$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3130332e302e302e302f31362d3136203d3e2034363038.roa File: 3130332e302e302e302f31362d3136203d3e2034363038.roa (raw, json) Hash identifier: s+okMfZXtj3SK5Jzt/y85zlQTo28EGbzbEC4cKwM5bQ= Subject key identifier: F5:E7:EA:F5:C8:70:B6:2E:6E:F6:0B:6A:61:40:79:C5:65:F2:17:BE Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 730ED20217CB204D71FEC30D5D393F25E08B4B84 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3130332e302e302e302f31362d3136203d3e2034363038.roa Signing time: Tue 10 Sep 2024 16:52:33 +0000 ROA not before: Tue 10 Sep 2024 16:47:33 +0000 ROA not after: Tue 09 Sep 2025 16:52:33 +0000 asID: 4608 IP address blocks: 103.0.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 13:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:0e:d2:02:17:cb:20:4d:71:fe:c3:0d:5d:39:3f:25:e0:8b:4b:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Sep 10 16:47:33 2024 GMT Not After : Sep 9 16:52:33 2025 GMT Subject: CN=F5E7EAF5C870B62E6EF60B6A614079C565F217BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:37:cd:41:73:27:81:5e:1e:0d:a0:45:16:ba: c0:93:50:30:40:20:fd:19:fb:18:62:e5:b5:39:af: 69:c2:e9:c5:9d:7c:46:37:40:ef:18:86:c8:ce:1a: 51:bc:5b:80:45:2b:5c:f7:7b:8c:2e:90:5a:e9:00: 4c:43:f3:9f:0e:f1:18:a4:d9:90:8c:1f:56:38:28: 24:a7:ac:bf:75:50:2b:4b:b8:75:a3:67:ea:64:66: f4:36:71:1f:e1:4a:c1:f9:cd:47:e6:df:24:ed:fb: 9b:d3:41:14:49:53:23:e8:7b:7f:43:42:9c:02:73: 6e:a8:1b:08:51:07:fc:6c:e3:ec:b3:f9:6a:91:fc: b7:ec:a1:09:a6:32:11:9c:a7:0b:d5:cf:7f:b7:9e: 59:d4:5b:e1:cc:c4:4a:21:c7:39:cb:52:57:24:1d: 47:57:cd:94:4a:0b:d3:a3:cf:95:38:87:3b:23:87: 0f:d9:ba:9d:2c:0c:77:7b:b0:ad:1e:cd:e8:1d:83: 30:86:30:43:cd:2c:1c:e6:61:ba:23:e8:4b:9a:ff: 08:28:c9:fc:bb:37:17:99:12:42:57:d2:f1:37:42: a3:9c:0c:25:41:5a:a4:27:1b:4c:ea:77:ed:1d:d0: 50:9b:4b:32:e4:af:12:6f:55:03:40:46:ec:00:e7: 48:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E7:EA:F5:C8:70:B6:2E:6E:F6:0B:6A:61:40:79:C5:65:F2:17:BE X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3130332e302e302e302f31362d3136203d3e2034363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.0.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8c:40:d8:49:58:c6:52:f0:8b:a0:0c:1b:0c:b2:6d:80:90:3b: 92:3c:65:3d:bc:63:34:e8:93:52:6a:4b:34:f9:23:39:4f:0c: 9b:55:69:f5:69:f7:9a:d0:c6:cc:6a:51:aa:0e:99:b5:63:09: d2:ca:25:ab:cb:64:ae:1c:43:7d:cb:ac:92:cc:61:11:83:aa: 2f:2d:36:28:2b:96:03:43:41:1a:cf:aa:88:98:19:92:ae:a4: 76:36:1c:39:77:29:10:36:05:2d:c5:d3:8d:21:c1:1d:a6:c1: b1:f2:07:b9:b7:0c:11:48:e1:5c:76:c8:5e:74:42:93:65:cc: d5:3e:72:e9:67:1f:ad:52:a6:c0:46:1a:d3:eb:c7:92:de:a0: 9f:dd:18:40:6e:c0:77:be:8e:6e:19:8c:54:3d:20:ba:62:cf: fb:db:ad:b6:ad:c1:a9:1b:f6:e9:eb:f2:f0:5b:05:29:e2:de: 0d:6a:1d:a3:74:1e:e0:70:57:c4:ea:dc:9b:c9:ca:01:36:6e: cb:ca:d3:d3:b0:90:37:65:07:f9:7e:f3:fc:99:21:d9:fe:f0: ce:97:33:f3:29:4d:01:9e:6c:74:10:1c:bc:48:5f:95:74:31: da:b7:2f:4d:4a:65:bf:65:e6:d8:5d:86:e6:d3:7c:52:d3:ef: 21:c2:f6:c0 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUcw7SAhfLIE1x/sMNXTk/JeCLS4QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI0MDkxMDE2NDczM1oX DTI1MDkwOTE2NTIzM1owMzExMC8GA1UEAxMoRjVFN0VBRjVDODcwQjYyRTZFRjYw QjZBNjE0MDc5QzU2NUYyMTdCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOE3zUFzJ4FeHg2gRRa6wJNQMEAg/Rn7GGLltTmvacLpxZ18RjdA7xiGyM4a UbxbgEUrXPd7jC6QWukATEPznw7xGKTZkIwfVjgoJKesv3VQK0u4daNn6mRm9DZx H+FKwfnNR+bfJO37m9NBFElTI+h7f0NCnAJzbqgbCFEH/Gzj7LP5apH8t+yhCaYy EZynC9XPf7eeWdRb4czESiHHOctSVyQdR1fNlEoL06PPlTiHOyOHD9m6nSwMd3uw rR7N6B2DMIYwQ80sHOZhuiPoS5r/CCjJ/Ls3F5kSQlfS8TdCo5wMJUFapCcbTOp3 7R3QUJtLMuSvEm9VA0BG7ADnSGcCAwEAAaOCAf0wggH5MB0GA1UdDgQWBBT15+r1 yHC2Lm72C2phQHnFZfIXvjAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJz eW5jOi8vcnBraS5yYW5kLmFwbmljLm5ldC9yZXBvL0E5MTg3MkVEMDAwMS8wLzMx MzAzMzJlMzAyZTMwMmUzMDJmMzEzNjJkMzEzNjIwM2QzZTIwMzQzNjMwMzgucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsE AgABMAUDAwBnADANBgkqhkiG9w0BAQsFAAOCAQEAjEDYSVjGUvCLoAwbDLJtgJA7 kjxlPbxjNOiTUmpLNPkjOU8Mm1Vp9Wn3mtDGzGpRqg6ZtWMJ0solq8tkrhxDfcus ksxhEYOqLy02KCuWA0NBGs+qiJgZkq6kdjYcOXcpEDYFLcXTjSHBHabBsfIHubcM EUjhXHbIXnRCk2XM1T5y6WcfrVKmwEYa0+vHkt6gn90YQG7Ad76ObhmMVD0gumLP +9uttq3BqRv26evy8FsFKeLeDWodo3Qe4HBXxOrcm8nKATZuy8rT07CQN2UH+X7z /Jkh2f7wzpcz8ylNAZ5sdBAcvEhflXQx2rcvTUplv2Xm2F2G5tN8UtPvIcL2wA== -----END CERTIFICATE-----Generated at Sat Nov 23 14:50:45 2024 by rpki-client on console-ams.rpki-client.org