$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa File: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (raw, json) Hash identifier: B3TtfKIV8qBTfY8o/1C3LKcqpx/TLDJeKafLYgXCPS4= Subject key identifier: EE:3F:1F:41:19:E1:BE:FC:AC:A8:83:EF:9C:36:5D:D1:A4:65:56:6A Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 0739 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa Signing time: Tue 03 Jun 2025 05:49:30 +0000 ROA not before: Tue 03 Jun 2025 05:49:30 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140732 IP address blocks: 103.12.196.0/24 maxlen: 24 103.12.197.0/24 maxlen: 24 103.12.198.0/24 maxlen: 24 103.12.199.0/24 maxlen: 24 103.73.100.0/24 maxlen: 24 103.73.101.0/24 maxlen: 24 103.73.102.0/24 maxlen: 24 103.73.103.0/24 maxlen: 24 103.150.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1849 (0x739) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Jun 3 05:49:30 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=683e8cea-cdaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c3:92:8e:84:bc:a6:87:23:08:58:97:09:a7: 1c:5e:ef:5d:58:4f:51:d7:45:8f:e9:7e:ef:7e:2f: a7:bc:0a:35:4b:f8:73:9f:b9:25:1a:b3:10:1f:19: e7:7c:96:5d:91:e9:49:02:21:16:65:3b:35:ba:8b: 84:a3:da:44:e6:64:ae:52:2b:64:c3:81:be:6a:db: c5:82:fe:7b:37:75:d9:e5:26:d5:15:b9:ab:95:39: b7:bd:36:89:e6:78:c1:87:6c:14:78:95:c0:34:1d: 3c:ed:50:b3:ef:25:1a:f3:df:37:84:0d:17:bd:94: 00:61:36:82:c1:1e:2d:31:31:2f:72:4a:41:de:d1: 4b:28:25:95:95:3c:1c:21:84:02:53:45:e4:2e:46: 08:f9:d2:71:05:a2:2e:23:ea:f4:fc:ab:2b:76:9d: 89:5a:aa:c5:80:e9:38:26:d0:f2:d9:1a:76:99:b5: 12:91:0a:76:8e:0c:de:9a:c6:65:d0:ac:fc:4d:d4: bd:6f:17:ec:09:d7:6c:f0:6a:2e:ec:7e:96:cd:26: 26:03:ae:01:91:82:ac:9c:b5:75:81:3d:24:50:bf: 92:a0:e3:93:24:e8:85:b8:5b:1a:75:a3:00:77:ad: dc:43:fa:fd:28:1b:b8:00:a8:ed:5d:90:1e:a0:9c: 85:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:3F:1F:41:19:E1:BE:FC:AC:A8:83:EF:9C:36:5D:D1:A4:65:56:6A X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.196.0/22 103.73.100.0/22 103.150.208.0/23 Signature Algorithm: sha256WithRSAEncryption 37:1a:12:82:56:fd:c4:88:1c:32:20:b1:df:bf:36:ff:65:4d: 23:57:e9:b9:c8:91:ab:96:8b:cf:df:aa:3d:a9:24:53:90:20: d2:5b:ea:80:43:7f:59:ae:8e:ca:39:d6:b8:ce:49:f2:7c:f3: 6f:33:64:3d:ab:98:06:bd:e3:b6:d0:76:ce:c7:03:58:13:5d: 8c:82:a3:20:69:31:10:d7:37:98:10:54:f1:30:32:7b:cb:9e: f3:57:8b:54:fd:23:24:55:a0:1b:6c:b1:5a:ab:ae:25:b0:68: 4d:13:97:d5:6b:3c:d3:03:76:66:6b:77:2a:92:b5:1c:d1:21: fc:f6:ef:dc:b7:a9:21:40:0c:5b:65:40:dc:ec:13:ff:98:b1: d4:04:37:16:72:82:e1:36:35:9e:c7:e0:e2:4a:a1:19:be:73: 26:2a:09:be:b3:15:b4:4a:f8:05:c3:ed:71:d5:ed:e4:4b:26: 19:7e:4e:fa:30:54:2e:b6:3a:10:04:08:a3:7b:3f:4b:bb:1a: 8f:82:57:39:ae:3a:00:af:2c:d7:a7:51:c5:21:b5:6c:77:e7: 03:f7:23:58:f1:1a:46:ed:c0:be:2c:c0:7b:ba:a1:15:4d:77: 8c:ed:7f:f3:4e:d6:aa:2d:f3:19:15:56:b0:e6:d5:f7:3b:7d: 50:8c:33:6c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUwNjAzMDU0OTMwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlOGNlYS1jZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucOSjoS8pocjCFiXCaccXu9dWE9R10WP6X7vfi+nvAo1S/hzn7klGrMQHxnn fJZdkelJAiEWZTs1uouEo9pE5mSuUitkw4G+atvFgv57N3XZ5SbVFbmrlTm3vTaJ 5njBh2wUeJXANB087VCz7yUa8983hA0XvZQAYTaCwR4tMTEvckpB3tFLKCWVlTwc IYQCU0XkLkYI+dJxBaIuI+r0/Ksrdp2JWqrFgOk4JtDy2Rp2mbUSkQp2jgzemsZl 0Kz8TdS9bxfsCdds8Gou7H6WzSYmA64BkYKsnLV1gT0kUL+SoOOTJOiFuFsadaMA d63cQ/r9KBu4AKjtXZAeoJyF+QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFO4/H0EZ 4b78rKiD75w2XdGkZVZqMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY1NEMvNTFBOUVBQ0M0MTYwMTFFQjkwODc0NDUwQzRGOUFFMDIvMEEzN0ZFRkEw RTYzMTFFREI5OERFQTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnDMQDBAJnSWQDBAFnltAwDQYJKoZIhvcNAQELBQADggEB ADcaEoJW/cSIHDIgsd+/Nv9lTSNX6bnIkauWi8/fqj2pJFOQINJb6oBDf1mujso5 1rjOSfJ8828zZD2rmAa947bQds7HA1gTXYyCoyBpMRDXN5gQVPEwMnvLnvNXi1T9 IyRVoBtssVqrriWwaE0Tl9VrPNMDdmZrdyqStRzRIfz279y3qSFADFtlQNzsE/+Y sdQENxZyguE2NZ7H4OJKoRm+cyYqCb6zFbRK+AXD7XHV7eRLJhl+TvowVC62OhAE CKN7P0u7Go+CVzmuOgCvLNenUcUhtWx35wP3I1jxGkbtwL4swHu6oRVNd4ztf/NO 1qot8xkVVrDm1fc7fVCMM2w= -----END CERTIFICATE-----Generated at Wed Jun 4 00:16:16 2025 by rpki-client