$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130392e302f32342d3234203d3e203234303231.roa File: 3230332e3134372e3130392e302f32342d3234203d3e203234303231.roa (raw, json) Hash identifier: 4JLtXOVAXpPqX6hxUny4rYQ+KzHdr2B7l5TXdy0MdRU= Subject key identifier: F5:47:C1:C6:AF:18:40:B8:2C:84:D6:C7:B7:73:25:50:65:F7:98:97 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 3DA247CB7169468FFE044117D4AEFF06D657BE99 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130392e302f32342d3234203d3e203234303231.roa Signing time: Tue 10 Sep 2024 16:52:33 +0000 ROA not before: Tue 10 Sep 2024 16:47:33 +0000 ROA not after: Tue 09 Sep 2025 16:52:33 +0000 asID: 24021 IP address blocks: 203.147.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 13:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:a2:47:cb:71:69:46:8f:fe:04:41:17:d4:ae:ff:06:d6:57:be:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Sep 10 16:47:33 2024 GMT Not After : Sep 9 16:52:33 2025 GMT Subject: CN=F547C1C6AF1840B82C84D6C7B773255065F79897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:1e:1e:af:c9:d8:03:ff:36:80:af:3c:6d:31: f4:fa:71:1f:b3:13:0e:a6:8c:ab:9f:90:5f:d1:c6: 7c:bb:55:ae:b2:c3:18:ec:db:90:d4:8c:c5:ce:19: c3:c5:9f:28:a9:b0:33:f0:6f:7c:39:a8:d3:83:47: bc:ea:b7:c5:c2:68:e1:eb:6b:e9:19:bb:66:dd:da: fd:9f:24:f7:fa:c5:44:ed:72:ae:23:6e:9b:a6:6e: e3:f0:71:d5:3d:0f:44:c1:89:d1:3f:d5:98:90:e5: 9b:c6:de:5e:a3:69:96:47:18:81:7e:58:de:d3:d2: 71:f9:98:d1:f4:b1:5a:e3:33:7e:5a:d6:4f:d4:2f: 00:c5:8c:06:00:35:b4:72:4c:45:2b:3f:6f:62:b8: ed:b3:ea:48:60:25:d7:fd:86:e2:46:b8:17:1b:9e: 47:f8:0e:3a:2b:5c:36:1b:1d:2e:85:5f:96:d9:3a: d5:b1:52:7b:25:d5:0f:7c:87:b5:e3:73:dd:dc:dc: fd:f7:34:bd:5a:47:24:d8:91:60:70:a0:78:d6:11: d4:a2:9c:9d:fa:77:9d:59:c7:e5:34:96:54:09:ba: e5:5d:5d:a7:03:26:dc:b6:e9:0f:a9:d1:1a:e5:bf: c8:f6:98:51:53:53:d1:0f:9f:5a:ac:49:56:a0:d4: 46:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:47:C1:C6:AF:18:40:B8:2C:84:D6:C7:B7:73:25:50:65:F7:98:97 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130392e302f32342d3234203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.109.0/24 Signature Algorithm: sha256WithRSAEncryption 10:1f:d3:db:53:b6:b1:54:2b:b6:a7:c8:ee:2e:7b:17:bd:96: 0d:e1:af:cd:89:34:9a:17:ba:ae:bf:34:99:f0:57:4d:9f:22: 2f:b0:f1:88:0c:6a:bc:16:ea:9c:aa:c3:1f:0e:ea:cc:aa:8d: 7b:de:54:d0:93:56:3c:61:09:7b:c0:1d:9c:7d:f8:cc:55:87: 12:15:be:d2:89:fa:6f:09:46:49:12:3e:40:17:1b:52:fc:02: b0:81:e6:64:34:4b:2a:99:17:5a:99:29:75:fa:0b:22:d3:6b: 28:19:10:f8:65:74:90:0c:25:7e:b7:ec:a8:df:43:3f:25:40: eb:ff:9a:6f:bf:d3:0b:a1:19:b3:ff:8b:f5:e2:8a:b0:10:53: 66:22:ee:fd:fe:b6:64:0e:1e:d6:0f:4f:02:d9:64:b2:c7:3f: d4:7e:19:45:d6:c7:41:d9:a5:f8:e1:6b:23:9a:b5:14:fd:06: 8b:86:96:2a:f7:b7:33:17:f8:a6:07:6c:3b:94:49:6f:58:34: 59:7d:14:e8:1f:e5:60:0b:bb:ff:4a:c9:47:cd:ac:fa:3a:be: 4e:8e:7e:1a:09:83:9c:df:6c:ef:f2:9b:69:fd:d8:c5:b6:0c: 8c:46:86:8d:a1:4b:54:91:ea:2b:5e:d0:86:a3:f2:0d:75:88: e8:5a:25:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUPaJHy3FpRo/+BEEX1K7/BtZXvpkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI0MDkxMDE2NDczM1oX DTI1MDkwOTE2NTIzM1owMzExMC8GA1UEAxMoRjU0N0MxQzZBRjE4NDBCODJDODRE NkM3Qjc3MzI1NTA2NUY3OTg5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOceHq/J2AP/NoCvPG0x9PpxH7MTDqaMq5+QX9HGfLtVrrLDGOzbkNSMxc4Z w8WfKKmwM/BvfDmo04NHvOq3xcJo4etr6Rm7Zt3a/Z8k9/rFRO1yriNum6Zu4/Bx 1T0PRMGJ0T/VmJDlm8beXqNplkcYgX5Y3tPScfmY0fSxWuMzflrWT9QvAMWMBgA1 tHJMRSs/b2K47bPqSGAl1/2G4ka4FxueR/gOOitcNhsdLoVfltk61bFSeyXVD3yH teNz3dzc/fc0vVpHJNiRYHCgeNYR1KKcnfp3nVnH5TSWVAm65V1dpwMm3LbpD6nR GuW/yPaYUVNT0Q+fWqxJVqDURk0CAwEAAaOCAgkwggIFMB0GA1UdDgQWBBT1R8HG rxhAuCyE1se3cyVQZfeYlzAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAMuTbTANBgkqhkiG9w0BAQsFAAOCAQEAEB/T21O2 sVQrtqfI7i57F72WDeGvzYk0mhe6rr80mfBXTZ8iL7DxiAxqvBbqnKrDHw7qzKqN e95U0JNWPGEJe8AdnH34zFWHEhW+0on6bwlGSRI+QBcbUvwCsIHmZDRLKpkXWpkp dfoLItNrKBkQ+GV0kAwlfrfsqN9DPyVA6/+ab7/TC6EZs/+L9eKKsBBTZiLu/f62 ZA4e1g9PAtlkssc/1H4ZRdbHQdml+OFrI5q1FP0Gi4aWKve3Mxf4pgdsO5RJb1g0 WX0U6B/lYAu7/0rJR82s+jq+To5+GgmDnN9s7/Kbaf3YxbYMjEaGjaFLVJHqK17Q hqPyDXWI6Folpw== -----END CERTIFICATE-----Generated at Sat Nov 23 13:14:42 2024 by rpki-client on console-fra.rpki-client.org