$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32342d3234203d3e203234303231.roa File: 3230332e3134372e3130382e302f32342d3234203d3e203234303231.roa (raw, json) Hash identifier: BU8Bua231WXjTpoYm2Q4rTG4i8ZpYs4lZ3VI+83DR98= Subject key identifier: 42:25:11:B1:74:84:53:0F:9A:14:6E:70:B9:A3:62:7D:FD:0D:29:E5 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 25EAD170FABD5D7B6AAF8C60FDB695969DECE7D3 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32342d3234203d3e203234303231.roa Signing time: Tue 10 Sep 2024 16:52:34 +0000 ROA not before: Tue 10 Sep 2024 16:47:34 +0000 ROA not after: Tue 09 Sep 2025 16:52:34 +0000 asID: 24021 IP address blocks: 203.147.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 13:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ea:d1:70:fa:bd:5d:7b:6a:af:8c:60:fd:b6:95:96:9d:ec:e7:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Sep 10 16:47:34 2024 GMT Not After : Sep 9 16:52:34 2025 GMT Subject: CN=422511B17484530F9A146E70B9A3627DFD0D29E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1b:a1:30:11:19:5f:66:5c:1f:7c:f1:75:9c: f3:bf:a7:81:a6:c2:1a:f9:dd:64:26:20:b4:a9:cd: 0f:d9:ee:2b:57:00:d3:82:8b:3f:10:a2:dc:8d:0d: dd:16:f3:a9:0d:54:54:6d:e4:12:af:1a:73:fb:20: ce:95:b8:17:c8:7b:64:19:36:2e:82:8f:94:af:89: 24:0d:8b:e1:06:c9:14:f4:2b:21:92:54:f2:2a:5b: 4f:6f:6a:73:4e:e8:6d:c1:19:bc:c2:98:4b:5b:e4: 73:00:69:ed:d6:40:db:18:af:d5:2e:f8:62:c5:1d: 1a:0c:66:5b:1b:cc:90:10:68:83:e8:c4:20:c8:75: cd:ba:6d:f0:91:08:c9:7c:80:89:df:74:09:d7:6b: 4f:28:42:c4:52:f0:ed:54:59:37:b5:ca:c9:1a:01: 51:ef:fd:ec:0c:6f:90:ad:90:87:a3:0c:7f:df:06: e9:64:ba:9c:01:e0:ff:10:d1:7d:2d:cd:b5:95:88: a3:49:29:7c:d3:df:a3:af:64:b1:ce:73:90:c5:1d: 72:30:70:0b:87:45:ae:3b:35:34:ac:ea:85:31:cb: eb:4c:e1:80:2f:10:0d:2f:88:4c:0a:3b:a0:e6:10: 49:7e:7b:dd:03:1f:8a:0e:4e:c7:95:18:73:e0:b5: e5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:25:11:B1:74:84:53:0F:9A:14:6E:70:B9:A3:62:7D:FD:0D:29:E5 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32342d3234203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:22:bb:00:fe:79:1b:01:bd:4e:e8:b0:23:cb:30:91:ac:52: 80:ee:d2:d0:8f:94:ee:b6:45:9f:f4:ac:55:4d:29:74:a0:9d: 5b:90:6c:91:4f:21:f4:a8:b4:25:0e:88:c5:6a:fb:42:26:22: 8e:86:ea:28:87:18:97:5e:6a:f2:d5:ca:69:46:66:04:18:fb: a8:51:4b:3e:39:30:9f:54:ba:96:1b:98:b4:ca:77:b0:f6:d0: ea:4f:f8:20:7c:74:cc:a7:22:a9:03:35:28:c9:96:25:68:74: 61:96:48:c1:33:b6:d7:e8:e2:2c:db:e7:2f:21:be:14:7c:86: 9b:78:fd:dc:1a:8c:21:61:56:17:2c:f0:e9:f5:bf:3a:44:70: e8:d9:dc:c6:97:24:7a:f1:a1:e0:7f:bc:cb:35:87:18:80:61: d1:97:b4:a7:7d:3c:64:82:ee:9b:4a:8c:e5:29:a1:58:10:2d: f6:bb:80:c9:d7:15:5b:b6:40:07:77:04:9c:cd:c4:14:81:2c: 53:37:62:f5:04:f2:b9:da:98:17:34:f8:69:da:82:b0:97:b4: 56:ae:c9:11:30:0e:be:f8:3f:dd:14:98:77:f4:d6:41:60:67: cf:65:11:7d:ab:ac:ab:b8:cd:1e:e6:04:af:86:6d:5f:0e:fe: 7f:fc:d0:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUJerRcPq9XXtqr4xg/baVlp3s59MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI0MDkxMDE2NDczNFoX DTI1MDkwOTE2NTIzNFowMzExMC8GA1UEAxMoNDIyNTExQjE3NDg0NTMwRjlBMTQ2 RTcwQjlBMzYyN0RGRDBEMjlFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0boTARGV9mXB988XWc87+ngabCGvndZCYgtKnND9nuK1cA04KLPxCi3I0N 3RbzqQ1UVG3kEq8ac/sgzpW4F8h7ZBk2LoKPlK+JJA2L4QbJFPQrIZJU8ipbT29q c07obcEZvMKYS1vkcwBp7dZA2xiv1S74YsUdGgxmWxvMkBBog+jEIMh1zbpt8JEI yXyAid90CddrTyhCxFLw7VRZN7XKyRoBUe/97AxvkK2Qh6MMf98G6WS6nAHg/xDR fS3NtZWIo0kpfNPfo69ksc5zkMUdcjBwC4dFrjs1NKzqhTHL60zhgC8QDS+ITAo7 oOYQSX573QMfig5Ox5UYc+C15XcCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBRCJRGx dIRTD5oUbnC5o2J9/Q0p5TAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAMuTbDANBgkqhkiG9w0BAQsFAAOCAQEACyK7AP55 GwG9TuiwI8swkaxSgO7S0I+U7rZFn/SsVU0pdKCdW5BskU8h9Ki0JQ6IxWr7QiYi jobqKIcYl15q8tXKaUZmBBj7qFFLPjkwn1S6lhuYtMp3sPbQ6k/4IHx0zKciqQM1 KMmWJWh0YZZIwTO21+jiLNvnLyG+FHyGm3j93BqMIWFWFyzw6fW/OkRw6Nncxpck evGh4H+8yzWHGIBh0Ze0p308ZILum0qM5SmhWBAt9ruAydcVW7ZAB3cEnM3EFIEs Uzdi9QTyudqYFzT4adqCsJe0Vq7JETAOvvg/3RSYd/TWQWBnz2URfausq7jNHuYE r4ZtXw7+f/zQRg== -----END CERTIFICATE-----Generated at Sat Nov 23 14:50:47 2024 by rpki-client on console-ams.rpki-client.org