$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/8E20940E32AE11EFAE6AE719C4F9AE02.roa File: 8E20940E32AE11EFAE6AE719C4F9AE02.roa (raw, json) Hash identifier: bTdH2BNkxu8pmsOX7z6m4Cai9a9U6KqGeoJPp3UjSyY= Subject key identifier: 07:E3:69:80:4F:83:02:BD:13:94:60:21:D0:9C:EE:63:80:86:C3:53 Certificate issuer: /CN=A91DC324/serialNumber=4B28F5F3A9BE6C955FF1BE0F7B50803AB17EB460 Certificate serial: 99 Authority key identifier: 4B:28:F5:F3:A9:BE:6C:95:5F:F1:BE:0F:7B:50:80:3A:B1:7E:B4:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Syj186m-bJVf8b4Pe1CAOrF-tGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/8E20940E32AE11EFAE6AE719C4F9AE02.roa Signing time: Mon 31 Mar 2025 05:31:10 +0000 ROA not before: Mon 31 Mar 2025 05:31:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152707 IP address blocks: 103.37.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/Syj186m-bJVf8b4Pe1CAOrF-tGA.crl rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/Syj186m-bJVf8b4Pe1CAOrF-tGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Syj186m-bJVf8b4Pe1CAOrF-tGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC324, serialNumber=4B28F5F3A9BE6C955FF1BE0F7B50803AB17EB460 Validity Not Before: Mar 31 05:31:10 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=67ea289e-7367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b9:08:c9:e5:5b:4b:49:4c:c5:f4:08:07:aa: 5f:da:85:c9:c2:d7:c4:93:bc:e4:8d:fd:07:51:32: 86:18:b7:2a:98:2a:d0:dd:14:fb:38:38:a8:ec:84: bf:30:1c:93:23:c0:e5:ce:c2:d1:e4:e0:2a:33:ef: 3e:3d:14:51:d1:99:bf:d6:47:69:bf:8c:ca:a9:fb: af:0a:a3:b2:9b:14:50:84:9b:7d:1a:fa:0f:66:b5: 94:e9:3a:c8:27:a4:12:4a:ad:a4:54:f6:c3:63:d0: 6d:e1:fb:66:a7:a2:96:e8:8b:c0:37:ef:03:07:47: dd:9f:a1:ac:4f:48:e4:19:e4:98:85:4c:c7:3c:94: 22:48:6c:ad:b2:73:ac:be:a4:ee:9c:43:dc:5d:37: 6b:23:be:5b:c3:4f:7a:80:2f:21:bd:2f:91:5e:3d: d6:23:8d:4b:f2:cf:4b:ed:17:18:b3:a3:40:53:a9: a1:0a:cc:07:c1:b2:6a:82:d7:28:be:e4:5c:f0:88: 37:dc:32:0a:da:f0:95:10:8e:3c:68:ab:b2:63:61: 04:df:2b:f6:85:ef:0f:bb:61:d3:da:f8:c1:91:bb: 48:33:a5:00:35:bd:85:d4:5a:9e:21:04:2f:bf:1a: cc:c5:4c:90:72:ac:70:af:59:ed:84:c5:d5:80:e5: 7f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E3:69:80:4F:83:02:BD:13:94:60:21:D0:9C:EE:63:80:86:C3:53 X509v3 Authority Key Identifier: keyid:4B:28:F5:F3:A9:BE:6C:95:5F:F1:BE:0F:7B:50:80:3A:B1:7E:B4:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/Syj186m-bJVf8b4Pe1CAOrF-tGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Syj186m-bJVf8b4Pe1CAOrF-tGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/8E20940E32AE11EFAE6AE719C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.202.