$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/37B448241F7811F0AC4FFF82C4F9AE02.roa File: 37B448241F7811F0AC4FFF82C4F9AE02.roa (raw, json) Hash identifier: 6ncibP25WO++5pCe2nci+Vzhh3fBaXJC3OxdUESAx/k= Subject key identifier: FE:D1:ED:A6:AE:DE:8C:D2:1C:81:7D:97:F5:F5:91:58:22:67:D5:C5 Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: 19 Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/37B448241F7811F0AC4FFF82C4F9AE02.roa Signing time: Thu 01 May 2025 07:14:34 +0000 ROA not before: Thu 01 May 2025 07:14:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142032 IP address blocks: 103.117.136.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: May 1 07:14:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68131f5a-9619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:04:64:ce:7c:b6:55:5a:55:56:2a:34:cc:fe: 9e:18:3a:fc:51:8d:f3:94:05:79:27:c7:30:dc:57: 85:56:ab:db:0c:00:08:5f:3c:c8:11:3f:bb:de:95: cf:32:59:17:80:b0:7e:2b:ba:e4:49:ce:69:f9:03: 21:94:32:01:e1:57:17:48:4b:dd:ca:6e:ab:c7:a4: 90:ae:58:2e:f1:5f:5c:fe:fb:bf:49:1f:45:82:8a: 64:1b:ab:78:92:5b:44:15:74:51:88:1e:80:cb:ee: fe:b8:86:67:79:49:d9:0a:c7:6b:75:30:d5:ef:e6: 83:49:86:a9:7a:72:ec:ae:b4:d5:0b:ac:05:6f:89: c2:03:f7:fc:2d:83:7b:88:db:82:cc:21:0a:c7:16: f9:cc:33:ba:60:c2:34:68:2c:1e:a7:99:c9:27:78: 8d:f0:73:13:86:58:aa:00:c3:8f:e7:a0:db:71:6d: f1:27:2c:49:c0:6c:7e:6a:99:ae:28:43:31:a5:af: 4b:d0:08:2a:c3:e4:f6:95:e4:d4:7d:66:38:b9:68: bd:74:68:40:5f:c9:a0:7a:c7:d5:e6:18:9d:03:79: 20:70:e0:90:71:ff:bb:bc:d3:3f:7a:92:96:0a:ed: ee:6a:ef:ab:cb:f3:27:7d:d1:64:7a:39:f8:94:27: 20:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D1:ED:A6:AE:DE:8C:D2:1C:81:7D:97:F5:F5:91:58:22:67:D5:C5 X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/37B448241F7811F0AC4FFF82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption 13:92:bf:0a:92:86:40:d2:9b:f6:fb:9a:f7:39:df:e5:fe:d6: f0:c0:3f:5f:37:58:12:5b:66:73:c2:59:80:c8:95:69:ef:f9: 05:18:c5:48:ec:3f:37:24:58:e9:2b:d7:91:94:e8:a5:7b:e4: 31:92:b4:ab:00:b6:c8:0d:57:eb:ab:ec:d9:04:36:f8:81:c8: 5b:09:f1:df:8f:ca:a9:13:7e:c6:66:ca:a2:67:82:1a:77:7e: 82:c7:03:44:62:89:a1:72:1d:38:72:78:50:92:b9:83:0b:ff: b4:6f:bc:39:df:87:c5:49:bf:bd:b6:10:1b:ba:e1:c3:61:ba: 08:5f:cb:59:71:4a:c0:1b:35:57:cf:01:6e:4b:24:c0:02:cd: 7d:a4:d1:98:61:0a:30:6a:e8:53:c3:26:02:c0:6b:33:2b:2b: 64:b0:4d:57:f0:79:7a:3e:83:3e:03:9e:18:31:aa:01:55:1e: e1:fe:62:f5:b7:51:ed:e6:5c:ce:0a:d0:21:09:38:5c:4b:7f: f1:db:d5:96:9e:2b:a4:12:81:b3:7b:6f:d0:05:b3:d1:d8:89: aa:c9:a4:35:ae:e3:d4:62:99:dd:00:5c:17:30:16:30:ab:40: fa:46:15:dd:ee:82:e9:cf:2b:a4:c0:1d:86:98:bb:e5:7e:9a: 07:15:9f:36 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MjQzRjExMC8GA1UEBRMoMTg5NjdEQ0RCNzI0QTg0QTcxNzExRTY3OEFBQjFEMkU3 MjIxNUQ2QzAeFw0yNTA1MDEwNzE0MzRaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTMxZjVhLTk2MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/BGTOfLZVWlVWKjTM/p4YOvxRjfOUBXknxzDcV4VWq9sMAAhfPMgRP7velc8y WReAsH4ruuRJzmn5AyGUMgHhVxdIS93KbqvHpJCuWC7xX1z++79JH0WCimQbq3iS W0QVdFGIHoDL7v64hmd5SdkKx2t1MNXv5oNJhql6cuyutNULrAVvicID9/wtg3uI 24LMIQrHFvnMM7pgwjRoLB6nmckneI3wcxOGWKoAw4/noNtxbfEnLEnAbH5qma4o QzGlr0vQCCrD5PaV5NR9Zji5aL10aEBfyaB6x9XmGJ0DeSBw4JBx/7u80z96kpYK 7e5q76vL8yd90WR6OfiUJyC5AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU/tHtpq7e jNIcgX2X9fWRWCJn1cUwHwYDVR0jBBgwFoAUGJZ9zbckqEpxcR5niqsdLnIhXWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyNDNGL0Q2ODRGQzJFMUE4 QjExRjA5Q0MyNDUzNUM0RjlBRTAyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0paOXpiY2txRXB4Y1I1bmlxc2RMbkloWFd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjQzRi9ENjg0RkMyRTFBOEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi8zN0I0NDgyNDFG NzgxMUYwQUM0RkZGODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmd1iAMEAWe61jANBgkqhkiG9w0BAQsFAAOCAQEAE5K/CpKG QNKb9vua9znf5f7W8MA/XzdYEltmc8JZgMiVae/5BRjFSOw/NyRY6SvXkZTopXvk MZK0qwC2yA1X66vs2QQ2+IHIWwnx34/KqRN+xmbKomeCGnd+gscDRGKJoXIdOHJ4 UJK5gwv/tG+8Od+HxUm/vbYQG7rhw2G6CF/LWXFKwBs1V88BbkskwALNfaTRmGEK MGroU8MmAsBrMysrZLBNV/B5ej6DPgOeGDGqAVUe4f5i9bdR7eZczgrQIQk4XEt/ 8dvVlp4rpBKBs3tv0AWz0diJqsmkNa7j1GKZ3QBcFzAWMKtA+kYV3e6C6c8rpMAd hpi75X6aBxWfNg== -----END CERTIFICATE-----Generated at Sun May 11 13:07:56 2025 by rpki-client