$ rpki-client -vvf rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/93FE3B60220111EE8E5D8D0FC4F9AE02.roa File: 93FE3B60220111EE8E5D8D0FC4F9AE02.roa (raw, json) Hash identifier: B74A200MEGtzjKLkG19+x2nWM7IOpN8G2t0B9881Biw= Subject key identifier: 6E:45:21:3E:1A:EE:8E:20:9C:71:44:D9:6A:88:77:B1:5A:D0:D8:70 Certificate issuer: /CN=A914BFE5/serialNumber=78A9977FFB47AF3EC1E946BC10F81376949EBEC2 Certificate serial: 080C Authority key identifier: 78:A9:97:7F:FB:47:AF:3E:C1:E9:46:BC:10:F8:13:76:94:9E:BE:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/93FE3B60220111EE8E5D8D0FC4F9AE02.roa Signing time: Fri 18 Apr 2025 21:23:39 +0000 ROA not before: Fri 18 Apr 2025 21:23:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133104 IP address blocks: 103.152.248.0/24 maxlen: 24 103.152.249.0/24 maxlen: 24 119.252.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.crl rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2060 (0x80c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BFE5, serialNumber=78A9977FFB47AF3EC1E946BC10F81376949EBEC2 Validity Not Before: Apr 18 21:23:39 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6802c2db-c4c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8b:32:0c:2b:09:82:c6:70:ad:c7:9d:9e:9e: 67:6e:79:b3:80:11:5e:a6:ca:42:d1:eb:e9:bf:33: 45:bb:f8:3e:65:a9:19:36:9a:59:24:e0:59:7b:98: 95:a4:c3:97:85:4c:bd:db:e7:f9:34:e2:77:ad:a0: b3:ee:f6:f5:5c:fd:e0:de:51:70:74:15:50:b9:51: c2:bd:ca:e0:68:29:08:3d:ab:a2:db:36:1e:b0:b8: 08:39:39:4d:d7:5d:71:50:f6:03:d7:dc:37:4a:bc: 3d:a2:88:07:84:1d:83:52:05:26:b2:e9:92:6e:5d: a3:af:a0:24:d6:fd:91:83:d3:29:48:a5:2c:a4:67: 9e:d6:57:9c:3f:32:d9:9e:2d:4f:36:5b:b2:a3:06: 31:f2:47:4f:ba:77:cd:f6:75:17:74:4d:41:9f:82: 7f:61:c5:c3:bd:49:ef:88:8a:8c:89:ae:bd:93:38: 77:2c:09:b6:78:ee:ba:ce:8b:9b:83:20:19:06:12: af:cf:9a:c7:e8:23:d9:6b:96:49:7a:3d:b0:9e:88: 1d:db:5a:07:b1:c6:06:01:0a:9e:ba:8a:a5:5b:1b: 15:56:0a:2b:3b:c2:6c:d6:24:f9:bd:55:95:aa:34: 66:a5:85:85:fd:f0:ea:0b:9e:56:67:52:a0:bd:b3: 3b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:45:21:3E:1A:EE:8E:20:9C:71:44:D9:6A:88:77:B1:5A:D0:D8:70 X509v3 Authority Key Identifier: keyid:78:A9:97:7F:FB:47:AF:3E:C1:E9:46:BC:10:F8:13:76:94:9E:BE:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/93FE3B60220111EE8E5D8D0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.248.0/23 119.252.177.0/24 Signature Algorithm: sha256WithRSAEncryption 