$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/50063EE8822A11EDB2081A49C4F9AE02.roa File: 50063EE8822A11EDB2081A49C4F9AE02.roa (raw, json) Hash identifier: q6HOXjPvoPSb3o84w9d02NTWY2hXWWUYQ38latAJtSw= Subject key identifier: 43:19:29:20:BF:D8:C7:AA:A8:23:6E:21:14:0F:62:C7:5E:60:BE:CA Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0C08 Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/50063EE8822A11EDB2081A49C4F9AE02.roa Signing time: Fri 02 Jun 2023 19:59:55 +0000 ROA not before: Fri 02 Jun 2023 19:59:55 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 136547 IP address blocks: 103.251.36.0/24 maxlen: 24 103.251.37.0/24 maxlen: 24 103.251.38.0/24 maxlen: 24 103.251.39.0/24 maxlen: 24 150.242.228.0/24 maxlen: 24 150.242.229.0/24 maxlen: 24 150.242.230.0/24 maxlen: 24 150.242.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3080 (0xc08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Jun 2 19:59:55 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647a4a3b-d637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a5:23:a6:c4:cc:5b:05:38:bb:b8:be:19:67: 31:ae:10:37:6e:dd:93:de:8a:ef:e7:b4:ce:ed:5b: 9e:36:92:49:14:00:54:b8:2d:33:a9:8d:98:78:1e: bd:f4:73:bf:c0:ee:c1:98:47:7b:97:a6:5f:83:4f: 34:27:af:1b:ea:ef:9c:d7:7b:bc:a9:e1:01:4e:e0: e5:9a:6f:32:93:8a:fc:47:43:28:89:d1:c4:ba:ba: cf:90:e2:25:8e:5d:78:38:8c:ff:6a:d1:dd:c6:0d: c6:ed:42:40:3e:00:50:73:c5:c2:ce:51:57:88:da: 13:32:d2:56:31:80:e5:f8:65:9c:34:03:e1:a0:3c: c4:bf:ed:f0:1c:74:55:5c:15:45:a9:73:5c:6c:ea: 33:43:24:e0:80:be:1a:b1:a4:49:bc:42:a2:0f:b1: c1:74:85:01:85:8e:0b:16:79:9e:7b:9a:ef:fe:05: fd:27:56:06:86:1e:ba:4c:bc:b7:42:30:75:c1:0a: d6:c8:d5:2a:0b:50:d5:58:b8:10:90:b6:5f:57:e1: ac:0d:c0:e7:4f:af:e8:70:ce:da:21:6a:1b:77:f9: f9:7b:a5:3d:05:c8:f8:35:27:db:6c:04:c6:47:e6: d6:d9:07:05:46:4a:02:db:c2:ee:f9:da:1c:40:f2: 73:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:19:29:20:BF:D8:C7:AA:A8:23:6E:21:14:0F:62:C7:5E:60:BE:CA X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/50063EE8822A11EDB2081A49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.251.36.0/22 150.242.228.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:4c:af:f5:b9:a5:88:29:dd:2d:32:db:f1:c8:29:ed:07:2b: a3:11:34:d0:9d:19:49:9d:dd:df:3b:13:e4:11:09:be:49:03: d0:f3:5f:63:09:aa:b1:4c:f5:e2:01:59:b0:16:9e:29:ad:cb: a5:11:5c:0f:f2:ff:09:d4:64:f7:d2:35:3f:2a:49:59:c5:39: 1e:32:a6:94:47:ad:eb:ea:5b:5e:4e:63:6d:0b:be:37:20:32: 9d:8e:0e:d7:d0:c4:4f:d5:0d:db:61:9c:12:ee:b4:40:27:75: b1:d0:33:e1:e6:37:da:33:8c:1b:4c:74:22:f5:54:0c:67:66: 90:0c:be:20:cc:72:05:42:5f:f8:9c:50:26:78:48:08:a3:87: c0:50:c7:5c:2d:37:6e:14:5a:29:bd:bb:82:b8:a8:13:16:39: 78:a1:9d:e8:5d:d3:a4:2a:d1:ec:b0:41:bd:87:2d:dd:85:99: e3:5c:24:6a:1d:dd:24:52:a5:76:ae:94:8d:9c:80:7c:28:37: 24:64:d6:03:73:8c:ca:f6:63:27:2b:51:83:50:f1:66:32:17: dd:1e:73:e3:91:3f:b6:ba:63:4c:08:db:60:89:4a:70:3b:28: 77:bb:44:0e:99:75:2d:c5:d6:24:07:d3:43:aa:7c:d4:61:22: 68:a5:d4:4a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjMwNjAyMTk1OTU1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhNGEzYi1kNjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaUjpsTMWwU4u7i+GWcxrhA3bt2T3orv57TO7VueNpJJFABUuC0zqY2YeB69 9HO/wO7BmEd7l6Zfg080J68b6u+c13u8qeEBTuDlmm8yk4r8R0MoidHEurrPkOIl jl14OIz/atHdxg3G7UJAPgBQc8XCzlFXiNoTMtJWMYDl+GWcNAPhoDzEv+3wHHRV XBVFqXNcbOozQyTggL4asaRJvEKiD7HBdIUBhY4LFnmee5rv/gX9J1YGhh66TLy3 QjB1wQrWyNUqC1DVWLgQkLZfV+GsDcDnT6/ocM7aIWobd/n5e6U9Bcj4NSfbbATG R+bW2QcFRkoC28Lu+docQPJziQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEMZKSC/ 2MeqqCNuIRQPYsdeYL7KMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY4RjYvMzdEMDNERjZDRTI4MTFFOUE2QjZDMTdCQzRGOUFFMDIvNTAwNjNFRTg4 MjJBMTFFREIyMDgxQTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn+yQDBAKW8uQwDQYJKoZIhvcNAQELBQADggEBAHpMr/W5 pYgp3S0y2/HIKe0HK6MRNNCdGUmd3d87E+QRCb5JA9DzX2MJqrFM9eIBWbAWnimt y6URXA/y/wnUZPfSNT8qSVnFOR4yppRHrevqW15OY20LvjcgMp2ODtfQxE/VDdth nBLutEAndbHQM+HmN9ozjBtMdCL1VAxnZpAMviDMcgVCX/icUCZ4SAijh8BQx1wt N24UWim9u4K4qBMWOXihnehd06Qq0eywQb2HLd2FmeNcJGod3SRSpXaulI2cgHwo NyRk1gNzjMr2YycrUYNQ8WYyF90ec+ORP7a6Y0wI22CJSnA7KHe7RA6ZdS3F1iQH 00OqfNRhImil1Eo= -----END CERTIFICATE-----Generated at Fri May 10 20:45:22 2024 by rpki-client on console-ams.rpki-client.org