$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/37B448241F7811F0AC4FFF82C4F9AE02.roa File: 37B448241F7811F0AC4FFF82C4F9AE02.roa (raw, json) Hash identifier: rfQkg7k3FOtxE3QH+1b/dgEb3pjSHYuBHOu/Aw1ktps= Subject key identifier: 39:C2:1F:07:55:06:A9:48:A5:CE:E4:24:14:FD:47:69:D2:B3:51:99 Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: 26 Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/37B448241F7811F0AC4FFF82C4F9AE02.roa Signing time: Thu 15 May 2025 11:59:48 +0000 ROA not before: Thu 15 May 2025 11:59:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142032 IP address blocks: 103.117.136.0/22 maxlen: 24 103.121.92.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 09:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: May 15 11:59:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6825d733-93af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3f:b2:52:38:dc:a7:d3:4e:d4:0e:28:f3:bb: d8:2b:b8:bf:8d:22:c5:76:55:cc:c3:76:e7:77:56: a6:e2:6d:06:e0:3e:d8:1d:fb:1d:41:f5:ac:32:eb: c4:e7:ea:c8:b6:3d:d0:6a:03:d6:d6:0f:75:16:c9: 8e:50:e3:48:32:da:76:21:05:c0:9b:4f:cc:e4:de: 5c:76:79:b3:27:e7:36:1b:2b:63:da:02:8a:7a:5f: f6:e6:29:9e:82:90:8a:97:19:b4:76:ac:1f:e9:69: c2:fe:82:f1:6b:ed:d1:eb:f4:3e:fd:2b:56:66:82: 6b:8d:e9:8c:2c:91:19:ac:6f:33:6c:d8:15:de:38: 2b:d2:cd:01:c7:05:1a:1e:9a:58:67:fe:1c:db:13: bf:dd:42:a8:7a:b3:ad:48:91:2d:9e:c2:cd:dd:df: be:7c:a6:1c:85:12:57:47:46:de:49:d0:d3:1f:bd: 58:22:20:ff:be:4a:f9:dc:68:83:ac:f5:c0:af:c4: 42:1a:d7:d7:eb:48:d4:f3:00:42:1f:94:6e:e1:d0: e4:ec:8e:72:dc:bd:cf:7b:6e:9b:5c:f3:fb:02:2b: 13:4c:0f:23:bb:af:db:2a:85:44:20:80:59:a3:ab: c6:cc:3f:a2:41:0b:85:54:ef:9d:6a:79:19:73:c9: a9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C2:1F:07:55:06:A9:48:A5:CE:E4:24:14:FD:47:69:D2:B3:51:99 X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/37B448241F7811F0AC4FFF82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.121.92.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption b6:58:d6:d5:93:db:81:20:0e:2e:0b:04:a6:2f:7b:fc:d5:ff: 41:4f:4e:82:4d:5a:be:ef:30:f9:63:f1:2d:16:b3:0e:97:8e: 84:2a:05:b7:08:14:d3:d0:5e:cc:57:c5:78:d0:3e:d5:c1:ea: 98:da:1a:60:2f:2a:7c:43:95:48:f7:69:db:46:57:17:71:91: 62:b8:84:a5:3d:b9:2c:4c:5f:ca:ad:ff:0e:86:aa:6c:12:df: 57:1e:09:c6:5d:6a:2a:f5:56:63:05:34:08:17:d1:ed:8b:0b: c8:d1:94:f3:14:57:c3:36:20:7f:2c:08:c3:29:54:f3:ee:0e: 1f:9e:aa:c7:c1:01:c9:60:e5:84:23:d6:62:02:34:79:67:c4: 05:42:57:bc:d2:6a:b2:fb:33:58:66:b9:0f:ff:8b:33:ee:a5: 16:c2:d9:00:c3:5e:8d:c0:52:17:2a:c9:8e:7d:92:80:57:ea: 98:3e:0c:15:f0:1f:bd:39:be:75:03:f7:53:4d:03:59:cd:45: e3:ea:cb:41:1b:91:fe:b4:83:90:e1:3d:e1:5d:e9:72:f6:8f: 30:7d:1b:51:57:19:9d:67:a6:c2:1e:99:fe:ef:5e:f5:4c:67: 59:ca:08:dd:f8:22:6c:2c:a9:1f:ff:3e:92:93:a5:93:d3:d8: 37:3c:a7:af -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MjQzRjExMC8GA1UEBRMoMTg5NjdEQ0RCNzI0QTg0QTcxNzExRTY3OEFBQjFEMkU3 MjIxNUQ2QzAeFw0yNTA1MTUxMTU5NDhaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjVkNzMzLTkzYWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUP7JSONyn007UDijzu9gruL+NIsV2VczDdud3VqbibQbgPtgd+x1B9awy68Tn 6si2PdBqA9bWD3UWyY5Q40gy2nYhBcCbT8zk3lx2ebMn5zYbK2PaAop6X/bmKZ6C kIqXGbR2rB/pacL+gvFr7dHr9D79K1ZmgmuN6YwskRmsbzNs2BXeOCvSzQHHBRoe mlhn/hzbE7/dQqh6s61IkS2ews3d3758phyFEldHRt5J0NMfvVgiIP++SvncaIOs 9cCvxEIa19frSNTzAEIflG7h0OTsjnLcvc97bptc8/sCKxNMDyO7r9sqhUQggFmj q8bMP6JBC4VU751qeRlzyakJAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUOcIfB1UG qUilzuQkFP1HadKzUZkwHwYDVR0jBBgwFoAUGJZ9zbckqEpxcR5niqsdLnIhXWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyNDNGL0Q2ODRGQzJFMUE4 QjExRjA5Q0MyNDUzNUM0RjlBRTAyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0paOXpiY2txRXB4Y1I1bmlxc2RMbkloWFd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjQzRi9ENjg0RkMyRTFBOEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi8zN0I0NDgyNDFG NzgxMUYwQUM0RkZGODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAmd1iAMEAmd5XAMEAWe61jANBgkqhkiG9w0BAQsFAAOCAQEA tljW1ZPbgSAOLgsEpi97/NX/QU9Ogk1avu8w+WPxLRazDpeOhCoFtwgU09BezFfF eNA+1cHqmNoaYC8qfEOVSPdp20ZXF3GRYriEpT25LExfyq3/DoaqbBLfVx4Jxl1q KvVWYwU0CBfR7YsLyNGU8xRXwzYgfywIwylU8+4OH56qx8EByWDlhCPWYgI0eWfE BUJXvNJqsvszWGa5D/+LM+6lFsLZAMNejcBSFyrJjn2SgFfqmD4MFfAfvTm+dQP3 U00DWc1F4+rLQRuR/rSDkOE94V3pcvaPMH0bUVcZnWemwh6Z/u9e9UxnWcoI3fgi bCypH/8+kpOlk9PYNzynrw== -----END CERTIFICATE-----Generated at Tue Oct 28 00:38:45 2025 by rpki-client