$ rpki-client -vvf rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/93C20720C45311EBB305C97FC4F9AE02.roa File: 93C20720C45311EBB305C97FC4F9AE02.roa (raw, json) Hash identifier: GR7vQYmLyzxJEas0mYDVxALBB8DKhJeqrbl3u+F+zek= Subject key identifier: 4B:05:91:73:E9:F0:3B:CB:93:20:52:6E:ED:7E:D2:93:8C:73:FE:43 Certificate issuer: /CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Certificate serial: 1349 Authority key identifier: C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/93C20720C45311EBB305C97FC4F9AE02.roa Signing time: Thu 14 Aug 2025 17:26:48 +0000 ROA not before: Thu 14 Aug 2025 17:26:48 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38861 IP address blocks: 111.223.96.0/19 maxlen: 24 113.10.64.0/18 maxlen: 24 117.20.128.0/18 maxlen: 24 122.11.128.0/17 maxlen: 24 171.207.0.0/16 maxlen: 24 182.19.128.0/17 maxlen: 24 182.55.0.0/16 maxlen: 24 183.90.0.0/17 maxlen: 24 203.116.0.0/16 maxlen: 24 203.117.0.0/16 maxlen: 24 203.118.0.0/18 maxlen: 24 2406:3000:4::/48 maxlen: 48 2406:3001::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4937 (0x1349) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91402DC, serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Validity Not Before: Aug 14 17:26:48 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689e1c58-8244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c3:ae:aa:ff:7b:3c:a2:68:f8:56:17:54:bc: 0a:f8:5c:12:03:a5:07:9a:5c:f7:30:6c:b1:9c:8e: 25:07:a9:20:de:39:dc:67:ea:7f:dd:12:c5:5b:a7: 7d:e5:b7:6d:a6:98:78:f3:70:a9:9d:15:63:36:b7: a7:80:01:86:00:a7:b5:32:85:07:2f:cb:3e:d1:87: 42:d5:a0:89:56:16:b4:19:f8:18:cd:10:24:3b:ba: d3:e4:1b:6b:ba:45:94:63:0d:b1:35:57:74:01:4e: f7:d8:02:21:1b:60:f4:a9:19:77:8c:75:9c:c3:bd: f6:b5:8a:55:6b:a0:3c:46:fc:9e:2e:4b:5c:27:f4: b9:6f:96:e3:9c:55:0c:16:fe:4d:6c:13:fc:7a:42: 8c:7e:ec:e0:99:88:b9:af:b9:64:37:f7:08:85:c9: 85:ae:14:6c:ea:2f:f6:a2:c9:e5:f2:cb:d0:ea:86: e1:72:b2:83:90:bf:98:2f:80:02:79:c6:8b:e9:45: 7b:02:ca:a4:7c:75:8f:5a:36:87:f2:6e:61:86:58: 50:4f:30:8f:10:f1:f0:7d:35:d7:73:79:8a:9f:5a: bc:4f:04:45:9a:97:00:77:df:0f:46:0a:a6:6f:21: d1:94:16:5c:c8:b4:58:b6:b7:c3:12:9c:90:e5:12: 90:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:05:91:73:E9:F0:3B:CB:93:20:52:6E:ED:7E:D2:93:8C:73:FE:43 X509v3 Authority Key Identifier: keyid:C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/93C20720C45311EBB305C97FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.223.96.0/19 113.10.64.0/18 117.20.128.0/18 122.11.128.0/17 171.207.0.0/16 182.19.128.0/17 182.55.0.0/16 183.90.0.0/17 203.116.0.0-203.118.63.255 IPv6: 2406:3000:4::/48 2406:3001::/32 