$ rpki-client -vvf rpki.sub.apnic.net/repository/A9126DA80000/1/3130332e32352e3132342e302f32342d3234203d3e203134363138.roa File: 3130332e32352e3132342e302f32342d3234203d3e203134363138.roa (raw, json) Hash identifier: N/UGLKyCF1nlWGfA4MlZFn9fe9dMDYLHEgBApUdM/AQ= Subject key identifier: A0:C7:F2:55:A8:F9:5D:17:B9:98:77:A4:B2:7C:32:62:88:B6:FD:AB Certificate issuer: /CN=A9126DA80000/serialNumber=C9F03620A27CCEADA6E7E2CEC6C5AD8CB93FE112 Certificate serial: 1212EF6A04659A1A5A16C15D2874A8E22B9723D9 Authority key identifier: C9:F0:36:20:A2:7C:CE:AD:A6:E7:E2:CE:C6:C5:AD:8C:B9:3F:E1:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yfA2IKJ8zq2m5-LOxsWtjLk_4RI.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A9126DA80000/1/3130332e32352e3132342e302f32342d3234203d3e203134363138.roa Signing time: Tue 31 Dec 2024 07:04:46 +0000 ROA not before: Tue 31 Dec 2024 06:59:46 +0000 ROA not after: Tue 30 Dec 2025 07:04:46 +0000 asID: 14618 IP address blocks: 103.25.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A9126DA80000/1/C9F03620A27CCEADA6E7E2CEC6C5AD8CB93FE112.crl rsync://rpki.sub.apnic.net/repository/A9126DA80000/1/C9F03620A27CCEADA6E7E2CEC6C5AD8CB93FE112.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yfA2IKJ8zq2m5-LOxsWtjLk_4RI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 16:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:12:ef:6a:04:65:9a:1a:5a:16:c1:5d:28:74:a8:e2:2b:97:23:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126DA80000 Validity Not Before: Dec 31 06:59:46 2024 GMT Not After : Dec 30 07:04:46 2025 GMT Subject: CN=A0C7F255A8F95D17B99877A4B27C326288B6FDAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:58:c9:cd:56:98:4f:5a:40:4d:05:32:96:01: 28:1f:dc:42:0d:b3:40:f1:c7:8f:69:4d:1e:e7:bc: 98:23:43:11:e0:08:de:2e:b6:35:05:15:50:76:ed: e3:f4:e0:81:27:2d:5c:5d:39:4e:42:3c:54:bf:fc: 78:96:e5:01:06:a1:22:33:6a:89:ed:14:44:b1:06: 80:8f:16:7f:47:b5:11:37:22:bb:20:59:f0:3f:fc: f9:1a:61:14:a5:c5:94:ec:ba:83:1a:0b:6e:38:94: 18:a5:ac:0f:12:b1:1a:1b:36:7b:25:af:98:40:c5: 3e:fe:4d:0b:51:ec:7a:2b:13:7e:95:f8:87:9f:93: 8c:e6:80:b9:d7:8c:a0:62:23:e5:23:5b:b0:6f:a3: d0:5a:ed:7f:8a:73:26:6d:db:95:28:31:a0:6c:f2: 65:01:8b:ff:d1:ef:48:b9:7b:b3:a6:3a:70:43:5e: f2:d2:42:00:36:20:9c:c0:27:dd:4e:bf:42:05:26: d8:a7:e7:84:d7:63:4b:86:d8:81:4f:7b:a5:10:2a: 0d:71:cb:20:31:49:5d:7f:0e:fb:54:82:a3:83:b5: 51:e2:1a:01:9a:c5:e4:ac:05:3c:84:fa:4d:8a:55: aa:53:d7:fb:ef:93:95:e2:c7:6a:66:53:f1:69:c8: 16:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C7:F2:55:A8:F9:5D:17:B9:98:77:A4:B2:7C:32:62:88:B6:FD:AB X509v3 Authority Key Identifier: keyid:C9:F0:36:20:A2:7C:CE:AD:A6:E7:E2:CE:C6:C5:AD:8C:B9:3F:E1:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A9126DA80000/1/C9F03620A27CCEADA6E7E2CEC6C5AD8CB93FE112.