$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa File: 32BF2AD8F36E11E883FFB865C4F9AE02.roa (raw, json) Hash identifier: JRMt5syEhbsraqmogl+r4Cn6WjqteDPA68BCYDsj7VY= Subject key identifier: 44:26:00:98:FA:72:A3:C4:53:17:EE:29:D7:E9:1A:34:80:AE:A8:44 Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 19AB Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:25:40 +0000 ROA not before: Fri 30 May 2025 17:39:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132892 IP address blocks: 2400:cb00:36::/48 maxlen: 48 2400:cb00:348::/48 maxlen: 48 2400:cb00:349::/48 maxlen: 48 2400:cb00:958::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 16:56:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6571 (0x19ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4, serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: May 30 17:39:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4aed4-0e92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bf:6e:6c:e8:5f:b7:ba:15:d0:9f:d6:a4:4e: 62:95:89:8c:75:c4:9a:4e:c8:92:f7:2d:e1:bb:38: ef:34:b8:67:7d:ff:fc:66:48:d2:73:60:fd:0b:2a: 31:ed:3e:1b:a6:b2:3c:68:bd:4b:d0:a8:1f:8a:b1: 22:af:53:4c:f9:c4:33:f5:38:92:11:b1:c7:9c:7f: b2:93:ff:d2:fa:8a:74:98:94:3c:b0:ab:93:0a:1a: e3:c4:67:07:83:4c:b2:2b:87:3d:45:ff:6e:95:da: 12:22:1d:7c:55:7e:e3:2e:df:f8:94:74:dd:ae:e9: 16:4f:a6:3d:97:3b:9f:71:a8:c8:7c:89:50:16:ea: 78:2b:fb:96:62:00:c0:b5:56:3e:43:f8:00:93:81: 4d:4a:8c:a4:d2:fb:ea:7b:12:89:31:82:9f:78:05: c7:1b:35:26:a7:0c:8c:82:87:26:e1:47:18:f4:25: 87:29:e2:9a:5b:69:62:d0:fe:83:0f:6e:21:42:cc: 91:78:e2:c7:91:c3:1e:ed:10:fc:2c:d6:a7:76:ca: c5:df:1e:42:2e:ee:b2:0d:6a:b6:bf:8f:9f:18:b0: ee:e5:3d:29:c1:bd:87:e6:b9:98:e4:0b:11:d1:24: f9:3b:79:73:ac:60:8d:0e:9a:ec:0b:7b:d6:98:6c: 14:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:26:00:98:FA:72:A3:C4:53:17:EE:29:D7:E9:1A:34:80:AE:A8:44 X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:cb00:36::/48 2400:cb00:348::/47 2400:cb00:958::/48 Signature Algorithm: sha256WithRSAEncryption 3d:dc:93:d9:71:1c:49:53:a1:8c:77:75:e6:8f:b0:62:c6:e5: bd:fd:58:d2:1c:6e:db:10:aa:a5:0a:ed:29:f5:b8:6b:bc:72: 1a:9b:3f:e4:b4:5a:36:aa:7b:80:7e:f9:3c:58:19:3a:ff:e9: 69:a1:2f:18:d3:82:14:1d:3a:99:32:60:52:a3:43:4f:05:76: 8f:5a:24:6e:ad:ab:9f:70:bc:84:e7:18:cc:44:5d:73:27:84: 59:4d:95:ad:ee:ac:88:9a:95:08:60:d0:70:48:34:ba:ad:6d: 2f:5d:56:3c:7c:43:02:10:0c:1b:10:5c:48:87:9b:85:48:dd: 55:f9:82:a5:67:f3:32:d3:ca:9d:ab:00:c8:5c:0e:27:a9:af: 02:21:42:b0:37:c7:bb:f3:c7:06:7c:53:ce:43:95:d2:26:93: ac:76:5a:69:4d:75:af:bd:20:b0:87:9b:a0:1c:f8:c6:66:83: ae:95:f6:ae:f2:44:5a:64:3a:8e:0f:4f:63:ae:d2:8a:15:ea: e9:cb:0e:c4:5c:bf:e7:82:d6:2c:15:e8:10:9d:60:45:f8:79: c8:df:43:60:f6:7b:7a:da:28:ae:9d:52:40:04:34:e0:a9:b8: 29:4b:d1:9f:1e:3b:30:d1:77:f9:bf:b5:90:d5:9f:22:f4:24: d2:ef:24:13 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICGaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjUwNTMwMTczOTUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWVkNC0wZTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs79ubOhft7oV0J/WpE5ilYmMdcSaTsiS9y3huzjvNLhnff/8ZkjSc2D9Cyox 7T4bprI8aL1L0KgfirEir1NM+cQz9TiSEbHHnH+yk//S+op0mJQ8sKuTChrjxGcH g0yyK4c9Rf9uldoSIh18VX7jLt/4lHTdrukWT6Y9lzufcajIfIlQFup4K/uWYgDA tVY+Q/gAk4FNSoyk0vvqexKJMYKfeAXHGzUmpwyMgocm4UcY9CWHKeKaW2li0P6D D24hQsyReOLHkcMe7RD8LNandsrF3x5CLu6yDWq2v4+fGLDu5T0pwb2H5rmY5AsR 0ST5O3lzrGCNDprsC3vWmGwUZwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFEQmAJj6 cqPEUxfuKdfpGjSArqhEMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvMzJCRjJBRDhG MzZFMTFFODgzRkZCODY1QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAh BAIAAjAbAwcAJADLAAA2AwcBJADLAANIAwcAJADLAAlYMA0GCSqGSIb3DQEBCwUA A4IBAQA93JPZcRxJU6GMd3Xmj7BixuW9/VjSHG7bEKqlCu0p9bhrvHIamz/ktFo2 qnuAfvk8WBk6/+lpoS8Y04IUHTqZMmBSo0NPBXaPWiRuraufcLyE5xjMRF1zJ4RZ TZWt7qyImpUIYNBwSDS6rW0vXVY8fEMCEAwbEFxIh5uFSN1V+YKlZ/My08qdqwDI XA4nqa8CIUKwN8e788cGfFPOQ5XSJpOsdlppTXWvvSCwh5ugHPjGZoOulfau8kRa ZDqOD09jrtKKFerpyw7EXL/ngtYsFegQnWBF+HnI30Ng9nt62iiunVJABDTgqbgp S9GfHjsw0Xf5v7WQ1Z8i9CTS7yQT -----END CERTIFICATE-----Generated at Tue Mar 24 14:05:10 2026 by rpki-client