$ rpki-client -vvf rpki.sub.apnic.net/repository/A9127EEB0000/0/3130332e34392e34332e302f32342d3234203d3e20383334.roa File: 3130332e34392e34332e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: wLKOf6b+Tq8kG6f6p6KIV/MBe2YDc6UiXHLukzm4qFY= Subject key identifier: 67:B5:48:9E:88:BB:33:64:2E:4A:8E:E0:F6:75:6C:04:98:26:E9:33 Certificate issuer: /CN=A9127EEB0000/serialNumber=130F57124A8921F00083A228FEBE2B78373015E3 Certificate serial: 5EAFE98902A0FC658C802B03B5E0A547CA20A080 Authority key identifier: 13:0F:57:12:4A:89:21:F0:00:83:A2:28:FE:BE:2B:78:37:30:15:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ew9XEkqJIfAAg6Io_r4reDcwFeM.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/3130332e34392e34332e302f32342d3234203d3e20383334.roa Signing time: Mon 18 Dec 2023 07:19:05 +0000 ROA not before: Mon 18 Dec 2023 07:14:05 +0000 ROA not after: Mon 16 Dec 2024 07:19:05 +0000 asID: 834 IP address blocks: 103.49.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/130F57124A8921F00083A228FEBE2B78373015E3.crl rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/130F57124A8921F00083A228FEBE2B78373015E3.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ew9XEkqJIfAAg6Io_r4reDcwFeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 10:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:af:e9:89:02:a0:fc:65:8c:80:2b:03:b5:e0:a5:47:ca:20:a0:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EEB0000/serialNumber=130F57124A8921F00083A228FEBE2B78373015E3 Validity Not Before: Dec 18 07:14:05 2023 GMT Not After : Dec 16 07:19:05 2024 GMT Subject: CN=67B5489E88BB33642E4A8EE0F6756C049826E933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:80:90:4f:82:77:38:dd:81:0d:8d:8d:cd:46: 04:81:9c:d5:2e:c4:2f:78:eb:32:11:42:08:40:89: f4:b7:15:5f:28:bd:d8:28:6f:06:0d:7e:9d:cf:e7: 9e:6f:7e:0e:d4:d9:79:89:68:31:67:5a:44:5a:56: 1c:d6:60:28:1f:2e:07:36:bb:dc:90:6e:3f:de:18: 3a:26:19:ba:67:23:46:ed:c9:8e:82:90:d6:75:f4: fc:e4:7e:9d:2b:4c:91:65:98:69:16:b0:fa:04:1d: ba:56:0e:d5:bf:7f:ea:10:78:bc:e7:d9:de:ad:44: 32:f2:5a:72:4b:cd:50:59:22:90:21:8d:70:5c:fb: 91:25:7c:34:f6:50:b0:1f:97:f6:30:69:08:2b:bd: 13:72:3e:ac:f0:8b:c7:a2:ad:f7:3a:50:31:f9:e1: 55:d3:8b:eb:6f:2d:a3:6f:b4:1e:d8:56:e8:21:b7: e3:0e:75:47:9b:48:14:8e:d0:9d:13:59:50:81:0c: 0c:84:11:d7:72:10:49:e1:d8:f4:d7:59:6a:72:c6: 81:11:14:1d:94:47:d6:18:f1:39:ea:3a:00:1f:4e: 32:ce:ab:33:6f:3f:24:68:7c:4b:92:ea:e6:59:bc: 49:f5:a9:26:a2:ed:7b:a6:44:d7:f8:f6:84:0e:03: 05:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B5:48:9E:88:BB:33:64:2E:4A:8E:E0:F6:75:6C:04:98:26:E9:33 X509v3 Authority Key Identifier: keyid:13:0F:57:12:4A:89:21:F0:00:83:A2:28:FE:BE:2B:78:37:30:15:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/130F57124A8921F00083A228FEBE2B78373015E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ew9XEkqJIfAAg6Io_r4reDcwFeM.