$ rpki-client -vvf rpki.sub.apnic.net/repository/A9127EEB0000/0/3130332e34392e34332e302f32342d3234203d3e20383334.roa File: 3130332e34392e34332e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: DN+gjpJlNzwcr+Q1bAt0d4BvyVC83vvLd6Vlc7mWFCw= Subject key identifier: 8E:6A:62:F2:0E:F3:EC:95:35:F8:CE:9E:1E:27:B0:D9:5D:E8:2D:7D Certificate issuer: /CN=A9127EEB0000/serialNumber=130F57124A8921F00083A228FEBE2B78373015E3 Certificate serial: 427D961C2EC8B72E3076B9E97A2873BBD959B0B9 Authority key identifier: 13:0F:57:12:4A:89:21:F0:00:83:A2:28:FE:BE:2B:78:37:30:15:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ew9XEkqJIfAAg6Io_r4reDcwFeM.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/3130332e34392e34332e302f32342d3234203d3e20383334.roa Signing time: Mon 18 Nov 2024 07:59:03 +0000 ROA not before: Mon 18 Nov 2024 07:54:03 +0000 ROA not after: Mon 17 Nov 2025 07:59:03 +0000 asID: 834 IP address blocks: 103.49.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/130F57124A8921F00083A228FEBE2B78373015E3.crl rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/130F57124A8921F00083A228FEBE2B78373015E3.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ew9XEkqJIfAAg6Io_r4reDcwFeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 02:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:7d:96:1c:2e:c8:b7:2e:30:76:b9:e9:7a:28:73:bb:d9:59:b0:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EEB0000/serialNumber=130F57124A8921F00083A228FEBE2B78373015E3 Validity Not Before: Nov 18 07:54:03 2024 GMT Not After : Nov 17 07:59:03 2025 GMT Subject: CN=8E6A62F20EF3EC9535F8CE9E1E27B0D95DE82D7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:96:49:ce:37:16:38:ef:eb:b4:c1:f5:cd:ca: 4b:56:e8:ce:7a:02:fc:f7:df:ac:12:99:5a:46:c2: 1b:ba:f1:67:58:ec:0d:06:9c:99:3b:42:5b:b8:76: 2d:3f:a9:d8:ff:4e:aa:a1:87:3c:c9:e7:7d:ab:d7: 57:f3:e8:ee:6f:2d:31:8e:25:a2:2d:9f:a2:be:87: ac:b9:1c:26:52:42:09:9c:02:8d:dd:89:02:43:f3: de:42:0f:36:c8:2f:9e:f8:2e:0a:57:c7:8e:f8:fc: 61:38:64:14:29:af:6e:09:93:83:17:87:46:8f:43: 53:ba:a4:70:03:8e:4f:78:4d:50:16:76:cd:01:34: 4b:69:69:1a:c8:70:a3:a3:ff:d8:d0:bb:98:f8:81: c0:3b:6a:e3:58:96:13:29:ee:ac:e4:c8:c0:ec:1e: d1:0e:49:37:6c:60:00:18:28:a9:e4:d6:cf:4a:cd: 51:1f:69:0b:62:81:d2:62:31:59:6e:86:bc:93:93: b2:7a:54:49:32:2d:f1:d9:76:d1:04:51:39:c4:b5: 3b:8f:04:76:d8:8b:13:5f:ce:f9:b2:e4:03:64:85: 65:21:04:e0:ae:b5:78:43:c1:73:42:96:ef:50:c7: 17:f0:02:37:4e:95:26:ba:56:fa:ac:ac:a3:1c:aa: 14:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:6A:62:F2:0E:F3:EC:95:35:F8:CE:9E:1E:27:B0:D9:5D:E8:2D:7D X509v3 Authority Key Identifier: keyid:13:0F:57:12:4A:89:21:F0:00:83:A2:28:FE:BE:2B:78:37:30:15:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/130F57124A8921F00083A228FEBE2B78373015E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ew9XEkqJIfAAg6Io_r4reDcwFeM.