$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa File: 03C522BA8CF211ED8699F014C4F9AE02.roa (raw, json) Hash identifier: osXWx1pbxHv+AmHj+bmzgWhkOOzEZkepu7gweinGAO4= Subject key identifier: 3B:49:73:A9:15:C8:41:6D:E4:37:67:E9:14:D1:30:D6:66:6D:66:81 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 3495 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa Signing time: Tue 18 Feb 2025 08:36:42 +0000 ROA not before: Tue 18 Feb 2025 08:36:42 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 148000 IP address blocks: 36.50.36.0/24 maxlen: 24 36.50.50.0/24 maxlen: 24 2409::/40 maxlen: 40 2409::/48 maxlen: 48 2409:1::/48 maxlen: 48 2409:e:eb::/48 maxlen: 48 2409:e:ed::/48 maxlen: 48 240a:e000::/20 maxlen: 20 240a:eabc::/32 maxlen: 32 240a:eabc:abcd::/48 maxlen: 48 240a:eabc:d00d::/48 maxlen: 48 240a:eff0::/32 maxlen: 32 240a:eff1::/32 maxlen: 32 240a:eff2::/32 maxlen: 32 240a:eff4::/32 maxlen: 32 240a:eff6::/32 maxlen: 32 240a:eff8::/32 maxlen: 32 240a:eff9::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13461 (0x3495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Feb 18 08:36:42 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67b4469a-dcd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3b:3f:ba:5c:50:47:a3:bd:84:6c:ca:b8:fd: 69:25:95:63:99:b9:5e:3a:83:74:ef:4e:f9:18:14: 39:d6:1a:82:49:7b:3b:5a:6a:50:60:93:39:75:78: 1a:be:27:74:ae:72:bf:68:ce:07:63:d9:6e:89:7f: 8d:da:7c:e2:08:c5:3e:70:ba:ee:f8:17:4e:99:fd: 93:d0:86:84:ca:f2:dd:e1:7f:97:74:0c:ae:d7:04: 85:b1:68:90:db:e5:4f:b5:62:45:82:88:1e:22:30: 17:d8:31:ee:f4:2f:0e:e1:29:ca:29:fd:1e:c4:1a: 4f:0b:1d:03:af:64:b1:8b:e3:78:29:87:ae:61:aa: 1c:4f:46:76:5a:85:0e:a0:f2:f6:69:1c:ab:92:90: e5:36:0e:5c:2f:e4:f7:bd:cb:96:ed:03:37:87:05: 47:2c:1b:57:07:89:5e:3c:95:6c:55:21:fa:dd:74: cd:4c:cd:34:c7:76:0e:88:de:89:2a:bf:e2:ba:99: 6c:c9:31:17:59:9c:39:0c:2e:01:95:24:cf:9d:69: 7d:91:2c:33:6f:73:e5:c9:e2:21:18:50:ca:c5:e6: b9:c6:be:41:05:3a:1e:3b:12:49:0c:44:a3:1d:35: b7:15:a2:8b:76:f2:65:9c:0f:e9:fe:1f:72:87:2d: 5a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:49:73:A9:15:C8:41:6D:E4:37:67:E9:14:D1:30:D6:66:6D:66:81 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.36.0/24 36.50.50.0/24 IPv6: 2409::/40 2409:1::/48 2409:e:eb::/48 2409:e:ed::/48 240a:e000::/20 Signature Algorithm: sha256WithRSAEncryption c7:dd:29:17:45:86:87:0c:40:d9:53:21:2f:cb:b4:94:07:dd: b8:a1:69:b2:a8:8e:57:2a:24:2d:5f:b4:83:5e:5a:43:cd:85: b4:14:da:2d:bf:01:bb:78:32:1b:6e:03:66:9b:6f:01:13:5b: 6c:a4:b5:b0:bf:cd:8b:96:e0:05:ca:1d:d4:d7:93:26:8b:e9: 76:db:0e:49:94:11:70:71:0a:1f:1e:92:b8:27:ac:2f:be:38: e9:c1:83:b1:03:1c:b4:4c:ec:54:84:c4:d7:45:45:2e:32:7b: ee:30:9b:4d:de:ad:9b:4b:3f:57:9a:76:98:25:c9:38:71:38: 86:5c:ac:ff:14:80:cb:1e:96:3c:a8:1c:be:df:bc:30:4c:34: 85:b6:58:f5:f4:ba:e6:cb:b8:70:0e:f7:c8:32:bb:14:68:b5: 10:c5:2f:b1:13:bd:11:78:e4:57:75:e2:f8:4e:50:be:3a:a8: bb:30:f2:96:5e:4d:1c:a1:35:8f:83:a3:8a:0b:42:7f:8a:e6: 30:05:e3:5a:25:0e:5d:c3:b4:bd:f5:2d:46:0e:d2:e0:c3:d1: 36:0c:89:ee:e0:a9:a0:ec:73:1d:a0:e3:6e:c8:ee:d8:0a:96: 7e:75:43:45:88:45:d5:ec:b1:6c:02:40:bf:1a:44:f8:b5:ad: 8a:98:7a:50 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICNJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUwMjE4MDgzNjQyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0NDY5YS1kY2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTs/ulxQR6O9hGzKuP1pJZVjmbleOoN07075GBQ51hqCSXs7WmpQYJM5dXga vid0rnK/aM4HY9luiX+N2nziCMU+cLru+BdOmf2T0IaEyvLd4X+XdAyu1wSFsWiQ 2+VPtWJFgogeIjAX2DHu9C8O4SnKKf0exBpPCx0Dr2Sxi+N4KYeuYaocT0Z2WoUO oPL2aRyrkpDlNg5cL+T3vcuW7QM3hwVHLBtXB4lePJVsVSH63XTNTM00x3YOiN6J Kr/iuplsyTEXWZw5DC4BlSTPnWl9kSwzb3PlyeIhGFDKxea5xr5BBToeOxJJDESj HTW3FaKLdvJlnA/p/h9yhy1atQIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFDtJc6kV yEFt5Ddn6RTRMNZmbWaBMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvMDNDNTIyQkE4 Q0YyMTFFRDg2OTlGMDE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMBIEAgABMAwDBAAkMiQDBAAkMjIwLwQCAAIwKQMGACQJAAAAAwcAJAkAAQAA AwcAJAkADgDrAwcAJAkADgDtAwQEJArgMA0GCSqGSIb3DQEBCwUAA4IBAQDH3SkX RYaHDEDZUyEvy7SUB924oWmyqI5XKiQtX7SDXlpDzYW0FNotvwG7eDIbbgNmm28B E1tspLWwv82LluAFyh3U15Mmi+l22w5JlBFwcQofHpK4J6wvvjjpwYOxAxy0TOxU hMTXRUUuMnvuMJtN3q2bSz9XmnaYJck4cTiGXKz/FIDLHpY8qBy+37wwTDSFtlj1 9Lrmy7hwDvfIMrsUaLUQxS+xE70ReORXdeL4TlC+Oqi7MPKWXk0coTWPg6OKC0J/ iuYwBeNaJQ5dw7S99S1GDtLgw9E2DInu4Kmg7HMdoONuyO7YCpZ+dUNFiEXV7LFs AkC/GkT4ta2KmHpQ -----END CERTIFICATE-----Generated at Sat Apr 26 08:37:48 2025 by rpki-client