$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB9FC/2D1AB836595C11EFBB07C44FC4F9AE02/20E7CCE2595D11EF90E23670C4F9AE02.roa File: 20E7CCE2595D11EF90E23670C4F9AE02.roa (raw, json) Hash identifier: u2oQCfujekc2CkfkL8oYEg3qrwIogCmjgXuusuY8hmA= Subject key identifier: A1:8A:04:71:BF:78:9F:25:8A:1A:89:E3:9F:50:7B:FA:9B:33:33:74 Certificate issuer: /CN=A91EB9FC/serialNumber=793F34B6A97AB75035581BFDD080838933AB3F03 Certificate serial: 9B Authority key identifier: 79:3F:34:B6:A9:7A:B7:50:35:58:1B:FD:D0:80:83:89:33:AB:3F:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eT80tql6t1A1WBv90ICDiTOrPwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB9FC/2D1AB836595C11EFBB07C44FC4F9AE02/20E7CCE2595D11EF90E23670C4F9AE02.roa Signing time: Wed 21 May 2025 06:07:27 +0000 ROA not before: Wed 21 May 2025 06:07:27 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152725 IP address blocks: 103.52.4.0/23 maxlen: 23 103.52.4.0/24 maxlen: 24 103.52.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB9FC/2D1AB836595C11EFBB07C44FC4F9AE02/eT80tql6t1A1WBv90ICDiTOrPwM.crl rsync://rpki.apnic.net/member_repository/A91EB9FC/2D1AB836595C11EFBB07C44FC4F9AE02/eT80tql6t1A1WBv90ICDiTOrPwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eT80tql6t1A1WBv90ICDiTOrPwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB9FC, serialNumber=793F34B6A97AB75035581BFDD080838933AB3F03 Validity Not Before: May 21 06:07:27 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682d6d9f-c2a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:47:7b:41:7a:00:3d:d6:7a:94:71:b0:7f:63: 49:a9:cd:99:af:f8:bc:3f:f4:31:82:c4:39:dc:d3: 6f:02:63:77:53:54:a4:e1:69:6e:18:30:e4:86:c3: 71:91:80:8e:71:3d:3d:8b:11:97:41:8b:8f:d3:a1: f3:fd:4d:e2:60:bb:9d:61:72:77:58:d8:df:f9:96: 22:40:b9:ef:0a:38:11:23:e9:b9:fe:2e:a2:0a:f6: 32:00:08:d8:01:20:55:fe:44:41:d6:aa:80:44:f7: 69:d6:2a:9e:e4:ac:23:19:a0:e6:50:2a:bf:23:11: 4c:00:57:e2:bd:6f:6b:3d:ea:34:bf:78:0d:9a:70: 5c:1c:70:3a:0b:e0:44:2d:53:8a:11:e3:4b:6c:ee: 08:d1:79:2d:b6:89:f9:6a:74:4e:78:70:dd:c5:0c: d7:de:73:e1:29:10:ea:a0:50:81:d7:7a:8f:f9:2c: 69:36:62:3c:a8:93:82:66:31:bc:d6:f0:6c:bb:6e: 1d:36:2c:bf:7a:00:fa:8c:76:87:51:02:d1:7b:4d: 20:48:da:c8:30:4f:47:35:ee:ce:83:1e:22:94:71: a3:56:45:03:e8:88:6c:43:92:14:13:86:c3:57:4f: 55:8f:4a:33:31:6e:4c:80:d7:cd:1b:5f:a8:74:4d: f8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:8A:04:71:BF:78:9F:25:8A:1A:89:E3:9F:50:7B:FA:9B:33:33:74 X509v3 Authority Key Identifier: keyid:79:3F:34:B6:A9:7A:B7:50:35:58:1B:FD:D0:80:83:89:33:AB:3F:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB9FC/2D1AB836595C11EFBB07C44FC4F9AE02/eT80tql6t1A1WBv90ICDiTOrPwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eT80tql6t1A1WBv90ICDiTOrPwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB9FC/2D1AB836595C11EFBB07C44FC4F9AE02/20E7CCE2595D11EF90E23670C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.52.4.