$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/323430383a323030303a3a2f32342d3234203d3e2034363038.roa File: 323430383a323030303a3a2f32342d3234203d3e2034363038.roa (raw, json) Hash identifier: 5aB8TDzNC812hBpfBTDPmClE4aSLFpKlSt59SN5tzLY= Subject key identifier: 44:76:AD:5E:CE:07:1C:4F:8F:D1:33:52:E2:3D:7B:11:5E:FC:9C:27 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 3B37FA7DC2022C92A80E27B2DCE4CA3AD504F4E8 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/323430383a323030303a3a2f32342d3234203d3e2034363038.roa Signing time: Tue 10 Oct 2023 15:36:19 +0000 ROA not before: Tue 10 Oct 2023 15:31:19 +0000 ROA not after: Tue 08 Oct 2024 15:36:19 +0000 asID: 4608 IP address blocks: 2408:2000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 03:37:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:37:fa:7d:c2:02:2c:92:a8:0e:27:b2:dc:e4:ca:3a:d5:04:f4:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Oct 10 15:31:19 2023 GMT Not After : Oct 8 15:36:19 2024 GMT Subject: CN=4476AD5ECE071C4F8FD13352E23D7B115EFC9C27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:94:19:64:f0:a9:57:56:60:e6:99:d7:09:5d: 6e:ed:c5:ce:32:80:25:b5:1b:ba:39:2f:38:94:41: 67:53:28:fa:0e:3e:ab:0a:d7:62:78:6d:11:3e:5a: 20:72:54:b7:a7:b0:cf:83:22:e2:d7:bd:cb:d3:54: ce:d3:6b:52:48:3b:7a:0b:a5:37:f6:cc:ac:b9:ac: e6:b2:81:0c:a4:80:ef:03:6f:c7:7a:52:5e:30:21: 2b:05:3b:c9:ff:a4:29:c0:79:6f:3f:d6:d8:dd:da: fe:59:99:00:c7:05:37:2c:af:92:51:8f:d2:4b:dd: ef:9a:f4:d3:ed:28:e2:d4:71:de:84:c6:2e:59:f6: 22:2d:e6:ca:44:d7:24:64:a0:3d:1d:61:5a:63:ff: 56:85:30:d6:3a:de:d5:80:66:fe:32:30:73:ab:6a: 42:5b:a6:66:6e:4e:c5:f4:86:f2:6a:98:10:ec:72: 59:cd:3b:7c:c1:f2:0b:e2:2b:bf:e0:34:42:88:e8: e3:bd:40:00:a8:1e:64:26:04:57:b3:40:c9:71:63: fc:28:66:06:aa:ba:2b:df:fd:82:19:24:6d:c9:0d: 75:36:63:a0:d1:44:12:ab:22:72:f9:c1:db:0b:ff: a0:52:b9:a8:b8:d7:23:f8:f3:48:80:da:b6:c5:b1: 3d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:76:AD:5E:CE:07:1C:4F:8F:D1:33:52:E2:3D:7B:11:5E:FC:9C:27 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/323430383a323030303a3a2f32342d3234203d3e2034363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2408:2000::/24 Signature Algorithm: sha256WithRSAEncryption 16:4b:c9:40:ca:48:29:18:cb:2f:47:1b:2d:e3:e0:50:c0:aa: 2c:89:4f:84:94:0c:c8:d9:8a:23:19:7a:48:0f:ee:de:89:3a: bf:2c:62:62:ae:79:32:e7:e3:f7:b8:84:39:a1:99:15:c7:1a: d6:45:4e:6a:50:b5:42:82:74:c0:a6:42:a2:0d:3e:fd:79:fa: 96:31:3f:9b:78:2a:21:e5:5f:72:e3:4c:76:13:3e:af:42:74: 9a:5f:09:cd:fd:a7:a9:36:c5:a0:8c:28:52:ba:99:14:be:ca: 6b:2a:b1:d0:e5:f7:97:38:df:83:ec:c1:e6:c4:86:25:ea:71: 4d:11:41:8d:d1:94:e6:f5:23:4d:b0:f0:82:7b:d9:fc:02:c5: 31:5c:46:f6:69:6c:73:c5:e9:65:c4:2f:bc:f7:68:eb:b8:51: 79:b3:2e:6a:ec:36:31:1a:69:22:b1:89:df:71:6f:a9:3c:3d: c4:86:4b:27:16:3c:f2:1d:f1:01:0b:30:1a:c8:86:0d:79:b7: 52:8f:79:f4:cd:ff:da:ec:f5:86:45:ee:2a:68:fb:f4:12:99: 93:5b:55:14:ad:55:a7:78:08:cf:56:5f:99:7a:76:9a:0c:30: 55:3c:72:94:7b:df:00:b9:57:2f:d8:85:36:52:42:ce:c5:f5: f2:31:c8:eb -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUOzf6fcICLJKoDiey3OTKOtUE9OgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTIzMTAxMDE1MzExOVoX DTI0MTAwODE1MzYxOVowMzExMC8GA1UEAxMoNDQ3NkFENUVDRTA3MUM0RjhGRDEz MzUyRTIzRDdCMTE1RUZDOUMyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCUGWTwqVdWYOaZ1wldbu3FzjKAJbUbujkvOJRBZ1Mo+g4+qwrXYnhtET5a IHJUt6ewz4Mi4te9y9NUztNrUkg7egulN/bMrLms5rKBDKSA7wNvx3pSXjAhKwU7 yf+kKcB5bz/W2N3a/lmZAMcFNyyvklGP0kvd75r00+0o4tRx3oTGLln2Ii3mykTX JGSgPR1hWmP/VoUw1jre1YBm/jIwc6tqQlumZm5OxfSG8mqYEOxyWc07fMHyC+Ir v+A0Qojo471AAKgeZCYEV7NAyXFj/ChmBqq6K9/9ghkkbckNdTZjoNFEEqsicvnB 2wv/oFK5qLjXI/jzSIDatsWxPQkCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBREdq1e zgccT4/RM1LiPXsRXvycJzAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBggYIKwYBBQUHAQsEdjB0MHIGCCsGAQUFBzALhmZy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjM0MzAzODNhMzIzMDMwMzAzYTNhMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAz OC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAIwBgMEACQIIDANBgkqhkiG9w0BAQsFAAOCAQEAFkvJQMpIKRjLL0cb LePgUMCqLIlPhJQMyNmKIxl6SA/u3ok6vyxiYq55Mufj97iEOaGZFcca1kVOalC1 QoJ0wKZCog0+/Xn6ljE/m3gqIeVfcuNMdhM+r0J0ml8Jzf2nqTbFoIwoUrqZFL7K ayqx0OX3lzjfg+zB5sSGJepxTRFBjdGU5vUjTbDwgnvZ/ALFMVxG9mlsc8XpZcQv vPdo67hRebMuauw2MRppIrGJ33FvqTw9xIZLJxY88h3xAQswGsiGDXm3Uo959M3/ 2uz1hkXuKmj79BKZk1tVFK1Vp3gIz1ZfmXp2mgwwVTxylHvfALlXL9iFNlJCzsX1 8jHI6w== -----END CERTIFICATE-----Generated at Mon May 6 01:02:04 2024 by rpki-client on console-ams.rpki-client.org