$ rpki-client -vvf rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/48E4C546941F11EE8517B26FC4F9AE02.roa File: 48E4C546941F11EE8517B26FC4F9AE02.roa (raw, json) Hash identifier: u9rGnfekIAlkNgYfnuzbJex52uZyoGapNCA6gJzdd2o= Subject key identifier: 50:D5:20:8C:88:EB:1B:94:69:16:E2:54:21:57:F3:B8:C2:F1:AC:E3 Certificate issuer: /CN=A9147C4C/serialNumber=2A9AEF6BC129914CA0B9105C9271DEAF39DBC866 Certificate serial: 08E0 Authority key identifier: 2A:9A:EF:6B:C1:29:91:4C:A0:B9:10:5C:92:71:DE:AF:39:DB:C8:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/48E4C546941F11EE8517B26FC4F9AE02.roa Signing time: Sat 12 Jul 2025 21:00:53 +0000 ROA not before: Sat 12 Jul 2025 21:00:53 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 19905 IP address blocks: 103.66.180.0/24 maxlen: 24 103.66.181.0/24 maxlen: 24 103.66.182.0/24 maxlen: 24 103.66.183.0/24 maxlen: 24 103.244.112.0/24 maxlen: 24 103.244.113.0/24 maxlen: 24 103.244.114.0/24 maxlen: 24 103.244.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.crl rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:42:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147C4C, serialNumber=2A9AEF6BC129914CA0B9105C9271DEAF39DBC866 Validity Not Before: Jul 12 21:00:53 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6872cd05-27e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ee:93:86:79:51:cb:47:08:65:12:a2:12:cb: 74:2c:76:1f:78:f6:01:e1:b4:ee:31:7a:e5:6c:d6: bc:79:6b:4c:a7:c7:fe:ce:a4:53:be:28:00:13:01: 62:e1:ab:2a:ee:ce:74:65:be:a2:77:a2:63:33:12: b5:3a:0b:e1:19:2d:4e:65:5d:76:f3:9b:4f:62:13: 5f:01:bc:7e:22:01:36:7f:3c:e1:f3:f4:2e:fb:3a: ab:1e:51:76:0c:0c:80:ee:09:67:25:d1:60:c7:68: 94:8c:39:75:44:56:70:c5:29:12:f4:16:c5:b6:de: a9:38:c0:54:9d:9e:31:8b:8f:2a:17:0c:a4:23:d2: 35:32:99:1f:a0:28:cb:33:4b:6d:c2:94:25:18:59: 0c:a0:fb:c8:a8:2b:54:2b:4e:2f:ff:b3:86:32:ac: a1:38:5e:7d:e2:06:41:04:31:f0:d8:20:a8:72:b2: fb:68:ae:70:3d:7e:7e:f6:d6:78:3c:fa:14:75:9d: b5:53:29:e5:28:67:72:a3:1c:7f:bd:b6:cc:f7:89: ef:de:be:06:4f:23:f7:e1:c7:92:5b:34:b7:10:29: 9a:d9:ff:7d:95:34:4b:55:05:53:ee:85:90:3a:ec: b8:08:77:6f:56:a0:83:20:f3:ec:83:ab:86:de:d7: ca:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D5:20:8C:88:EB:1B:94:69:16:E2:54:21:57:F3:B8:C2:F1:AC:E3 X509v3 Authority Key Identifier: keyid:2A:9A:EF:6B:C1:29:91:4C:A0:B9:10:5C:92:71:DE:AF:39:DB:C8:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/48E4C546941F11EE8517B26FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.180.0/22 