$ rpki-client -vvf rpki.sub.apnic.net/repository/A9127EEB0000/0/3130332e34392e34322e302f32342d3234203d3e203230343733.roa File: 3130332e34392e34322e302f32342d3234203d3e203230343733.roa (raw, json) Hash identifier: HGKDj3rQnp5EOXE26UHhh9HgiC921vZpFKzbpn1KsmU= Subject key identifier: 2D:92:6F:9C:AC:86:27:14:0C:5C:3A:8C:64:BC:68:D5:03:4F:E4:6F Certificate issuer: /CN=A9127EEB0000/serialNumber=130F57124A8921F00083A228FEBE2B78373015E3 Certificate serial: 2B5F7E958D3C869296472B8FE5370A407452F0B4 Authority key identifier: 13:0F:57:12:4A:89:21:F0:00:83:A2:28:FE:BE:2B:78:37:30:15:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ew9XEkqJIfAAg6Io_r4reDcwFeM.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/3130332e34392e34322e302f32342d3234203d3e203230343733.roa Signing time: Mon 18 Dec 2023 07:18:37 +0000 ROA not before: Mon 18 Dec 2023 07:13:37 +0000 ROA not after: Mon 16 Dec 2024 07:18:37 +0000 asID: 20473 IP address blocks: 103.49.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/130F57124A8921F00083A228FEBE2B78373015E3.crl rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/130F57124A8921F00083A228FEBE2B78373015E3.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ew9XEkqJIfAAg6Io_r4reDcwFeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 14:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:5f:7e:95:8d:3c:86:92:96:47:2b:8f:e5:37:0a:40:74:52:f0:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EEB0000/serialNumber=130F57124A8921F00083A228FEBE2B78373015E3 Validity Not Before: Dec 18 07:13:37 2023 GMT Not After : Dec 16 07:18:37 2024 GMT Subject: CN=2D926F9CAC8627140C5C3A8C64BC68D5034FE46F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:83:3a:0f:5b:c1:1b:49:2b:31:12:7f:50:4d: 01:fe:31:98:83:e7:e3:f3:10:39:a0:66:ab:47:ac: 74:1a:f3:8a:99:b6:83:e6:cf:f2:6d:3e:d2:7a:56: 97:36:05:fb:fe:6c:0b:81:2e:9b:52:28:59:1b:75: b6:60:2a:d7:f6:14:ea:03:98:81:3d:36:1d:7a:7a: 32:29:c0:e5:78:c2:c3:91:25:05:a6:ce:40:69:48: 08:3b:ea:23:fc:55:f9:df:ae:e6:bf:8d:ab:ef:92: 2d:51:9f:c7:15:38:48:d0:28:37:75:97:ed:78:d1: e5:2e:60:76:b9:7d:1e:95:60:33:f7:2f:56:be:f6: 1f:2e:e8:e8:f7:d9:32:79:7d:94:36:98:b5:0d:92: 23:cc:52:52:11:89:1b:19:75:67:cf:97:a5:e7:dc: 8f:57:6f:ca:77:58:36:bc:63:5f:f2:3e:de:99:a8: 51:9b:96:89:44:bd:71:76:5b:58:cc:02:ef:2c:b0: 30:f7:a1:06:5f:d2:6c:fb:05:d5:fd:40:ba:c5:1d: 09:40:a1:16:a2:1a:71:1e:32:8e:79:af:2f:b3:dc: 3e:f8:4b:e0:90:ed:a5:6b:a0:54:b4:b4:e9:e0:f8: ea:54:f9:a6:8f:6e:5b:5b:6d:39:1d:d7:68:a7:25: 3a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:92:6F:9C:AC:86:27:14:0C:5C:3A:8C:64:BC:68:D5:03:4F:E4:6F X509v3 Authority Key Identifier: keyid:13:0F:57:12:4A:89:21:F0:00:83:A2:28:FE:BE:2B:78:37:30:15:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/130F57124A8921F00083A228FEBE2B78373015E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ew9XEkqJIfAAg6Io_r4reDcwFeM.