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:59:1b:cc:20:7e:58:f6:c4:45:bb:e4:57:03:53:22:03:02: ad:dd:3c:82:1a:c5:59:5c:16:1f:08:0a:82:68:79:36:8e:c8: d3:e8:b5:eb:4e:c5:b6:5a:ca:d0:47:ad:05:f8:13:89:d3:23: c8:92:d8:61:fd:76:8a:04:3a:50:9b:c9:80:51:36:df:02:ff: 59:67:fa:ee:04:b9:1b:42:5c:29:01:ba:3a:c4:42:f2:c2:fa: 05:58:3b:b7:03:3c:46:91:02:3b:bd:53:21:10:b4:73:e7:2c: 2d:33:5f:51:5a:a5:c0:4a:45:b3:1b:0f:56:18:51:ce:81:ae: 1d:8a:c5:7e:a1:fb:a4:bb:9e:ab:5c:9f:b9:36:48:40:3d:46: 37:3e:3a:53:43:c7:a0:3f:98:4f:ef:ed:e2:8f:58:36:da:f3: 17:9c:e5:37:d0:29:76:ec:7f:62:90:47:73:84:c3:94:4c:e1: 96:c5:ce:ef:09:5a:a9:c4:1c:fc:42:09:ba:90:46:bc:d0:a9: 1a:48:90:79:a8:58:64:5f:7d:e2:1d:85:c1:2c:77:1b:a4:99: a6:53:94:33:7b:ce:1e:5e:97:d0:51:3b:86:d0:e9:9c:16:24: 84:c1:84:cb:b9:fc:92:d5:d7:0b:1d:e6:6d:6a:9b:eb:bb:e2: b9:59:69:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMjQxMTAvBgNVBAUTKDRCMjhGNUYzQTlCRTZDOTU1RkYxQkUwRjdCNTA4MDNB QjE3RUI0NjAwHhcNMjUwMzMxMDUzMTEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VhMjg5ZS03MzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbkIyeVbS0lMxfQIB6pf2oXJwtfEk7zkjf0HUTKGGLcqmCrQ3RT7ODio7IS/ MByTI8DlzsLR5OAqM+8+PRRR0Zm/1kdpv4zKqfuvCqOymxRQhJt9GvoPZrWU6TrI J6QSSq2kVPbDY9Bt4ftmp6KW6IvAN+8DB0fdn6GsT0jkGeSYhUzHPJQiSGytsnOs vqTunEPcXTdrI75bw096gC8hvS+RXj3WI41L8s9L7RcYs6NAU6mhCswHwbJqgtco vuRc8Ig33DIK2vCVEI48aKuyY2EE3yv2he8Pu2HT2vjBkbtIM6UANb2F1FqeIQQv vxrMxUyQcqxwr1nthMXVgOV/dwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAfjaYBP gwK9E5RgIdCc7mOAhsNTMB8GA1UdIwQYMBaAFEso9fOpvmyVX/G+D3tQgDqxfrRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMyNC85ODJDNzYxMjMx RTAxMUVGOTk5NTNEMjJDNEY5QUUwMi9TeWoxODZtLWJKVmY4YjRQZTFDQU9yRi10 R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N5ajE4Nm0tYkpWZjhiNFBlMUNBT3JGLXRHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMjQvOTgyQzc2MTIzMUUwMTFFRjk5OTUzRDIyQzRGOUFFMDIvOEUyMDk0MEUz MkFFMTFFRkFFNkFFNzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnJcowDQYJKoZIhvcNAQELBQADggEBAC1ZG8wgflj2xEW7 5FcDUyIDAq3dPIIaxVlcFh8ICoJoeTaOyNPotetOxbZaytBHrQX4E4nTI8iS2GH9 dooEOlCbyYBRNt8C/1ln+u4EuRtCXCkBujrEQvLC+gVYO7cDPEaRAju9UyEQtHPn LC0zX1FapcBKRbMbD1YYUc6Brh2KxX6h+6S7nqtcn7k2SEA9Rjc+OlNDx6A/mE/v 7eKPWDba8xec5TfQKXbsf2KQR3OEw5RM4ZbFzu8JWqnEHPxCCbqQRrzQqRpIkHmo WGRffeIdhcEsdxukmaZTlDN7zh5el9BRO4bQ6ZwWJITBhMu5/JLV1wsd5m1qm+u7 4rlZadU= -----END CERTIFICATE-----Generated at Sat Apr 26 08:20:33 2025 by rpki-client