45:d5:87:7c:e1:8d:07:a5:6c:cb:34:96:ac:3f:f9:8b:1d:3c: 78:e8:72:66:24:9e:06:f5:53:e8:95:18:64:0b:9f:90:a0:1d: 6a:73:4b:11:98:81:1c:db:b2:28:85:83:1a:0a:76:66:c2:b2: 62:bc:34:6d:37:c1:ec:0d:02:de:f3:ff:b8:8f:64:37:93:47: b6:ff:a2:34:42:ad:3a:62:e5:81:a9:e0:79:e5:87:31:4a:dd: 8f:c4:a9:d3:5e:d3:be:60:67:93:a9:ff:82:84:82:b8:21:ee: 91:91:99:6c:92:b4:25:e2:b0:7a:12:f9:4d:91:da:58:72:9d: f0:2c:a4:50:7f:11:5d:c6:35:56:12:2d:55:1b:12:11:31:0e: 21:08:e8:f3:f5:43:f4:5c:9d:e3:f4:c7:ef:ad:fd:0a:9d:e4: 54:ef:9d:b1:0d:2c:18:81:b2:c5:2c:87:3d:d1:64:07:d3:e5: a0:f3:6b:ff:63:6c:e4:3e:e0:d0:38:96:80:ad:93:87:b8:1c: 61:06:75:9b:72:88:bd:5d:0c:95:75:b3:57:86:78:e8:8d:bf: ca:d5:85:f6:40:d1:2d:c0:d1:51:b4:be:6f:87:b8:b4:89:b3: a9:0f:0b:d0:74:5f:ac:96:c8:17:67:45:59:4b:07:ff:94:94: 17:e8:13:ac -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGRTUxMTAvBgNVBAUTKDc4QTk5NzdGRkI0N0FGM0VDMUU5NDZCQzEwRjgxMzc2 OTQ5RUJFQzIwHhcNMjUwNDE4MjEyMzM5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAyYzJkYi1jNGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYsyDCsJgsZwrcednp5nbnmzgBFepspC0evpvzNFu/g+ZakZNppZJOBZe5iV pMOXhUy92+f5NOJ3raCz7vb1XP3g3lFwdBVQuVHCvcrgaCkIPaui2zYesLgIOTlN 111xUPYD19w3Srw9oogHhB2DUgUmsumSbl2jr6Ak1v2Rg9MpSKUspGee1lecPzLZ ni1PNluyowYx8kdPunfN9nUXdE1Bn4J/YcXDvUnviIqMia69kzh3LAm2eO66zoub gyAZBhKvz5rH6CPZa5ZJej2wnogd21oHscYGAQqeuoqlWxsVVgorO8Js1iT5vVWV qjRmpYWF/fDqC55WZ1KgvbM75QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFG5FIT4a 7o4gnHFE2WqId7Fa0NhwMB8GA1UdIwQYMBaAFHipl3/7R68+welGvBD4E3aUnr7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkZFNS85REFGNDg2RURE RUIxMUVBQjMwRUQ5MjFDNEY5QUUwMi9lS21YZl90SHJ6N0I2VWE4RVBnVGRwU2V2 c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VLbVhmX3RIcno3QjZVYThFUGdUZHBTZXZzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJGRTUvOURBRjQ4NkVEREVCMTFFQUIzMEVEOTIxQzRGOUFFMDIvOTNGRTNCNjAy MjAxMTFFRThFNUQ4RDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnmPgDBAB3/LEwDQYJKoZIhvcNAQELBQADggEBAEXVh3zh jQelbMs0lqw/+YsdPHjocmYkngb1U+iVGGQLn5CgHWpzSxGYgRzbsiiFgxoKdmbC smK8NG03wewNAt7z/7iPZDeTR7b/ojRCrTpi5YGp4HnlhzFK3Y/EqdNe075gZ5Op /4KEgrgh7pGRmWyStCXisHoS+U2R2lhynfAspFB/EV3GNVYSLVUbEhExDiEI6PP1 Q/RcneP0x++t/Qqd5FTvnbENLBiBssUshz3RZAfT5aDza/9jbOQ+4NA4loCtk4e4 HGEGdZtyiL1dDJV1s1eGeOiNv8rVhfZA0S3A0VG0vm+HuLSJs6kPC9B0X6yWyBdn RVlLB/+UlBfoE6w= -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:38 2025 by rpki-client