$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/32EE2B68005411F08A6FEB4BC4F9AE02.roa File: 32EE2B68005411F08A6FEB4BC4F9AE02.roa (raw, json) Hash identifier: G7QqbuS3t/iTX6LomgThshVcOQtAVpBN0imWLjN0zDo= Subject key identifier: 6A:0F:51:39:71:E0:11:C1:65:52:1B:24:8E:2C:B5:AB:B6:6A:01:32 Certificate issuer: /CN=A91DA8C2/serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Certificate serial: BF Authority key identifier: D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/32EE2B68005411F08A6FEB4BC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:52:23 +0000 ROA not before: Tue 25 Nov 2025 04:52:03 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 36352 IP address blocks: 203.25.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA8C2, serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Validity Not Before: Nov 25 04:52:03 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a59616-b50a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c3:38:4a:b3:25:ad:8c:52:ba:7a:e1:ec:2a: 9c:2b:03:89:70:b7:99:6f:fe:da:1b:3e:59:fe:ab: 38:90:91:ca:6a:4f:79:54:22:24:05:ff:d5:6a:4c: f2:aa:7d:e2:94:08:24:8b:9b:20:0a:35:47:c7:2a: ae:ff:51:71:ae:9c:10:fa:c8:8d:b4:ef:af:8a:fd: 4b:f7:bf:f6:1f:41:9b:23:e6:18:70:09:0c:f4:89: 47:8f:73:30:ed:f9:bc:3c:be:06:53:b9:c3:bf:a5: 9c:6e:4a:95:f3:1f:dd:bf:9d:2e:77:cf:ab:9f:fa: e5:0b:04:ac:7b:89:c4:d5:bf:71:94:92:5c:75:2b: 08:c1:1b:d2:62:73:29:2c:a3:d4:96:2e:54:3d:24: b7:8b:71:35:9e:3e:ee:84:6b:3b:ae:f0:e0:0e:37: 08:5b:87:e8:50:66:ad:0d:c5:d7:6c:2b:b0:a0:07: c5:0e:59:6e:66:04:29:2e:5b:19:19:b4:62:76:6c: 8b:19:ab:12:cc:28:d0:4c:0c:ad:0a:0c:62:ed:56: cd:e7:22:fe:32:3a:38:27:bd:28:cf:72:7b:d3:15: e5:72:3c:56:91:3c:9c:6e:67:62:08:00:36:22:62: e4:b9:8c:a7:93:49:9d:37:e2:da:b9:f4:22:8a:bb: 72:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:0F:51:39:71:E0:11:C1:65:52:1B:24:8E:2C:B5:AB:B6:6A:01:32 X509v3 Authority Key Identifier: keyid:D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/32EE2B68005411F08A6FEB4BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.25.159.0/24 Signature Algorithm: sha256WithRSAEncryption 50:e0:cf:f1:ea:8f:fb:52:e8:e6:3e:13:4a:21:a7:01:7e:b9: 6f:45:bf:57:2f:57:3b:69:3c:b5:14:ff:57:6a:5d:1a:f0:ec: 15:66:c9:d0:4e:3f:5f:c0:8d:7e:15:be:f7:8d:01:ea:cf:0a: 6d:11:78:e2:87:27:0e:4c:3e:54:ee:02:af:41:68:ea:88:49: 5c:04:38:20:ab:45:85:42:bc:a1:11:3b:1f:74:9e:9f:9a:aa: 01:99:57:8d:a5:f9:8f:59:ac:ae:56:e8:d8:27:7a:c5:67:0d: 37:80:53:e4:b6:dc:b5:a7:f1:52:0a:f1:5a:aa:dd:bd:e0:02: 63:05:f6:ee:1f:9b:a0:21:8a:70:c3:74:71:a3:c2:73:97:b7: db:47:e8:32:8f:b7:39:e9:8c:bd:b1:3a:ac:53:84:fc:ca:4d: b4:c1:13:3f:99:d5:e3:0f:04:62:f3:f9:18:ac:36:dc:b1:a0: 86:c9:d6:c4:c6:1d:a9:c4:59:01:53:f9:b6:f3:77:d5:53:53: df:c9:e1:06:03:98:e6:69:0d:73:9c:79:44:31:3a:c9:9c:a8: 71:50:dd:27:1c:51:54:8c:12:3a:7e:14:80:7b:c8:e5:b0:05: 9b:09:eb:27:c7:63:45:e1:e8:a9:e0:1f:fc:0f:4a:14:69:06: ae:c1:21:da -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE4QzIxMTAvBgNVBAUTKEQyNEZDQ0FEM0FDRTdGRkU1QkYwMkE2QThGNjhDMDYw MkUxQzFCNTEwHhcNMjUxMTI1MDQ1MjAzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTYxNi1iNTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48M4SrMlrYxSunrh7CqcKwOJcLeZb/7aGz5Z/qs4kJHKak95VCIkBf/Vakzy qn3ilAgki5sgCjVHxyqu/1FxrpwQ+siNtO+viv1L97/2H0GbI+YYcAkM9IlHj3Mw 7fm8PL4GU7nDv6WcbkqV8x/dv50ud8+rn/rlCwSse4nE1b9xlJJcdSsIwRvSYnMp LKPUli5UPSS3i3E1nj7uhGs7rvDgDjcIW4foUGatDcXXbCuwoAfFDlluZgQpLlsZ GbRidmyLGasSzCjQTAytCgxi7VbN5yL+Mjo4J70oz3J70xXlcjxWkTycbmdiCAA2 ImLkuYynk0mdN+LaufQiirtyewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGoPUTlx 4BHBZVIbJI4stau2agEyMB8GA1UdIwQYMBaAFNJPzK06zn/+W/Aqao9owGAuHBtR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQThDMi85NUE2OUJFMjAw NTMxMUYwOEU3M0UxNEFDNEY5QUUwMi8wa19NclRyT2ZfNWI4Q3BxajJqQVlDNGNH MUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBrX01yVHJPZl81YjhDcHFqMmpBWUM0Y0cxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REE4QzIvOTVBNjlCRTIwMDUzMTFGMDhFNzNFMTRBQzRGOUFFMDIvMzJFRTJCNjgw MDU0MTFGMDhBNkZFQjRCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxmfMA0GCSqGSIb3DQEBCwUAA4IBAQBQ4M/x6o/7UujmPhNKIacB frlvRb9XL1c7aTy1FP9Xal0a8OwVZsnQTj9fwI1+Fb73jQHqzwptEXjihycOTD5U 7gKvQWjqiElcBDggq0WFQryhETsfdJ6fmqoBmVeNpfmPWayuVujYJ3rFZw03gFPk tty1p/FSCvFaqt294AJjBfbuH5ugIYpww3Rxo8Jzl7fbR+gyj7c56Yy9sTqsU4T8 yk20wRM/mdXjDwRi8/kYrDbcsaCGydbExh2pxFkBU/m283fVU1PfyeEGA5jmaQ1z nHlEMTrJnKhxUN0nHFFUjBI6fhSAe8jlsAWbCesnx2NF4eip4B/8D0oUaQauwSHa -----END CERTIFICATE-----Generated at Thu Mar 26 08:48:56 2026 by rpki-client