$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/0/3136302e3138372e3132342e302f32342d3234203d3e20313533333436.roa File: 3136302e3138372e3132342e302f32342d3234203d3e20313533333436.roa (raw, json) Hash identifier: dSPHItX+NOX5ECRyNkdZrk0OmF0YgUo56LpSncOGGas= Subject key identifier: 2E:66:D2:CE:7E:75:28:16:FB:7D:FB:19:8E:97:2E:8F:5E:B2:59:9E Certificate issuer: /CN=A917447B0000/serialNumber=BD435E3ED6FEEC26F879A0542F609A272CC71307 Certificate serial: 3D6EF3B3BFCCA7372519679794F577C6EFD1E17A Authority key identifier: BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/3136302e3138372e3132342e302f32342d3234203d3e20313533333436.roa Signing time: Sat 08 Mar 2025 02:07:50 +0000 ROA not before: Sat 08 Mar 2025 02:02:50 +0000 ROA not after: Sat 07 Mar 2026 02:07:50 +0000 asID: 153346 IP address blocks: 160.187.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 06:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:6e:f3:b3:bf:cc:a7:37:25:19:67:97:94:f5:77:c6:ef:d1:e1:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000 Validity Not Before: Mar 8 02:02:50 2025 GMT Not After : Mar 7 02:07:50 2026 GMT Subject: CN=2E66D2CE7E752816FB7DFB198E972E8F5EB2599E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1d:4c:17:23:b8:1b:f7:5e:da:f5:60:06:a2: c4:98:52:07:0a:0b:92:cd:b8:3f:dd:0a:a8:38:ec: 29:97:bb:99:4a:a6:05:63:5f:d8:1d:a7:e9:1b:8c: 6b:ed:73:a3:77:fb:f6:f6:36:21:45:fd:15:0a:ed: 4c:fa:6e:db:29:1c:39:b3:e6:12:1c:c6:a5:ef:60: 32:92:14:d8:13:9a:17:7b:ed:59:11:67:e8:43:7b: 08:3a:61:47:31:61:c6:c4:eb:98:26:93:72:ee:89: 2e:f8:ed:f7:00:0e:07:86:0a:81:31:ce:c6:9a:1d: 29:e9:be:cc:79:82:99:1e:36:80:aa:01:2d:ff:be: 29:d2:71:a8:aa:16:27:b5:9d:4c:0b:86:0c:c4:76: d8:50:01:6b:50:9d:49:56:33:2d:35:b9:cb:af:f7: 77:e9:28:1f:d8:41:63:d7:da:be:41:75:8f:5f:f4: d5:a3:4e:e5:3e:0f:9a:48:79:8e:3f:9f:35:c0:e3: b1:9a:0e:fc:cb:e1:8d:85:bd:64:da:53:83:50:48: e7:2f:c9:a3:87:ef:bf:f1:a7:37:63:b7:17:c7:da: 5c:67:24:a8:35:80:79:8d:38:c1:94:39:73:96:2f: d3:e5:14:0c:7e:4f:a9:42:c5:f3:3f:c3:34:d8:12: ea:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:66:D2:CE:7E:75:28:16:FB:7D:FB:19:8E:97:2E:8F:5E:B2:59:9E X509v3 Authority Key Identifier: keyid:BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/3136302e3138372e3132342e302f32342d3234203d3e20313533333436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.124.0/24 Signature Algorithm: sha256WithRSAEncryption a6:37:97:d9:c3:d4:18:73:88:7d:c7:32:96:40:8d:10:d1:b4: 