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/3130332e34392e34332e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.43.0/24 Signature Algorithm: sha256WithRSAEncryption 46:59:42:df:fc:63:fd:da:73:2c:34:c0:76:89:2f:d2:9b:10: 52:15:90:24:35:4e:94:af:aa:82:b0:4d:1a:3a:92:8e:85:5b: 88:b1:93:be:0c:2b:16:e3:fe:57:e8:37:7a:25:69:cb:50:0d: f7:0f:69:25:5c:dc:e6:85:d9:a5:cf:57:6d:ee:26:07:21:03: fa:6d:80:ed:f3:2a:ad:70:b6:72:9e:f1:62:7d:09:4c:2d:2b: ab:d9:69:46:c9:e7:ad:9b:30:88:a0:93:4b:b2:8b:82:f4:8a: 90:fb:0a:3b:f5:f6:ce:36:da:97:d4:39:62:fd:4a:a7:d8:45: ac:f5:82:a1:2a:8b:eb:c5:d7:7c:63:47:7a:45:1d:a0:c9:6e: 66:12:42:43:93:f5:3c:db:26:bb:68:9d:31:69:8c:57:60:70: 8b:7d:85:0b:7e:5a:91:33:80:f4:ef:98:3a:87:e1:06:7d:b0: a4:ae:4b:aa:7f:b5:f0:89:c0:3b:1a:9b:6a:e9:34:09:10:72: 86:28:55:23:5e:f3:57:01:2e:a3:f1:44:6e:14:0f:ea:a8:24: a0:db:92:9e:8d:71:e6:7b:95:17:55:51:ee:57:a0:6c:6a:88: 4c:1a:24:04:5c:02:39:b4:14:1a:5a:89:4d:30:e0:0f:b0:4c: af:ae:4b:7d -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUXq/piQKg/GWMgCsDteClR8ogoIAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjdFRUIwMDAwMTEwLwYDVQQFEygxMzBGNTcxMjRB ODkyMUYwMDA4M0EyMjhGRUJFMkI3ODM3MzAxNUUzMB4XDTIzMTIxODA3MTQwNVoX DTI0MTIxNjA3MTkwNVowMzExMC8GA1UEAxMoNjdCNTQ4OUU4OEJCMzM2NDJFNEE4 RUUwRjY3NTZDMDQ5ODI2RTkzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOGAkE+CdzjdgQ2Njc1GBIGc1S7EL3jrMhFCCECJ9LcVXyi92ChvBg1+nc/n nm9+DtTZeYloMWdaRFpWHNZgKB8uBza73JBuP94YOiYZumcjRu3JjoKQ1nX0/OR+ nStMkWWYaRaw+gQdulYO1b9/6hB4vOfZ3q1EMvJackvNUFkikCGNcFz7kSV8NPZQ sB+X9jBpCCu9E3I+rPCLx6Kt9zpQMfnhVdOL628to2+0HthW6CG34w51R5tIFI7Q nRNZUIEMDIQR13IQSeHY9NdZanLGgREUHZRH1hjxOeo6AB9OMs6rM28/JGh8S5Lq 5lm8SfWpJqLte6ZE1/j2hA4DBXMCAwEAAaOCAgswggIHMB0GA1UdDgQWBBRntUie iLszZC5KjuD2dWwEmCbpMzAfBgNVHSMEGDAWgBQTD1cSSokh8ACDoij+vit4NzAV 4zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTEyN0VFQjAwMDAvMC8xMzBGNTcx MjRBODkyMUYwMDA4M0EyMjhGRUJFMkI3ODM3MzAxNUUzLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9FdzlYRWtxSklm QUFnNklvX3I0cmVEY3dGZU0uY2VyMIGFBggrBgEFBQcBCwR5MHcwdQYIKwYBBQUH MAuGaXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxMjdF RUIwMDAwLzAvMzEzMDMzMmUzNDM5MmUzNDMzMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAZzErMA0GCSqGSIb3DQEBCwUAA4IBAQBGWULf /GP92nMsNMB2iS/SmxBSFZAkNU6Ur6qCsE0aOpKOhVuIsZO+DCsW4/5X6Dd6JWnL UA33D2klXNzmhdmlz1dt7iYHIQP6bYDt8yqtcLZynvFifQlMLSur2WlGyeetmzCI oJNLsouC9IqQ+wo79fbONtqX1Dli/Uqn2EWs9YKhKovrxdd8Y0d6RR2gyW5mEkJD k/U82ya7aJ0xaYxXYHCLfYULflqRM4D075g6h+EGfbCkrkuqf7XwicA7Gptq6TQJ EHKGKFUjXvNXAS6j8URuFA/qqCSg25KejXHme5UXVVHuV6BsaohMGiQEXAI5tBQa WolNMOAPsEyvrkt9 -----END CERTIFICATE-----Generated at Wed May 1 15:29:30 2024 by rpki-client on console-fra.rpki-client.org