$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: eVVSCidFEMX60BW/nesknQieLs++VQWMtA6mI6tAHsU= Subject key identifier: 90:44:33:EC:A4:FB:40:6F:AD:2C:E8:30:57:E9:8C:7C:36:61:68:58 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 563AAC358A326AA322F4DE971CB775A3C067B755 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Sat 23 Nov 2024 12:00:01 +0000 ROA not before: Sat 23 Nov 2024 11:55:01 +0000 ROA not after: Sat 22 Nov 2025 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 13:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:3a:ac:35:8a:32:6a:a3:22:f4:de:97:1c:b7:75:a3:c0:67:b7:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Nov 23 11:55:01 2024 GMT Not After : Nov 22 12:00:01 2025 GMT Subject: CN=904433ECA4FB406FAD2CE83057E98C7C36616858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:c9:60:5f:84:28:3b:c7:14:c3:67:f1:eb: 0a:49:73:4d:a4:0e:80:a8:8c:71:ec:60:6d:59:fd: fa:a7:cc:ea:e4:85:f8:ac:1a:28:fd:3d:c7:78:f4: f0:98:0b:d4:65:45:59:a3:68:01:50:36:69:1e:ae: bf:d2:0e:ae:99:4d:fb:15:06:96:df:f8:84:93:24: eb:09:6c:66:29:9d:c6:eb:06:a9:b5:c5:c1:dd:42: 21:cd:99:36:d5:43:6d:98:cd:4b:b4:11:ae:44:ae: ee:33:55:e1:bb:ff:7e:a6:9a:23:72:2c:7c:e1:e2: f8:16:db:95:39:0a:3d:41:fc:bb:17:83:da:73:91: d6:bd:4b:a8:58:76:75:e8:83:49:db:ee:ba:87:3c: 1f:a9:68:93:be:93:33:4b:56:c9:fc:39:01:08:ba: a6:8b:69:8c:37:c1:e8:bd:22:b6:d2:76:34:70:c5: 45:ad:90:b7:78:1c:7b:f0:a7:6f:51:66:98:0c:5e: 29:44:ed:68:fc:69:01:84:d3:e7:a8:c3:85:d7:2c: 84:96:33:d6:fd:2d:a5:e6:3d:e2:ce:a4:70:4a:a8: 2e:6c:44:ff:64:8d:62:83:96:4b:df:bf:f0:8d:fa: d8:76:87:4e:bb:1d:35:1b:be:2e:57:4e:65:0e:9d: c0:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:44:33:EC:A4:FB:40:6F:AD:2C:E8:30:57:E9:8C:7C:36:61:68:58 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption b4:33:b6:ca:ca:30:e0:15:3d:c9:98:4d:e5:d5:6a:3a:74:c5: be:77:10:85:93:95:0d:3c:d9:14:b5:a3:cf:ed:48:04:21:e8: cb:74:7f:11:b4:44:e5:06:15:d2:9b:e7:a6:03:0f:c8:4d:bb: a7:ce:da:b5:df:84:74:d4:47:28:a1:88:d4:83:22:ee:64:10: 4f:e8:0f:1d:04:83:23:a3:f5:8c:b5:24:ad:ef:4c:1f:66:6c: b7:75:a1:1b:c1:e6:87:50:a7:fc:f9:d0:5c:e1:84:64:38:f9: 55:e4:a5:3c:16:b9:f5:f8:ac:8c:f0:37:c5:a7:ad:30:4c:b8: 4f:33:f4:ce:f2:ee:dd:ed:45:16:e9:b0:bd:72:f6:3a:20:ee: d0:7b:78:15:8b:e5:12:25:72:d0:b8:a0:4a:1d:4a:03:27:8a: 42:43:91:42:02:3a:50:62:19:84:d1:a7:79:95:27:ba:f7:ad: c1:6e:7c:1b:8a:35:6c:97:68:04:11:ed:cf:75:16:ea:33:2e: 8b:16:6f:05:d5:ef:28:35:af:e5:66:b6:4d:ac:38:5b:f2:62: ff:c3:78:30:3f:f4:a0:4e:01:fa:c9:43:1d:31:db:d4:48:e9: 28:ef:20:21:6f:22:53:a7:6a:11:be:14:79:99:e6:6f:d7:00: 7d:df:b3:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUVjqsNYoyaqMi9N6XHLd1o8Bnt1UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI0MTEyMzExNTUwMVoX DTI1MTEyMjEyMDAwMVowMzExMC8GA1UEAxMoOTA0NDMzRUNBNEZCNDA2RkFEMkNF ODMwNTdFOThDN0MzNjYxNjg1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCRyWBfhCg7xxTDZ/HrCklzTaQOgKiMcexgbVn9+qfM6uSF+KwaKP09x3j0 8JgL1GVFWaNoAVA2aR6uv9IOrplN+xUGlt/4hJMk6wlsZimdxusGqbXFwd1CIc2Z NtVDbZjNS7QRrkSu7jNV4bv/fqaaI3IsfOHi+BbblTkKPUH8uxeD2nOR1r1LqFh2 deiDSdvuuoc8H6lok76TM0tWyfw5AQi6potpjDfB6L0ittJ2NHDFRa2Qt3gce/Cn b1FmmAxeKUTtaPxpAYTT56jDhdcshJYz1v0tpeY94s6kcEqoLmxE/2SNYoOWS9+/ 8I362HaHTrsdNRu+LldOZQ6dwF8CAwEAAaOCAgkwggIFMB0GA1UdDgQWBBSQRDPs pPtAb60s6DBX6Yx8NmFoWDAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAtDO2ysow 4BU9yZhN5dVqOnTFvncQhZOVDTzZFLWjz+1IBCHoy3R/EbRE5QYV0pvnpgMPyE27 p87atd+EdNRHKKGI1IMi7mQQT+gPHQSDI6P1jLUkre9MH2Zst3WhG8Hmh1Cn/PnQ XOGEZDj5VeSlPBa59fisjPA3xaetMEy4TzP0zvLu3e1FFumwvXL2OiDu0Ht4FYvl EiVy0LigSh1KAyeKQkORQgI6UGIZhNGneZUnuvetwW58G4o1bJdoBBHtz3UW6jMu ixZvBdXvKDWv5Wa2Taw4W/Ji/8N4MD/0oE4B+slDHTHb1EjpKO8gIW8iU6dqEb4U eZnmb9cAfd+zIQ== -----END CERTIFICATE-----Generated at Sat Nov 23 13:14:42 2024 by rpki-client on console-fra.rpki-client.org