$ rpki-client -vvf rpki.apnic.net/member_repository/A9164F45/336119C442F611EEA2524D63C4F9AE02/32B9FB9C42FD11EEBC3A6810C4F9AE02.roa File: 32B9FB9C42FD11EEBC3A6810C4F9AE02.roa (raw, json) Hash identifier: WV1AYVH+VxYegf7IkYCFOtt6eabKoa8E7Gk8VCZklvI= Subject key identifier: AC:E7:D4:A9:74:69:80:C4:FD:01:C0:92:29:CB:FB:B2:E2:B9:B3:42 Certificate issuer: /CN=A9164F45/serialNumber=24320EAFF9A820B8EDA59E03E40555C5F34FEFCC Certificate serial: 0194 Authority key identifier: 24:32:0E:AF:F9:A8:20:B8:ED:A5:9E:03:E4:05:55:C5:F3:4F:EF:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JDIOr_moILjtpZ4D5AVVxfNP78w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164F45/336119C442F611EEA2524D63C4F9AE02/32B9FB9C42FD11EEBC3A6810C4F9AE02.roa Signing time: Wed 03 Sep 2025 04:23:01 +0000 ROA not before: Wed 03 Sep 2025 04:23:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 10116 IP address blocks: 203.145.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164F45/336119C442F611EEA2524D63C4F9AE02/JDIOr_moILjtpZ4D5AVVxfNP78w.crl rsync://rpki.apnic.net/member_repository/A9164F45/336119C442F611EEA2524D63C4F9AE02/JDIOr_moILjtpZ4D5AVVxfNP78w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JDIOr_moILjtpZ4D5AVVxfNP78w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164F45, serialNumber=24320EAFF9A820B8EDA59E03E40555C5F34FEFCC Validity Not Before: Sep 3 04:23:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7c2a5-3ce4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c5:f1:06:ef:55:ab:81:46:78:5f:0c:d0:24: 35:fe:33:da:2c:24:62:e1:07:20:36:f5:ae:95:38: bb:46:26:05:a4:78:ad:81:6a:26:8a:e6:1c:eb:aa: 15:fb:c9:51:4a:1f:6c:09:32:85:35:21:79:29:b8: c7:0a:df:e2:13:64:72:d9:2e:c4:76:db:42:4d:f0: 3c:c5:7d:cc:45:d9:ea:37:ac:84:17:07:fd:5d:5f: 3c:19:5b:54:32:b2:37:4e:a0:73:c3:cd:2c:4d:70: 9e:fd:56:3e:c9:c1:b4:b3:b3:83:ef:15:8e:3b:38: fc:b2:95:92:51:0c:ae:5c:b1:f4:9b:ce:69:b3:21: 39:7b:13:66:0e:36:a1:94:77:29:6b:7c:6c:8c:84: 65:56:14:7d:34:94:4d:66:16:66:0f:23:f1:c9:cf: 63:c7:61:73:63:c0:f6:3e:ee:1b:46:50:88:09:1c: 20:4e:80:6a:90:17:71:30:5f:22:17:d4:d3:09:b5: 3e:3e:08:b0:1c:d8:2c:b4:03:d5:33:da:1c:b1:ee: 5a:7c:af:74:0a:c1:ff:2e:eb:03:fc:d0:aa:c1:c3: 77:d5:1e:8f:3c:d1:6b:9c:57:c8:0d:27:76:77:8f: 44:0b:f6:2a:70:d8:de:f0:28:25:44:8c:b3:98:ac: 23:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E7:D4:A9:74:69:80:C4:FD:01:C0:92:29:CB:FB:B2:E2:B9:B3:42 X509v3 Authority Key Identifier: keyid:24:32:0E:AF:F9:A8:20:B8:ED:A5:9E:03:E4:05:55:C5:F3:4F:EF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164F45/336119C442F611EEA2524D63C4F9AE02/JDIOr_moILjtpZ4D5AVVxfNP78w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JDIOr_moILjtpZ4D5AVVxfNP78w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164F45/336119C442F611EEA2524D63C4F9AE02/32B9FB9C42FD11EEBC3A6810C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.145.64.0/21 