$ rpki-client -vvf rpki.apnic.net/member_repository/A91D23D1/1F338AC490CC11EBB1BE102DC4F9AE02/32BA4EE0913311EB96A8E810C4F9AE02.roa File: 32BA4EE0913311EB96A8E810C4F9AE02.roa (raw, json) Hash identifier: +tVDBEUyvx+wiXhaQ43mL8NvF9ERpovp/kH/3l62E3g= Subject key identifier: B2:C7:15:01:31:07:E1:C1:FF:97:FB:6E:C5:16:A2:62:02:10:16:67 Certificate issuer: /CN=A91D23D1/serialNumber=4903FEB9744F5625E2B7E15A4F80B25ED3DD09F3 Certificate serial: 0674 Authority key identifier: 49:03:FE:B9:74:4F:56:25:E2:B7:E1:5A:4F:80:B2:5E:D3:DD:09:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SQP-uXRPViXit-FaT4CyXtPdCfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D23D1/1F338AC490CC11EBB1BE102DC4F9AE02/32BA4EE0913311EB96A8E810C4F9AE02.roa Signing time: Tue 02 Sep 2025 23:13:20 +0000 ROA not before: Tue 02 Sep 2025 23:13:20 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136766 IP address blocks: 103.142.220.0/24 maxlen: 24 103.142.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D23D1/1F338AC490CC11EBB1BE102DC4F9AE02/SQP-uXRPViXit-FaT4CyXtPdCfM.crl rsync://rpki.apnic.net/member_repository/A91D23D1/1F338AC490CC11EBB1BE102DC4F9AE02/SQP-uXRPViXit-FaT4CyXtPdCfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SQP-uXRPViXit-FaT4CyXtPdCfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1652 (0x674) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D23D1, serialNumber=4903FEB9744F5625E2B7E15A4F80B25ED3DD09F3 Validity Not Before: Sep 2 23:13:20 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b77a10-5e4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:36:cb:9f:89:2e:94:d2:14:e5:05:b4:60:fb: 61:20:61:23:7e:c7:a7:f9:ae:8c:f4:2d:ac:e7:b8: f3:ed:9f:1d:c3:2e:45:b3:b8:9c:e4:92:b1:19:8d: 22:3e:90:4f:99:1d:6a:91:e8:c3:8f:fc:bd:23:59: 62:61:13:80:51:8c:97:3f:19:c9:61:d4:ce:5c:02: df:f9:00:25:bf:97:93:ed:68:86:37:97:e4:22:c3: 1a:e2:51:a3:b5:0b:01:52:70:82:93:d3:7b:38:1e: 1e:46:19:39:97:20:d3:80:b9:c1:08:ad:8b:0d:0f: 8a:93:69:ca:16:44:14:f4:75:2a:53:dd:bc:e3:8a: 6d:b4:82:bc:4d:3e:99:ee:1c:f2:e6:0e:36:a1:f5: 1c:d2:73:7a:83:1c:5b:2b:a8:1c:b0:4d:51:fb:2d: 5b:e1:be:53:6c:88:57:34:77:14:be:5b:17:7a:c6: 6d:ef:41:59:c1:9a:d6:8d:82:66:6b:21:e6:46:b4: 3e:80:b9:f1:49:8a:65:e3:15:62:ab:b5:2c:9c:28: 82:e8:6d:27:89:9b:d4:f2:0a:34:4e:ac:b7:ec:8e: 50:f2:de:3d:4d:d3:78:27:6d:e5:9c:04:b8:3b:76: 14:e7:ad:a9:f3:94:fa:71:15:95:22:70:70:9b:77: 92:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C7:15:01:31:07:E1:C1:FF:97:FB:6E:C5:16:A2:62:02:10:16:67 X509v3 Authority Key Identifier: