$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/32E806F8878111EF9723F25DC4F9AE02.roa File: 32E806F8878111EF9723F25DC4F9AE02.roa (raw, json) Hash identifier: izsDkmqvxSm76BCSHnPYYwfui4T2xrHn8dhKJjUwQ4M= Subject key identifier: BA:9E:39:DF:D8:F4:0A:26:29:21:DA:04:A4:1F:06:A0:55:53:C5:52 Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 0649 Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/32E806F8878111EF9723F25DC4F9AE02.roa Signing time: Wed 27 Aug 2025 00:04:49 +0000 ROA not before: Wed 27 Aug 2025 00:04:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24344 IP address blocks: 110.164.248.0/23 maxlen: 23 110.164.248.0/24 maxlen: 24 110.164.249.0/24 maxlen: 24 2403:6200:7501::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 23:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561, serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Aug 27 00:04:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ae4ba1-9a6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7d:eb:ad:0f:3f:40:d8:fa:2a:3d:08:10:ef: 56:65:9d:47:35:4d:c6:74:f0:8b:24:01:e7:db:b5: f7:54:9a:94:58:96:92:f9:2b:14:c8:2b:46:7e:11: 3f:dc:eb:93:d9:fb:d1:4b:32:00:81:6e:4b:ba:63: ca:82:a9:93:0f:91:2f:6b:56:5b:5a:bd:cd:80:3e: 39:c3:67:16:fa:09:05:2b:ea:4d:9d:51:e2:c1:c9: f8:51:14:57:f4:ab:1e:4c:ed:15:bd:dc:e4:0d:83: a7:12:ae:00:0d:88:56:e1:01:4b:2d:05:b9:51:8f: a7:e7:7e:ce:e9:b7:e9:bd:ce:8a:44:22:20:87:0a: 73:06:77:11:4d:57:11:07:b0:e8:57:0d:90:f5:59: e3:0a:c9:e8:0a:e6:1a:0a:d2:f7:6b:73:77:04:33: 50:1d:0d:40:70:3c:e8:a6:0b:e1:32:32:8d:62:92: 90:83:d9:ec:d0:73:10:86:3f:c3:cf:43:a8:fd:1d: 89:26:4f:99:37:17:d9:c9:c9:35:28:ef:48:56:33: 6a:55:bb:20:a2:37:46:d4:6d:df:f1:62:a9:48:94: 3f:d9:89:40:1e:3a:5d:7b:80:1d:bb:dd:13:da:b3: 02:bf:fc:e4:ce:42:c3:90:e8:d2:80:03:ad:14:83: ff:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:9E:39:DF:D8:F4:0A:26:29:21:DA:04:A4:1F:06:A0:55:53:C5:52 X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/32E806F8878111EF9723F25DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.164.248.0/23 IPv6: 2403:6200:7501::/48 Signature Algorithm: sha256WithRSAEncryption 64:79:46:c7:31:30:5e:50:eb:63:6c:e2:28:0e:52:66:c5:ce: a6:96:34:79:e2:a1:42:0b:0b:40:29:92:95:92:f3:7e:d8:cb: 9e:9b:17:0e:1b:35:69:5b:d6:27:6f:b7:98:dc:e8:ec:16:94: 3a:0a:a9:d3:51:bc:26:ab:fc:c3:c8:7a:b5:7f:35:01:04:a9: 7d:ba:3d:65:af:e6:a1:91:c8:e4:72:14:eb:85:85:46:0a:f1: 3f:70:94:46:cb:7d:fd:00:86:37:d3:e3:c0:ed:5d:ca:6a:90: 30:97:1c:d5:54:d6:7e:5f:89:01:b5:ff:da:90:a1:cb:08:80: 70:86:7f:b8:bb:c5:ef:ca:d5:f9:fd:24:4d:d1:41:ad:c1:4c: d1:1a:81:87:87:47:ac:84:8e:b3:cf:24:92:85:f4:48:2f:48: c3:f2:de:f7:b2:23:63:2c:cb:0b:15:d9:2f:3b:a7:cb:f4:d4: 39:9d:00:c2:bc:23:cf:9b:44:fb:8b:ac:1d:6a:49:2a:4c:8e: 87:8a:9d:9b:35:59:c5:13:fc:eb:8d:46:4a:ac:74:df:54:cf: 6b:28:16:8d:26:a5:ac:28:74:18:e5:5b:c3:0a:c5:47:79:77: cc:09:7c:64:db:09:cd:e7:cc:3b:47:11:f3:7b:79:36:8d:97: 97:1c:28:e7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjUwODI3MDAwNDQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNGJhMS05YTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxn3rrQ8/QNj6Kj0IEO9WZZ1HNU3GdPCLJAHn27X3VJqUWJaS+SsUyCtGfhE/ 3OuT2fvRSzIAgW5LumPKgqmTD5Eva1ZbWr3NgD45w2cW+gkFK+pNnVHiwcn4URRX 9KseTO0VvdzkDYOnEq4ADYhW4QFLLQW5UY+n537O6bfpvc6KRCIghwpzBncRTVcR B7DoVw2Q9VnjCsnoCuYaCtL3a3N3BDNQHQ1AcDzopgvhMjKNYpKQg9ns0HMQhj/D z0Oo/R2JJk+ZNxfZyck1KO9IVjNqVbsgojdG1G3f8WKpSJQ/2YlAHjpde4Adu90T 2rMCv/zkzkLDkOjSgAOtFIP/kwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLqeOd/Y 9AomKSHaBKQfBqBVU8VSMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvMzJFODA2Rjg4 NzgxMTFFRjk3MjNGMjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFupPgwDwQCAAIwCQMHACQDYgB1ATANBgkqhkiG9w0BAQsF AAOCAQEAZHlGxzEwXlDrY2ziKA5SZsXOppY0eeKhQgsLQCmSlZLzftjLnpsXDhs1 aVvWJ2+3mNzo7BaUOgqp01G8Jqv8w8h6tX81AQSpfbo9Za/moZHI5HIU64WFRgrx P3CURst9/QCGN9PjwO1dymqQMJcc1VTWfl+JAbX/2pChywiAcIZ/uLvF78rV+f0k TdFBrcFM0RqBh4dHrISOs88kkoX0SC9Iw/Le97IjYyzLCxXZLzuny/TUOZ0Awrwj z5tE+4usHWpJKkyOh4qdmzVZxRP8641GSqx031TPaygWjSalrCh0GOVbwwrFR3l3 zAl8ZNsJzefMO0cR83t5No2Xlxwo5w== -----END CERTIFICATE-----Generated at Tue Sep 9 06:41:50 2025 by rpki-client