5c:66:a6:8b:6c:6a:06:eb:bc:88:86:b9:dc:60:92:60:4a:cf: bd:6a:e6:c4:e2:b1:ac:bd:1c:96:16:12:0b:10:15:92:7f:24: bb:7e:52:28:c5:57:40:63:c8:86:7d:6a:04:9b:79:c3:42:79: 66:6c:7c:82:0f:3c:31:f6:a3:e4:5a:fe:07:5c:51:ed:37:dd: 7d:a1:96:26:39:46:a9:74:7b:ae:96:2b:04:b3:be:17:e9:4a: 75:48:41:df:0c:39:c2:44:22:ae:09:5a:bb:cc:71:32:4c:59: 56:c3:bb:1e:c2:29:3a:18:6e:78:0e:88:c0:2a:a4:ba:ba:fe: ea:7b:d8:57:67:df:67:cb:46:c5:78:28:68:39:b0:22:7d:8d: 7d:54:c7:62:29:d3:29:ab:8c:39:3f:d1:51:92:e5:89:23:54: 68:79:ff:d2:09:49:2e:98:77:35:08:d0:13:6f:98:ae:a7:6d: 30:45:f8:6b:df:d6:bb:4c:93:c3:5f:54:41:bd:85:5e:f8:f8: cd:9f:46:34:97:f2:da:6a:93:c4:4b:44:58:08:aa:72:99:54: 5b:5d:40:59:79:fd:4b:20:fc:9e:c3:7b:88:f9:06:cd:78:51: 51:99:2f:4a -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUPW7zs7/MpzclGWeXlPV3xu/R4XowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEyhCRDQzNUUzRUQ2 RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3MB4XDTI1MDMwODAyMDI1MFoX DTI2MDMwNzAyMDc1MFowMzExMC8GA1UEAxMoMkU2NkQyQ0U3RTc1MjgxNkZCN0RG QjE5OEU5NzJFOEY1RUIyNTk5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQdTBcjuBv3Xtr1YAaixJhSBwoLks24P90KqDjsKZe7mUqmBWNf2B2n6RuM a+1zo3f79vY2IUX9FQrtTPpu2ykcObPmEhzGpe9gMpIU2BOaF3vtWRFn6EN7CDph RzFhxsTrmCaTcu6JLvjt9wAOB4YKgTHOxpodKem+zHmCmR42gKoBLf++KdJxqKoW J7WdTAuGDMR22FABa1CdSVYzLTW5y6/3d+koH9hBY9favkF1j1/01aNO5T4Pmkh5 jj+fNcDjsZoO/MvhjYW9ZNpTg1BI5y/Jo4fvv/GnN2O3F8faXGckqDWAeY04wZQ5 c5Yv0+UUDH5PqULF8z/DNNgS6kUCAwEAAaOCAhcwggITMB0GA1UdDgQWBBQuZtLO fnUoFvt9+xmOly6PXrJZnjAfBgNVHSMEGDAWgBS9Q14+1v7sJvh5oFQvYJonLMcT BzAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMC9CRDQzNUUz RUQ2RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi92VU5lUHRiLTdD YjRlYUJVTDJDYUp5ekhFd2MuY2VyMIGRBggrBgEFBQcBCwSBhDCBgTB/BggrBgEF BQcwC4ZzcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3 NDQ3QjAwMDAvMC8zMTM2MzAyZTMxMzgzNzJlMzEzMjM0MmUzMDJmMzIzNDJkMzIz NDIwM2QzZTIwMzEzNTMzMzMzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoLt8MA0GCSqGSIb3DQEB CwUAA4IBAQCmN5fZw9QYc4h9xzKWQI0Q0bRcZqaLbGoG67yIhrncYJJgSs+9aubE 4rGsvRyWFhILEBWSfyS7flIoxVdAY8iGfWoEm3nDQnlmbHyCDzwx9qPkWv4HXFHt N919oZYmOUapdHuulisEs74X6Up1SEHfDDnCRCKuCVq7zHEyTFlWw7sewik6GG54 DojAKqS6uv7qe9hXZ99ny0bFeChoObAifY19VMdiKdMpq4w5P9FRkuWJI1Roef/S CUkumHc1CNATb5iup20wRfhr39a7TJPDX1RBvYVe+PjNn0Y0l/LaapPES0RYCKpy mVRbXUBZef1LIPyew3uI+QbNeFFRmS9K -----END CERTIFICATE-----Generated at Tue Apr 8 18:40:26 2025 by rpki-client