$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/4868355806A611F08F878981C4F9AE02.roa File: 4868355806A611F08F878981C4F9AE02.roa (raw, json) Hash identifier: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4= Subject key identifier: 31:43:BE:74:AA:70:81:E0:FA:27:60:44:4C:FC:38:B3:EA:65:C2:C9 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 01A6 Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/4868355806A611F08F878981C4F9AE02.roa Signing time: Wed 02 Apr 2025 12:23:22 +0000 ROA not before: Wed 02 Apr 2025 12:23:22 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134785 IP address blocks: 103.93.32.0/24 maxlen: 24 103.93.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723 Validity Not Before: Apr 2 12:23:22 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ed2c3a-4e73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:32:52:3b:7c:02:e3:3f:69:80:4a:7e:12:91: 09:9e:b7:2a:c3:69:4c:12:94:f8:a1:11:29:10:c2: c5:31:7c:5c:df:bd:57:80:fd:1f:80:99:f0:a7:8e: 88:3f:09:b0:5a:d3:3e:dd:50:94:ef:19:58:2d:8a: b8:02:43:01:2d:60:9d:a3:01:f4:41:90:2c:b8:24: 5d:86:e4:0c:87:0d:05:11:12:81:d1:2c:6c:a3:4c: 09:b4:e0:e3:ea:b2:70:40:72:69:6b:e1:a2:a2:3e: 73:b4:ac:02:5d:7e:28:7f:28:9e:5d:ed:fc:4b:57: ea:2b:08:89:bd:27:7f:97:25:9a:79:da:43:b0:68: 09:c4:cb:08:d1:cf:a3:73:a3:5e:a4:32:5c:16:eb: b8:18:5a:5b:b0:3f:a5:07:db:aa:b7:88:51:9b:56: cc:8a:9d:ba:ec:bb:19:47:0e:08:a2:9f:27:c8:ed: d7:68:f4:ca:1a:dd:59:3e:77:25:09:8e:a9:6e:92: 12:54:c1:45:d0:34:30:fa:ef:65:66:c1:aa:66:92: a6:52:17:4d:f4:01:19:20:98:17:e3:7c:99:a2:08: 01:ce:6d:91:7b:0a:2a:de:f5:d3:6e:ea:12:a1:be: 83:24:57:f4:06:5b:f8:44:a5:6c:0e:fe:ad:a5:c9: 7a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:43:BE:74:AA:70:81:E0:FA:27:60:44:4C:FC:38:B3:EA:65:C2:C9 X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/4868355806A611F08F878981C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.32.0/23 Signature Algorithm: sha256WithRSAEncryption 44:9a:3b:56:35:c8:8b:c0:14:77:5a:b7:9a:85:9b:ee:0d:1b: f2:15:59:80:5d:cd:1b:97:30:be:6c:1d:05:92:19:b9:50:2d: 0b:7e:82:4c:55:8d:ce:a9:c1:fa:6d:0f:f0:de:cf:f6:d5:51: 32:43:c5:ff:d6:f3:5e:5f:2d:ad:06:e6:55:51:3a:1c:d1:d2: f3:ce:5b:19:3a:79:98:11:b9:40:c0:38:2e:bf:9b:7e:5e:bd: 11:95:22:ef:16:16:68:9f:61:69:c1:1f:78:66:e5:b4:cb:38: 17:12:82:aa:2e:9a:10:05:a3:5e:49:54:6a:11:b4:02:f8:ea: 10:91:02:77:e5:dd:43:eb:73:58:eb:5f:52:4d:cf:38:a1:d8: e0:2c:e1:f4:b7:a7:ea:7a:ad:22:04:76:26:43:b1:a8:7d:b7: 84:10:bf:66:dd:19:4d:ad:71:c6:89:2b:d9:d6:15:aa:a9:07: 4f:f9:5d:85:8c:d4:8b:b6:70:55:12:73:37:22:85:bf:cd:46: 70:2c:39:b5:bd:69:09:a1:50:2e:e3:7a:d2:db:b7:89:fe:06: db:54:aa:06:7b:fb:3a:fc:9c:cd:0c:34:ed:39:b2:a7:2e:f2: f2:2a:61:fa:dd:5c:c8:de:5b:36:97:ce:24:ef:b7:11:18:78: 24:98:d5:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUwNDAyMTIyMzIyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkMmMzYS00ZTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jJSO3wC4z9pgEp+EpEJnrcqw2lMEpT4oREpEMLFMXxc371XgP0fgJnwp46I PwmwWtM+3VCU7xlYLYq4AkMBLWCdowH0QZAsuCRdhuQMhw0FERKB0Sxso0wJtODj 6rJwQHJpa+Gioj5ztKwCXX4ofyieXe38S1fqKwiJvSd/lyWaedpDsGgJxMsI0c+j c6NepDJcFuu4GFpbsD+lB9uqt4hRm1bMip267LsZRw4Iop8nyO3XaPTKGt1ZPncl CY6pbpISVMFF0DQw+u9lZsGqZpKmUhdN9AEZIJgX43yZoggBzm2Rewoq3vXTbuoS ob6DJFf0Blv4RKVsDv6tpcl66wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDFDvnSq cIHg+idgREz8OLPqZcLJMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3MjMvMkNEN0Y1QzhCMjdEMTFFRDg4NTZGQTgxQzRGOUFFMDIvNDg2ODM1NTgw NkE2MTFGMDhGODc4OTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnXSAwDQYJKoZIhvcNAQELBQADggEBAESaO1Y1yIvAFHda t5qFm+4NG/IVWYBdzRuXML5sHQWSGblQLQt+gkxVjc6pwfptD/Dez/bVUTJDxf/W 815fLa0G5lVROhzR0vPOWxk6eZgRuUDAOC6/m35evRGVIu8WFmifYWnBH3hm5bTL OBcSgqoumhAFo15JVGoRtAL46hCRAnfl3UPrc1jrX1JNzzih2OAs4fS3p+p6rSIE diZDsah9t4QQv2bdGU2tccaJK9nWFaqpB0/5XYWM1Iu2cFUSczcihb/NRnAsObW9 aQmhUC7jetLbt4n+BttUqgZ7+zr8nM0MNO05sqcu8vIqYfrdXMjeWzaXziTvtxEY eCSY1Q8= -----END CERTIFICATE-----Generated at Sat Apr 5 06:10:02 2025 by rpki-client