Signature Algorithm: sha256WithRSAEncryption 92:3c:16:19:bb:fe:6b:ce:01:be:6f:80:8a:35:53:b5:4d:84: 2f:97:89:9d:75:c1:e8:7f:2e:6b:56:8b:d6:de:bf:3d:a5:21: 71:2a:44:7a:75:17:90:7e:18:59:d3:8d:67:8c:19:1c:3f:53: 0e:72:83:bd:76:4e:c8:5f:31:5a:15:e5:3f:cf:ac:c4:1e:5a: 18:4f:ab:c2:70:c7:45:4c:41:06:5e:35:bd:eb:ed:01:d9:33: 77:81:31:94:ed:af:36:93:b3:d9:f0:db:99:62:93:e0:62:9b: 8b:e4:d1:8a:e1:b4:3b:1a:06:d8:c8:c9:1f:7c:48:ec:2a:1f: ef:8b:26:a6:29:e8:62:b7:bf:c9:05:02:a8:47:c8:15:6c:e1: ee:84:2c:08:aa:e0:7e:c5:18:5a:ea:01:fe:6c:77:a3:57:b7: 13:99:12:19:8e:af:ab:62:e0:65:cc:ef:ed:43:2e:8c:ca:1c: ff:c0:1a:25:b1:20:59:5d:4f:81:58:c5:41:3d:62:6b:af:12: c2:7f:b3:2b:69:32:7d:d9:6b:39:e1:ce:f3:84:4d:4c:19:2d: 35:f0:a5:b9:ca:09:cc:d7:f6:f7:84:95:69:b6:9a:ad:a9:67: d3:e8:6d:cd:da:31:7d:16:87:d6:98:15:d9:77:cc:f6:40:43: be:f4:ee:1f -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgICE0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyREMxMTAvBgNVBAUTKEMyQjlGNUYzQzY4QzU3NjcyNzIzOUI5MkE5M0IzNjI5 N0QxQjE2NTMwHhcNMjUwODE0MTcyNjQ4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllMWM1OC04MjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8Ouqv97PKJo+FYXVLwK+FwSA6UHmlz3MGyxnI4lB6kg3jncZ+p/3RLFW6d9 5bdtpph483CpnRVjNrengAGGAKe1MoUHL8s+0YdC1aCJVha0GfgYzRAkO7rT5Btr ukWUYw2xNVd0AU732AIhG2D0qRl3jHWcw732tYpVa6A8RvyeLktcJ/S5b5bjnFUM Fv5NbBP8ekKMfuzgmYi5r7lkN/cIhcmFrhRs6i/2osnl8svQ6obhcrKDkL+YL4AC ecaL6UV7AsqkfHWPWjaH8m5hhlhQTzCPEPHwfTXXc3mKn1q8TwRFmpcAd98PRgqm byHRlBZcyLRYtrfDEpyQ5RKQpwIDAQABo4IC4jCCAt4wHQYDVR0OBBYEFEsFkXPp 8DvLkyBSbu1+0pOMc/5DMB8GA1UdIwQYMBaAFMK59fPGjFdnJyObkqk7Nil9GxZT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDJEQy8yRDUxQUY0MkZE M0UxMUU4ODhDNTM5NDRDNEY5QUUwMi93cm4xODhhTVYyY25JNXVTcVRzMktYMGJG bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dybjE4OGFNVjJjbkk1dVNxVHMyS1gwYkZsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAyREMvMkQ1MUFGNDJGRDNFMTFFODg4QzUzOTQ0QzRGOUFFMDIvOTNDMjA3MjBD NDUzMTFFQkIzMDVDOTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbAYIKwYBBQUHAQcBAf8E XTBbMEEEAgABMDsDBAVv32ADBAZxCkADBAZ1FIADBAd6C4ADAwCrzwMEB7YTgAMD ALY3AwQHt1oAMAsDAwLLdAMEBst2ADAWBAIAAjAQAwcAJAYwAAAEAwUAJAYwATAN BgkqhkiG9w0BAQsFAAOCAQEAkjwWGbv+a84Bvm+AijVTtU2EL5eJnXXB6H8ua1aL 1t6/PaUhcSpEenUXkH4YWdONZ4wZHD9TDnKDvXZOyF8xWhXlP8+sxB5aGE+rwnDH RUxBBl41vevtAdkzd4ExlO2vNpOz2fDbmWKT4GKbi+TRiuG0OxoG2MjJH3xI7Cof 74smpinoYre/yQUCqEfIFWzh7oQsCKrgfsUYWuoB/mx3o1e3E5kSGY6vq2LgZczv 7UMujMoc/8AaJbEgWV1PgVjFQT1ia68Swn+zK2kyfdlrOeHO84RNTBktNfClucoJ zNf294SVabaaraln0+htzdoxfRaH1pgV2XfM9kBDvvTuHw== -----END CERTIFICATE-----Generated at Sat Aug 23 17:11:05 2025 by rpki-client