$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa File: 03C522BA8CF211ED8699F014C4F9AE02.roa (raw, json) Hash identifier: 5x0Jjgm4/d/6c5vI/wEeHOfqHTmP7zqOpbfQ2/4+gm8= Subject key identifier: B1:B4:AF:64:2D:CB:12:0F:63:95:4C:D2:10:03:99:AF:66:E1:12:C3 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 3395 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa Signing time: Fri 24 Nov 2023 12:10:38 +0000 ROA not before: Fri 24 Nov 2023 12:10:38 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 148000 IP address blocks: 36.50.36.0/24 maxlen: 24 36.50.50.0/24 maxlen: 24 2409::/40 maxlen: 40 2409::/48 maxlen: 48 2409:1::/48 maxlen: 48 2409:e:eb::/48 maxlen: 48 2409:e:ed::/48 maxlen: 48 240a:e000::/20 maxlen: 20 240a:eabc::/32 maxlen: 32 240a:eabc:abcd::/48 maxlen: 48 240a:eff0::/32 maxlen: 32 240a:eff1::/32 maxlen: 32 240a:eff8::/32 maxlen: 32 240a:eff9::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13205 (0x3395) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Nov 24 12:10:38 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=656092be-b12d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3f:1e:33:d6:87:17:40:12:eb:a4:3f:9f:66: 84:b9:da:6c:32:8b:81:cc:96:44:17:f6:ea:49:b7: 20:ce:a9:39:0c:de:f5:73:a2:ea:35:71:75:71:18: 67:9c:71:f1:27:17:c4:04:13:89:bd:17:7d:a6:51: b8:95:ec:ea:71:cc:ac:77:96:1b:7e:ec:29:ae:9e: 12:cc:bb:ae:8f:8f:0a:c6:d7:fb:a2:88:fa:fa:70: 29:25:e8:ff:c4:58:48:c3:58:b6:c7:bb:be:9b:b3: a5:ee:14:50:bf:1f:19:f5:06:74:1d:50:10:e3:c7: 7f:87:66:f8:59:81:75:71:2d:48:00:0a:3f:b0:22: 80:d3:c8:bd:9a:e1:1a:b8:05:04:85:f6:1f:0e:5b: 03:9a:27:0a:c5:83:81:b8:3a:e6:2f:3e:8e:d4:01: f2:e0:23:d1:84:a6:35:76:c1:c8:42:73:c0:8a:cf: 09:51:c5:46:d9:cf:9f:c7:09:ab:8c:e3:b3:6a:63: 2e:9c:40:3d:89:05:30:ed:80:57:b5:7d:bc:fc:1e: f0:9a:8f:e8:21:84:16:b3:54:b8:09:6d:c1:ff:dd: 85:b7:fd:0d:da:c2:48:02:32:74:66:5f:31:a6:b8: 4f:f1:3e:a3:11:7c:d8:af:be:ed:f3:95:e8:88:2d: 9b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:B4:AF:64:2D:CB:12:0F:63:95:4C:D2:10:03:99:AF:66:E1:12:C3 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.36.0/24 36.50.50.0/24 IPv6: 2409::/40 2409:1::/48 2409:e:eb::/48 2409:e:ed::/48 240a:e000::/20 Signature Algorithm: sha256WithRSAEncryption 09:64:23:cc:79:84:91:36:8d:d0:62:16:1f:86:7f:63:80:4a: 7d:38:12:87:3e:5b:0f:6d:1f:34:f5:51:98:d8:fa:01:b0:52: f5:34:38:88:d5:c4:d9:c1:66:4b:1c:1d:4d:f1:55:65:36:62: 90:cc:ef:ea:37:ee:41:b4:48:8a:cd:2f:8d:8d:04:a5:a3:53: de:17:0a:07:63:5c:10:12:51:7e:09:ee:77:ef:66:75:54:79: 53:cb:9c:d4:72:30:b0:63:e1:2f:33:9f:b3:79:05:e7:88:bd: bb:03:25:64:92:ab:94:c1:99:aa:9c:f3:c6:71:a0:fb:2a:c5: f2:da:0b:12:6a:dd:da:0f:9c:11:77:97:83:e8:30:a5:30:f8: 67:d8:e5:89:7f:f6:dc:39:44:30:f4:42:f9:fd:95:eb:5e:7f: 46:a3:d6:85:06:a8:22:fc:7f:a3:d8:4a:36:c8:85:7e:94:21: e4:b6:66:86:8a:a1:f4:2a:88:e5:b9:12:53:aa:71:97:94:99: d2:f0:42:38:2a:19:b9:bb:c5:e4:98:09:bc:17:ef:37:5d:6f: 5b:b7:9e:18:e7:96:68:93:74:f9:d6:17:c0:e8:d0:f6:db:ff: 41:24:9a:b3:73:28:ac:ab:dc:d2:34:32:7b:a4:9a:89:b2:46: 32:4f:7e:54 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICM5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjMxMTI0MTIxMDM4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYwOTJiZS1iMTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtT8eM9aHF0AS66Q/n2aEudpsMouBzJZEF/bqSbcgzqk5DN71c6LqNXF1cRhn nHHxJxfEBBOJvRd9plG4lezqccysd5Ybfuwprp4SzLuuj48Kxtf7ooj6+nApJej/ xFhIw1i2x7u+m7Ol7hRQvx8Z9QZ0HVAQ48d/h2b4WYF1cS1IAAo/sCKA08i9muEa uAUEhfYfDlsDmicKxYOBuDrmLz6O1AHy4CPRhKY1dsHIQnPAis8JUcVG2c+fxwmr jOOzamMunEA9iQUw7YBXtX28/B7wmo/oIYQWs1S4CW3B/92Ft/0N2sJIAjJ0Zl8x prhP8T6jEXzYr77t85XoiC2bQQIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFLG0r2Qt yxIPY5VM0hADma9m4RLDMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvMDNDNTIyQkE4 Q0YyMTFFRDg2OTlGMDE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMBIEAgABMAwDBAAkMiQDBAAkMjIwLwQCAAIwKQMGACQJAAAAAwcAJAkAAQAA AwcAJAkADgDrAwcAJAkADgDtAwQEJArgMA0GCSqGSIb3DQEBCwUAA4IBAQAJZCPM eYSRNo3QYhYfhn9jgEp9OBKHPlsPbR809VGY2PoBsFL1NDiI1cTZwWZLHB1N8VVl NmKQzO/qN+5BtEiKzS+NjQSlo1PeFwoHY1wQElF+Ce5372Z1VHlTy5zUcjCwY+Ev M5+zeQXniL27AyVkkquUwZmqnPPGcaD7KsXy2gsSat3aD5wRd5eD6DClMPhn2OWJ f/bcOUQw9EL5/ZXrXn9Go9aFBqgi/H+j2Eo2yIV+lCHktmaGiqH0KojluRJTqnGX lJnS8EI4Khm5u8XkmAm8F+83XW9bt54Y55Zok3T51hfA6ND22/9BJJqzcyisq9zS NDJ7pJqJskYyT35U -----END CERTIFICATE-----Generated at Sat May 18 17:20:04 2024 by rpki-client on console-ams.rpki-client.org