$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/C93E74B8D19511EEA71C3920C4F9AE02.roa File: C93E74B8D19511EEA71C3920C4F9AE02.roa (raw, json) Hash identifier: 5yEwO4ZnTC2CHQn3tYL6GNEeTVAOOIXAZLN/7OfHXIo= Subject key identifier: D8:E8:30:35:D2:04:AA:1B:BF:01:65:7F:AE:8B:56:1C:D3:0B:46:1A Certificate issuer: /CN=A91FE75F/serialNumber=4D14E1AF22F53B22F56DEF02EB72EA5DD6BE77E2 Certificate serial: 0292 Authority key identifier: 4D:14:E1:AF:22:F5:3B:22:F5:6D:EF:02:EB:72:EA:5D:D6:BE:77:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRThryL1OyL1be8C63LqXda-d-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/C93E74B8D19511EEA71C3920C4F9AE02.roa Signing time: Sun 20 Apr 2025 22:53:32 +0000 ROA not before: Sun 20 Apr 2025 22:53:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140210 IP address blocks: 103.163.254.0/24 maxlen: 24 103.163.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/TRThryL1OyL1be8C63LqXda-d-I.crl rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/TRThryL1OyL1be8C63LqXda-d-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRThryL1OyL1be8C63LqXda-d-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:44:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE75F, serialNumber=4D14E1AF22F53B22F56DEF02EB72EA5DD6BE77E2 Validity Not Before: Apr 20 22:53:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68057aec-f0db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:35:46:14:2b:ac:0e:7a:6c:4c:41:c4:81:e9: b8:9c:d2:fa:fc:e6:63:c8:d5:c6:33:69:a8:bb:5c: 1e:07:34:e7:33:1c:e9:d9:9f:17:6a:75:8e:0c:50: d1:3f:d0:3e:80:2d:79:54:e4:34:b4:fc:ce:18:2c: 78:56:ab:f3:c7:1d:b5:ea:17:f4:c4:c7:f2:22:1c: db:f0:b0:fe:e1:6a:d7:06:de:0e:5c:7e:4c:e7:0a: e5:93:e8:b3:bd:78:c2:40:e5:31:2e:eb:c8:bf:1f: da:94:e2:51:98:0e:13:7c:30:24:6f:35:55:9a:2f: bd:67:e1:75:8a:b3:36:cd:28:b0:b3:cf:18:dc:8d: e6:a0:fe:17:27:fc:63:98:cf:aa:0f:03:97:f5:f5: fa:6a:2c:c6:0b:f4:20:ba:54:fb:04:d3:c2:50:ff: b1:17:ce:79:ba:8e:7a:e8:3b:3c:b5:34:3b:d9:a8: fb:df:b5:f2:39:4b:eb:1e:9b:ae:82:93:2c:5d:b0: 93:e5:68:a8:02:c2:68:df:3f:e5:58:9e:5b:91:11: 65:be:0b:f0:25:fb:bf:8a:b6:d4:31:1a:3c:a4:84: f0:11:af:3e:56:64:fe:df:d7:34:86:09:0b:e2:d8: 0d:08:c2:f8:1a:a5:7e:5b:1e:e7:1c:5a:5a:ae:c6: fc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E8:30:35:D2:04:AA:1B:BF:01:65:7F:AE:8B:56:1C:D3:0B:46:1A X509v3 Authority Key Identifier: keyid:4D:14:E1:AF:22:F5:3B:22:F5:6D:EF:02:EB:72:EA:5D:D6:BE:77:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/TRThryL1OyL1be8C63LqXda-d-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRThryL1OyL1be8C63LqXda-d-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/C93E74B8D19511EEA71C3920C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.254.0/23 