$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/93E8AC909CA111ED97E7FC20C4F9AE02.roa File: 93E8AC909CA111ED97E7FC20C4F9AE02.roa (raw, json) Hash identifier: yz7MYEbOgQ8Al3poUxihFYnUX5uLUR4cvOqS22MeFsU= Subject key identifier: F2:02:7E:B0:2D:23:C1:95:DD:58:09:06:EC:13:A7:6E:48:93:1D:42 Certificate issuer: /CN=A91AB4BA/serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Certificate serial: 019A Authority key identifier: 83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/93E8AC909CA111ED97E7FC20C4F9AE02.roa Signing time: Thu 27 Mar 2025 03:09:29 +0000 ROA not before: Thu 27 Mar 2025 03:09:29 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 59323 IP address blocks: 103.111.160.0/23 maxlen: 23 103.111.160.0/24 maxlen: 24 103.111.161.0/24 maxlen: 24 103.226.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB4BA, serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Validity Not Before: Mar 27 03:09:29 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e4c169-7a27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:61:95:7a:5e:c1:d7:d2:fa:bd:d9:4c:c1:40: 70:f5:74:2b:33:6c:0b:8b:be:5b:b1:3f:22:a3:02: a9:16:3f:fa:b2:fd:16:d3:14:4d:83:a8:79:51:90: ed:57:20:42:13:c7:a6:90:73:22:3e:0d:19:cc:d7: 2c:91:e9:1f:1e:89:c6:fb:73:d4:65:41:ce:a1:b7: f7:5c:15:97:fe:5f:61:55:0e:65:4f:cf:80:e7:3a: e9:c9:d8:e5:21:1d:0f:2e:a5:cc:70:fe:2f:65:64: 34:0e:94:86:8c:43:97:b2:3c:c2:0e:c1:17:49:47: 66:3c:3c:26:f9:5d:ba:78:92:f6:fc:ef:94:90:88: c6:18:8d:1a:39:b8:a3:60:72:30:60:b1:e6:73:49: 7b:77:1f:d5:be:15:38:2a:8b:eb:6f:ee:f3:b5:8c: 3e:39:36:58:68:8e:4f:f3:74:16:a9:bb:db:16:5e: 5d:a8:1f:44:52:d7:ce:a3:96:01:42:53:73:8a:e0: 73:26:48:b5:0c:8a:48:78:99:5b:68:ce:06:24:69: 20:79:5f:25:27:9c:09:a2:8b:60:18:20:57:14:a6: 3e:82:fa:56:5d:44:d9:cf:37:74:1e:1e:d4:e3:bd: 58:5d:88:0c:96:4d:b2:7d:d4:e4:3d:e3:12:c8:d4: 4d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:02:7E:B0:2D:23:C1:95:DD:58:09:06:EC:13:A7:6E:48:93:1D:42 X509v3 Authority Key Identifier: keyid:83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/93E8AC909CA111ED97E7FC20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.160.0/23 103.226.216.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:bd:6c:d8:17:75:82:63:bc:ad:45:d9:07:89:e7:6a:85:7d: c4:b2:84:dc:05:13:42:55:08:17:d2:e9:71:65:43:2f:1d:9c: 26:73:9f:c0:15:6e:56:5f:8d:99:93:12:2b:b8:83:42:50:ef: 11:99:39:fa:6e:02:e0:15:6e:94:1d:34:44:74:f2:ea:c4:80: 03:48:78:b3:73:11:5a:42:05:fb:af:24:7a:46:c8:1b:37:70: 20:c0:7a:47:29:05:1c:50:f2:7b:6b:13:69:36:de:f7:fb:ff: b0:6f:ae:a8:63:f8:a3:38:3c:90:f1:57:bc:7e:3a:31:8a:2e: 2c:54:00:a9:7e:2a:47:23:c8:3f:90:16:2f:c6:b3:a7:30:97: ae:c4:12:ce:32:c9:06:43:cd:65:05:8f:4f:1a:92:c8:a9:12: a1:10:ba:80:12:3f:53:2f:4f:0c:09:c8:96:cc:b4:14:17:76: d3:ae:83:38:25:85:2e:20:61:74:21:fc:9d:1f:fe:36:08:b9: b1:10:86:01:0a:1c:dc:e2:82:bc:b1:9d:bc:96:a3:d7:46:83: 5b:62:96:69:42:80:6d:2b:8e:06:fb:c2:53:63:57:76:33:b9: 4f:de:59:f5:2a:44:52:61:20:bf:2e:60:c4:c8:f9:e4:96:5f: 6d:6d:22:90 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0QkExMTAvBgNVBAUTKDgzQjZFN0VBMjNCREMzQTM4RDYwQjRGRkEyRUZGNUEx OEYxRENENjgwHhcNMjUwMzI3MDMwOTI5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0YzE2OS03YTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mGVel7B19L6vdlMwUBw9XQrM2wLi75bsT8iowKpFj/6sv0W0xRNg6h5UZDt VyBCE8emkHMiPg0ZzNcskekfHonG+3PUZUHOobf3XBWX/l9hVQ5lT8+A5zrpydjl IR0PLqXMcP4vZWQ0DpSGjEOXsjzCDsEXSUdmPDwm+V26eJL2/O+UkIjGGI0aObij YHIwYLHmc0l7dx/VvhU4Kovrb+7ztYw+OTZYaI5P83QWqbvbFl5dqB9EUtfOo5YB QlNziuBzJki1DIpIeJlbaM4GJGkgeV8lJ5wJootgGCBXFKY+gvpWXUTZzzd0Hh7U 471YXYgMlk2yfdTkPeMSyNRNYQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPICfrAt I8GV3VgJBuwTp25Ikx1CMB8GA1UdIwQYMBaAFIO25+ojvcOjjWC0/6Lv9aGPHc1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjRCQS9DNzNFMTg0NDlD OUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2T05ZTFRfb3VfMW9ZOGR6 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3Ym42aU85dzZPTllMVF9vdV8xb1k4ZHpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI0QkEvQzczRTE4NDQ5QzlFMTFFRDkxQjcxNjFEQzRGOUFFMDIvOTNFOEFDOTA5 Q0ExMTFFRDk3RTdGQzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnb6ADBAFn4tgwDQYJKoZIhvcNAQELBQADggEBAIu9bNgX dYJjvK1F2QeJ52qFfcSyhNwFE0JVCBfS6XFlQy8dnCZzn8AVblZfjZmTEiu4g0JQ 7xGZOfpuAuAVbpQdNER08urEgANIeLNzEVpCBfuvJHpGyBs3cCDAekcpBRxQ8ntr E2k23vf7/7Bvrqhj+KM4PJDxV7x+OjGKLixUAKl+KkcjyD+QFi/Gs6cwl67EEs4y yQZDzWUFj08aksipEqEQuoASP1MvTwwJyJbMtBQXdtOugzglhS4gYXQh/J0f/jYI ubEQhgEKHNzigryxnbyWo9dGg1tilmlCgG0rjgb7wlNjV3YzuU/eWfUqRFJhIL8u YMTI+eSWX21tIpA= -----END CERTIFICATE-----Generated at Sat Apr 26 15:18:40 2025 by rpki-client