$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1363F5E60E8E11F082304B42C4F9AE02.roa File: 1363F5E60E8E11F082304B42C4F9AE02.roa (raw, json) Hash identifier: MsNJvCEXWE2fMly+1uuGyZXeqQx7FMB20pVL5odEFzE= Subject key identifier: DC:D2:AB:DB:85:67:BE:87:38:97:39:D7:5B:48:73:46:CE:28:5F:D2 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: F5 Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1363F5E60E8E11F082304B42C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:21:53 +0000 ROA not before: Tue 01 Apr 2025 00:13:25 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135660 IP address blocks: 103.137.20.0/23 maxlen: 23 103.137.20.0/24 maxlen: 24 103.137.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Apr 1 00:13:25 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a58ef1-0549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:44:a0:00:51:bb:02:d7:60:63:55:31:b6:a1: 19:b4:34:d4:02:41:93:b8:ec:8f:8b:c6:23:63:85: fb:ca:bd:d2:c2:0f:02:aa:4a:96:b4:1a:6c:de:ee: 03:e4:43:67:4b:85:d0:f5:cd:e6:64:82:4e:2a:6d: 63:d4:65:52:30:90:74:96:51:1c:7b:8a:1b:e8:da: 75:61:0f:53:02:18:09:ed:25:00:15:78:5c:4c:8d: 9f:d7:00:59:70:43:0a:07:02:71:a9:5d:82:63:da: 82:0f:15:df:fe:cc:15:28:d3:58:b8:cf:fd:d4:43: 98:8d:31:5d:4b:ea:8b:3b:af:18:f0:9f:8a:b1:57: b2:be:89:71:2f:c9:1b:cd:1c:4d:6a:49:83:ea:3b: f3:a6:f0:86:14:c8:e8:f6:18:a5:d4:7f:c0:c0:f8: 8f:00:9f:cf:b0:41:9e:f5:26:4f:86:db:98:26:eb: e1:3c:6f:ae:20:ff:e0:5a:71:e8:bf:04:86:57:d4: 12:13:8f:69:89:51:0e:95:b7:97:79:28:b0:7f:7f: ac:34:55:04:3e:2b:cc:e5:df:e0:5b:49:ec:a3:d6: 5f:55:7a:61:52:0a:99:ff:9d:db:3e:48:c7:3e:77: 3c:19:be:18:22:ba:89:73:9e:5d:1b:7d:ab:5a:5e: 80:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D2:AB:DB:85:67:BE:87:38:97:39:D7:5B:48:73:46:CE:28:5F:D2 X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1363F5E60E8E11F082304B42C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.20.0/23 Signature Algorithm: sha256WithRSAEncryption 28:71:f2:86:96:1d:e9:13:93:d0:fb:22:a4:1d:8c:3a:11:2f: 56:b5:11:3e:fb:59:50:cb:3b:bf:3e:5e:0a:72:b9:bb:ef:50: 26:36:ce:9f:c9:ab:58:9d:c9:7a:1f:4d:29:46:8f:23:df:2b: 23:fd:6c:a9:86:bc:dd:7b:be:a8:de:86:8a:72:e2:95:3f:36: 4d:3d:30:8a:49:61:2f:59:22:4b:dd:9e:b9:91:2d:72:d4:2a: f1:04:a7:bd:56:91:56:06:18:5f:1f:26:37:22:15:98:33:82: 02:f5:28:db:5c:83:33:ed:ba:9e:a3:f1:55:20:19:58:29:15: c5:15:40:f8:a7:24:8d:45:fb:ee:80:94:66:19:46:29:52:97: 1f:d8:a2:fc:dc:59:63:ea:09:2f:f7:84:1d:af:39:2f:97:c4: 14:48:7c:68:15:2e:47:d3:92:b8:88:f5:16:76:a4:a3:22:ee: 8d:b4:a5:c3:24:bb:c9:36:8c:6f:70:4e:17:a6:ee:84:7b:51: 90:8a:89:82:8a:bd:36:89:ea:1a:cc:30:44:f3:fc:b6:51:50: d4:63:cc:54:83:15:b3:17:c7:e5:31:4b:82:de:cf:72:be:c7: 5a:b5:03:63:1d:ca:d0:38:1c:61:54:91:15:81:55:bf:74:fa: 4d:03:88:dc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCNjcxMTAvBgNVBAUTKEQ0NTlEMjY3NTI1MjM0QTA1MzVFQzM4RDhDQ0M4OTkw MTk0REUxODkwHhcNMjUwNDAxMDAxMzI1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGVmMS0wNTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokSgAFG7AtdgY1UxtqEZtDTUAkGTuOyPi8YjY4X7yr3Swg8CqkqWtBps3u4D 5ENnS4XQ9c3mZIJOKm1j1GVSMJB0llEce4ob6Np1YQ9TAhgJ7SUAFXhcTI2f1wBZ cEMKBwJxqV2CY9qCDxXf/swVKNNYuM/91EOYjTFdS+qLO68Y8J+KsVeyvolxL8kb zRxNakmD6jvzpvCGFMjo9hil1H/AwPiPAJ/PsEGe9SZPhtuYJuvhPG+uIP/gWnHo vwSGV9QSE49piVEOlbeXeSiwf3+sNFUEPivM5d/gW0nso9ZfVXphUgqZ/53bPkjH Pnc8Gb4YIrqJc55dG32rWl6AqwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNzSq9uF Z76HOJc511tIc0bOKF/SMB8GA1UdIwQYMBaAFNRZ0mdSUjSgU17DjYzMiZAZTeGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEI2Ny8yRkEwMEQzRUM2 QUExMUVGODRGQjBEMERDNEY5QUUwMi8xRm5TWjFKU05LQlRYc09Oak15SmtCbE40 WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThCNjcvMkZBMDBEM0VDNkFBMTFFRjg0RkIwRDBEQzRGOUFFMDIvMTM2M0Y1RTYw RThFMTFGMDgyMzA0QjQyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4kUMA0GCSqGSIb3DQEBCwUAA4IBAQAocfKGlh3pE5PQ+yKkHYw6 ES9WtRE++1lQyzu/Pl4Kcrm771AmNs6fyatYncl6H00pRo8j3ysj/Wyphrzde76o 3oaKcuKVPzZNPTCKSWEvWSJL3Z65kS1y1CrxBKe9VpFWBhhfHyY3IhWYM4IC9Sjb XIMz7bqeo/FVIBlYKRXFFUD4pySNRfvugJRmGUYpUpcf2KL83Flj6gkv94Qdrzkv l8QUSHxoFS5H05K4iPUWdqSjIu6NtKXDJLvJNoxvcE4Xpu6Ee1GQiomCir02ieoa zDBE8/y2UVDUY8xUgxWzF8flMUuC3s9yvsdatQNjHcrQOBxhVJEVgVW/dPpNA4jc -----END CERTIFICATE-----Generated at Thu Mar 26 10:15:34 2026 by rpki-client