$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD92D/24D8E3DC36F511F1859AB4FEB9833773/32D300684EFF11F19AA82571A4833773.roa File: 32D300684EFF11F19AA82571A4833773.roa (raw, json) Hash identifier: QkW8hoEVlDhqW1xMLJkGg7Bfu6Vbp9RtQ1kbqUS7Lvk= Subject key identifier: C9:75:3C:82:B9:84:2C:20:87:8A:FB:0D:86:49:DA:82:A8:BA:19:F6 Certificate issuer: /CN=A91DD92D/serialNumber=E5733B13FD86A23694702C3E28F3FF09497A9371 Certificate serial: 25 Authority key identifier: E5:73:3B:13:FD:86:A2:36:94:70:2C:3E:28:F3:FF:09:49:7A:93:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5XM7E_2GojaUcCw-KPP_CUl6k3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD92D/24D8E3DC36F511F1859AB4FEB9833773/32D300684EFF11F19AA82571A4833773.roa Signing time: Wed 13 May 2026 19:09:00 +0000 ROA not before: Wed 13 May 2026 19:09:00 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 213549 IP address blocks: 163.128.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD92D/24D8E3DC36F511F1859AB4FEB9833773/5XM7E_2GojaUcCw-KPP_CUl6k3E.crl rsync://rpki.apnic.net/member_repository/A91DD92D/24D8E3DC36F511F1859AB4FEB9833773/5XM7E_2GojaUcCw-KPP_CUl6k3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5XM7E_2GojaUcCw-KPP_CUl6k3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 08:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD92D, serialNumber=E5733B13FD86A23694702C3E28F3FF09497A9371 Validity Not Before: May 13 19:09:00 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a04cc4c-fdff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1a:1b:d8:26:87:0a:12:ab:f5:67:eb:9e:db: 92:5f:c7:1e:58:a9:b8:59:22:a8:cc:84:be:c6:28: 6e:7e:3c:b0:85:9e:ec:e2:77:b8:38:00:4f:73:b2: bf:b1:50:ec:61:96:21:9e:c0:a1:89:15:8a:0c:85: ec:3b:5a:86:7d:93:ea:e4:92:ce:b0:62:e8:42:f2: 1d:92:87:9e:8f:4a:43:dd:ea:6f:36:7d:83:14:16: 2c:83:bd:56:93:1a:52:3a:fc:67:6f:42:fe:07:88: c6:68:cc:60:43:6e:62:29:9b:ba:c0:9c:66:86:1a: 45:57:41:7a:04:93:02:9a:38:d5:53:1b:23:05:3b: 8a:58:16:d6:1c:dc:95:65:c8:06:46:af:d2:87:71: 86:fe:76:9f:cc:b8:f9:36:84:72:eb:e9:38:e3:7b: ee:49:0b:f3:98:cd:53:4f:c9:63:51:6b:5e:37:77: e1:73:ad:ac:36:94:d6:df:6b:c5:a2:42:c2:bc:ba: 90:4f:28:b4:8a:4f:e3:77:87:4c:ca:6e:0b:7e:f9: 22:69:d0:c9:44:40:cb:59:bd:ec:80:df:e4:a6:1e: e9:7f:bd:e4:82:05:8a:3f:eb:62:83:c8:e3:03:ec: 40:db:aa:95:35:93:81:be:84:b7:38:11:27:6d:27: be:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:75:3C:82:B9:84:2C:20:87:8A:FB:0D:86:49:DA:82:A8:BA:19:F6 X509v3 Authority Key Identifier: keyid:E5:73:3B:13:FD:86:A2:36:94:70:2C:3E:28:F3:FF:09:49:7A:93:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD92D/24D8E3DC36F511F1859AB4FEB9833773/5XM7E_2GojaUcCw-KPP_CUl6k3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5XM7E_2GojaUcCw-KPP_CUl6k3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD92D/24D8E3DC36F511F1859AB4FEB9833773/32D300684EFF11F19AA82571A4833773.roa sbgp-ipAddrBlock: critical IPv4: 163.128.217.