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9127EEB0000/0/3130332e34392e34332e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.43.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:2e:f1:57:39:ec:f3:cd:67:81:26:52:07:e4:6b:e0:08:87: 44:23:84:8b:a1:a1:f9:7f:f5:31:ac:17:28:61:3d:f6:a0:20: dc:ea:d1:d6:c1:23:28:60:f5:e0:3d:07:61:cc:b6:b2:c8:45: 30:49:f2:67:4d:7d:12:1c:01:2b:9a:23:96:59:c9:7a:4d:cb: ab:92:55:ce:5b:b4:80:69:bd:72:9b:03:f1:34:6a:ca:4c:04: 6e:ea:d8:56:c8:f3:ba:9a:de:9c:90:b3:ce:ac:07:b4:60:2c: b5:da:aa:0a:79:da:97:60:66:c4:79:09:f3:78:e4:d5:c6:8d: 32:c2:03:d6:63:6c:62:a0:51:48:90:a4:ea:72:40:a5:10:97: 71:a0:20:8b:ff:2f:6d:42:0e:dd:3a:b9:2a:09:d5:92:dd:8e: ed:a6:41:d9:35:ce:06:5c:c3:04:7b:b8:54:be:85:5b:87:f1: 9c:d9:b7:8d:2d:55:0c:3d:31:dd:2f:81:44:b8:79:0f:7b:84: 18:ce:62:26:83:d8:b4:73:2b:f4:be:e2:85:79:9f:eb:a0:87: ab:69:48:84:3a:6f:d0:3e:18:e7:8b:74:ee:ac:0b:f7:12:af: 59:32:0e:10:56:4b:02:f9:ff:fa:e1:7d:b8:82:90:3e:a5:e3: 22:94:a0:d7 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUQn2WHC7Ity4wdrnpeihzu9lZsLkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjdFRUIwMDAwMTEwLwYDVQQFEygxMzBGNTcxMjRB ODkyMUYwMDA4M0EyMjhGRUJFMkI3ODM3MzAxNUUzMB4XDTI0MTExODA3NTQwM1oX DTI1MTExNzA3NTkwM1owMzExMC8GA1UEAxMoOEU2QTYyRjIwRUYzRUM5NTM1RjhD RTlFMUUyN0IwRDk1REU4MkQ3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMeWSc43Fjjv67TB9c3KS1boznoC/PffrBKZWkbCG7rxZ1jsDQacmTtCW7h2 LT+p2P9OqqGHPMnnfavXV/Po7m8tMY4loi2for6HrLkcJlJCCZwCjd2JAkPz3kIP NsgvnvguClfHjvj8YThkFCmvbgmTgxeHRo9DU7qkcAOOT3hNUBZ2zQE0S2lpGshw o6P/2NC7mPiBwDtq41iWEynurOTIwOwe0Q5JN2xgABgoqeTWz0rNUR9pC2KB0mIx WW6GvJOTsnpUSTIt8dl20QRROcS1O48EdtiLE1/O+bLkA2SFZSEE4K61eEPBc0KW 71DHF/ACN06VJrpW+qysoxyqFLECAwEAAaOCAgswggIHMB0GA1UdDgQWBBSOamLy DvPslTX4zp4eJ7DZXegtfTAfBgNVHSMEGDAWgBQTD1cSSokh8ACDoij+vit4NzAV 4zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTEyN0VFQjAwMDAvMC8xMzBGNTcx MjRBODkyMUYwMDA4M0EyMjhGRUJFMkI3ODM3MzAxNUUzLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9FdzlYRWtxSklm QUFnNklvX3I0cmVEY3dGZU0uY2VyMIGFBggrBgEFBQcBCwR5MHcwdQYIKwYBBQUH MAuGaXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxMjdF RUIwMDAwLzAvMzEzMDMzMmUzNDM5MmUzNDMzMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAZzErMA0GCSqGSIb3DQEBCwUAA4IBAQCOLvFX OezzzWeBJlIH5GvgCIdEI4SLoaH5f/UxrBcoYT32oCDc6tHWwSMoYPXgPQdhzLay yEUwSfJnTX0SHAErmiOWWcl6TcurklXOW7SAab1ymwPxNGrKTARu6thWyPO6mt6c kLPOrAe0YCy12qoKedqXYGbEeQnzeOTVxo0ywgPWY2xioFFIkKTqckClEJdxoCCL /y9tQg7dOrkqCdWS3Y7tpkHZNc4GXMMEe7hUvoVbh/Gc2beNLVUMPTHdL4FEuHkP e4QYzmImg9i0cyv0vuKFeZ/roIeraUiEOm/QPhjni3TurAv3Eq9ZMg4QVksC+f/6 4X24gpA+peMilKDX -----END CERTIFICATE-----Generated at Fri Nov 22 02:44:21 2024 by rpki-client on console-fra.rpki-client.org