$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/34332e3235322e32302e302f32342d3234203d3e203136353039.roa File: 34332e3235322e32302e302f32342d3234203d3e203136353039.roa (raw, json) Hash identifier: guQ1d9UBBlP30nZtQVeNl3psArLTSiYHfIbHiGyRYfA= Subject key identifier: 03:68:8B:CE:E1:00:AD:64:E0:31:D4:9A:C5:BA:23:44:6C:A9:66:87 Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 74850E63386D638592FFB30A3FD8A306E90A44C6 Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/34332e3235322e32302e302f32342d3234203d3e203136353039.roa Signing time: Wed 18 Dec 2024 06:11:51 +0000 ROA not before: Wed 18 Dec 2024 06:06:51 +0000 ROA not after: Wed 17 Dec 2025 06:11:51 +0000 asID: 16509 IP address blocks: 43.252.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 00:42:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:85:0e:63:38:6d:63:85:92:ff:b3:0a:3f:d8:a3:06:e9:0a:44:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000 Validity Not Before: Dec 18 06:06:51 2024 GMT Not After : Dec 17 06:11:51 2025 GMT Subject: CN=03688BCEE100AD64E031D49AC5BA23446CA96687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b8:82:01:36:2a:67:b9:15:60:ad:07:b4:57: 3d:69:60:9e:f3:f7:4c:c2:36:9b:37:17:e5:d8:95: 68:28:11:48:d8:93:c5:9e:23:e7:00:18:46:f5:ab: 7f:36:a5:49:a9:f2:f7:07:4e:1a:da:0e:b0:33:31: e5:1b:b0:8d:4d:db:84:7e:89:64:03:7d:c6:e9:8f: 37:5b:15:46:2c:03:a7:b0:6d:dc:d4:2b:a7:97:92: 08:d5:0c:37:06:fb:85:9d:2a:25:32:d9:9d:cd:d6: cd:14:67:2f:f4:78:58:2c:45:04:51:48:68:6c:0b: 56:0c:c9:30:50:c7:10:fa:84:e0:44:94:6e:b1:0d: ba:6f:2b:84:75:11:62:97:33:78:33:3e:e4:56:6e: d3:89:65:cd:e3:7b:e3:d2:77:4c:28:ec:8d:4e:64: 4a:c2:fd:93:07:8f:40:92:6b:6a:a3:01:6a:66:a6: f6:b7:84:6c:dd:66:07:b4:9f:c2:c1:a7:55:b7:c6: 12:a8:0d:76:a6:e2:69:f8:d7:59:96:ba:75:a3:f8: 06:0a:37:ca:0c:d3:04:b8:42:fb:2b:9e:6b:fe:2e: 44:cf:cc:ba:a5:95:4f:83:3b:e9:c4:3c:d4:ab:d9: 5c:7a:90:ae:56:b4:6b:ad:1a:03:ca:f7:e1:90:b7: b7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:68:8B:CE:E1:00:AD:64:E0:31:D4:9A:C5:BA:23:44:6C:A9:66:87 X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/34332e3235322e32302e302f32342d3234203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.20.0/24 Signature Algorithm: sha256WithRSAEncryption 26:f9:11:06:e3:01:89:a6:7f:ab:c5:8b:b2:4e:35:a4:cf:4c: 56:e8:35:25:d3:b4:7e:7f:36:9c:62:5a:45:e3:97:f3:cd:cf: a0:7a:b9:0e:9c:95:41:67:fb:36:8e:de:56:b8:80:8d:03:92: 4e:55:a4:d8:99:9d:1d:d3:d4:c4:8f:06:35:67:36:71:4b:0e: 0c:c5:8d:4a:ee:3b:a0:db:af:34:42:6d:7f:d4:22:63:dc:5f: fe:06:db:89:f5:f2:3e:cc:da:91:59:2f:15:d3:06:ac:0c:7f: ad:02:91:71:f9:a6:db:3c:fe:a1:71:1f:94:9c:39:53:28:32: 4f:aa:d9:cc:e0:cc:90:70:40:13:ea:ea:18:a2:b1:42:07:24: 85:8c:56:56:90:3b:53:1c:b6:7e:fc:43:28:25:a1:11:41:be: af:07:80:e3:2b:c0:09:6e:0d:48:5f:75:05:ad:e7:aa:84:43: 55:7e:4f:85:b7:c0:15:99:6b:75:35:53:09:89:10:b6:7c:ab: 3d:34:0f:62:60:ed:9f:47:f7:15:3c:5f:db:ab:01:03:ac:41: 7b:a7:53:70:33:a5:9d:8c:fc:d9:cd:fe:27:12:9c:48:46:e9: 7f:00:dc:d5:ce:77:4a:d5:2b:80:f0:e9:65:a2:aa:b7:6d:53: b9:0b:66:fc -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUdIUOYzhtY4WS/7MKP9ijBukKRMYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI0MTIxODA2MDY1MVoX DTI1MTIxNzA2MTE1MVowMzExMC8GA1UEAxMoMDM2ODhCQ0VFMTAwQUQ2NEUwMzFE NDlBQzVCQTIzNDQ2Q0E5NjY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK+4ggE2Kme5FWCtB7RXPWlgnvP3TMI2mzcX5diVaCgRSNiTxZ4j5wAYRvWr fzalSany9wdOGtoOsDMx5RuwjU3bhH6JZAN9xumPN1sVRiwDp7Bt3NQrp5eSCNUM Nwb7hZ0qJTLZnc3WzRRnL/R4WCxFBFFIaGwLVgzJMFDHEPqE4ESUbrENum8rhHUR YpczeDM+5FZu04llzeN749J3TCjsjU5kSsL9kwePQJJraqMBamam9reEbN1mB7Sf wsGnVbfGEqgNdqbiafjXWZa6daP4Bgo3ygzTBLhC+yuea/4uRM/MuqWVT4M76cQ8 1KvZXHqQrla0a60aA8r34ZC3t3MCAwEAAaOCAg8wggILMB0GA1UdDgQWBBQDaIvO 4QCtZOAx1JrFuiNEbKlmhzAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMIGJBggrBgEFBQcBCwR9MHsweQYIKwYBBQUH MAuGbXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxREQ1 MTAwMDAwLzAvMzQzMzJlMzIzNTMyMmUzMjMwMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzEzNjM1MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8FDANBgkqhkiG9w0BAQsFAAOCAQEA JvkRBuMBiaZ/q8WLsk41pM9MVug1JdO0fn82nGJaReOX883PoHq5DpyVQWf7No7e VriAjQOSTlWk2JmdHdPUxI8GNWc2cUsODMWNSu47oNuvNEJtf9QiY9xf/gbbifXy PszakVkvFdMGrAx/rQKRcfmm2zz+oXEflJw5UygyT6rZzODMkHBAE+rqGKKxQgck hYxWVpA7Uxy2fvxDKCWhEUG+rweA4yvACW4NSF91Ba3nqoRDVX5PhbfAFZlrdTVT CYkQtnyrPTQPYmDtn0f3FTxf26sBA6xBe6dTcDOlnYz82c3+JxKcSEbpfwDc1c53 StUrgPDpZaKqt21TuQtm/A== -----END CERTIFICATE-----Generated at Sat Apr 5 04:02:32 2025 by rpki-client