$ rpki-client -vvf rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/4C93B0C80F8E11EEA5B58045C4F9AE02.roa File: 4C93B0C80F8E11EEA5B58045C4F9AE02.roa (raw, json) Hash identifier: vIvtHj4TVv3QcsCJzYo0IznJMaTQQl47vgi8rc8e+n4= Subject key identifier: DE:99:50:DD:41:CA:57:49:95:DE:3E:CB:89:10:07:59:F9:58:78:6A Certificate issuer: /CN=A91706CE/serialNumber=CAA41532B7F72AA2C3E2AD6DF40B8D4D1EB03597 Certificate serial: 01B0 Authority key identifier: CA:A4:15:32:B7:F7:2A:A2:C3:E2:AD:6D:F4:0B:8D:4D:1E:B0:35:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/4C93B0C80F8E11EEA5B58045C4F9AE02.roa Signing time: Wed 03 Sep 2025 03:51:25 +0000 ROA not before: Wed 03 Sep 2025 03:51:25 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141153 IP address blocks: 103.155.90.0/23 maxlen: 23 103.155.90.0/24 maxlen: 24 103.155.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.crl rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 03:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706CE, serialNumber=CAA41532B7F72AA2C3E2AD6DF40B8D4D1EB03597 Validity Not Before: Sep 3 03:51:25 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7bb3d-d441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:62:8e:49:50:d2:87:44:50:ae:3c:cb:a5:2b: 0d:5d:bb:29:f7:72:f0:5a:04:d5:84:5c:fa:ca:14: 65:e3:c8:45:a4:1f:1e:31:56:28:ca:2d:46:1f:8b: 41:bd:5f:42:ea:24:ec:f5:d2:23:aa:18:69:f3:fc: 4e:5e:55:68:32:39:05:87:75:4e:ec:ea:f9:a9:7a: f2:30:5a:7d:3b:54:d9:69:f3:09:9e:1f:b8:bc:d4: d9:64:12:72:37:0a:4f:bc:06:95:4f:ec:ad:69:f9: 31:a3:46:3c:1f:7d:dc:ea:f3:e1:7c:4a:7b:e8:d8: 5a:1c:3f:ba:cf:08:eb:e2:41:e6:a9:d0:3c:66:5d: 83:15:0e:be:c8:23:1f:a2:59:ce:00:1a:4b:57:a3: a8:b3:52:27:a4:2a:3e:35:77:3b:15:ed:7b:a2:1d: dd:40:88:f3:0a:4c:89:b8:e9:19:4c:c1:02:4f:31: 3f:77:d7:04:1a:c6:3f:8b:e9:10:4b:2a:f1:9c:ce: 95:58:ab:49:1a:21:8f:36:21:ee:3f:16:6c:22:b1: 63:c8:27:ac:10:f7:bb:fb:6b:68:3d:8e:19:16:72: 1f:bd:58:5d:e3:23:f6:a6:dd:f1:79:82:50:b6:24: 40:b6:45:55:bf:88:52:85:ba:59:27:d5:a4:b6:82: 92:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:99:50:DD:41:CA:57:49:95:DE:3E:CB:89:10:07:59:F9:58:78:6A X509v3 Authority Key Identifier: keyid:CA:A4:15:32:B7:F7:2A:A2:C3:E2:AD:6D:F4:0B:8D:4D:1E:B0:35:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/4C93B0C80F8E11EEA5B58045C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.90.0/23 Signature Algorithm: sha256WithRSAEncryption 