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:09:3b:3d:06:f9:2c:57:cd:ce:db:1e:8c:bb:d7:b7:f1:f3: 3e:0b:cf:b0:0b:e9:5a:9d:13:d5:07:49:e0:25:58:da:a7:eb: d3:44:50:da:f7:d9:33:d4:d5:2b:fe:67:9b:e9:34:95:af:39: 83:af:8d:af:fe:1f:ed:6f:f6:fa:0d:67:01:4f:c4:51:6c:12: bf:19:2a:5c:c6:0f:90:8b:79:14:f7:25:27:1f:94:4c:0c:d1: 40:65:c3:2e:bb:e3:3b:95:dd:b9:3c:e6:b1:71:1d:81:be:91: 13:01:96:a8:2b:b6:09:6c:f0:58:41:80:24:65:fa:3a:eb:62: 98:41:ee:da:66:ad:1b:0c:51:c9:ee:6d:25:a3:d7:55:34:c2: 4a:10:0f:1d:05:3c:f9:38:94:c5:6e:c7:48:d8:18:40:09:8b: 3c:fc:04:df:ab:1d:b8:3f:c3:42:6a:6b:41:4a:7f:03:db:92: 5b:d3:e9:ec:1e:9a:67:11:2c:6a:66:10:c5:5c:a8:c7:d3:44: bd:1c:df:72:bd:5b:1f:d9:4d:d2:98:bd:b3:6a:6d:68:16:ad: fc:bc:bc:85:ae:1e:e7:2d:e1:68:9f:48:f5:b6:12:b6:e8:0d: 9b:46:87:2e:45:ba:39:ed:cc:2b:c2:c2:9c:1c:a7:44:31:43: 73:80:a6:5b -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDkyRDExMC8GA1UEBRMoRTU3MzNCMTNGRDg2QTIzNjk0NzAyQzNFMjhGM0ZGMDk0 OTdBOTM3MTAeFw0yNjA1MTMxOTA5MDBaFw0yNzA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMDRjYzRjLWZkZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdGhvYJocKEqv1Z+ue25Jfxx5YqbhZIqjMhL7GKG5+PLCFnuzid7g4AE9zsr+x UOxhliGewKGJFYoMhew7WoZ9k+rkks6wYuhC8h2Sh56PSkPd6m82fYMUFiyDvVaT GlI6/GdvQv4HiMZozGBDbmIpm7rAnGaGGkVXQXoEkwKaONVTGyMFO4pYFtYc3JVl yAZGr9KHcYb+dp/MuPk2hHLr6Tjje+5JC/OYzVNPyWNRa143d+Fzraw2lNbfa8Wi QsK8upBPKLSKT+N3h0zKbgt++SJp0MlEQMtZveyA3+SmHul/veSCBYo/62KDyOMD 7EDbqpU1k4G+hLc4ESdtJ76pAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUyXU8grmE LCCHivsNhknagqi6GfYwHwYDVR0jBBgwFoAU5XM7E/2GojaUcCw+KPP/CUl6k3Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREOTJELzI0RDhFM0RDMzZG NTExRjE4NTlBQjRGRUI5ODMzNzczLzVYTTdFXzJHb2phVWNDdy1LUFBfQ1VsNmsz RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNVhNN0VfMkdvamFVY0N3LUtQUF9DVWw2azNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkyRC8yNEQ4RTNEQzM2RjUxMUYxODU5QUI0RkVCOTgzMzc3My8zMkQzMDA2ODRF RkYxMUYxOUFBODI1NzFBNDgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACjgNkwDQYJKoZIhvcNAQELBQADggEBAJwJOz0G+SxXzc7bHoy717fx 8z4Lz7AL6VqdE9UHSeAlWNqn69NEUNr32TPU1Sv+Z5vpNJWvOYOvja/+H+1v9voN ZwFPxFFsEr8ZKlzGD5CLeRT3JScflEwM0UBlwy674zuV3bk85rFxHYG+kRMBlqgr tgls8FhBgCRl+jrrYphB7tpmrRsMUcnubSWj11U0wkoQDx0FPPk4lMVux0jYGEAJ izz8BN+rHbg/w0Jqa0FKfwPbklvT6ewemmcRLGpmEMVcqMfTRL0c33K9Wx/ZTdKY vbNqbWgWrfy8vIWuHuct4WifSPW2ErboDZtGhy5FujntzCvCwpwcp0QxQ3OApls= -----END CERTIFICATE-----Generated at Thu May 21 10:49:43 2026 by rpki-client