$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/E90F04F4114711F0B6E44E12C4F9AE02.roa File: E90F04F4114711F0B6E44E12C4F9AE02.roa (raw, json) Hash identifier: PlQx8+H4QWwRWOJyC7w29KW+ohdqt59u/vmKToMRgGo= Subject key identifier: E8:D8:86:C7:C8:E3:04:E1:A2:E0:55:D5:35:75:87:41:B0:BD:A1:F8 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: 46 Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/E90F04F4114711F0B6E44E12C4F9AE02.roa Signing time: Fri 04 Apr 2025 11:29:56 +0000 ROA not before: Fri 04 Apr 2025 11:29:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152333 IP address blocks: 103.137.20.0/24 maxlen: 24 103.137.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 06:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Apr 4 11:29:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67efc2b4-5a39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:04:dd:31:a3:be:25:96:7d:09:54:88:6c:1e: c3:76:e1:0d:f9:0d:a2:b8:ce:52:83:72:9e:7b:f9: e6:21:46:06:9b:17:e7:db:fd:8e:ab:89:ee:32:42: ae:f1:db:61:c2:50:84:bd:62:aa:e7:52:c5:5b:67: b2:cd:b2:82:71:f8:b9:d6:e0:05:ae:6a:f4:86:08: e0:14:c4:8c:33:b0:5f:e2:ab:6b:38:21:b2:1d:4c: 36:0f:59:a6:1a:f4:ca:4a:24:04:54:31:fc:bd:59: 49:ad:30:ee:1d:83:92:d0:dd:a8:5a:b5:09:e7:3b: 88:e4:14:61:9e:48:78:da:04:3c:0a:d6:f7:91:b2: 6b:4b:58:8f:85:aa:8d:b0:7c:67:12:a3:a1:37:7d: 87:ae:de:42:9a:24:5f:d6:ae:e7:fd:11:f1:db:43: 2f:a0:64:81:a6:27:6c:55:a8:3c:88:f9:6c:41:d1: af:33:38:7d:03:5d:ec:51:05:ae:6d:0a:3c:6d:19: 5e:b3:b2:24:8e:e5:18:c3:6b:12:03:3c:ad:06:5a: db:da:1c:94:98:43:ff:d7:f7:24:61:59:ec:25:b1: 64:2e:b1:93:c7:1c:3f:95:4e:79:fc:f9:b3:4e:5c: 8f:91:49:69:a7:3a:70:8d:18:c1:5f:56:33:fd:5c: 02:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:D8:86:C7:C8:E3:04:E1:A2:E0:55:D5:35:75:87:41:B0:BD:A1:F8 X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/E90F04F4114711F0B6E44E12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.20.0/23 Signature Algorithm: sha256WithRSAEncryption 74:46:31:d2:c2:bf:35:60:21:1c:da:07:f1:31:e7:5d:de:a1: 66:db:52:b9:cb:3d:83:9a:f4:8f:74:2c:d8:12:2f:be:c2:8a: 6f:e4:70:fa:59:28:5a:90:30:b0:54:6d:00:36:d0:53:0c:1f: 93:e2:d0:71:bd:d4:24:34:0d:f5:34:de:c9:2a:29:5f:12:dd: 03:e5:a1:5c:cf:56:8e:de:2e:f2:5e:b2:73:a8:3b:2b:20:c5: bd:85:13:e9:61:9e:0d:0e:b3:c7:e8:6f:32:db:8d:3e:21:91: 9a:53:2b:3b:08:53:a1:17:83:f4:bf:e6:0f:5f:e4:58:9e:4a: cf:e5:78:d1:9b:39:d6:95:49:24:9c:09:4e:6d:85:07:6d:24: d6:f3:28:51:9d:d8:8a:2a:59:f1:c4:cd:4a:0b:b5:a7:72:b5: e4:79:76:e3:bd:20:dc:7c:3b:d3:90:22:22:61:5b:85:7d:d9: 48:c0:4d:b0:28:45:d3:d7:43:5b:ad:a0:20:01:b8:dc:ce:f8: 95:a6:f2:df:eb:96:80:10:bc:3a:bf:d4:ca:4c:90:b2:4a:4f: 14:cf:5f:82:f7:c3:f0:3f:e2:03:c7:6b:0c:4f:34:82:7b:80: fa:c8:bd:35:99:d6:3a:71:c3:6b:2e:3a:e5:17:6e:01:ca:5f: a1:cf:dc:25 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OEI2NzExMC8GA1UEBRMoRDQ1OUQyNjc1MjUyMzRBMDUzNUVDMzhEOENDQzg5OTAx OTRERTE4OTAeFw0yNTA0MDQxMTI5NTZaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZWZjMmI0LTVhMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuBN0xo74lln0JVIhsHsN24Q35DaK4zlKDcp57+eYhRgabF+fb/Y6rie4yQq7x 22HCUIS9YqrnUsVbZ7LNsoJx+LnW4AWuavSGCOAUxIwzsF/iq2s4IbIdTDYPWaYa 9MpKJARUMfy9WUmtMO4dg5LQ3ahatQnnO4jkFGGeSHjaBDwK1veRsmtLWI+Fqo2w fGcSo6E3fYeu3kKaJF/Wruf9EfHbQy+gZIGmJ2xVqDyI+WxB0a8zOH0DXexRBa5t CjxtGV6zsiSO5RjDaxIDPK0GWtvaHJSYQ//X9yRhWewlsWQusZPHHD+VTnn8+bNO XI+RSWmnOnCNGMFfVjP9XAJPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6NiGx8jj BOGi4FXVNXWHQbC9ofgwHwYDVR0jBBgwFoAU1FnSZ1JSNKBTXsONjMyJkBlN4Ykw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4QjY3LzJGQTAwRDNFQzZB QTExRUY4NEZCMEQwREM0RjlBRTAyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZ ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUZuU1oxSlNOS0JUWHNPTmpNeUprQmxONFlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEI2Ny8yRkEwMEQzRUM2QUExMUVGODRGQjBEMERDNEY5QUUwMi9FOTBGMDRGNDEx NDcxMUYwQjZFNDRFMTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeJFDANBgkqhkiG9w0BAQsFAAOCAQEAdEYx0sK/NWAhHNoH 8THnXd6hZttSucs9g5r0j3Qs2BIvvsKKb+Rw+lkoWpAwsFRtADbQUwwfk+LQcb3U JDQN9TTeySopXxLdA+WhXM9Wjt4u8l6yc6g7KyDFvYUT6WGeDQ6zx+hvMtuNPiGR mlMrOwhToReD9L/mD1/kWJ5Kz+V40Zs51pVJJJwJTm2FB20k1vMoUZ3YiipZ8cTN Sgu1p3K15Hl2470g3Hw705AiImFbhX3ZSMBNsChF09dDW62gIAG43M74laby3+uW gBC8Or/UykyQskpPFM9fgvfD8D/iA8drDE80gnuA+si9NZnWOnHDay465RduAcpf oc/cJQ== -----END CERTIFICATE-----Generated at Tue Apr 15 05:20:56 2025 by rpki-client