$ rpki-client -vvf rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/93713A1442F311EDA8889068C4F9AE02.roa File: 93713A1442F311EDA8889068C4F9AE02.roa (raw, json) Hash identifier: kW/azHIo/hS4GG4jZMMnW9bGd24sdPe70lFUMVnm2rM= Subject key identifier: 9E:DD:8E:E5:87:BB:8D:D3:05:1F:72:BE:57:90:F9:22:8A:60:CF:58 Certificate issuer: /CN=A91551D7/serialNumber=113618B0D410682AC06A901D65BB9AC955ED89E0 Certificate serial: 0F19 Authority key identifier: 11:36:18:B0:D4:10:68:2A:C0:6A:90:1D:65:BB:9A:C9:55:ED:89:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ETYYsNQQaCrAapAdZbuayVXtieA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/93713A1442F311EDA8889068C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:43:01 +0000 ROA not before: Wed 14 Jan 2026 18:14:32 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134809 IP address blocks: 43.230.96.0/22 maxlen: 22 103.13.74.0/24 maxlen: 24 120.138.80.0/20 maxlen: 20 163.47.88.0/22 maxlen: 22 221.133.32.0/21 maxlen: 21 221.133.40.0/21 maxlen: 21 223.27.128.0/20 maxlen: 20 2001:df7:6400::/48 maxlen: 48 2402:9a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/ETYYsNQQaCrAapAdZbuayVXtieA.crl rsync://rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/ETYYsNQQaCrAapAdZbuayVXtieA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ETYYsNQQaCrAapAdZbuayVXtieA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:30:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3865 (0xf19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91551D7, serialNumber=113618B0D410682AC06A901D65BB9AC955ED89E0 Validity Not Before: Jan 14 18:14:32 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46c95-4c3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:15:0a:f5:04:5b:aa:9c:03:ee:1f:9f:f7:d1: 71:0f:8d:98:4d:d1:12:10:2f:ce:30:06:b9:b7:80: 76:50:75:ae:b3:11:2d:97:14:37:fd:0b:37:b2:a4: 81:15:52:06:24:c9:1f:1d:64:85:5d:90:31:d7:c0: 2f:97:ad:1d:36:44:eb:98:2e:86:9d:e7:7c:98:a7: 6e:7f:09:5e:cb:0f:79:97:a0:48:38:a6:d8:e3:b8: 3c:5e:b2:55:86:b4:8d:98:6f:9a:c9:34:f0:2b:7c: c4:e6:1b:19:d1:23:6b:92:9b:01:d2:b5:95:9d:33: db:6b:4c:be:14:dd:d0:c0:66:ee:d1:c9:b2:24:1d: e6:4b:b2:9c:3b:2f:7c:46:b0:9f:df:a5:d6:03:34: 12:b6:24:5a:26:0c:b6:b2:2b:3e:df:e1:df:5d:64: 20:c0:67:34:d6:56:f8:75:59:6e:a8:61:20:02:df: 45:72:d5:de:10:c5:4c:57:bd:34:79:4c:d4:44:91: 7a:12:7b:07:de:92:c0:ea:bb:f2:d8:19:53:f5:14: e3:0a:1a:a2:6a:fd:c6:4c:3c:45:86:67:d7:05:62: cf:e4:9f:fc:03:d0:6a:c4:43:68:82:0f:22:29:d8: 12:d0:02:e2:8f:7f:e1:ab:f5:f1:70:94:5a:6a:0a: 0d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:DD:8E:E5:87:BB:8D:D3:05:1F:72:BE:57:90:F9:22:8A:60:CF:58 X509v3 Authority Key Identifier: