$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa File: 03C522BA8CF211ED8699F014C4F9AE02.roa (raw, json) Hash identifier: K0+ynt0M9kKJ3bLbS3OrAAjvrKtkvccz1wgSBWyKmCQ= Subject key identifier: 69:A5:6A:27:F9:A1:7E:CB:40:A0:B7:39:55:74:A8:7C:B0:15:8C:9D Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 342E Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa Signing time: Tue 20 Aug 2024 15:31:13 +0000 ROA not before: Tue 20 Aug 2024 15:31:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 148000 IP address blocks: 36.50.36.0/24 maxlen: 24 36.50.50.0/24 maxlen: 24 2409::/40 maxlen: 40 2409::/48 maxlen: 48 2409:1::/48 maxlen: 48 2409:e:eb::/48 maxlen: 48 2409:e:ed::/48 maxlen: 48 240a:e000::/20 maxlen: 20 240a:eabc::/32 maxlen: 32 240a:eabc:abcd::/48 maxlen: 48 240a:eabc:d00d::/48 maxlen: 48 240a:eff0::/32 maxlen: 32 240a:eff1::/32 maxlen: 32 240a:eff8::/32 maxlen: 32 240a:eff9::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13358 (0x342e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Aug 20 15:31:13 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66c4b6c1-885f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:05:d0:fc:04:54:82:bb:4f:56:76:44:fd:dd: bf:6b:11:0f:03:24:53:c6:20:9b:9c:2e:c4:f9:4e: 0b:90:01:ab:f8:a1:4a:f1:ac:b8:78:33:17:b1:81: 8e:96:8a:5b:fe:4e:7c:9c:b2:bc:b4:bd:5b:06:0f: 13:79:50:06:14:f1:25:af:5c:d0:4a:ef:c4:b1:d9: be:0f:70:71:67:58:06:7c:cd:71:53:be:58:b5:a7: 20:e1:59:0b:6d:9a:6d:b4:38:c8:de:b9:08:00:3c: e1:4e:7b:f1:03:fe:83:fd:8a:0f:69:8f:8d:7f:45: 81:94:c2:0f:78:d2:9b:24:46:d7:96:b6:8f:c7:82: 8d:bc:97:56:cd:74:2d:bf:b9:93:bf:02:d4:e0:30: c7:b1:92:ab:44:a8:89:0f:13:ed:85:8b:32:13:1f: a5:ee:19:d9:9b:25:ab:cc:d3:5f:f7:0f:e7:62:ab: db:66:bd:ab:80:b0:79:ea:db:22:b4:46:70:60:e3: 79:a5:22:f5:a4:b0:a7:cf:a2:82:d3:b9:0a:f2:e6: b2:48:1d:1a:c5:7c:3e:0e:70:8e:ae:bf:00:e7:7b: 88:87:1c:5f:52:d5:84:96:f3:80:f1:f0:1c:01:f3: bd:1c:c8:50:8a:57:05:9b:23:10:95:24:38:99:3a: 35:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A5:6A:27:F9:A1:7E:CB:40:A0:B7:39:55:74:A8:7C:B0:15:8C:9D X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.36.0/24 36.50.50.0/24 IPv6: 2409::/40 2409:1::/48 2409:e:eb::/48 2409:e:ed::/48 240a:e000::/20 Signature Algorithm: sha256WithRSAEncryption 97:63:7d:88:85:42:f8:7a:13:9a:45:a6:8a:43:0c:5d:74:3c: ac:5d:00:47:74:b9:10:2d:da:b4:72:e5:7c:84:17:ac:33:50: 71:52:c0:38:99:91:23:94:19:5b:f5:2d:25:f9:32:6f:b2:4d: 0a:3f:21:2a:eb:5c:6d:6d:43:f3:14:b3:59:2f:cd:19:6d:b4: 4f:44:a4:4a:fd:21:6a:15:b8:f4:24:88:fa:d0:d9:eb:14:dd: 79:44:db:39:29:d0:51:71:20:46:bb:98:33:d5:9a:37:05:e9: 15:25:83:97:41:ad:e2:d9:41:30:09:e4:52:7d:59:1d:be:86: 7b:15:0f:34:5c:bd:05:36:b1:98:b7:d7:c9:dd:09:63:d4:33: 41:38:bf:cd:1c:c5:a2:1d:c8:76:d8:72:b6:1a:ca:ad:dd:57: cd:8e:59:a0:2a:ab:46:29:e8:16:ff:26:44:06:1e:8f:04:03: 8f:ae:05:a6:82:7e:eb:29:c3:f6:a6:70:b6:54:3c:07:d0:f3: 4f:e9:6a:2b:d9:33:da:54:5e:4d:61:24:ac:cf:c3:48:9e:13: 73:64:52:72:b4:8a:58:3b:10:e5:6d:a5:3b:1c:73:b6:6d:07: 3d:5d:fb:c9:5f:5b:c2:51:46:bc:8f:7d:72:9b:22:ad:d2:6f: ab:a0:4e:2a -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICNC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjQwODIwMTUzMTEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YjZjMS04ODVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAXQ/ARUgrtPVnZE/d2/axEPAyRTxiCbnC7E+U4LkAGr+KFK8ay4eDMXsYGO lopb/k58nLK8tL1bBg8TeVAGFPElr1zQSu/Esdm+D3BxZ1gGfM1xU75Ytacg4VkL bZpttDjI3rkIADzhTnvxA/6D/YoPaY+Nf0WBlMIPeNKbJEbXlraPx4KNvJdWzXQt v7mTvwLU4DDHsZKrRKiJDxPthYsyEx+l7hnZmyWrzNNf9w/nYqvbZr2rgLB56tsi tEZwYON5pSL1pLCnz6KC07kK8uaySB0axXw+DnCOrr8A53uIhxxfUtWElvOA8fAc AfO9HMhQilcFmyMQlSQ4mTo1iwIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFGmlaif5 oX7LQKC3OVV0qHywFYydMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvMDNDNTIyQkE4 Q0YyMTFFRDg2OTlGMDE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMBIEAgABMAwDBAAkMiQDBAAkMjIwLwQCAAIwKQMGACQJAAAAAwcAJAkAAQAA AwcAJAkADgDrAwcAJAkADgDtAwQEJArgMA0GCSqGSIb3DQEBCwUAA4IBAQCXY32I hUL4ehOaRaaKQwxddDysXQBHdLkQLdq0cuV8hBesM1BxUsA4mZEjlBlb9S0l+TJv sk0KPyEq61xtbUPzFLNZL80ZbbRPRKRK/SFqFbj0JIj60NnrFN15RNs5KdBRcSBG u5gz1Zo3BekVJYOXQa3i2UEwCeRSfVkdvoZ7FQ80XL0FNrGYt9fJ3Qlj1DNBOL/N HMWiHch22HK2Gsqt3VfNjlmgKqtGKegW/yZEBh6PBAOPrgWmgn7rKcP2pnC2VDwH 0PNP6Wor2TPaVF5NYSSsz8NInhNzZFJytIpYOxDlbaU7HHO2bQc9XfvJX1vCUUa8 j31ymyKt0m+roE4q -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:19 2024 by rpki-client on console-ams.rpki-client.org