keyid:49:03:FE:B9:74:4F:56:25:E2:B7:E1:5A:4F:80:B2:5E:D3:DD:09:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D23D1/1F338AC490CC11EBB1BE102DC4F9AE02/SQP-uXRPViXit-FaT4CyXtPdCfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SQP-uXRPViXit-FaT4CyXtPdCfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D23D1/1F338AC490CC11EBB1BE102DC4F9AE02/32BA4EE0913311EB96A8E810C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.220.0/23 Signature Algorithm: sha256WithRSAEncryption 12:9b:32:71:31:12:58:a9:dd:13:65:31:f1:4f:7a:11:d6:42: 9d:07:7a:f8:b0:14:38:51:62:95:1f:dd:41:e7:c1:d4:c5:8e: a2:d4:50:b7:dd:47:65:0f:a2:66:d4:4c:5b:2e:fd:f8:c5:14: e3:21:00:93:e7:1f:41:01:4d:ae:fb:d3:49:e9:79:e1:94:db: 54:12:e0:c6:c2:9f:a9:7e:2f:7b:9f:50:ca:33:00:33:54:80: f2:77:3a:1e:e3:1d:c7:d3:3c:62:6c:91:91:b2:82:57:03:a0: 60:3d:4d:31:26:7d:b7:0e:fb:16:69:ac:1b:d7:e7:57:03:93: 47:7a:bb:80:e5:e4:bd:d4:c4:1e:8f:61:98:9c:09:7a:5d:29: 3f:ba:06:c1:07:2f:f5:a7:88:e4:e5:9d:d5:c3:6e:0c:24:9b: 98:79:54:8a:f3:67:53:d9:21:ea:98:72:b1:57:fe:a8:c4:74: c7:4b:90:65:ba:51:18:bb:22:fd:50:70:d3:38:1f:e1:22:52: ff:85:db:34:a1:49:5f:b5:31:b5:f5:68:64:73:68:9d:b8:a1: fb:c3:68:5c:c9:6d:53:fa:16:41:ff:b0:ef:14:de:0d:07:59: ad:bb:cc:ad:33:6a:ed:6a:4f:e2:a7:bf:69:1a:1b:ce:45:db: 3f:09:df:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIzRDExMTAvBgNVBAUTKDQ5MDNGRUI5NzQ0RjU2MjVFMkI3RTE1QTRGODBCMjVF RDNERDA5RjMwHhcNMjUwOTAyMjMxMzIwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3N2ExMC01ZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDbLn4kulNIU5QW0YPthIGEjfsen+a6M9C2s57jz7Z8dwy5Fs7ic5JKxGY0i PpBPmR1qkejDj/y9I1liYROAUYyXPxnJYdTOXALf+QAlv5eT7WiGN5fkIsMa4lGj tQsBUnCCk9N7OB4eRhk5lyDTgLnBCK2LDQ+Kk2nKFkQU9HUqU92844pttIK8TT6Z 7hzy5g42ofUc0nN6gxxbK6gcsE1R+y1b4b5TbIhXNHcUvlsXesZt70FZwZrWjYJm ayHmRrQ+gLnxSYpl4xViq7UsnCiC6G0niZvU8go0Tqy37I5Q8t49TdN4J23lnAS4 O3YU562p85T6cRWVInBwm3eS9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLLHFQEx B+HB/5f7bsUWomICEBZnMB8GA1UdIwQYMBaAFEkD/rl0T1Yl4rfhWk+Asl7T3Qnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjNEMS8xRjMzOEFDNDkw Q0MxMUVCQjFCRTEwMkRDNEY5QUUwMi9TUVAtdVhSUFZpWGl0LUZhVDRDeVh0UGRD Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NRUC11WFJQVmlYaXQtRmFUNEN5WHRQZENmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDIzRDEvMUYzMzhBQzQ5MENDMTFFQkIxQkUxMDJEQzRGOUFFMDIvMzJCQTRFRTA5 MTMzMTFFQjk2QThFODEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjtwwDQYJKoZIhvcNAQELBQADggEBABKbMnExElip3RNl MfFPehHWQp0HeviwFDhRYpUf3UHnwdTFjqLUULfdR2UPombUTFsu/fjFFOMhAJPn H0EBTa7700npeeGU21QS4MbCn6l+L3ufUMozADNUgPJ3Oh7jHcfTPGJskZGyglcD oGA9TTEmfbcO+xZprBvX51cDk0d6u4Dl5L3UxB6PYZicCXpdKT+6BsEHL/WniOTl ndXDbgwkm5h5VIrzZ1PZIeqYcrFX/qjEdMdLkGW6URi7Iv1QcNM4H+EiUv+F2zSh SV+1MbX1aGRzaJ24ofvDaFzJbVP6FkH/sO8U3g0HWa27zK0zau1qT+Knv2kaG85F 2z8J33A= -----END CERTIFICATE-----Generated at Sat Sep 20 06:35:29 2025 by rpki-client