$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/32E97B06EABB11ECA6E9D068C4F9AE02.roa File: 32E97B06EABB11ECA6E9D068C4F9AE02.roa (raw, json) Hash identifier: 22Tlm+JNCLxDSBCYP49tc0ldRUmtioQfZaXfTGApS8Y= Subject key identifier: CC:26:A3:8E:14:D8:5F:1D:05:17:B8:31:B6:FD:FC:9F:7E:54:1A:A3 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CB0 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/32E97B06EABB11ECA6E9D068C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:16 +0000 ROA not before: Thu 28 Aug 2025 14:52:16 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131347 IP address blocks: 103.5.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19632 (0x4cb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:16 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d20-3363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1c:3e:1e:ef:da:13:ce:e2:51:64:e1:16:a6: 52:ba:f7:af:e3:f2:4b:f6:8a:fd:1a:39:8e:e8:24: e5:f0:1b:19:38:75:30:3b:6e:bf:96:06:01:38:be: 7e:73:cd:38:ef:b3:37:db:6f:51:f8:02:77:d0:74: 60:44:c4:d1:77:9c:06:ba:f6:bb:25:1b:b1:aa:93: 12:b1:93:72:3a:aa:59:bf:66:d2:34:f0:f9:4c:b0: 9c:6f:21:9f:a1:69:ec:98:d3:3c:f8:79:46:41:25: 85:17:bd:fc:c6:f9:7e:62:05:b1:e3:cb:6e:aa:b4: 60:27:db:11:1f:e3:62:e8:47:d2:2f:7f:f0:bf:49: 87:3e:a2:65:dd:9f:44:53:dd:60:06:47:1b:e7:05: c9:d3:ff:a6:f9:f9:64:64:9d:df:a7:6f:6a:05:cf: a7:29:9a:0a:b0:a2:f8:59:5a:74:f5:81:6d:c2:78: 5d:4e:14:df:de:68:0b:12:42:85:c7:a4:07:b1:b3: 5d:79:ad:04:36:c3:e0:d9:05:aa:e7:11:fb:00:d8: c4:11:f8:76:e2:bd:7f:c7:2b:3e:af:8b:0f:e3:f2: 39:16:45:55:17:2f:10:2d:b9:cf:7e:29:3d:5b:e7: 56:da:e1:0f:b2:6f:76:ad:1c:a5:28:d4:27:15:9b: df:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:26:A3:8E:14:D8:5F:1D:05:17:B8:31:B6:FD:FC:9F:7E:54:1A:A3 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/32E97B06EABB11ECA6E9D068C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.204.0/23 Signature Algorithm: sha256WithRSAEncryption 44:68:65:25:43:f5:6b:2d:06:dd:d6:e4:f9:20:7a:42:1d:11: 33:b7:98:7c:2e:af:29:ec:6c:f8:d0:68:53:39:4e:f3:a2:0f: b7:d0:59:bc:9b:98:e8:ae:b7:54:53:7d:fd:25:4a:2a:3c:0e: c9:fe:83:fe:c6:9a:5e:fb:ff:56:95:29:61:15:90:bc:f7:75: 82:26:9b:c0:54:3c:10:ea:3b:b4:06:e9:24:9b:ec:02:4c:e7: 32:91:53:5e:11:45:64:62:75:1f:31:89:41:56:9b:89:76:45: d9:7f:44:2c:1b:ff:e4:3a:15:3e:9a:d9:d6:b5:dd:4f:b1:98: d4:11:ad:41:4a:94:c8:6d:31:89:1f:59:95:53:61:4a:72:17: 9e:a1:9d:95:80:db:0a:ee:f1:8b:18:82:f3:9c:ae:76:9b:fc: 41:f3:27:84:2b:bd:fd:85:9d:8e:da:92:a5:96:a2:ab:d8:ce: e2:8b:02:8a:97:87:b4:39:43:09:ff:41:da:34:52:e3:29:b9: 42:bf:63:ba:92:4e:57:6d:ac:21:87:28:ac:c4:91:59:0f:f8: 41:b9:b0:b0:38:2c:3b:7e:13:a2:18:d9:5e:4c:ea:bd:83:0a: e0:e7:bf:cb:49:b9:e2:2a:c3:7a:39:e9:18:8d:de:c3:6b:be: 16:87:5b:66 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjE2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQyMC0zMzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xw+Hu/aE87iUWThFqZSuvev4/JL9or9GjmO6CTl8BsZOHUwO26/lgYBOL5+ c80477M3229R+AJ30HRgRMTRd5wGuva7JRuxqpMSsZNyOqpZv2bSNPD5TLCcbyGf oWnsmNM8+HlGQSWFF738xvl+YgWx48tuqrRgJ9sRH+Ni6EfSL3/wv0mHPqJl3Z9E U91gBkcb5wXJ0/+m+flkZJ3fp29qBc+nKZoKsKL4WVp09YFtwnhdThTf3mgLEkKF x6QHsbNdea0ENsPg2QWq5xH7ANjEEfh24r1/xys+r4sP4/I5FkVVFy8QLbnPfik9 W+dW2uEPsm92rRylKNQnFZvfVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMwmo44U 2F8dBRe4Mbb9/J9+VBqjMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzJFOTdCMDZF QUJCMTFFQ0E2RTlEMDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnBcwwDQYJKoZIhvcNAQELBQADggEBAERoZSVD9WstBt3W 5PkgekIdETO3mHwurynsbPjQaFM5TvOiD7fQWbybmOiut1RTff0lSio8Dsn+g/7G ml77/1aVKWEVkLz3dYImm8BUPBDqO7QG6SSb7AJM5zKRU14RRWRidR8xiUFWm4l2 Rdl/RCwb/+Q6FT6a2da13U+xmNQRrUFKlMhtMYkfWZVTYUpyF56hnZWA2wru8YsY gvOcrnab/EHzJ4Qrvf2FnY7akqWWoqvYzuKLAoqXh7Q5Qwn/Qdo0UuMpuUK/Y7qS TldtrCGHKKzEkVkP+EG5sLA4LDt+E6IY2V5M6r2DCuDnv8tJueIqw3o56RiN3sNr vhaHW2Y= -----END CERTIFICATE-----Generated at Mon Sep 8 05:38:34 2025 by rpki-client