$ rpki-client -vvf rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/8E49B7320E8C11EDAB2A8680C4F9AE02.roa File: 8E49B7320E8C11EDAB2A8680C4F9AE02.roa (raw, json) Hash identifier: Ga7YwAWhVqDOExdvtybYiuoMlOw/9ken4EZnlj+WkpY= Subject key identifier: 4F:E1:DD:2C:AF:AA:96:A9:51:FB:B6:B5:D0:54:7B:D0:46:A7:EE:94 Certificate issuer: /CN=A9166638/serialNumber=5A6CA86E40FB6C268E8FE651FF32ECE44D857D03 Certificate serial: 0A48 Authority key identifier: 5A:6C:A8:6E:40:FB:6C:26:8E:8F:E6:51:FF:32:EC:E4:4D:85:7D:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WmyobkD7bCaOj-ZR_zLs5E2FfQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/8E49B7320E8C11EDAB2A8680C4F9AE02.roa Signing time: Tue 16 Jul 2024 20:17:53 +0000 ROA not before: Tue 16 Jul 2024 20:17:52 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140540 IP address blocks: 103.148.32.0/24 maxlen: 24 103.148.32.0/25 maxlen: 25 103.148.32.128/27 maxlen: 27 103.148.32.160/27 maxlen: 27 103.148.32.192/27 maxlen: 27 103.148.32.224/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.crl rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WmyobkD7bCaOj-ZR_zLs5E2FfQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:21:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2632 (0xa48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166638/serialNumber=5A6CA86E40FB6C268E8FE651FF32ECE44D857D03 Validity Not Before: Jul 16 20:17:52 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6696d570-149d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:45:c2:81:57:e7:b0:5a:24:9b:e1:f0:d1:b6: 6d:9d:d9:c4:8b:20:dd:90:c1:ba:de:46:38:bb:ff: 5f:50:df:ae:35:c4:c7:36:60:e0:a3:f3:ba:a3:b4: 6e:37:7c:f4:86:27:af:20:5b:c7:e8:d9:f0:69:e5: 1a:46:cf:26:d1:24:5a:b8:8e:84:01:2f:03:b9:b7: 52:5f:4a:8d:d3:21:cf:ea:0f:97:7a:98:2a:38:ef: 4f:04:c5:07:a9:e0:52:03:03:82:bf:df:d5:6e:8d: 40:0b:fb:b0:bd:79:67:ad:5c:f1:92:f8:84:94:ec: 34:53:c3:96:59:3f:2a:0f:bb:5c:4f:29:35:1c:54: 01:53:cc:e0:b5:b2:fa:d0:79:66:0e:4a:32:22:4a: 37:a7:2e:e8:70:98:33:eb:6d:fd:0e:fd:c0:10:65: 85:71:23:27:4a:6e:cc:9f:26:76:79:c0:26:db:0c: a2:a2:00:19:e8:87:dd:bb:e9:b8:94:2a:42:80:4b: 30:8b:4e:8d:78:88:95:3a:bb:02:c3:ff:0c:c4:b5: 31:4e:ca:39:12:b0:95:a9:00:f4:34:5c:e5:b0:e7: e4:c4:1d:33:d8:5e:4a:8f:24:cf:66:75:aa:61:87: 99:39:ca:f7:d2:a0:f1:73:c9:b0:e6:4e:8e:81:e1: b0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:E1:DD:2C:AF:AA:96:A9:51:FB:B6:B5:D0:54:7B:D0:46:A7:EE:94 X509v3 Authority Key Identifier: keyid:5A:6C:A8:6E:40:FB:6C:26:8E:8F:E6:51:FF:32:EC:E4:4D:85:7D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WmyobkD7bCaOj-ZR_zLs5E2FfQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/8E49B7320E8C11EDAB2A8680C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.32.0/24 