103.244.112.0/22 Signature Algorithm: sha256WithRSAEncryption a0:58:48:8c:58:f7:ba:92:43:a2:af:2d:59:bb:03:ce:74:1a: 55:b8:99:48:97:dc:75:a5:c9:1a:e1:50:c9:e2:b0:f4:c0:4b: d8:63:a0:b3:aa:83:5e:15:ab:65:8d:55:f3:b0:60:60:fa:ab: a0:ab:e7:16:c1:97:7f:d4:eb:fd:c2:d9:e7:43:6b:dd:50:9a: 8b:46:d0:4f:e4:94:b3:ff:7f:47:8f:56:db:53:96:59:cc:88: 71:ba:69:6e:1b:56:f7:09:89:f5:b5:ce:f0:5b:3c:27:44:e1: dc:73:9d:49:87:b3:8a:73:fa:71:36:25:d9:ae:f0:4d:31:72: ac:c1:69:15:79:80:9c:05:0f:9b:5f:b3:ab:08:41:f2:72:04: fd:6a:ea:e7:34:e1:c1:e6:eb:1a:24:1f:5d:5b:47:ea:2b:43: 2d:d3:5b:23:3a:e4:25:ad:7f:b8:2c:fb:4c:bb:a1:bd:23:5b: 42:76:ac:81:33:14:69:09:cb:26:1b:87:ab:dc:df:3b:5a:f0: d6:32:7c:85:b3:f6:5f:32:e2:b3:2c:e4:df:d6:5a:07:65:be: 44:30:ae:c0:8b:65:36:49:7a:2c:0c:c0:76:ee:56:1d:18:85: 93:78:57:64:56:1a:67:7c:48:3f:f3:25:1e:7a:ee:16:55:12: 9f:12:48:77 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDNEMxMTAvBgNVBAUTKDJBOUFFRjZCQzEyOTkxNENBMEI5MTA1QzkyNzFERUFG MzlEQkM4NjYwHhcNMjUwNzEyMjEwMDUzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcyY2QwNS0yN2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+6ThnlRy0cIZRKiEst0LHYfePYB4bTuMXrlbNa8eWtMp8f+zqRTvigAEwFi 4asq7s50Zb6id6JjMxK1OgvhGS1OZV1285tPYhNfAbx+IgE2fzzh8/Qu+zqrHlF2 DAyA7glnJdFgx2iUjDl1RFZwxSkS9BbFtt6pOMBUnZ4xi48qFwykI9I1MpkfoCjL M0ttwpQlGFkMoPvIqCtUK04v/7OGMqyhOF594gZBBDHw2CCocrL7aK5wPX5+9tZ4 PPoUdZ21UynlKGdyoxx/vbbM94nv3r4GTyP34ceSWzS3ECma2f99lTRLVQVT7oWQ Ouy4CHdvVqCDIPPsg6uG3tfKgQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFDVIIyI 6xuUaRbiVCFX87jC8azjMB8GA1UdIwQYMBaAFCqa72vBKZFMoLkQXJJx3q8528hm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0M0Qy9DQ0IyMDM1NEI5 RTIxMUVBQkM1NTRCODNDNEY5QUUwMi9LcHJ2YThFcGtVeWd1UkJja25IZXJ6bmJ5 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twcnZhOEVwa1V5Z3VSQmNrbkhlcnpuYnlHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdDNEMvQ0NCMjAzNTRCOUUyMTFFQUJDNTU0QjgzQzRGOUFFMDIvNDhFNEM1NDY5 NDFGMTFFRTg1MTdCMjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnQrQDBAJn9HAwDQYJKoZIhvcNAQELBQADggEBAKBYSIxY 97qSQ6KvLVm7A850GlW4mUiX3HWlyRrhUMnisPTAS9hjoLOqg14Vq2WNVfOwYGD6 q6Cr5xbBl3/U6/3C2edDa91QmotG0E/klLP/f0ePVttTllnMiHG6aW4bVvcJifW1 zvBbPCdE4dxznUmHs4pz+nE2Jdmu8E0xcqzBaRV5gJwFD5tfs6sIQfJyBP1q6uc0 4cHm6xokH11bR+orQy3TWyM65CWtf7gs+0y7ob0jW0J2rIEzFGkJyyYbh6vc3zta 8NYyfIWz9l8y4rMs5N/WWgdlvkQwrsCLZTZJeiwMwHbuVh0YhZN4V2RWGmd8SD/z JR567hZVEp8SSHc= -----END CERTIFICATE-----Generated at Sun Jul 20 09:45:08 2025 by rpki-client