$ rpki-client -vvf rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/4E6B4E24458E11EA84E01A0FC4F9AE02.roa File: 4E6B4E24458E11EA84E01A0FC4F9AE02.roa (raw, json) Hash identifier: QbUyZORfUsAuIPfZUHLWRtdmTwbA8QqQPT+t+aGRe2I= Subject key identifier: 34:16:DF:F2:4B:A6:18:B9:79:6C:1F:63:35:19:05:07:F5:C0:94:61 Certificate issuer: /CN=A9189132/serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Certificate serial: 0AE9 Authority key identifier: CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/4E6B4E24458E11EA84E01A0FC4F9AE02.roa Signing time: Tue 08 Apr 2025 19:29:15 +0000 ROA not before: Tue 08 Apr 2025 19:29:15 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 140069 IP address blocks: 103.148.12.0/23 maxlen: 23 103.148.12.0/24 maxlen: 24 103.148.13.0/24 maxlen: 24 2001:df1:adc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 19:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2793 (0xae9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189132 Validity Not Before: Apr 8 19:29:15 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67f5790b-1046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:19:77:31:6a:ef:a8:74:b4:b3:1b:9b:53:ba: 35:ac:af:31:42:12:29:89:14:5c:28:3a:2a:2e:7d: 29:94:fc:72:0b:91:82:5f:19:e8:af:90:0d:5c:6f: 6a:04:e0:75:a8:cf:69:44:10:46:c7:2e:64:86:bf: e2:92:a4:43:96:44:aa:06:4d:1e:e2:5b:77:9b:8c: 19:cb:dc:d5:07:17:99:27:f3:23:38:3d:ca:34:6b: 45:eb:a8:c4:13:3d:c9:14:ab:2c:32:eb:8e:3e:93: 57:5c:17:bd:bd:98:54:8e:55:41:b7:0d:44:78:50: ba:ee:79:4b:44:60:52:1c:43:a4:84:44:05:f0:19: d3:d0:db:70:1e:51:95:de:76:a9:ce:0f:a5:5d:51: 11:f4:ff:bd:bb:b8:3a:e9:3b:3e:ac:1e:d8:84:7e: 01:8e:9f:90:8e:99:33:a9:d6:d9:ac:0d:e6:47:11: 18:ef:b2:0f:c6:a7:27:15:b1:63:89:50:d8:d5:f9: aa:86:53:23:6f:0d:7a:92:c8:a3:9c:ca:97:77:73: 54:4d:9f:ba:ac:db:1d:42:1a:6a:f6:30:3f:fb:3e: 84:11:0f:69:32:ba:3f:f5:03:b9:88:cf:98:75:09: 66:e2:a3:8a:b4:9a:03:ee:4d:aa:b7:76:35:17:13: 34:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:16:DF:F2:4B:A6:18:B9:79:6C:1F:63:35:19:05:07:F5:C0:94:61 X509v3 Authority Key Identifier: keyid:CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/4E6B4E24458E11EA84E01A0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.12.0/23 IPv6: 2001:df1:adc0::/48 Signature Algorithm: sha256WithRSAEncryption af:f5:77:ff:46:8a:c6:8c:e2:45:39:da:0b:e7:b4:95:3a:22: 15:6f:b8:07:e9:22:72:55:9f:3e:01:ac:4c:c3:07:6e:4c:c5: d0:f2:57:90:1b:0f:e5:a5:95:a5:26:e2:9e:f7:9e:e7:1c:2c: 5d:92:d8:0a:be:bc:72:17:78:15:f2:f8:c2:b5:a8:54:48:fb: 8e:36:17:3a:03:54:93:5f:02:33:ad:12:40:61:e4:65:cb:65: 52:c8:e7:2b:9e:a1:85:bb:82:9f:af:ea:f6:90:d4:75:af:f3: b7:b9:bc:78:0c:71:4d:7d:fb:c3:1b:6e:ee:00:48:44:a2:81: 57:c7:20:ac:71:f2:69:5c:cf:e4:e7:e1:c6:01:e4:c9:3b:ef: 50:51:fa:16:f3:1a:80:d6:aa:34:63:7f:71:e7:f8:f6:ba:41: ee:79:0e:01:6e:73:52:56:1d:16:00:c2:ad:78:e8:a0:e1:4b: 3c:71:e1:2e:47:1f:2e:f8:36:34:f6:df:23:3d:31:52:ea:bd: 50:d8:39:b4:dd:2e:e8:2c:b4:5e:72:ce:7f:8c:36:55:ea:ef: 20:9b:48:19:22:44:50:23:73:8b:89:9a:e4:12:b0:ff:6a:92: e7:b0:b9:6e:47:bc:2f:7b:42:85:30:b1:d5:75:d9:29:73:a0: c6:f9:15:5f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMzIxMTAvBgNVBAUTKENFRDU5NTFDMEUyRkMyRjY2MUZFRUYxQzM3MUI2N0Iy M0YxQzUyREYwHhcNMjUwNDA4MTkyOTE1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NzkwYi0xMDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Bl3MWrvqHS0sxubU7o1rK8xQhIpiRRcKDoqLn0plPxyC5GCXxnor5ANXG9q BOB1qM9pRBBGxy5khr/ikqRDlkSqBk0e4lt3m4wZy9zVBxeZJ/MjOD3KNGtF66jE Ez3JFKssMuuOPpNXXBe9vZhUjlVBtw1EeFC67nlLRGBSHEOkhEQF8BnT0NtwHlGV 3napzg+lXVER9P+9u7g66Ts+rB7YhH4Bjp+QjpkzqdbZrA3mRxEY77IPxqcnFbFj iVDY1fmqhlMjbw16ksijnMqXd3NUTZ+6rNsdQhpq9jA/+z6EEQ9pMro/9QO5iM+Y dQlm4qOKtJoD7k2qt3Y1FxM05QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDQW3/JL phi5eWwfYzUZBQf1wJRhMB8GA1UdIwQYMBaAFM7VlRwOL8L2Yf7vHDcbZ7I/HFLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEzMi9EMjY0QTJBNDQ1 OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2WmhfdThjTnh0bnNqOGNV dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p0V1ZIQTR2d3ZaaF91OGNOeHRuc2o4Y1V0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkxMzIvRDI2NEEyQTQ0NThDMTFFQThFNkY2RDBDQzRGOUFFMDIvNEU2QjRFMjQ0 NThFMTFFQTg0RTAxQTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlAwwDwQCAAIwCQMHACABDfGtwDANBgkqhkiG9w0BAQsF AAOCAQEAr/V3/0aKxoziRTnaC+e0lToiFW+4B+kiclWfPgGsTMMHbkzF0PJXkBsP 5aWVpSbinvee5xwsXZLYCr68chd4FfL4wrWoVEj7jjYXOgNUk18CM60SQGHkZctl UsjnK56hhbuCn6/q9pDUda/zt7m8eAxxTX37wxtu7gBIRKKBV8cgrHHyaVzP5Ofh xgHkyTvvUFH6FvMagNaqNGN/cef49rpB7nkOAW5zUlYdFgDCrXjooOFLPHHhLkcf Lvg2NPbfIz0xUuq9UNg5tN0u6Cy0XnLOf4w2VervIJtIGSJEUCNzi4ma5BKw/2qS 57C5bke8L3tChTCx1XXZKXOgxvkVXw== -----END CERTIFICATE-----Generated at Sat Apr 12 10:38:50 2025 by rpki-client