$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/E90F04F4114711F0B6E44E12C4F9AE02.roa File: E90F04F4114711F0B6E44E12C4F9AE02.roa (raw, json) Hash identifier: T2JfWqooDsoo4Pnd/9ynqzcP0qRLSSyKocJG9jPyVEc= Subject key identifier: 2B:A6:49:78:64:8D:08:6C:FA:CB:FB:C5:02:8D:6B:2E:DD:D7:D2:E7 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: F6 Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/E90F04F4114711F0B6E44E12C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:21:54 +0000 ROA not before: Fri 04 Apr 2025 11:29:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152333 IP address blocks: 103.137.20.0/24 maxlen: 24 103.137.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Apr 4 11:29:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a58ef2-f4bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:92:e5:f9:0d:f1:e9:30:52:e6:79:92:93:fa: 50:05:34:64:84:59:72:7e:b6:c8:21:4a:dc:51:64: 91:48:42:89:cf:a8:64:83:f5:7e:7b:13:f0:f1:aa: b4:a8:40:34:44:ab:e9:f0:1b:3e:87:f7:6d:ec:c4: 72:24:e3:91:6e:13:83:01:68:9e:76:31:b5:f6:96: a0:1f:57:7f:a4:b9:b5:7f:9f:93:63:1a:b0:e3:41: de:1d:b9:91:06:ec:0d:80:52:47:a8:cd:a5:4b:5d: c9:48:66:83:5f:41:2b:8a:4d:48:eb:50:a2:00:96: 3f:5f:28:29:15:97:2f:86:b7:2e:1a:25:38:ce:78: 29:f5:7a:f8:9c:69:26:2c:ef:f0:d7:a6:1d:25:ea: b2:0d:b2:9d:7d:68:2b:44:13:2f:f1:aa:a1:67:e8: d4:d7:48:77:28:d7:24:32:d0:24:36:fb:ce:5e:b1: 48:6b:7b:ed:5d:d1:7f:87:e4:00:b3:61:2d:38:8a: fb:f0:0e:2e:7a:28:f0:3a:0a:62:0d:a7:77:85:c3: 5e:18:a7:a1:33:fd:86:62:74:87:5d:3d:5f:c3:ab: 94:2e:6b:ac:75:17:39:0b:4c:54:37:45:9b:9a:df: c8:6d:50:a7:f8:7e:21:7d:1b:6b:ee:76:af:98:b0: e8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A6:49:78:64:8D:08:6C:FA:CB:FB:C5:02:8D:6B:2E:DD:D7:D2:E7 X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/E90F04F4114711F0B6E44E12C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.20.0/23 Signature Algorithm: sha256WithRSAEncryption 20:34:fa:1a:3c:c8:6f:26:b3:fd:9a:20:b4:61:ed:ce:33:c3: c9:ac:81:5c:f1:f3:51:ad:52:03:ae:6c:26:d5:13:88:01:0d: c9:87:13:fd:7a:46:c4:75:a3:c1:2b:93:5e:7d:78:07:63:c3: f7:9f:d1:1a:17:85:37:62:de:8b:fc:9e:08:88:5d:4e:eb:3f: 7a:f0:97:af:fe:7e:52:42:ac:e5:4b:b7:5e:21:89:f5:bd:82: 3a:dd:74:68:d3:bd:7a:9d:d5:f6:0c:27:ef:19:9c:e3:84:ff: 30:aa:e9:c3:0b:cd:41:7d:ba:d6:ae:f9:c3:01:06:e1:b4:8d: 51:fa:07:e7:3e:52:58:a2:b8:27:56:fe:ff:db:9a:45:e5:99: 37:95:1e:b5:5f:8a:cf:f1:f7:1e:43:94:b4:be:5b:02:ab:c5: 06:6e:62:eb:7d:96:fc:9a:2c:f0:bc:29:24:d2:df:44:f0:80: ad:50:70:14:80:a4:88:93:29:d0:3c:fd:a6:b8:05:28:da:8f: ae:00:ae:da:4f:fd:06:a6:12:06:02:f7:a0:a7:ab:b6:de:e8: ed:7d:68:2e:28:79:f0:cf:43:40:85:3d:39:d5:c1:c4:a0:34: 1d:00:ff:22:31:ba:01:52:54:c2:71:d7:e1:18:55:f7:5d:2d: bd:27:05:47 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCNjcxMTAvBgNVBAUTKEQ0NTlEMjY3NTI1MjM0QTA1MzVFQzM4RDhDQ0M4OTkw MTk0REUxODkwHhcNMjUwNDA0MTEyOTU2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGVmMi1mNGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5Ll+Q3x6TBS5nmSk/pQBTRkhFlyfrbIIUrcUWSRSEKJz6hkg/V+exPw8aq0 qEA0RKvp8Bs+h/dt7MRyJOORbhODAWiedjG19pagH1d/pLm1f5+TYxqw40HeHbmR BuwNgFJHqM2lS13JSGaDX0Erik1I61CiAJY/XygpFZcvhrcuGiU4zngp9Xr4nGkm LO/w16YdJeqyDbKdfWgrRBMv8aqhZ+jU10h3KNckMtAkNvvOXrFIa3vtXdF/h+QA s2EtOIr78A4ueijwOgpiDad3hcNeGKehM/2GYnSHXT1fw6uULmusdRc5C0xUN0Wb mt/IbVCn+H4hfRtr7navmLDocQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCumSXhk jQhs+sv7xQKNay7d19LnMB8GA1UdIwQYMBaAFNRZ0mdSUjSgU17DjYzMiZAZTeGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEI2Ny8yRkEwMEQzRUM2 QUExMUVGODRGQjBEMERDNEY5QUUwMi8xRm5TWjFKU05LQlRYc09Oak15SmtCbE40 WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThCNjcvMkZBMDBEM0VDNkFBMTFFRjg0RkIwRDBEQzRGOUFFMDIvRTkwRjA0RjQx MTQ3MTFGMEI2RTQ0RTEyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4kUMA0GCSqGSIb3DQEBCwUAA4IBAQAgNPoaPMhvJrP9miC0Ye3O M8PJrIFc8fNRrVIDrmwm1ROIAQ3JhxP9ekbEdaPBK5NefXgHY8P3n9EaF4U3Yt6L /J4IiF1O6z968Jev/n5SQqzlS7deIYn1vYI63XRo0716ndX2DCfvGZzjhP8wqunD C81BfbrWrvnDAQbhtI1R+gfnPlJYorgnVv7/25pF5Zk3lR61X4rP8fceQ5S0vlsC q8UGbmLrfZb8mizwvCkk0t9E8ICtUHAUgKSIkynQPP2muAUo2o+uAK7aT/0GphIG Avegp6u23ujtfWguKHnwz0NAhT051cHEoDQdAP8iMboBUlTCcdfhGFX3XS29JwVH -----END CERTIFICATE-----Generated at Thu Mar 26 13:00:11 2026 by rpki-client