$ rpki-client -vvf rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/32F44056DB1911EC87E56C0DC4F9AE02.roa File: 32F44056DB1911EC87E56C0DC4F9AE02.roa (raw, json) Hash identifier: DNHpbbH0OLt61W1/5I9yLZt1WIT0NpFfbOWathJ7PW4= Subject key identifier: FC:4E:50:2B:DB:B5:FD:54:3C:76:FA:EB:C2:4D:33:36:24:D6:A4:56 Certificate issuer: /CN=A91509A4/serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02 Certificate serial: 0393 Authority key identifier: 0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/32F44056DB1911EC87E56C0DC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:53:24 +0000 ROA not before: Thu 03 Jul 2025 01:36:46 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17976 IP address blocks: 103.193.204.0/24 maxlen: 24 203.144.64.0/20 maxlen: 24 203.144.80.0/24 maxlen: 24 203.144.81.0/24 maxlen: 24 203.144.82.0/24 maxlen: 24 203.144.83.0/24 maxlen: 24 203.144.84.0/24 maxlen: 24 203.144.85.0/24 maxlen: 24 203.144.86.0/24 maxlen: 24 203.144.87.0/24 maxlen: 24 203.144.88.0/24 maxlen: 24 203.144.89.0/24 maxlen: 24 203.144.90.0/24 maxlen: 24 203.144.91.0/24 maxlen: 24 203.144.92.0/24 maxlen: 24 203.144.93.0/24 maxlen: 24 203.144.94.0/24 maxlen: 24 203.144.95.0/24 maxlen: 24 2401:4d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:25:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 915 (0x393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509A4, serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02 Validity Not Before: Jul 3 01:36:46 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5a463-7262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:6d:8c:fd:93:c6:46:78:d2:43:13:83:96:5c: 72:85:d4:8e:42:c5:30:0f:a0:81:1e:b9:9b:78:6a: 97:f2:8e:d5:94:e2:c2:26:48:87:81:c5:18:e2:d5: 3d:7c:c5:c3:60:7d:b7:fb:59:94:f6:9b:f0:57:aa: a7:fd:06:d1:3f:86:e7:cf:da:6e:5b:c0:1b:15:a4: 19:8f:98:32:ba:a4:94:7b:16:da:15:63:00:11:5d: 0e:1c:15:ef:2f:3e:00:db:0a:1e:f1:c4:a8:0b:53: 1d:ef:c9:da:78:38:7f:51:e0:64:27:77:b7:24:05: d4:29:f0:5c:2f:d2:e4:d3:2a:c7:ce:aa:46:84:6c: f4:96:13:07:88:41:3d:df:fb:12:d9:79:6d:04:51: e3:09:b4:74:bf:df:f7:73:07:72:8e:d3:06:f8:5e: d5:73:98:14:e4:e9:33:65:2b:55:87:ea:35:08:ae: f9:bc:04:0d:a1:fc:f1:20:72:dd:74:5a:14:3b:13: 84:45:37:01:bf:ea:72:bf:64:53:c5:91:77:47:d1: aa:a5:17:d2:64:b5:e1:e1:9d:94:e2:c1:c0:1f:bc: ba:48:e4:ac:62:7a:a7:ac:05:41:be:b4:4d:63:6d: 44:1f:bc:0f:7e:3e:36:a0:68:d7:b7:b7:d8:8e:17: ab:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:4E:50:2B:DB:B5:FD:54:3C:76:FA:EB:C2:4D:33:36:24:D6:A4:56 X509v3 Authority Key Identifier: keyid:0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/32F44056DB1911EC87E56C0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.193.204.0/24 