Signature Algorithm: sha256WithRSAEncryption 74:a2:f2:3f:45:e6:8f:5a:8c:c3:da:ee:a0:20:f6:a6:72:49: 8f:7e:96:27:07:4d:ed:90:e7:73:9c:d8:c7:f0:ab:b8:2b:08: 7e:a4:24:2a:40:93:49:4b:de:d0:2a:a7:be:c5:fe:5f:de:35: d2:b7:61:2a:da:c2:c8:1a:e9:42:31:2e:82:2f:bb:6e:46:e5: e9:7c:e5:67:37:34:1e:4e:5c:bd:71:73:a1:74:72:4c:53:3d: 4b:a5:84:37:cf:1c:cb:9e:8e:e9:2e:4e:1f:b5:29:0d:e7:0c: 6d:a5:92:06:65:95:35:ec:92:a8:e2:5c:1e:d0:47:29:cc:7c: e1:69:a0:96:e7:ce:28:4a:55:6d:02:e8:42:30:57:cf:ab:0a: 94:60:a2:4e:f4:6a:37:12:e1:49:39:e9:5c:22:6e:26:fe:b7: 80:db:93:6c:61:04:75:6b:40:a6:bb:d3:53:26:c7:38:d1:18: fd:0c:29:55:ca:da:96:29:20:c0:ed:9a:92:4a:19:9d:a1:14: d2:41:0c:f0:86:cb:43:06:03:ea:dd:c0:55:05:b0:71:9e:1e: 7d:4c:4f:28:87:0b:c7:c1:b9:51:e3:40:13:71:44:99:79:c8: 02:27:86:5b:ee:80:78:75:81:58:76:32:38:b2:83:9b:a1:7c: 8b:4d:8a:13 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGNDUxMTAvBgNVBAUTKDI0MzIwRUFGRjlBODIwQjhFREE1OUUwM0U0MDU1NUM1 RjM0RkVGQ0MwHhcNMjUwOTAzMDQyMzAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YzJhNS0zY2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8XxBu9Vq4FGeF8M0CQ1/jPaLCRi4QcgNvWulTi7RiYFpHitgWomiuYc66oV +8lRSh9sCTKFNSF5KbjHCt/iE2Ry2S7EdttCTfA8xX3MRdnqN6yEFwf9XV88GVtU MrI3TqBzw80sTXCe/VY+ycG0s7OD7xWOOzj8spWSUQyuXLH0m85psyE5exNmDjah lHcpa3xsjIRlVhR9NJRNZhZmDyPxyc9jx2FzY8D2Pu4bRlCICRwgToBqkBdxMF8i F9TTCbU+PgiwHNgstAPVM9ocse5afK90CsH/LusD/NCqwcN31R6PPNFrnFfIDSd2 d49EC/YqcNje8CglRIyzmKwj9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKzn1Kl0 aYDE/QHAkinL+7LiubNCMB8GA1UdIwQYMBaAFCQyDq/5qCC47aWeA+QFVcXzT+/M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEY0NS8zMzYxMTlDNDQy RjYxMUVFQTI1MjRENjNDNEY5QUUwMi9KRElPcl9tb0lManRwWjRENUFWVnhmTlA3 OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pESU9yX21vSUxqdHBaNEQ1QVZWeGZOUDc4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjRGNDUvMzM2MTE5QzQ0MkY2MTFFRUEyNTI0RDYzQzRGOUFFMDIvMzJCOUZCOUM0 MkZEMTFFRUJDM0E2ODEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLkUAwDQYJKoZIhvcNAQELBQADggEBAHSi8j9F5o9ajMPa 7qAg9qZySY9+licHTe2Q53Oc2Mfwq7grCH6kJCpAk0lL3tAqp77F/l/eNdK3YSra wsga6UIxLoIvu25G5el85Wc3NB5OXL1xc6F0ckxTPUulhDfPHMuejukuTh+1KQ3n DG2lkgZllTXskqjiXB7QRynMfOFpoJbnzihKVW0C6EIwV8+rCpRgok70ajcS4Uk5 6Vwibib+t4Dbk2xhBHVrQKa701MmxzjRGP0MKVXK2pYpIMDtmpJKGZ2hFNJBDPCG y0MGA+rdwFUFsHGeHn1MTyiHC8fBuVHjQBNxRJl5yAInhlvugHh1gVh2Mjiyg5uh fItNihM= -----END CERTIFICATE-----Generated at Tue Oct 21 00:26:56 2025 by rpki-client