Signature Algorithm: sha256WithRSAEncryption 84:16:ec:4c:4a:4a:83:7a:e2:f7:a3:59:46:0b:48:e9:5a:da: 6d:d9:43:7c:28:95:1c:43:f6:80:4a:c4:eb:c7:44:02:69:63: fd:cc:3a:14:c8:10:0c:ed:67:9f:6e:5c:f9:09:8b:c3:4c:88: ab:72:46:55:39:dd:1e:3d:38:92:0d:f7:24:8b:de:a3:ae:97: 58:02:fe:52:f2:e4:02:8c:a3:ce:e9:28:57:bd:d9:10:63:6b: fe:ba:a5:5b:98:42:17:8a:db:b0:e6:97:d9:77:69:a7:4b:57: 38:13:12:2f:ca:84:91:dc:7d:c6:6f:0c:0a:78:fa:e3:30:7a: 3d:56:2c:1a:95:b0:96:4a:9a:32:78:49:55:6d:c1:53:f7:4e: 38:1e:38:c8:fb:42:da:36:e1:17:45:3f:ea:26:04:3d:8f:24: a7:92:8a:ab:71:68:8b:06:c0:f6:c9:b1:72:aa:5d:e3:4a:84: 16:93:78:fb:24:8d:32:5d:26:43:2e:44:22:3f:15:bf:fb:d4: ca:ac:92:3f:a4:06:20:eb:77:21:c9:0c:99:59:a4:e1:50:ba: 58:67:7e:e1:5e:55:34:ec:0d:85:65:11:d3:1a:da:10:a3:6e: fa:80:f3:fb:9a:8c:89:89:0b:e7:45:92:cf:ea:fe:a7:83:c4: 8f:20:19:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjY2MzgxMTAvBgNVBAUTKDVBNkNBODZFNDBGQjZDMjY4RThGRTY1MUZGMzJFQ0U0 NEQ4NTdEMDMwHhcNMjQwNzE2MjAxNzUyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ZDU3MC0xNDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA60XCgVfnsFokm+Hw0bZtndnEiyDdkMG63kY4u/9fUN+uNcTHNmDgo/O6o7Ru N3z0hievIFvH6NnwaeUaRs8m0SRauI6EAS8DubdSX0qN0yHP6g+XepgqOO9PBMUH qeBSAwOCv9/Vbo1AC/uwvXlnrVzxkviElOw0U8OWWT8qD7tcTyk1HFQBU8zgtbL6 0HlmDkoyIko3py7ocJgz6239Dv3AEGWFcSMnSm7MnyZ2ecAm2wyiogAZ6Ifdu+m4 lCpCgEswi06NeIiVOrsCw/8MxLUxTso5ErCVqQD0NFzlsOfkxB0z2F5KjyTPZnWq YYeZOcr30qDxc8mw5k6OgeGwqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE/h3Syv qpapUfu2tdBUe9BGp+6UMB8GA1UdIwQYMBaAFFpsqG5A+2wmjo/mUf8y7ORNhX0D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjYzOC80MUVGQzUxRTQ4 Q0ExMUVBQTIxNEFGNENDNEY5QUUwMi9XbXlvYmtEN2JDYU9qLVpSX3pMczVFMkZm UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dteW9ia0Q3YkNhT2otWlJfekxzNUUyRmZRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjY2MzgvNDFFRkM1MUU0OENBMTFFQUEyMTRBRjRDQzRGOUFFMDIvOEU0OUI3MzIw RThDMTFFREFCMkE4NjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlCAwDQYJKoZIhvcNAQELBQADggEBAIQW7ExKSoN64vej WUYLSOla2m3ZQ3wolRxD9oBKxOvHRAJpY/3MOhTIEAztZ59uXPkJi8NMiKtyRlU5 3R49OJIN9ySL3qOul1gC/lLy5AKMo87pKFe92RBja/66pVuYQheK27Dml9l3aadL VzgTEi/KhJHcfcZvDAp4+uMwej1WLBqVsJZKmjJ4SVVtwVP3TjgeOMj7Qto24RdF P+omBD2PJKeSiqtxaIsGwPbJsXKqXeNKhBaTePskjTJdJkMuRCI/Fb/71Mqskj+k BiDrdyHJDJlZpOFQulhnfuFeVTTsDYVlEdMa2hCjbvqA8/uajImJC+dFks/q/qeD xI8gGbs= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:29 2024 by rpki-client on console-ams.rpki-client.org