87:b7:49:36:88:13:00:7a:3d:99:e5:08:14:6e:34:36:c8:82: fa:1a:ed:0e:a0:fa:0c:24:56:be:00:42:c6:12:5b:b7:a2:78: 17:20:f7:45:d3:e9:0f:fb:e0:57:64:c6:e0:46:5d:1b:77:dc: 6f:99:d9:af:80:3b:77:58:b1:83:27:35:d9:57:8d:9c:ad:fd: 68:5d:0b:41:05:ea:15:f2:98:ec:09:9b:5b:49:98:12:29:34: 83:96:61:f0:9a:28:9e:c1:89:73:59:17:0b:5a:f8:84:e8:60: 27:88:26:57:1c:f0:df:ce:6a:66:bd:89:86:fa:21:6f:25:2f: 5e:c5:ba:43:ee:60:04:ad:04:70:29:f5:7f:f7:31:9d:ff:a3: 6b:ec:3f:29:75:b0:89:50:90:95:ce:43:1d:fd:39:ae:ae:98: dd:e8:ba:fb:5e:b0:a5:7b:6a:89:bc:f3:32:c0:40:e2:ff:b6: a6:c5:22:33:6b:8b:3c:fe:23:2e:c7:8e:7b:01:6d:95:8a:89: 2f:3b:a2:9c:da:cc:70:08:00:1f:b5:b3:e5:66:c8:7c:0a:df: 50:4a:a5:d8:77:ab:ca:49:3d:ee:c2:f1:93:5b:06:b6:5a:9a: 48:03:72:28:c5:16:27:74:62:dd:1d:80:be:01:a7:c3:ce:e0: 0b:60:a2:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA2Q0UxMTAvBgNVBAUTKENBQTQxNTMyQjdGNzJBQTJDM0UyQUQ2REY0MEI4RDRE MUVCMDM1OTcwHhcNMjUwOTAzMDM1MTI1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YmIzZC1kNDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2KOSVDSh0RQrjzLpSsNXbsp93LwWgTVhFz6yhRl48hFpB8eMVYoyi1GH4tB vV9C6iTs9dIjqhhp8/xOXlVoMjkFh3VO7Or5qXryMFp9O1TZafMJnh+4vNTZZBJy NwpPvAaVT+ytafkxo0Y8H33c6vPhfEp76NhaHD+6zwjr4kHmqdA8Zl2DFQ6+yCMf olnOABpLV6Oos1InpCo+NXc7Fe17oh3dQIjzCkyJuOkZTMECTzE/d9cEGsY/i+kQ SyrxnM6VWKtJGiGPNiHuPxZsIrFjyCesEPe7+2toPY4ZFnIfvVhd4yP2pt3xeYJQ tiRAtkVVv4hShbpZJ9WktoKS5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFN6ZUN1B yldJld4+y4kQB1n5WHhqMB8GA1UdIwQYMBaAFMqkFTK39yqiw+KtbfQLjU0esDWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDZDRS9FOTBCRDY2ODBG ODYxMUVFQTU2RUJCMjJDNEY5QUUwMi95cVFWTXJmM0txTEQ0cTF0OUF1TlRSNndO WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxUVZNcmYzS3FMRDRxMXQ5QXVOVFI2d05aYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA2Q0UvRTkwQkQ2NjgwRjg2MTFFRUE1NkVCQjIyQzRGOUFFMDIvNEM5M0IwQzgw RjhFMTFFRUE1QjU4MDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnm1owDQYJKoZIhvcNAQELBQADggEBAIe3STaIEwB6PZnl CBRuNDbIgvoa7Q6g+gwkVr4AQsYSW7eieBcg90XT6Q/74FdkxuBGXRt33G+Z2a+A O3dYsYMnNdlXjZyt/WhdC0EF6hXymOwJm1tJmBIpNIOWYfCaKJ7BiXNZFwta+ITo YCeIJlcc8N/Oama9iYb6IW8lL17FukPuYAStBHAp9X/3MZ3/o2vsPyl1sIlQkJXO Qx39Oa6umN3ouvtesKV7aom88zLAQOL/tqbFIjNrizz+Iy7HjnsBbZWKiS87opza zHAIAB+1s+VmyHwK31BKpdh3q8pJPe7C8ZNbBrZamkgDcijFFid0Yt0dgL4Bp8PO 4AtgosY= -----END CERTIFICATE-----Generated at Sat Sep 6 10:17:13 2025 by rpki-client