$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5E8B/DEC3BD7C5AD311EEA92F9320C4F9AE02/B50B7BCC5E3011EE9286D63FC4F9AE02.roa File: B50B7BCC5E3011EE9286D63FC4F9AE02.roa (raw, json) Hash identifier: uvAs62LPiFCV99tv3ysqHmwlOBSG23p8Uu9ahQxFuu8= Subject key identifier: 3B:AA:EF:0A:47:87:C6:35:C6:7B:38:DD:5D:12:9E:72:FB:2A:86:3B Certificate issuer: /CN=A91E5E8B/serialNumber=BD9D66877D866E7C904156BE08CB4371AAE001BD Certificate serial: 6C Authority key identifier: BD:9D:66:87:7D:86:6E:7C:90:41:56:BE:08:CB:43:71:AA:E0:01:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vZ1mh32GbnyQQVa-CMtDcargAb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5E8B/DEC3BD7C5AD311EEA92F9320C4F9AE02/B50B7BCC5E3011EE9286D63FC4F9AE02.roa Signing time: Fri 22 Mar 2024 17:41:55 +0000 ROA not before: Fri 22 Mar 2024 17:41:55 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 140632 IP address blocks: 103.203.236.0/23 maxlen: 23 103.203.236.0/24 maxlen: 24 103.203.237.0/24 maxlen: 24 2401:8c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5E8B/DEC3BD7C5AD311EEA92F9320C4F9AE02/vZ1mh32GbnyQQVa-CMtDcargAb0.crl rsync://rpki.apnic.net/member_repository/A91E5E8B/DEC3BD7C5AD311EEA92F9320C4F9AE02/vZ1mh32GbnyQQVa-CMtDcargAb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vZ1mh32GbnyQQVa-CMtDcargAb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5E8B/serialNumber=BD9D66877D866E7C904156BE08CB4371AAE001BD Validity Not Before: Mar 22 17:41:55 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65fdc2e3-ac81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:df:67:96:f7:db:61:58:34:be:d9:46:e1:1c: b5:27:8e:f1:56:6b:10:95:1d:f6:bf:08:2e:a8:eb: c4:43:a8:38:7d:89:2d:4b:a4:51:65:bc:05:ea:64: 41:48:91:23:e0:a6:71:eb:5f:91:50:3e:f0:89:7d: 1f:e6:81:10:14:33:c6:3b:15:3b:9b:87:66:7c:87: cc:57:d8:da:2d:12:c3:ac:c6:1a:f3:72:79:a8:3a: 8b:6d:f2:c3:80:e0:05:5a:db:2b:ca:40:ea:fd:f1: b8:c4:60:d9:fc:fe:48:ba:e2:52:2d:4b:b3:c4:61: a0:5b:b3:43:13:2b:c1:7f:fd:a9:e2:c7:28:32:bc: 80:0b:f4:07:cf:c1:39:ef:04:7a:4f:52:2c:ac:1d: 74:67:32:51:bd:86:fb:58:ab:0c:8e:ce:0c:8b:c5: 80:91:dc:c2:19:df:b6:1a:9c:73:77:6a:c4:a8:4f: 54:fb:5b:ad:da:1c:48:61:6a:cc:80:41:82:49:8d: a2:e1:12:a6:79:9b:e3:fc:4f:b3:e0:5c:2a:d3:0c: 5d:87:40:71:12:54:52:cb:80:13:97:9c:1d:70:b2: 78:29:e6:f0:fb:33:d1:bc:f9:44:44:b9:2e:43:b1: 9b:b2:79:ea:28:19:fa:10:62:33:41:7c:4c:86:db: 4a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:AA:EF:0A:47:87:C6:35:C6:7B:38:DD:5D:12:9E:72:FB:2A:86:3B X509v3 Authority Key Identifier: keyid:BD:9D:66:87:7D:86:6E:7C:90:41:56:BE:08:CB:43:71:AA:E0:01:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5E8B/DEC3BD7C5AD311EEA92F9320C4F9AE02/vZ1mh32GbnyQQVa-CMtDcargAb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vZ1mh32GbnyQQVa-CMtDcargAb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5E8B/DEC3BD7C5AD311EEA92F9320C4F9AE02/B50B7BCC5E3011EE9286D63FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.236.0/23 