$ rpki-client -vvf rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/37B318C0050111EEAFBCAE7EC4F9AE02.roa File: 37B318C0050111EEAFBCAE7EC4F9AE02.roa (raw, json) Hash identifier: eMm1aATtYTxr8yulbbTqFy3KIRD0+Hc1f6QKDsCg/8Y= Subject key identifier: 66:27:C5:61:9B:FF:6B:B2:92:BD:1D:09:9D:88:0F:74:12:09:A9:C7 Certificate issuer: /CN=A91889A4/serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860 Certificate serial: 0189 Authority key identifier: FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/37B318C0050111EEAFBCAE7EC4F9AE02.roa Signing time: Thu 03 Jul 2025 04:07:45 +0000 ROA not before: Thu 03 Jul 2025 04:07:45 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133041 IP address blocks: 103.140.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889A4, serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860 Validity Not Before: Jul 3 04:07:45 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68660211-dda9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ec:5c:f2:73:96:bc:e2:1c:a5:4f:45:22:74: bf:10:48:3e:00:03:5a:d8:7b:a7:47:65:d8:63:4b: 75:2f:d1:4a:0b:3e:01:b4:58:7d:a4:90:84:32:ac: 64:3d:0f:2d:6c:6b:25:0d:c1:fb:66:1d:ba:ae:5b: dc:c0:a4:d0:29:ea:f0:4a:97:88:4b:6f:e0:6e:12: e5:6f:37:cb:dd:b1:85:90:7a:ce:37:f8:9f:99:20: 40:e5:b6:1b:11:63:4d:0e:bf:8a:e8:30:5f:63:00: 30:95:00:36:37:22:14:71:66:c0:65:5c:b6:bf:a5: 4a:07:1e:57:9d:c2:ba:ec:7d:e9:e1:9b:56:ef:cc: 33:5c:76:40:77:2d:fa:99:3a:94:c9:2a:c5:bd:4e: b9:68:29:18:81:4a:3d:ac:58:b0:25:7b:f0:6c:d1: e5:5d:19:0a:1b:5f:be:22:ef:0c:87:1d:11:20:7c: 5d:7a:25:77:08:a9:e7:aa:c8:fa:e2:2d:c2:69:1b: 57:b8:a1:57:83:8d:4e:d0:bc:24:84:3a:8e:c1:70: 5e:e9:eb:20:b7:13:a6:f5:c7:4c:d3:80:06:96:c1: 00:de:7d:e7:7e:37:0e:17:44:df:52:0b:36:f1:2d: b4:b5:0e:55:0f:ad:2f:85:fc:d6:7a:62:fd:03:60: d0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:27:C5:61:9B:FF:6B:B2:92:BD:1D:09:9D:88:0F:74:12:09:A9:C7 X509v3 Authority Key Identifier: keyid:FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/37B318C0050111EEAFBCAE7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.68.0/24 Signature Algorithm: sha256WithRSAEncryption 81:bc:3d:3d:90:0f:84:ba:43:86:74:2d:b7:9f:81:cb:2e:e6: 5f:94:56:74:bc:51:67:f8:39:6b:fb:8c:5d:99:af:0c:4c:ef: cc:f3:82:67:df:94:35:13:78:2c:17:17:40:ea:c2:a1:3b:d2: 22:3a:d7:c4:97:c1:60:2e:e5:15:97:dd:bf:b0:b2:d5:f7:b7: 01:e4:61:ac:51:9f:62:80:2b:67:3f:5f:81:e3:53:cf:0c:be: 67:a2:de:5a:35:a4:cd:95:8a:8d:56:4b:86:98:c7:31:db:36: 7f:9e:25:70:a2:3b:41:09:4f:9e:1a:fc:d4:45:8c:8a:e7:3e: 8a:df:87:dd:ed:c7:f8:e2:19:8e:ae:de:f7:5d:a0:6f:83:d6: b5:7e:8d:cf:a8:9d:36:9c:b3:5f:09:f0:34:2a:89:3f:8f:d1: 59:c8:c0:22:80:d3:7d:84:e9:60:84:6e:e9:65:a1:35:57:02: 82:6a:e7:45:de:24:08:23:73:dd:d8:e9:15:85:c8:a6:9d:61: 15:4b:90:d8:cf:c1:21:b6:31:59:f9:91:d4:7a:a1:1c:93:16: fc:e5:60:85:31:33:5e:6f:f0:e5:4d:bb:c4:b0:24:c2:18:30: 04:95:a8:e5:d4:e7:06:e6:4f:04:54:28:c7:c2:49:a1:6d:7a: 63:f2:6d:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QTQxMTAvBgNVBAUTKEZFNzQwNzcxRDZFQTAwMTJERTM4NzA1NkY4OENCRURE MzZDNEE4NjAwHhcNMjUwNzAzMDQwNzQ1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2MDIxMS1kZGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+xc8nOWvOIcpU9FInS/EEg+AANa2HunR2XYY0t1L9FKCz4BtFh9pJCEMqxk PQ8tbGslDcH7Zh26rlvcwKTQKerwSpeIS2/gbhLlbzfL3bGFkHrON/ifmSBA5bYb EWNNDr+K6DBfYwAwlQA2NyIUcWbAZVy2v6VKBx5XncK67H3p4ZtW78wzXHZAdy36 mTqUySrFvU65aCkYgUo9rFiwJXvwbNHlXRkKG1++Iu8Mhx0RIHxdeiV3CKnnqsj6 4i3CaRtXuKFXg41O0LwkhDqOwXBe6esgtxOm9cdM04AGlsEA3n3nfjcOF0TfUgs2 8S20tQ5VD60vhfzWemL9A2DQlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGYnxWGb /2uykr0dCZ2ID3QSCanHMB8GA1UdIwQYMBaAFP50B3HW6gAS3jhwVviMvt02xKhg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlBNC8yN0EyNUE1NjA0 RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFCTGVPSEJXLUl5LTNUYkVx R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19uUUhjZGJxQUJMZU9IQlctSXktM1RiRXFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg5QTQvMjdBMjVBNTYwNEZBMTFFRThENDZFMjQ1QzRGOUFFMDIvMzdCMzE4QzAw NTAxMTFFRUFGQkNBRTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnjEQwDQYJKoZIhvcNAQELBQADggEBAIG8PT2QD4S6Q4Z0 Lbefgcsu5l+UVnS8UWf4OWv7jF2ZrwxM78zzgmfflDUTeCwXF0DqwqE70iI618SX wWAu5RWX3b+wstX3twHkYaxRn2KAK2c/X4HjU88Mvmei3lo1pM2Vio1WS4aYxzHb Nn+eJXCiO0EJT54a/NRFjIrnPorfh93tx/jiGY6u3vddoG+D1rV+jc+onTacs18J 8DQqiT+P0VnIwCKA032E6WCEbulloTVXAoJq50XeJAgjc93Y6RWFyKadYRVLkNjP wSG2MVn5kdR6oRyTFvzlYIUxM15v8OVNu8SwJMIYMASVqOXU5wbmTwRUKMfCSaFt emPybYQ= -----END CERTIFICATE-----Generated at Wed Nov 5 13:35:29 2025 by rpki-client