$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/E90F04F4114711F0B6E44E12C4F9AE02.roa File: E90F04F4114711F0B6E44E12C4F9AE02.roa (raw, json) Hash identifier: wpQZ9n5tOzLHw2Dp8uE1s9PaRxpgXwgFNni9J4wuW/Y= Subject key identifier: 95:60:1B:16:C6:59:0D:4C:E9:7B:C5:CE:B6:42:AE:40:9B:A9:45:A4 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: 010F Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/E90F04F4114711F0B6E44E12C4F9AE02.roa Signing time: Sat 11 Apr 2026 06:44:15 +0000 ROA not before: Sat 11 Apr 2026 06:44:15 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 152333 IP address blocks: 103.137.20.0/24 maxlen: 24 103.137.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Apr 11 06:44:15 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d9edbf-5ab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:85:35:92:c3:11:61:90:06:87:1a:89:b1:d6: 42:b9:71:d7:86:09:b6:c1:4b:ad:e3:d0:cb:9d:5f: f7:39:a5:3f:82:06:4c:53:fc:87:63:4f:d2:1c:1c: a1:f0:0d:f8:71:91:56:0c:f0:94:06:33:85:7a:9c: 35:42:fc:19:b4:6f:ff:a9:6e:c1:a1:ba:f0:64:91: cb:47:45:77:f6:96:7b:b1:2f:00:0d:e0:37:e5:f9: c7:2c:7a:fb:43:57:3b:c7:a3:65:e5:cf:fe:7a:fa: 5c:f4:1f:4a:ea:c0:e7:5c:3c:85:e8:86:ae:76:72: ae:9c:e0:a9:ee:6c:06:23:ee:7c:4c:2e:0d:3a:97: e1:5d:07:50:04:66:8f:ad:a7:aa:9d:af:93:ae:3b: c0:dd:80:90:86:c6:c1:76:62:a1:83:2a:1a:70:75: 5a:d3:fb:cd:5c:a2:f2:5f:1e:21:07:da:b0:09:53: 92:2f:04:37:c3:ef:cd:c9:25:4c:aa:1b:dc:09:7c: b1:6e:9b:35:2d:ff:61:0b:5a:63:c3:37:ca:18:aa: b8:8c:aa:93:ee:c3:a3:a7:1e:08:42:39:a7:20:44: ab:ba:4a:12:77:68:fa:ff:27:44:89:33:18:9d:27: 39:51:bf:01:af:86:c7:b2:84:e4:40:69:23:4c:87: cf:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:60:1B:16:C6:59:0D:4C:E9:7B:C5:CE:B6:42:AE:40:9B:A9:45:A4 X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/E90F04F4114711F0B6E44E12C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.20.0/23 Signature Algorithm: sha256WithRSAEncryption 36:92:82:b0:99:66:20:b0:d9:06:9d:ba:b3:c9:3b:86:47:19: 17:8f:6d:ab:b7:2b:2a:89:6f:bf:31:1d:e1:3c:06:e2:40:ba: 7d:f6:36:20:8b:34:63:f8:93:51:84:25:53:66:b0:e6:93:b0: 24:6c:c1:97:f4:f9:69:34:76:3d:1e:90:f5:5e:ed:8d:21:b6: b6:be:dc:d4:be:41:d3:c6:11:8f:35:37:b4:34:fc:54:a3:f2: 30:31:3c:df:74:60:a5:ea:91:cf:d1:fa:e8:52:b4:a7:74:a9: d2:44:b2:8e:b9:2f:d7:63:fa:3a:90:af:bc:d8:45:ec:7e:45: d1:32:44:ab:b5:ff:66:e6:2a:cd:1a:d9:41:46:7d:e1:ae:1e: 29:f9:49:e8:25:c8:3c:b1:4a:fb:5a:c9:f0:72:09:df:46:60: 6e:96:e7:8a:90:f7:39:aa:98:6f:1c:a8:93:25:3d:13:9f:85: 2b:c7:18:04:a8:d3:8c:2a:51:3d:bc:b2:1c:bb:b1:0d:7c:91: 00:93:54:94:18:bc:38:a3:24:40:bd:24:0d:54:e9:81:d0:51: 5a:53:d4:b4:92:df:b4:1e:1a:56:76:2e:97:35:63:3a:0e:5f: 67:62:bb:0d:3b:5b:ea:12:13:41:86:b8:f9:02:48:b6:38:8e: c3:f3:bc:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCNjcxMTAvBgNVBAUTKEQ0NTlEMjY3NTI1MjM0QTA1MzVFQzM4RDhDQ0M4OTkw MTk0REUxODkwHhcNMjYwNDExMDY0NDE1WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ5ZWRiZi01YWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5YU1ksMRYZAGhxqJsdZCuXHXhgm2wUut49DLnV/3OaU/ggZMU/yHY0/SHByh 8A34cZFWDPCUBjOFepw1QvwZtG//qW7BobrwZJHLR0V39pZ7sS8ADeA35fnHLHr7 Q1c7x6Nl5c/+evpc9B9K6sDnXDyF6IaudnKunOCp7mwGI+58TC4NOpfhXQdQBGaP raeqna+TrjvA3YCQhsbBdmKhgyoacHVa0/vNXKLyXx4hB9qwCVOSLwQ3w+/NySVM qhvcCXyxbps1Lf9hC1pjwzfKGKq4jKqT7sOjpx4IQjmnIESrukoSd2j6/ydEiTMY nSc5Ub8Br4bHsoTkQGkjTIfPuwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJVgGxbG WQ1M6XvFzrZCrkCbqUWkMB8GA1UdIwQYMBaAFNRZ0mdSUjSgU17DjYzMiZAZTeGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEI2Ny8yRkEwMEQzRUM2 QUExMUVGODRGQjBEMERDNEY5QUUwMi8xRm5TWjFKU05LQlRYc09Oak15SmtCbE40 WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThCNjcvMkZBMDBEM0VDNkFBMTFFRjg0RkIwRDBEQzRGOUFFMDIvRTkwRjA0RjQx MTQ3MTFGMEI2RTQ0RTEyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4kUMA0GCSqGSIb3DQEBCwUAA4IBAQA2koKwmWYgsNkGnbqzyTuG RxkXj22rtysqiW+/MR3hPAbiQLp99jYgizRj+JNRhCVTZrDmk7AkbMGX9PlpNHY9 HpD1Xu2NIba2vtzUvkHTxhGPNTe0NPxUo/IwMTzfdGCl6pHP0froUrSndKnSRLKO uS/XY/o6kK+82EXsfkXRMkSrtf9m5irNGtlBRn3hrh4p+UnoJcg8sUr7Wsnwcgnf RmBulueKkPc5qphvHKiTJT0Tn4UrxxgEqNOMKlE9vLIcu7ENfJEAk1SUGLw4oyRA vSQNVOmB0FFaU9S0kt+0HhpWdi6XNWM6Dl9nYrsNO1vqEhNBhrj5Aki2OI7D87wj -----END CERTIFICATE-----Generated at Fri Apr 17 15:26:51 2026 by rpki-client