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/3130332e34392e34322e302f32342d3234203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.42.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:32:15:19:06:4f:bb:8a:0d:f8:20:e3:25:dc:b0:73:1d:dc: 74:f8:6c:97:46:7c:2e:30:91:26:36:40:a1:24:2d:46:0c:a5: 15:18:ed:f5:3d:79:a1:d4:ae:db:cb:58:35:5d:04:66:5c:07: 9b:43:a2:f6:fa:18:5e:62:5b:a4:db:c2:03:e6:72:77:3c:2d: b3:85:76:b9:f6:4f:d6:95:09:1d:96:e7:ed:52:5b:a6:09:32: 45:85:92:2f:40:1a:70:4e:c5:a3:d4:ab:a2:0e:88:f4:4a:4b: ef:19:59:f5:4e:0d:5a:ba:5c:9a:67:5a:bf:8d:4b:55:2d:96: 0a:1a:4a:b3:bb:32:ac:29:a7:79:3f:ec:af:c1:db:fc:38:fc: 4c:75:1e:ce:e4:02:0c:b6:0e:e2:06:c8:8c:8a:6b:02:31:a6: 9b:a3:87:34:8e:53:6e:50:0f:29:44:b8:fc:31:72:ea:4e:49: a4:95:03:81:cd:c4:c3:55:04:2b:d8:ab:5c:85:f1:d2:43:6b: 09:f2:c7:88:23:c1:85:23:4f:58:c0:e9:98:d7:42:a4:69:7d: e3:f6:67:d9:41:1e:1e:67:10:66:68:49:2d:c7:91:c4:da:6e: 51:c8:9b:8d:e2:e3:3f:3e:54:ac:2f:b5:25:68:e4:68:7c:95: 6e:07:6c:dd -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUK19+lY08hpKWRyuP5TcKQHRS8LQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjdFRUIwMDAwMTEwLwYDVQQFEygxMzBGNTcxMjRB ODkyMUYwMDA4M0EyMjhGRUJFMkI3ODM3MzAxNUUzMB4XDTIzMTIxODA3MTMzN1oX DTI0MTIxNjA3MTgzN1owMzExMC8GA1UEAxMoMkQ5MjZGOUNBQzg2MjcxNDBDNUMz QThDNjRCQzY4RDUwMzRGRTQ2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKODOg9bwRtJKzESf1BNAf4xmIPn4/MQOaBmq0esdBrzipm2g+bP8m0+0npW lzYF+/5sC4Eum1IoWRt1tmAq1/YU6gOYgT02HXp6MinA5XjCw5ElBabOQGlICDvq I/xV+d+u5r+Nq++SLVGfxxU4SNAoN3WX7XjR5S5gdrl9HpVgM/cvVr72Hy7o6PfZ Mnl9lDaYtQ2SI8xSUhGJGxl1Z8+Xpefcj1dvyndYNrxjX/I+3pmoUZuWiUS9cXZb WMwC7yywMPehBl/SbPsF1f1AusUdCUChFqIacR4yjnmvL7PcPvhL4JDtpWugVLS0 6eD46lT5po9uW1ttOR3XaKclOgUCAwEAAaOCAg8wggILMB0GA1UdDgQWBBQtkm+c rIYnFAxcOoxkvGjVA0/kbzAfBgNVHSMEGDAWgBQTD1cSSokh8ACDoij+vit4NzAV 4zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTEyN0VFQjAwMDAvMC8xMzBGNTcx MjRBODkyMUYwMDA4M0EyMjhGRUJFMkI3ODM3MzAxNUUzLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9FdzlYRWtxSklm QUFnNklvX3I0cmVEY3dGZU0uY2VyMIGJBggrBgEFBQcBCwR9MHsweQYIKwYBBQUH MAuGbXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxMjdF RUIwMDAwLzAvMzEzMDMzMmUzNDM5MmUzNDMyMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzIzMDM0MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcxKjANBgkqhkiG9w0BAQsFAAOCAQEA XzIVGQZPu4oN+CDjJdywcx3cdPhsl0Z8LjCRJjZAoSQtRgylFRjt9T15odSu28tY NV0EZlwHm0Oi9voYXmJbpNvCA+Zydzwts4V2ufZP1pUJHZbn7VJbpgkyRYWSL0Aa cE7Fo9Srog6I9EpL7xlZ9U4NWrpcmmdav41LVS2WChpKs7syrCmneT/sr8Hb/Dj8 THUezuQCDLYO4gbIjIprAjGmm6OHNI5TblAPKUS4/DFy6k5JpJUDgc3Ew1UEK9ir XIXx0kNrCfLHiCPBhSNPWMDpmNdCpGl94/Zn2UEeHmcQZmhJLceRxNpuUcibjeLj Pz5UrC+1JWjkaHyVbgds3Q== -----END CERTIFICATE-----Generated at Mon May 6 19:09:56 2024 by rpki-client on console-ams.rpki-client.org