$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3130332e302e302e302f31362d3136203d3e2034363038.roa File: 3130332e302e302e302f31362d3136203d3e2034363038.roa (raw, json) Hash identifier: BPdgeN1El31FAB5/ikh6EaWt2jGpovaQE4hgM5QksdA= Subject key identifier: 35:A5:7B:80:CB:CD:B3:19:4D:BE:A4:B2:98:21:3E:9D:73:C0:E7:AD Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 17F78EAA003AB18B53FB90F3624AFCD8007A78E8 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3130332e302e302e302f31362d3136203d3e2034363038.roa Signing time: Tue 10 Oct 2023 16:36:20 +0000 ROA not before: Tue 10 Oct 2023 16:31:20 +0000 ROA not after: Tue 08 Oct 2024 16:36:20 +0000 asID: 4608 IP address blocks: 103.0.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 23:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:f7:8e:aa:00:3a:b1:8b:53:fb:90:f3:62:4a:fc:d8:00:7a:78:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Oct 10 16:31:20 2023 GMT Not After : Oct 8 16:36:20 2024 GMT Subject: CN=35A57B80CBCDB3194DBEA4B298213E9D73C0E7AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:44:5f:60:d2:92:19:80:ac:67:f3:ce:c8:50: 0e:bd:02:64:19:3b:7c:87:d5:3f:84:b8:77:58:75: a0:08:05:4c:09:2f:54:1f:00:78:b5:83:ca:49:44: cf:3b:29:17:8a:8d:09:04:28:b1:25:06:70:79:ed: 62:6f:7d:7c:9a:da:23:8b:99:55:e5:d9:e6:e6:c7: e3:ab:28:a8:02:cf:b5:f3:e5:b3:ab:58:62:8c:dd: ae:76:68:7a:fc:41:c9:d1:f0:fd:f2:12:77:f2:3b: b2:c9:9c:29:70:50:9f:af:ec:a9:58:3c:57:61:05: 1a:f9:d8:1b:cf:a4:fa:18:2d:3a:f3:5a:c9:58:e3: da:95:ec:27:0b:35:4d:59:ee:1f:a8:b6:de:ee:4e: 31:ac:2b:7f:92:61:f0:03:51:79:7e:3e:e7:30:e3: d2:89:1f:76:18:99:cc:d7:10:17:4b:43:f6:18:70: fa:96:e8:ac:d9:5c:6b:69:c7:1d:b6:8a:72:8f:11: 7b:f2:91:5b:c5:aa:06:0b:0a:87:98:43:5c:9e:1c: a6:a6:fe:1e:12:e9:95:e9:93:44:7b:2c:4a:9d:3e: 52:e6:42:24:20:84:9f:cc:14:aa:ec:88:b8:6a:2f: ed:7d:45:89:15:55:b1:af:10:b1:5f:d2:54:e3:8a: e4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:A5:7B:80:CB:CD:B3:19:4D:BE:A4:B2:98:21:3E:9D:73:C0:E7:AD X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3130332e302e302e302f31362d3136203d3e2034363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.0.0.0/16 Signature Algorithm: sha256WithRSAEncryption 53:0f:c7:55:e9:a1:f7:d6:7b:4d:9a:33:0d:32:4a:78:18:62: 5a:98:ed:8e:55:93:fb:af:5b:f9:7c:46:a7:d3:73:77:a9:56: a4:1a:62:7f:22:99:d1:03:f4:da:31:68:c7:1d:f6:2d:9f:e0: 49:92:bb:f3:13:65:15:fa:cc:7e:8a:c5:7f:f4:9b:a7:e9:3a: 23:46:6a:b9:e9:e6:2b:4b:f0:ad:6f:4a:de:45:d9:d5:92:66: 2f:0d:b0:a8:15:d8:0f:af:9e:3e:bc:14:bc:1c:ca:45:af:7a: 90:87:4c:61:9f:fb:bd:a0:f6:b2:d2:83:43:54:7b:66:59:1b: 8c:ec:91:2f:a8:4f:3b:b4:83:4a:6b:8a:b1:0f:78:86:4e:c0: f5:3f:ef:7d:be:87:4f:25:1f:9e:cd:7e:c9:06:4e:80:8f:bd: 91:49:2b:93:74:24:4b:05:79:86:f2:9a:4a:e2:77:0c:d9:d5: 90:22:c4:72:97:08:b4:3c:07:b7:30:fa:dd:a9:94:5f:e8:5e: b5:64:30:c8:8c:af:77:c2:ea:ed:38:8f:ff:1c:7e:b8:67:41: bf:e3:55:e9:d9:54:9e:a4:fd:24:bc:9e:44:ce:2f:89:ee:20: 38:96:91:81:b2:d8:62:31:72:a0:45:c5:ea:33:b3:8f:04:d9: 47:80:4e:5e -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUF/eOqgA6sYtT+5DzYkr82AB6eOgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTIzMTAxMDE2MzEyMFoX DTI0MTAwODE2MzYyMFowMzExMC8GA1UEAxMoMzVBNTdCODBDQkNEQjMxOTREQkVB NEIyOTgyMTNFOUQ3M0MwRTdBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5EX2DSkhmArGfzzshQDr0CZBk7fIfVP4S4d1h1oAgFTAkvVB8AeLWDyklE zzspF4qNCQQosSUGcHntYm99fJraI4uZVeXZ5ubH46soqALPtfPls6tYYozdrnZo evxBydHw/fISd/I7ssmcKXBQn6/sqVg8V2EFGvnYG8+k+hgtOvNayVjj2pXsJws1 TVnuH6i23u5OMawrf5Jh8ANReX4+5zDj0okfdhiZzNcQF0tD9hhw+pborNlca2nH HbaKco8Re/KRW8WqBgsKh5hDXJ4cpqb+HhLplemTRHssSp0+UuZCJCCEn8wUquyI uGov7X1FiRVVsa8QsV/SVOOK5NcCAwEAAaOCAf0wggH5MB0GA1UdDgQWBBQ1pXuA y82zGU2+pLKYIT6dc8DnrTAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJz eW5jOi8vcnBraS5yYW5kLmFwbmljLm5ldC9yZXBvL0E5MTg3MkVEMDAwMS8wLzMx MzAzMzJlMzAyZTMwMmUzMDJmMzEzNjJkMzEzNjIwM2QzZTIwMzQzNjMwMzgucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsE AgABMAUDAwBnADANBgkqhkiG9w0BAQsFAAOCAQEAUw/HVemh99Z7TZozDTJKeBhi WpjtjlWT+69b+XxGp9Nzd6lWpBpifyKZ0QP02jFoxx32LZ/gSZK78xNlFfrMforF f/Sbp+k6I0ZquenmK0vwrW9K3kXZ1ZJmLw2wqBXYD6+ePrwUvBzKRa96kIdMYZ/7 vaD2stKDQ1R7ZlkbjOyRL6hPO7SDSmuKsQ94hk7A9T/vfb6HTyUfns1+yQZOgI+9 kUkrk3QkSwV5hvKaSuJ3DNnVkCLEcpcItDwHtzD63amUX+hetWQwyIyvd8Lq7TiP /xx+uGdBv+NV6dlUnqT9JLyeRM4vie4gOJaRgbLYYjFyoEXF6jOzjwTZR4BOXg== -----END CERTIFICATE-----Generated at Sun May 5 23:34:06 2024 by rpki-client on console-fra.rpki-client.org