$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/372E72941F7811F0AC4FFF82C4F9AE02.roa File: 372E72941F7811F0AC4FFF82C4F9AE02.roa (raw, json) Hash identifier: 77gNSThyGJ0AnlBE5SHj9Jhjf0hxCyKERlvCEcqZ/Gg= Subject key identifier: 70:30:C0:DE:5F:F7:9F:11:56:2F:89:B9:2E:63:7D:CC:06:62:4D:3D Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: 25 Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/372E72941F7811F0AC4FFF82C4F9AE02.roa Signing time: Thu 15 May 2025 11:59:47 +0000 ROA not before: Thu 15 May 2025 11:59:47 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137899 IP address blocks: 103.117.136.0/22 maxlen: 24 103.121.92.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: May 15 11:59:47 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6825d733-2c82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3d:9e:5b:cf:55:72:3a:73:16:a6:18:50:93: e9:b0:9f:03:bd:f2:f0:7a:6f:72:77:69:5a:3e:ff: c5:68:fc:15:71:eb:aa:36:9f:b5:8c:6e:b8:fd:7a: 6c:dd:0b:15:5c:5e:c7:40:03:61:2f:77:55:17:cd: 24:30:61:fb:2c:58:69:2e:e5:c4:a9:67:66:5d:15: 95:6d:72:a4:1f:9f:e8:34:3d:53:63:4a:57:76:ea: bb:e8:60:ca:c6:c1:50:a0:bf:af:4e:9a:2b:cd:c7: 2c:86:7e:15:d4:73:ae:40:e8:df:9f:57:bc:89:fc: 2a:70:98:3d:1c:ae:9c:a6:f6:44:7c:ee:0b:eb:07: 0b:30:a6:a5:52:a5:dc:8d:82:ec:ce:90:c3:c1:f7: 22:80:f6:91:53:88:74:70:f2:ad:6c:f2:29:a4:f5: c6:3d:2c:99:3a:66:da:16:0d:62:cc:48:ac:af:fa: 7e:82:9d:ef:4f:f8:f8:70:33:18:56:83:2d:8f:71: 75:12:b9:c7:ef:00:92:d8:7a:22:87:f1:8d:2b:d5: 0b:df:1e:af:b9:58:d7:d0:bf:c4:fe:24:c6:e2:2e: 9b:3c:e3:e7:dd:c5:28:a3:95:0f:46:e4:f5:48:a3: cb:ab:f5:31:c8:6b:44:59:c6:26:6f:3d:e7:a1:ac: fa:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:30:C0:DE:5F:F7:9F:11:56:2F:89:B9:2E:63:7D:CC:06:62:4D:3D X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/372E72941F7811F0AC4FFF82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.121.92.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption a6:4b:25:d7:51:10:55:41:7d:77:4f:20:34:6f:83:5c:0f:03: 79:41:be:3e:70:1b:4d:1d:c9:71:0b:08:71:16:cf:9b:50:5d: 99:ab:55:e3:02:9a:a5:08:a6:92:ff:df:22:cf:e8:ea:a8:60: e7:7b:17:e8:b3:73:20:00:4a:34:67:c6:63:0a:9d:a8:fa:9c: 66:3a:7a:a0:1d:4a:87:1f:d0:46:ba:94:12:7e:3c:89:aa:9a: a8:31:a2:8a:e3:8e:ce:80:5b:a4:6f:36:cc:08:80:b4:bc:10: 1d:a9:f0:5d:99:87:83:64:a8:d5:0d:61:10:85:15:bd:14:67: 7b:5e:2c:c2:59:ae:9c:a4:a8:11:c3:fc:76:d2:c3:1b:b9:de: 4b:50:47:e6:d2:b8:54:ce:93:2c:c3:1a:c5:2c:78:54:eb:32: cd:89:fd:01:a2:90:e0:64:42:66:83:6a:8a:71:c9:25:e4:7d: ba:42:6b:d9:9e:ea:6e:3f:63:b6:5a:e8:b7:4b:d6:5f:8b:0f: 6a:9a:43:bf:c5:82:47:a9:1c:ff:d8:32:33:05:2d:76:e9:67: 86:ea:40:3c:d0:12:0a:ea:4c:90:20:75:d9:73:e4:d1:5a:61: 83:89:05:bd:d6:e3:c1:05:e4:a9:42:32:2c:44:40:31:2a:07: e5:51:b7:f9 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MjQzRjExMC8GA1UEBRMoMTg5NjdEQ0RCNzI0QTg0QTcxNzExRTY3OEFBQjFEMkU3 MjIxNUQ2QzAeFw0yNTA1MTUxMTU5NDdaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjVkNzMzLTJjODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+PZ5bz1VyOnMWphhQk+mwnwO98vB6b3J3aVo+/8Vo/BVx66o2n7WMbrj9emzd CxVcXsdAA2Evd1UXzSQwYfssWGku5cSpZ2ZdFZVtcqQfn+g0PVNjSld26rvoYMrG wVCgv69OmivNxyyGfhXUc65A6N+fV7yJ/CpwmD0crpym9kR87gvrBwswpqVSpdyN guzOkMPB9yKA9pFTiHRw8q1s8imk9cY9LJk6ZtoWDWLMSKyv+n6Cne9P+PhwMxhW gy2PcXUSucfvAJLYeiKH8Y0r1QvfHq+5WNfQv8T+JMbiLps84+fdxSijlQ9G5PVI o8ur9THIa0RZxiZvPeehrPpNAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUcDDA3l/3 nxFWL4m5LmN9zAZiTT0wHwYDVR0jBBgwFoAUGJZ9zbckqEpxcR5niqsdLnIhXWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyNDNGL0Q2ODRGQzJFMUE4 QjExRjA5Q0MyNDUzNUM0RjlBRTAyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0paOXpiY2txRXB4Y1I1bmlxc2RMbkloWFd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjQzRi9ENjg0RkMyRTFBOEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi8zNzJFNzI5NDFG NzgxMUYwQUM0RkZGODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAmd1iAMEAmd5XAMEAWe61jANBgkqhkiG9w0BAQsFAAOCAQEA pksl11EQVUF9d08gNG+DXA8DeUG+PnAbTR3JcQsIcRbPm1BdmatV4wKapQimkv/f Is/o6qhg53sX6LNzIABKNGfGYwqdqPqcZjp6oB1Khx/QRrqUEn48iaqaqDGiiuOO zoBbpG82zAiAtLwQHanwXZmHg2So1Q1hEIUVvRRne14swlmunKSoEcP8dtLDG7ne S1BH5tK4VM6TLMMaxSx4VOsyzYn9AaKQ4GRCZoNqinHJJeR9ukJr2Z7qbj9jtlro t0vWX4sPappDv8WCR6kc/9gyMwUtdulnhupAPNASCupMkCB12XPk0Vphg4kFvdbj wQXkqUIyLERAMSoH5VG3+Q== -----END CERTIFICATE-----Generated at Tue Jun 3 23:48:42 2025 by rpki-client