IPv6: 2401:8c60::/32 Signature Algorithm: sha256WithRSAEncryption 57:0f:b7:28:0c:21:95:01:1f:e2:1c:56:5e:73:4a:ed:af:e4: bb:f1:45:1a:58:60:30:24:45:0c:3a:94:39:fc:0f:03:fd:44: 05:39:89:9f:cb:38:3b:e9:75:d6:57:97:e6:33:d8:41:ce:2a: 8d:e5:e9:71:d9:db:f4:f9:da:5e:e9:df:27:69:94:73:23:c3: 72:3f:d2:0d:d7:13:61:78:e6:9f:2c:89:02:3e:9a:3f:b6:ef: 24:dd:df:49:ea:a3:77:d6:5c:c1:0d:88:5a:05:88:8d:6d:c8: 61:e4:6f:75:85:3a:e6:02:4e:88:e8:ec:0b:f0:71:af:ba:eb: c0:2d:ad:c6:85:5a:5b:24:31:d6:b2:d0:d5:32:1b:82:e6:f3: 43:8f:1d:b6:22:71:e1:28:b3:a4:bb:b1:25:b6:91:7c:b6:2d: 26:71:ba:cd:b1:30:08:bf:63:dc:92:4e:9f:0e:d0:58:10:6e: ca:b6:0d:62:82:0f:23:24:21:e1:c8:45:af:68:6c:2f:2c:d2: 27:84:f5:88:f1:15:cc:8e:c4:16:e9:58:68:2d:b0:be:92:3c: 7d:b9:bc:a8:ed:11:5e:0e:78:3f:3d:2b:ce:54:7f:65:67:e8: d9:06:1e:fe:0f:ab:81:e6:72:bc:bd:51:31:98:c7:a4:10:78: 2f:da:08:85 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUU4QjExMC8GA1UEBRMoQkQ5RDY2ODc3RDg2NkU3QzkwNDE1NkJFMDhDQjQzNzFB QUUwMDFCRDAeFw0yNDAzMjIxNzQxNTVaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZmRjMmUzLWFjODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC632eW99thWDS+2UbhHLUnjvFWaxCVHfa/CC6o68RDqDh9iS1LpFFlvAXqZEFI kSPgpnHrX5FQPvCJfR/mgRAUM8Y7FTubh2Z8h8xX2NotEsOsxhrzcnmoOott8sOA 4AVa2yvKQOr98bjEYNn8/ki64lItS7PEYaBbs0MTK8F//anixygyvIAL9AfPwTnv BHpPUiysHXRnMlG9hvtYqwyOzgyLxYCR3MIZ37YanHN3asSoT1T7W63aHEhhasyA QYJJjaLhEqZ5m+P8T7PgXCrTDF2HQHESVFLLgBOXnB1wsngp5vD7M9G8+UREuS5D sZuyeeooGfoQYjNBfEyG20rrAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUO6rvCkeH xjXGezjdXRKecvsqhjswHwYDVR0jBBgwFoAUvZ1mh32GbnyQQVa+CMtDcargAb0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RThCL0RFQzNCRDdDNUFE MzExRUVBOTJGOTMyMEM0RjlBRTAyL3ZaMW1oMzJHYm55UVFWYS1DTXREY2FyZ0Fi MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdloxbWgzMkdibnlRUVZhLUNNdERjYXJnQWIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUU4Qi9ERUMzQkQ3QzVBRDMxMUVFQTkyRjkzMjBDNEY5QUUwMi9CNTBCN0JDQzVF MzAxMUVFOTI4NkQ2M0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWfL7DANBAIAAjAHAwUAJAGMYDANBgkqhkiG9w0BAQsFAAOC AQEAVw+3KAwhlQEf4hxWXnNK7a/ku/FFGlhgMCRFDDqUOfwPA/1EBTmJn8s4O+l1 1leX5jPYQc4qjeXpcdnb9PnaXunfJ2mUcyPDcj/SDdcTYXjmnyyJAj6aP7bvJN3f Seqjd9ZcwQ2IWgWIjW3IYeRvdYU65gJOiOjsC/Bxr7rrwC2txoVaWyQx1rLQ1TIb gubzQ48dtiJx4SizpLuxJbaRfLYtJnG6zbEwCL9j3JJOnw7QWBBuyrYNYoIPIyQh 4chFr2hsLyzSJ4T1iPEVzI7EFulYaC2wvpI8fbm8qO0RXg54Pz0rzlR/ZWfo2QYe /g+rgeZyvL1RMZjHpBB4L9oIhQ== -----END CERTIFICATE-----Generated at Fri Jun 7 09:41:10 2024 by rpki-client on console-ams.rpki-client.org