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yfA2IKJ8zq2m5-LOxsWtjLk_4RI.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9126DA80000/1/3130332e32352e3132342e302f32342d3234203d3e203134363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.124.0/24 Signature Algorithm: sha256WithRSAEncryption 61:2a:00:6f:c8:67:46:a1:0f:4f:72:a2:09:c0:a2:67:7a:14: 1f:17:97:52:4e:8d:aa:26:bf:b2:eb:81:ba:a7:09:c9:0d:f7: 8d:1f:22:8f:a6:13:4a:47:c3:20:d2:7b:72:ee:43:87:6c:e0: f3:d3:4f:45:51:dd:c0:66:b6:dd:9c:89:1d:97:49:83:37:2a: c7:62:09:53:f2:b1:dc:80:82:93:61:fb:01:82:0c:c4:8a:f9: b3:41:61:a9:df:aa:78:5c:32:3d:47:2f:d6:f6:41:92:7c:f8: 86:55:ea:d9:52:cd:bf:06:3b:13:09:71:1f:64:0e:3d:40:6e: d5:c6:41:bb:10:9f:e0:34:5d:0a:7b:73:8c:d3:32:3a:a4:30: 18:05:d3:0c:f2:93:e9:6c:e6:3f:4a:a7:c4:06:71:25:cd:a5: df:ce:bc:a2:a8:1b:83:a9:f8:a0:5b:7f:89:33:eb:c7:5a:be: c1:c0:d6:45:e4:67:3b:59:e0:e1:15:03:f8:5c:c2:61:90:8a: 9a:68:a2:b5:68:7a:46:c6:1c:8e:08:dd:ce:10:22:10:e3:8f: b3:b8:93:88:81:7d:79:7c:cb:42:e6:ff:a0:74:e6:aa:61:85: c1:0d:01:6b:0b:df:e6:d8:ab:66:f0:00:b1:50:ef:5f:02:17: 41:08:46:54 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUEhLvagRlmhpaFsFdKHSo4iuXI9kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjZEQTgwMDAwMTEwLwYDVQQFEyhDOUYwMzYyMEEy N0NDRUFEQTZFN0UyQ0VDNkM1QUQ4Q0I5M0ZFMTEyMB4XDTI0MTIzMTA2NTk0NloX DTI1MTIzMDA3MDQ0NlowMzExMC8GA1UEAxMoQTBDN0YyNTVBOEY5NUQxN0I5OTg3 N0E0QjI3QzMyNjI4OEI2RkRBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5Yyc1WmE9aQE0FMpYBKB/cQg2zQPHHj2lNHue8mCNDEeAI3i62NQUVUHbt 4/TggSctXF05TkI8VL/8eJblAQahIjNqie0URLEGgI8Wf0e1ETciuyBZ8D/8+Rph FKXFlOy6gxoLbjiUGKWsDxKxGhs2eyWvmEDFPv5NC1HseisTfpX4h5+TjOaAudeM oGIj5SNbsG+j0Frtf4pzJm3blSgxoGzyZQGL/9HvSLl7s6Y6cENe8tJCADYgnMAn 3U6/QgUm2KfnhNdjS4bYgU97pRAqDXHLIDFJXX8O+1SCo4O1UeIaAZrF5KwFPIT6 TYpVqlPX+++TleLHamZT8WnIFoMCAwEAAaOCAhEwggINMB0GA1UdDgQWBBSgx/JV qPldF7mYd6SyfDJiiLb9qzAfBgNVHSMEGDAWgBTJ8DYgonzOrabn4s7Gxa2MuT/h EjAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTEyNkRBODAwMDAvMS9DOUYwMzYy MEEyN0NDRUFEQTZFN0UyQ0VDNkM1QUQ4Q0I5M0ZFMTEyLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi95ZkEySUtKOHpx Mm01LUxPeHNXdGpMa180UkkuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxMjZE QTgwMDAwLzEvMzEzMDMzMmUzMjM1MmUzMTMyMzQyZTMwMmYzMjM0MmQzMjM0MjAz ZDNlMjAzMTM0MzYzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxl8MA0GCSqGSIb3DQEBCwUAA4IB AQBhKgBvyGdGoQ9PcqIJwKJnehQfF5dSTo2qJr+y64G6pwnJDfeNHyKPphNKR8Mg 0nty7kOHbODz009FUd3AZrbdnIkdl0mDNyrHYglT8rHcgIKTYfsBggzEivmzQWGp 36p4XDI9Ry/W9kGSfPiGVerZUs2/BjsTCXEfZA49QG7VxkG7EJ/gNF0Ke3OM0zI6 pDAYBdMM8pPpbOY/SqfEBnElzaXfzryiqBuDqfigW3+JM+vHWr7BwNZF5Gc7WeDh FQP4XMJhkIqaaKK1aHpGxhyOCN3OECIQ44+zuJOIgX15fMtC5v+gdOaqYYXBDQFr C9/m2Ktm8ACxUO9fAhdBCEZU -----END CERTIFICATE-----Generated at Fri Apr 4 23:58:39 2025 by rpki-client