$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/21333DA69B2E11E8908CC50FC4F9AE02.roa File: 21333DA69B2E11E8908CC50FC4F9AE02.roa (raw, json) Hash identifier: WNdbUIrq72HztcMiWEgIIxA2+CqivH5XP6V6egY23qM= Subject key identifier: 77:33:51:60:0E:44:F3:DD:E7:30:81:73:FD:9A:6A:B7:D4:CC:F3:69 Certificate issuer: /CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Certificate serial: 13A6 Authority key identifier: 35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/21333DA69B2E11E8908CC50FC4F9AE02.roa Signing time: Tue 26 Aug 2025 17:26:13 +0000 ROA not before: Tue 26 Aug 2025 17:26:13 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 7415 IP address blocks: 103.120.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:06:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5030 (0x13a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBBA5, serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Validity Not Before: Aug 26 17:26:13 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68adee34-3942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:db:e5:65:23:01:b5:b3:64:10:78:a2:0b:e5: ce:95:f3:69:5f:67:5d:81:31:36:37:9e:80:10:f5: 4a:8b:d8:b7:e2:90:33:e6:8f:16:d2:33:08:7f:10: f6:01:c0:55:76:f1:2e:c2:07:e3:a0:9d:52:88:73: b2:4d:de:30:ca:55:9c:13:a4:ae:99:54:c1:a1:b1: 1a:f3:cb:54:37:65:47:45:8a:26:10:b5:a2:e3:20: 32:99:d3:28:82:4b:f8:d9:6b:b2:cc:b0:ce:a4:c9: 2d:a4:4c:ad:c5:04:c9:bd:35:a0:6f:ac:87:bf:ef: 7b:19:52:76:90:1c:77:b8:81:40:94:fc:58:54:74: 6e:19:6c:4c:8d:09:3b:8c:d0:a0:b5:03:bd:e2:ab: 1a:c9:2e:a7:7a:00:b0:78:ef:1a:26:5d:da:69:83: 71:04:0b:d9:5c:92:9d:11:c4:e7:79:1a:49:1b:60: 4e:41:1b:88:1d:10:f2:fc:09:05:c7:5d:e6:74:63: 63:d6:21:18:50:4c:3e:02:71:91:c9:b8:11:5c:b2: 58:83:c9:69:39:9c:a9:78:13:b4:c7:9a:66:7e:5f: 96:02:a0:b3:a4:0a:5e:92:13:3d:b5:b5:4f:29:26: c7:dd:9f:aa:72:ec:a3:b3:81:d3:87:e1:6f:7b:db: c3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:33:51:60:0E:44:F3:DD:E7:30:81:73:FD:9A:6A:B7:D4:CC:F3:69 X509v3 Authority Key Identifier: keyid:35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/21333DA69B2E11E8908CC50FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.137.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:18:ff:a4:46:62:b1:26:fa:3a:8f:2e:87:25:5d:02:b2:34: 6f:5c:f0:ed:30:1f:db:6b:5c:40:40:d1:55:73:c7:c5:a6:31: 03:6d:34:7c:42:aa:0f:4b:31:74:24:42:21:eb:df:66:fb:0a: 98:fd:22:98:ea:14:cc:a9:16:27:3d:66:c1:3b:a9:3d:69:72: ce:06:c2:1d:7f:33:c1:d0:ff:bf:59:84:1b:66:4f:e0:c6:b5: 77:f1:ac:2e:dc:1b:77:d5:c4:6a:65:27:a6:24:d3:0b:c3:ef: 6d:e6:4a:8f:4d:a0:c2:55:73:65:83:d1:94:18:c8:66:df:f9: d2:91:c5:b0:95:2f:1a:ed:07:cc:cc:a5:1d:65:8e:6e:4d:4f: 50:e8:5a:21:06:b1:20:10:b4:8c:27:33:b0:d1:66:16:23:4f: af:7c:80:8d:26:69:b5:b6:ce:2e:a4:7d:24:02:9f:c4:49:87: 17:ba:e8:51:54:de:37:93:7d:79:3a:66:74:97:16:a6:e3:2c: b8:7c:4f:05:ef:9f:74:cf:92:3d:a0:4a:16:c0:8a:e6:78:16: 5f:f0:23:a7:a3:00:eb:af:4a:8c:bd:1a:c9:ed:47:3b:b8:a8: 02:07:ed:b5:e2:e7:d2:ad:42:27:56:8d:7c:16:c6:61:8c:4c: 15:73:7b:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICE6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJCQTUxMTAvBgNVBAUTKDM1OTYwRTFFMTY5RTAzRjQ2RkFGOTFGNEUzRkYxMzUx NDZBNjMxM0EwHhcNMjUwODI2MTcyNjEzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFkZWUzNC0zOTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9vlZSMBtbNkEHiiC+XOlfNpX2ddgTE2N56AEPVKi9i34pAz5o8W0jMIfxD2 AcBVdvEuwgfjoJ1SiHOyTd4wylWcE6SumVTBobEa88tUN2VHRYomELWi4yAymdMo gkv42WuyzLDOpMktpEytxQTJvTWgb6yHv+97GVJ2kBx3uIFAlPxYVHRuGWxMjQk7 jNCgtQO94qsayS6negCweO8aJl3aaYNxBAvZXJKdEcTneRpJG2BOQRuIHRDy/AkF x13mdGNj1iEYUEw+AnGRybgRXLJYg8lpOZypeBO0x5pmfl+WAqCzpApekhM9tbVP KSbH3Z+qcuyjs4HTh+Fve9vDLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHczUWAO RPPd5zCBc/2aarfUzPNpMB8GA1UdIwQYMBaAFDWWDh4WngP0b6+R9OP/E1FGpjE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkJBNS9FNjQ4NEFDRTlC MkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFfUnZyNUgwNF84VFVVYW1N VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05aWU9IaGFlQV9SdnI1SDA0XzhUVVVhbU1Uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJCQTUvRTY0ODRBQ0U5QjJEMTFFOEI0NjVEODBGQzRGOUFFMDIvMjEzMzNEQTY5 QjJFMTFFODkwOENDNTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneIkwDQYJKoZIhvcNAQELBQADggEBAC4Y/6RGYrEm+jqP LoclXQKyNG9c8O0wH9trXEBA0VVzx8WmMQNtNHxCqg9LMXQkQiHr32b7Cpj9Ipjq FMypFic9ZsE7qT1pcs4Gwh1/M8HQ/79ZhBtmT+DGtXfxrC7cG3fVxGplJ6Yk0wvD 723mSo9NoMJVc2WD0ZQYyGbf+dKRxbCVLxrtB8zMpR1ljm5NT1DoWiEGsSAQtIwn M7DRZhYjT698gI0mabW2zi6kfSQCn8RJhxe66FFU3jeTfXk6ZnSXFqbjLLh8TwXv n3TPkj2gShbAiuZ4Fl/wI6ejAOuvSoy9GsntRzu4qAIH7bXi59KtQidWjXwWxmGM TBVze2s= -----END CERTIFICATE-----Generated at Fri Sep 19 05:29:56 2025 by rpki-client