Signature Algorithm: sha256WithRSAEncryption a5:5a:ba:77:43:08:54:17:ba:62:a9:ce:7a:9c:ab:12:ae:75: 25:ba:64:d4:fd:1e:a3:d2:c8:ce:91:14:f4:18:9a:77:ef:77: 66:3d:29:c9:5f:de:72:35:5b:14:39:87:ce:86:d9:39:69:7e: d4:ae:f1:20:a2:10:ee:14:99:43:1c:84:85:f2:3c:8a:9e:2b: cf:86:07:4e:b9:f6:2f:1f:50:f9:76:29:7f:8b:58:35:63:c9: 4f:33:85:29:25:88:24:16:52:e5:14:61:8a:47:e8:cd:02:51: 36:7e:d3:65:be:55:76:5c:0a:40:22:48:14:b2:fc:6a:c5:49: 07:88:47:44:95:38:86:0e:bc:91:50:e3:f5:e4:8e:7f:db:00: 9c:6d:7a:e3:50:ae:43:03:6a:b5:dc:5e:0b:b6:c6:b8:61:fc: 2a:9e:8d:06:13:50:45:4e:29:de:9f:87:87:f6:b4:62:32:17: 94:e0:20:64:10:c2:ae:b3:e2:e1:08:b0:1b:8c:b8:f7:23:93: ed:45:78:17:a3:59:6c:63:84:82:9c:a7:0d:c3:f5:ff:db:ef: 95:09:ca:20:0e:43:3a:75:50:24:d4:8d:bd:04:08:e1:19:bf: 9e:39:f1:2a:8f:30:38:ce:21:89:c6:2a:11:4f:c8:26:a3:46: 85:4c:d4:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3NUYxMTAvBgNVBAUTKDREMTRFMUFGMjJGNTNCMjJGNTZERUYwMkVCNzJFQTVE RDZCRTc3RTIwHhcNMjUwNDIwMjI1MzMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA1N2FlYy1mMGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDVGFCusDnpsTEHEgem4nNL6/OZjyNXGM2mou1weBzTnMxzp2Z8XanWODFDR P9A+gC15VOQ0tPzOGCx4Vqvzxx216hf0xMfyIhzb8LD+4WrXBt4OXH5M5wrlk+iz vXjCQOUxLuvIvx/alOJRmA4TfDAkbzVVmi+9Z+F1irM2zSiws88Y3I3moP4XJ/xj mM+qDwOX9fX6aizGC/QgulT7BNPCUP+xF855uo566Ds8tTQ72aj737XyOUvrHpuu gpMsXbCT5WioAsJo3z/lWJ5bkRFlvgvwJfu/irbUMRo8pITwEa8+VmT+39c0hgkL 4tgNCML4GqV+Wx7nHFparsb87QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNjoMDXS BKobvwFlf66LVhzTC0YaMB8GA1UdIwQYMBaAFE0U4a8i9Tsi9W3vAuty6l3Wvnfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTc1Ri9BQjlFQjhDQUE5 RjUxMUVCOEE0OTIyNTRDNEY5QUUwMi9UUlRocnlMMU95TDFiZThDNjNMcVhkYS1k LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RSVGhyeUwxT3lMMWJlOEM2M0xxWGRhLWQtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkU3NUYvQUI5RUI4Q0FBOUY1MTFFQjhBNDkyMjU0QzRGOUFFMDIvQzkzRTc0QjhE MTk1MTFFRUE3MUMzOTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFno/4wDQYJKoZIhvcNAQELBQADggEBAKVaundDCFQXumKp znqcqxKudSW6ZNT9HqPSyM6RFPQYmnfvd2Y9Kclf3nI1WxQ5h86G2TlpftSu8SCi EO4UmUMchIXyPIqeK8+GB0659i8fUPl2KX+LWDVjyU8zhSkliCQWUuUUYYpH6M0C UTZ+02W+VXZcCkAiSBSy/GrFSQeIR0SVOIYOvJFQ4/Xkjn/bAJxteuNQrkMDarXc Xgu2xrhh/CqejQYTUEVOKd6fh4f2tGIyF5TgIGQQwq6z4uEIsBuMuPcjk+1FeBej WWxjhIKcpw3D9f/b75UJyiAOQzp1UCTUjb0ECOEZv5458SqPMDjOIYnGKhFPyCaj RoVM1EM= -----END CERTIFICATE-----Generated at Sat Apr 26 08:24:58 2025 by rpki-client