHFnSHlCUWVPV1MxVWJ1 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpTElFVThfSktwcWdIeUJRZU9XUzFVYnVUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVFQjgvOEUwRjJDQjYxREExMTFFMkI5MDZCQzkzMDhCMDJDRDIvMzJERkNDRENF QjgwMTFFQUFCODA2MTYzQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQAZ4h7MBgEAgACMBIDBwAkBI6AAAQDBwAkBI6AAAgwDQYJKoZIhvcN AQELBQADggEBAI0pDGx+tBJg1jrN38/ikAcBdRk/8u10l42LZHuXAc661WsIGsK+ 3xe3LfLhFhvZjajcEveiZBNCqRhuihyZOMYSmwwgY/+eu86fArKkCs0fl9Je0As6 yhtG3deiiHhcqA7oDoHFgPthBjmtha7zAwjOMHn0XTSilXtoLwIh+rC1wv6sJwjo JttDK1/nTEdpsI+o5QkDseBd+M3W5s/DiDB+SVtG+ZSufU0SCHZclusoXjDuIObX XdSSfr3J54DBt9qNsE/oNrb+3B89PxgEJYjqyKRC7L7r96K2HaPGLR/0McnFYzu0 GN3zlK8A/yQ/6RLlu02a0Y7Fq1n3Y7KKQ5s= -----END CERTIFICATE-----Generated at Mon Mar 2 11:34:51 2026 by rpki-client