203.144.64.0/19 IPv6: 2401:4d80::/32 Signature Algorithm: sha256WithRSAEncryption 3a:8a:79:31:ae:ed:6e:0c:12:ee:a1:69:1d:22:f4:d4:f5:6b: ff:43:5d:ad:ac:d9:aa:22:c5:f5:ea:e0:6d:a7:d5:cc:44:e3: 7e:db:a9:2f:0a:3e:8b:e4:91:f8:c8:59:ad:d6:da:c0:a7:fc: 5e:92:9a:46:45:6e:71:b1:43:fb:6f:5d:57:7f:2f:17:0a:c3: ad:bf:11:52:39:96:c9:9e:3a:5a:0f:6f:62:12:d3:89:bb:40: d9:38:1a:9d:9d:c8:57:5a:e9:86:07:69:59:e8:f3:37:ec:ef: 6e:ed:e1:8a:6b:8d:b9:0c:91:17:df:ab:61:39:f9:04:ca:42: 88:1b:b8:87:0c:da:f1:d9:fb:41:31:97:dc:06:f5:0a:d0:69: f5:04:ad:cf:01:9a:2f:c5:bc:15:0f:3f:d1:7f:73:df:03:6e: 5c:5e:9a:35:0d:95:da:d2:0b:df:25:72:e7:57:81:5a:4f:f9: e5:68:73:03:8d:65:06:c7:9a:90:fd:9a:39:b0:e0:a0:7d:75: 34:21:37:04:9e:7b:75:6e:18:f5:2a:fa:4a:5b:00:08:b2:72: 59:fb:76:57:17:87:da:2c:f4:3a:99:01:32:28:ac:e6:74:88: 34:9e:81:01:c1:c8:1d:7e:6e:79:cc:96:8c:4b:b5:22:77:5e: d9:fc:42:9e -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICA5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QTQxMTAvBgNVBAUTKDBDMDk5RUI3N0I2OEQxQTJERjU0OTJDNzMxQjY0RDU0 MUY1NTlCMDIwHhcNMjUwNzAzMDEzNjQ2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTQ2My03MjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjW2M/ZPGRnjSQxODllxyhdSOQsUwD6CBHrmbeGqX8o7VlOLCJkiHgcUY4tU9 fMXDYH23+1mU9pvwV6qn/QbRP4bnz9puW8AbFaQZj5gyuqSUexbaFWMAEV0OHBXv Lz4A2woe8cSoC1Md78naeDh/UeBkJ3e3JAXUKfBcL9Lk0yrHzqpGhGz0lhMHiEE9 3/sS2XltBFHjCbR0v9/3cwdyjtMG+F7Vc5gU5OkzZStVh+o1CK75vAQNofzxIHLd dFoUOxOERTcBv+pyv2RTxZF3R9GqpRfSZLXh4Z2U4sHAH7y6SOSsYnqnrAVBvrRN Y21EH7wPfj42oGjXt7fYjherzwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFPxOUCvb tf1UPHb668JNMzYk1qRWMB8GA1UdIwQYMBaAFAwJnrd7aNGi31SSxzG2TVQfVZsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlBNC9EQkFCOTM2RURB NzYxMUVDQTQ4RkZDNkNDNEY5QUUwMi9EQW1ldDN0bzBhTGZWSkxITWJaTlZCOVZt d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RBbWV0M3RvMGFMZlZKTEhNYlpOVkI5Vm13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTA5QTQvREJBQjkzNkVEQTc2MTFFQ0E0OEZGQzZDQzRGOUFFMDIvMzJGNDQwNTZE QjE5MTFFQzg3RTU2QzBEQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAZ8HMAwQFy5BAMA0EAgACMAcDBQAkAU2AMA0GCSqGSIb3DQEBCwUA A4IBAQA6inkxru1uDBLuoWkdIvTU9Wv/Q12trNmqIsX16uBtp9XMRON+26kvCj6L 5JH4yFmt1trAp/xekppGRW5xsUP7b11Xfy8XCsOtvxFSOZbJnjpaD29iEtOJu0DZ OBqdnchXWumGB2lZ6PM37O9u7eGKa425DJEX36thOfkEykKIG7iHDNrx2ftBMZfc BvUK0Gn1BK3PAZovxbwVDz/Rf3PfA25cXpo1DZXa0gvfJXLnV4FaT/nlaHMDjWUG x5qQ/Zo5sOCgfXU0ITcEnnt1bhj1KvpKWwAIsnJZ+3ZXF4faLPQ6mQEyKKzmdIg0 noEBwcgdfm55zJaMS7Uid17Z/EKe -----END CERTIFICATE-----Generated at Thu Mar 26 11:24:36 2026 by rpki-client