$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/32509B68EDAE11E595DF6C28C4F9AE02.roa File: 32509B68EDAE11E595DF6C28C4F9AE02.roa (raw, json) Hash identifier: n6cQOr7nMx3ASkXvodDC31C4d5lcr3OKlWkKenjwMWc= Subject key identifier: 62:95:DC:AE:56:14:D9:0B:A7:E0:21:C2:8F:78:A7:AE:5B:86:2A:33 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 3517 Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/32509B68EDAE11E595DF6C28C4F9AE02.roa Signing time: Wed 22 Oct 2025 14:30:08 +0000 ROA not before: Wed 22 Oct 2025 14:30:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9443 IP address blocks: 103.5.92.0/22 maxlen: 22 103.5.94.0/24 maxlen: 24 2402:8700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13591 (0x3517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657, serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Oct 22 14:30:08 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f8ea70-8753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:cf:b4:89:38:93:38:84:5a:17:fb:59:3c:c4: c6:b1:c9:2d:88:e9:3b:cd:2f:e9:84:70:95:a1:87: 40:63:58:72:66:30:13:93:b4:22:4d:21:63:23:0f: 54:da:d8:d9:b5:41:47:29:00:3d:7b:d7:6c:8f:ab: 70:0c:3d:d4:be:e9:b0:76:af:08:af:97:2f:18:ce: 3a:e2:ad:e5:9c:98:29:34:11:72:23:d3:f2:be:bd: ad:9d:a6:08:92:c2:55:24:c5:3f:50:1d:71:a0:7d: 13:d7:3a:8d:12:b8:84:b7:db:1d:9e:a0:9b:ad:ac: c4:60:00:82:c9:82:c9:de:c8:73:67:57:17:04:ea: e0:c1:dc:75:e9:62:50:a2:eb:dd:6a:8f:bc:3d:fd: 51:ca:6c:54:9d:b3:f3:5c:52:d7:2c:10:88:91:6c: 5d:f4:b5:9d:a4:fc:89:d5:7b:0b:c2:c1:86:7c:b5: a4:90:9b:39:65:da:9f:5b:c5:d5:2c:d2:f7:d7:05: 8d:4b:ab:64:26:4a:ce:c9:ef:92:90:38:f3:1b:ae: c0:38:52:90:ef:41:b8:3a:30:17:13:b8:be:3c:eb: 96:99:94:06:4e:69:cf:81:b1:18:46:ea:e8:c2:65: af:93:9b:a2:50:64:5c:93:f8:19:c5:85:5b:38:e4: e9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:95:DC:AE:56:14:D9:0B:A7:E0:21:C2:8F:78:A7:AE:5B:86:2A:33 X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/32509B68EDAE11E595DF6C28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.92.0/22 IPv6: 2402:8700::/32 Signature Algorithm: sha256WithRSAEncryption 5e:f2:3b:e7:c4:88:f0:c5:b1:a5:35:a5:b6:38:99:0e:9c:3b: f9:59:76:05:79:cc:13:43:84:18:18:f7:95:50:90:36:46:81: 40:8d:4b:51:18:1a:8b:c0:68:04:bc:16:b8:b3:44:c6:eb:7f: ca:b6:ec:6b:eb:54:52:3c:97:3b:15:d9:70:8b:fc:28:02:c6: da:74:4e:c6:52:6b:e2:29:dc:04:13:76:b5:52:1e:e2:0c:f7: 12:fd:63:69:59:48:bd:0d:d6:19:4f:55:66:5e:08:51:cd:c0: 3c:63:2a:f6:62:7b:9a:8d:f8:d8:ca:cd:f6:79:a1:a4:b0:ab: b3:ee:f5:e8:95:77:58:40:22:08:a1:11:45:12:8f:53:96:cf: 62:01:5c:1b:26:fd:60:35:95:01:4f:a3:2d:18:6d:90:ea:7b: 5b:f2:67:fc:57:76:82:76:c2:e2:d4:1d:bd:ec:15:7a:d6:df: 54:17:0d:8f:ac:87:7f:70:f8:e7:4b:78:0d:8a:9b:4a:23:cf: 0d:cc:4e:13:0f:1a:f7:83:85:2a:7b:45:79:a7:71:56:26:8d: a7:f2:8e:5e:d8:e2:12:d1:3f:d1:89:94:39:c9:01:41:70:51: 59:39:7d:07:d7:1b:2c:3e:e8:e0:63:bd:a6:1e:9a:3b:1a:45: 7c:f0:d9:cf -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICNRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjUxMDIyMTQzMDA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY4ZWE3MC04NzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9M+0iTiTOIRaF/tZPMTGscktiOk7zS/phHCVoYdAY1hyZjATk7QiTSFjIw9U 2tjZtUFHKQA9e9dsj6twDD3Uvumwdq8Ir5cvGM464q3lnJgpNBFyI9Pyvr2tnaYI ksJVJMU/UB1xoH0T1zqNEriEt9sdnqCbrazEYACCyYLJ3shzZ1cXBOrgwdx16WJQ ouvdao+8Pf1RymxUnbPzXFLXLBCIkWxd9LWdpPyJ1XsLwsGGfLWkkJs5ZdqfW8XV LNL31wWNS6tkJkrOye+SkDjzG67AOFKQ70G4OjAXE7i+POuWmZQGTmnPgbEYRuro wmWvk5uiUGRck/gZxYVbOOTpBwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGKV3K5W FNkLp+Ahwo94p65bhiozMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ2NTcvNzE1RjMzMzQxRDcxMTFFMkEyREI0NEI2MDhCMDJDRDIvMzI1MDlCNjhF REFFMTFFNTk1REY2QzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnBVwwDQQCAAIwBwMFACQChwAwDQYJKoZIhvcNAQELBQAD ggEBAF7yO+fEiPDFsaU1pbY4mQ6cO/lZdgV5zBNDhBgY95VQkDZGgUCNS1EYGovA aAS8FrizRMbrf8q27GvrVFI8lzsV2XCL/CgCxtp0TsZSa+Ip3AQTdrVSHuIM9xL9 Y2lZSL0N1hlPVWZeCFHNwDxjKvZie5qN+NjKzfZ5oaSwq7Pu9eiVd1hAIgihEUUS j1OWz2IBXBsm/WA1lQFPoy0YbZDqe1vyZ/xXdoJ2wuLUHb3sFXrW31QXDY+sh39w +OdLeA2Km0ojzw3MThMPGveDhSp7RXmncVYmjafyjl7Y4hLRP9GJlDnJAUFwUVk5 fQfXGyw+6OBjvaYemjsaRXzw2c8= -----END CERTIFICATE-----Generated at Thu Oct 23 02:04:34 2025 by rpki-client