$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1363F5E60E8E11F082304B42C4F9AE02.roa File: 1363F5E60E8E11F082304B42C4F9AE02.roa (raw, json) Hash identifier: hu1JiBFiyTnMySrt80yNdScgCjSfSkHINTEYjzYfdUg= Subject key identifier: 94:F1:79:F3:DA:4C:0F:2F:70:B8:DC:FD:F1:F0:D2:D4:87:5D:A9:A7 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: 3F Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1363F5E60E8E11F082304B42C4F9AE02.roa Signing time: Tue 01 Apr 2025 00:13:25 +0000 ROA not before: Tue 01 Apr 2025 00:13:25 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135660 IP address blocks: 103.137.20.0/23 maxlen: 23 103.137.20.0/24 maxlen: 24 103.137.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:28:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Apr 1 00:13:25 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eb2fa5-1d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:75:7b:b8:2e:90:b0:39:1e:7e:7e:49:19:aa: d1:c6:b6:77:32:d4:aa:9e:a4:4f:eb:87:af:ec:65: c3:37:90:d1:93:77:6e:87:6e:35:10:02:25:67:a9: 85:a4:d1:fc:e5:97:b4:e3:64:c3:29:c0:d9:f5:71: e2:58:d7:28:be:1e:43:49:56:f4:2e:4c:99:73:cc: 32:1a:1a:9a:5a:bf:23:6e:eb:32:91:9d:45:4e:6a: a0:e2:c8:cb:80:0c:0e:52:6d:23:6a:1d:35:b7:73: 2e:77:86:32:e6:01:63:2b:46:d9:cf:71:ba:9d:14: 41:bc:c9:07:f4:13:6d:b2:2f:f7:2d:4a:7d:5c:ed: 06:f3:e2:8a:3a:c8:e1:ee:b2:87:21:44:4c:6a:83: d4:49:46:24:b5:2e:2a:79:4d:50:67:27:0b:4a:18: e9:4b:48:a7:90:15:c3:04:97:49:78:85:26:7f:25: 46:5d:ac:2c:41:67:32:ce:e5:bd:81:1e:e3:b3:fb: 6a:13:71:dc:77:fb:8a:41:b1:22:8c:44:90:96:09: 0d:13:e1:62:4e:d1:85:28:71:9c:8b:8d:58:80:0e: e0:8a:ca:fb:0e:bb:37:f1:fb:ce:e2:27:d7:4c:ad: 0f:1c:d1:2f:e0:d6:cd:16:58:29:7a:57:3f:b9:1d: 0c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F1:79:F3:DA:4C:0F:2F:70:B8:DC:FD:F1:F0:D2:D4:87:5D:A9:A7 X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1363F5E60E8E11F082304B42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.20.0/23 Signature Algorithm: sha256WithRSAEncryption 38:bc:df:ba:ca:15:59:09:3e:24:bf:da:65:50:27:f0:df:3c: 08:bd:e7:4b:55:56:a4:ea:28:e6:4b:4f:0f:9a:c0:45:14:be: 10:fa:aa:1c:c1:26:0b:d2:bd:fa:c7:30:88:bf:e4:e0:b5:95: 9c:2c:d3:31:0a:46:2f:6e:65:16:ac:0d:05:92:98:dd:bf:5c: c7:8b:76:a9:9f:32:da:d8:31:09:c2:c3:a3:2f:c3:6a:96:d7: d1:e7:d9:00:2c:d4:79:60:2e:db:6b:60:1f:be:1e:86:68:5d: f5:2b:11:03:cc:ba:bb:f8:74:43:18:63:61:9f:db:db:06:23: 13:02:05:39:b0:15:26:11:1d:cc:eb:c3:d8:cd:99:e5:c5:b5: d1:80:07:5f:3d:09:d3:f4:48:71:bb:89:46:75:82:ef:22:96: 11:10:96:ca:16:e4:d8:b5:28:d2:88:f3:06:06:8c:c9:2c:06: 2a:13:b2:ee:9f:18:73:2c:4e:ba:c9:6b:01:24:99:17:76:79: e8:e4:1b:8f:be:72:15:51:f2:0b:3c:f0:7b:54:2e:2d:36:80: 2e:e4:bb:ee:67:15:46:3c:3e:43:8e:19:33:c7:29:e2:a0:36: 9a:69:ca:25:b0:57:7a:cf:19:1f:ec:f1:8c:91:35:27:a1:88: 8d:9f:1a:f5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OEI2NzExMC8GA1UEBRMoRDQ1OUQyNjc1MjUyMzRBMDUzNUVDMzhEOENDQzg5OTAx OTRERTE4OTAeFw0yNTA0MDEwMDEzMjVaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZWIyZmE1LTFkODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2dXu4LpCwOR5+fkkZqtHGtncy1KqepE/rh6/sZcM3kNGTd26HbjUQAiVnqYWk 0fzll7TjZMMpwNn1ceJY1yi+HkNJVvQuTJlzzDIaGppavyNu6zKRnUVOaqDiyMuA DA5SbSNqHTW3cy53hjLmAWMrRtnPcbqdFEG8yQf0E22yL/ctSn1c7Qbz4oo6yOHu sochRExqg9RJRiS1Lip5TVBnJwtKGOlLSKeQFcMEl0l4hSZ/JUZdrCxBZzLO5b2B HuOz+2oTcdx3+4pBsSKMRJCWCQ0T4WJO0YUocZyLjViADuCKyvsOuzfx+87iJ9dM rQ8c0S/g1s0WWCl6Vz+5HQxDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUlPF589pM Dy9wuNz98fDS1IddqacwHwYDVR0jBBgwFoAU1FnSZ1JSNKBTXsONjMyJkBlN4Ykw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4QjY3LzJGQTAwRDNFQzZB QTExRUY4NEZCMEQwREM0RjlBRTAyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZ ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUZuU1oxSlNOS0JUWHNPTmpNeUprQmxONFlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEI2Ny8yRkEwMEQzRUM2QUExMUVGODRGQjBEMERDNEY5QUUwMi8xMzYzRjVFNjBF OEUxMUYwODIzMDRCNDJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeJFDANBgkqhkiG9w0BAQsFAAOCAQEAOLzfusoVWQk+JL/a ZVAn8N88CL3nS1VWpOoo5ktPD5rARRS+EPqqHMEmC9K9+scwiL/k4LWVnCzTMQpG L25lFqwNBZKY3b9cx4t2qZ8y2tgxCcLDoy/DapbX0efZACzUeWAu22tgH74ehmhd 9SsRA8y6u/h0QxhjYZ/b2wYjEwIFObAVJhEdzOvD2M2Z5cW10YAHXz0J0/RIcbuJ RnWC7yKWERCWyhbk2LUo0ojzBgaMySwGKhOy7p8YcyxOuslrASSZF3Z56OQbj75y FVHyCzzwe1QuLTaALuS77mcVRjw+Q44ZM8cp4qA2mmnKJbBXes8ZH+zxjJE1J6GI jZ8a9Q== -----END CERTIFICATE-----Generated at Sat Apr 26 13:43:37 2025 by rpki-client