keyid:11:36:18:B0:D4:10:68:2A:C0:6A:90:1D:65:BB:9A:C9:55:ED:89:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/ETYYsNQQaCrAapAdZbuayVXtieA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ETYYsNQQaCrAapAdZbuayVXtieA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/93713A1442F311EDA8889068C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.96.0/22 103.13.74.0/24 120.138.80.0/20 163.47.88.0/22 221.133.32.0/20 223.27.128.0/20 IPv6: 2001:df7:6400::/48 2402:9a00::/32 Signature Algorithm: sha256WithRSAEncryption 60:fa:cb:dd:5c:fc:51:7e:43:45:89:ea:62:03:80:cb:74:3f: 5a:05:8c:62:ac:06:1e:1d:07:50:41:c5:ae:f5:9c:72:5f:08: dc:e8:e4:8d:3f:7a:27:98:ae:1e:1f:6c:c8:9d:1b:3e:74:31: 67:1e:c0:d9:6b:81:6a:6a:f1:69:2f:99:48:6a:48:45:b2:50: 06:88:cc:b9:58:90:37:0a:35:bb:c7:e0:12:5e:24:40:c8:12: cd:26:90:f4:cb:40:7f:90:89:56:e0:e5:ed:c7:b5:67:de:84: 34:34:b6:98:00:10:48:51:c9:25:e0:e8:62:e3:e5:cc:91:a1: 7a:d4:0d:fc:af:8f:b0:d3:c8:c0:e6:86:e4:99:9d:85:1c:91: f3:a8:26:30:54:89:d3:2d:60:5e:db:66:b4:26:5e:f6:61:2b: 4f:87:b6:cd:a8:90:47:a9:19:2c:0c:8b:d3:bf:8a:9e:55:19: ad:0b:cc:aa:55:ac:da:a2:cb:63:5f:e7:56:7d:8d:3c:a9:60: d7:53:a2:78:85:51:15:81:69:cb:e4:4a:81:dc:ba:75:f8:aa: 49:3d:7e:78:07:c7:a1:a0:b6:03:e4:da:7b:94:f6:75:00:a1: a8:f4:8d:ec:22:49:4f:56:e6:50:cc:c5:98:e2:38:8f:71:1c: df:2c:f3:4d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUxRDcxMTAvBgNVBAUTKDExMzYxOEIwRDQxMDY4MkFDMDZBOTAxRDY1QkI5QUM5 NTVFRDg5RTAwHhcNMjYwMTE0MTgxNDMyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmM5NS00YzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BUK9QRbqpwD7h+f99FxD42YTdESEC/OMAa5t4B2UHWusxEtlxQ3/Qs3sqSB FVIGJMkfHWSFXZAx18Avl60dNkTrmC6Gned8mKdufwleyw95l6BIOKbY47g8XrJV hrSNmG+ayTTwK3zE5hsZ0SNrkpsB0rWVnTPba0y+FN3QwGbu0cmyJB3mS7KcOy98 RrCf36XWAzQStiRaJgy2sis+3+HfXWQgwGc01lb4dVluqGEgAt9FctXeEMVMV700 eUzURJF6EnsH3pLA6rvy2BlT9RTjChqiav3GTDxFhmfXBWLP5J/8A9BqxENogg8i KdgS0ALij3/hq/XxcJRaagoNVQIDAQABo4ICljCCApIwHQYDVR0OBBYEFJ7djuWH u43TBR9yvleQ+SKKYM9YMB8GA1UdIwQYMBaAFBE2GLDUEGgqwGqQHWW7mslV7Yng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTFENy82OEYwOTI5MjlF MkYxMUU5QjJFNTI4MEFDNEY5QUUwMi9FVFlZc05RUWFDckFhcEFkWmJ1YXlWWHRp ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VUWVlzTlFRYUNyQWFwQWRaYnVheVZYdGllQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTUxRDcvNjhGMDkyOTI5RTJGMTFFOUIyRTUyODBBQzRGOUFFMDIvOTM3MTNBMTQ0 MkYzMTFFREE4ODg5MDY4QzRGOUFFMDIucm9hMFUGCCsGAQUFBwEHAQH/BEYwRDAq BAIAATAkAwQCK+ZgAwQAZw1KAwQEeIpQAwQCoy9YAwQE3YUgAwQE3xuAMBYEAgAC MBADBwAgAQ33ZAADBQAkApoAMA0GCSqGSIb3DQEBCwUAA4IBAQBg+svdXPxRfkNF iepiA4DLdD9aBYxirAYeHQdQQcWu9ZxyXwjc6OSNP3onmK4eH2zInRs+dDFnHsDZ a4FqavFpL5lIakhFslAGiMy5WJA3CjW7x+ASXiRAyBLNJpD0y0B/kIlW4OXtx7Vn 3oQ0NLaYABBIUckl4Ohi4+XMkaF61A38r4+w08jA5obkmZ2FHJHzqCYwVInTLWBe 22a0Jl72YStPh7bNqJBHqRksDIvTv4qeVRmtC8yqVazaostjX+dWfY08qWDXU6J4 hVEVgWnL5EqB3Lp1+KpJPX54B8ehoLYD5Np7lPZ1AKGo9I3sIklPVuZQzMWY4jiP cRzfLPNN -----END CERTIFICATE-----Generated at Thu Mar 26 17:48:50 2026 by rpki-client