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:16:b1:fc:ca:30:be:50:41:0a:67:5a:d4:e4:02:93:cd:4d: ad:40:93:1e:a6:ee:46:23:6d:20:f1:e9:86:0d:b0:10:2b:b2: 59:25:45:94:e1:bd:d0:43:a2:d0:c4:53:17:98:9e:10:97:32: 55:3d:1f:69:22:72:47:6d:8e:e2:42:3e:e0:7a:cc:b1:6c:c9: dd:06:21:c4:43:cb:75:02:9f:01:e8:cf:cc:7c:b1:ff:7e:ce: 79:0e:ce:75:da:80:50:8c:e0:62:94:d7:b3:2f:93:94:06:ff: 4b:73:04:c8:24:16:26:af:c4:79:4e:9b:a5:d3:3e:8d:c7:5a: a0:bd:7b:8d:3c:bb:79:ef:89:32:cd:8d:e6:96:9d:44:e8:0c: 41:c9:86:9b:82:ec:89:fe:3e:d7:cc:3f:a2:0d:86:af:24:e8: 51:ee:df:42:de:79:7e:3d:4d:24:bb:e8:3c:26:fd:11:38:90: 28:24:0e:d3:5d:1d:4d:6d:a0:dd:f4:0b:e0:5c:95:c4:37:f7: 59:fd:a1:70:8a:c9:bc:3e:ec:23:0f:28:61:30:b1:18:8b:74: 57:b2:fb:3c:00:11:39:be:70:d3:40:08:5c:26:09:7e:67:3a: c6:79:9c:e1:2b:39:a4:e3:6c:47:6f:de:c3:82:61:80:ad:72: 96:90:75:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5RkMxMTAvBgNVBAUTKDc5M0YzNEI2QTk3QUI3NTAzNTU4MUJGREQwODA4Mzg5 MzNBQjNGMDMwHhcNMjUwNTIxMDYwNzI3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkNmQ5Zi1jMmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUd7QXoAPdZ6lHGwf2NJqc2Zr/i8P/QxgsQ53NNvAmN3U1Sk4WluGDDkhsNx kYCOcT09ixGXQYuP06Hz/U3iYLudYXJ3WNjf+ZYiQLnvCjgRI+m5/i6iCvYyAAjY ASBV/kRB1qqARPdp1iqe5KwjGaDmUCq/IxFMAFfivW9rPeo0v3gNmnBcHHA6C+BE LVOKEeNLbO4I0Xktton5anROeHDdxQzX3nPhKRDqoFCB13qP+SxpNmI8qJOCZjG8 1vBsu24dNiy/egD6jHaHUQLRe00gSNrIME9HNe7Ogx4ilHGjVkUD6IhsQ5IUE4bD V09Vj0ozMW5MgNfNG1+odE34XQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKGKBHG/ eJ8lihqJ459Qe/qbMzN0MB8GA1UdIwQYMBaAFHk/NLaperdQNVgb/dCAg4kzqz8D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjlGQy8yRDFBQjgzNjU5 NUMxMUVGQkIwN0M0NEZDNEY5QUUwMi9lVDgwdHFsNnQxQTFXQnY5MElDRGlUT3JQ d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUODB0cWw2dDFBMVdCdjkwSUNEaVRPclB3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI5RkMvMkQxQUI4MzY1OTVDMTFFRkJCMDdDNDRGQzRGOUFFMDIvMjBFN0NDRTI1 OTVEMTFFRjkwRTIzNjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnNAQwDQYJKoZIhvcNAQELBQADggEBAH0WsfzKML5QQQpn WtTkApPNTa1Akx6m7kYjbSDx6YYNsBArslklRZThvdBDotDEUxeYnhCXMlU9H2ki ckdtjuJCPuB6zLFsyd0GIcRDy3UCnwHoz8x8sf9+znkOznXagFCM4GKU17Mvk5QG /0tzBMgkFiavxHlOm6XTPo3HWqC9e408u3nviTLNjeaWnUToDEHJhpuC7In+PtfM P6INhq8k6FHu30LeeX49TSS76Dwm/RE4kCgkDtNdHU1toN30C+BclcQ391n9oXCK ybw+7CMPKGEwsRiLdFey+zwAETm+cNNACFwmCX5nOsZ5nOErOaTjbEdv3sOCYYCt cpaQdQQ= -----END CERTIFICATE-----Generated at Mon Jun 2 06:44:45 2025 by rpki-client