$ rpki-client -vvf rpki.sub.apnic.net/repository/A9148BF70000/0/3130332e3232332e3138342e302f32332d3234203d3e20313531313036.roa File: 3130332e3232332e3138342e302f32332d3234203d3e20313531313036.roa (raw, json) Hash identifier: CBbZdYOvzs1t+tqtDF6Ts0Z4cSe+M4/U5oUl3sp2oLk= Subject key identifier: 58:54:23:16:49:CB:54:72:37:F3:6D:E3:B6:7A:1D:3B:EA:BF:20:9F Certificate issuer: /CN=A9148BF70000/serialNumber=339FFA93357FAF26142829FABF225AEAE41737F0 Certificate serial: 43FE0DFC5EEA17ADBE8EA43BA11BBD2CAAC90698 Authority key identifier: 33:9F:FA:93:35:7F:AF:26:14:28:29:FA:BF:22:5A:EA:E4:17:37:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5_6kzV_ryYUKCn6vyJa6uQXN_A.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/3130332e3232332e3138342e302f32332d3234203d3e20313531313036.roa Signing time: Sun 10 Nov 2024 16:22:04 +0000 ROA not before: Sun 10 Nov 2024 16:17:04 +0000 ROA not after: Sun 09 Nov 2025 16:22:04 +0000 asID: 151106 IP address blocks: 103.223.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/339FFA93357FAF26142829FABF225AEAE41737F0.crl rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/339FFA93357FAF26142829FABF225AEAE41737F0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5_6kzV_ryYUKCn6vyJa6uQXN_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 21:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:fe:0d:fc:5e:ea:17:ad:be:8e:a4:3b:a1:1b:bd:2c:aa:c9:06:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148BF70000/serialNumber=339FFA93357FAF26142829FABF225AEAE41737F0 Validity Not Before: Nov 10 16:17:04 2024 GMT Not After : Nov 9 16:22:04 2025 GMT Subject: CN=5854231649CB547237F36DE3B67A1D3BEABF209F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ef:87:d7:6b:2d:eb:e3:3c:4d:1d:35:ec:58: 9c:60:65:72:54:9a:3f:32:63:cb:40:03:b3:b9:c7: 23:f0:c4:3e:97:08:f2:23:a8:47:e4:e4:e8:99:8f: d1:ca:2f:a1:63:12:7d:9f:10:a1:01:fa:81:74:64: e1:aa:4f:34:80:08:f8:a0:ca:eb:8e:db:c5:9a:be: 6d:dd:6c:89:8e:18:9f:b8:3d:a7:91:d5:bb:22:ca: e2:4e:f1:29:56:91:2f:5f:c0:f7:9c:71:d7:3c:12: b4:49:f1:6f:28:2d:a8:d3:f3:0d:28:97:01:83:08: 7b:d6:cf:b9:1c:1f:88:28:67:cf:e6:ed:61:ae:24: e2:52:59:31:2b:81:95:2f:db:f9:c5:b8:67:a2:f9: e5:c4:00:6e:cf:22:63:7c:51:e3:7f:21:da:4a:68: 4c:64:ec:4f:c2:3a:83:e6:1a:d4:e7:a8:e5:3a:88: d8:57:d3:dc:d3:77:ed:7f:44:88:be:62:db:7c:5d: 21:82:b1:8c:56:85:41:fd:3a:9e:33:c4:d8:e5:7a: 83:8e:7e:50:98:e3:bc:b5:40:0b:45:12:b1:50:37: 99:bb:76:f7:c9:6d:92:fe:78:27:83:0f:6b:3b:bf: 96:0d:99:db:c0:b2:2f:3d:8f:b6:45:b9:e3:9d:d9: 1b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:54:23:16:49:CB:54:72:37:F3:6D:E3:B6:7A:1D:3B:EA:BF:20:9F X509v3 Authority Key Identifier: keyid:33:9F:FA:93:35:7F:AF:26:14:28:29:FA:BF:22:5A:EA:E4:17:37:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/339FFA93357FAF26142829FABF225AEAE41737F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5_6kzV_ryYUKCn6vyJa6uQXN_A.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/3130332e3232332e3138342e302f32332d3234203d3e20313531313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.223.184.0/23 Signature Algorithm: sha256WithRSAEncryption 83:dd:89:e3:b5:87:0a:01:14:06:b4:8e:58:bb:e6:04:2b:84: 5b:ef:d7:44:5f:3c:bd:fd:5c:fc:73:3d:26:eb:e9:88:db:5a: fa:4a:af:1e:2a:55:7f:a3:36:25:5c:ca:84:99:dc:84:d3:67: 75:e3:67:39:00:aa:e5:31:c5:0c:77:8b:9b:75:1c:f8:c2:65: ca:6a:2c:bd:a3:d7:e6:a7:b1:d8:5b:9c:86:2b:92:64:75:81: d6:66:2a:ca:41:31:7e:a4:fe:a5:97:b2:df:a7:67:02:31:8d: 0a:c3:81:37:fb:ee:84:c9:87:e7:1b:13:c9:bf:3c:7e:a4:0c: 9b:49:f4:24:3c:6c:1e:88:68:3e:d6:b1:be:9c:8b:5b:c4:f6: dc:54:17:a1:e2:4f:a6:0a:c9:5a:0a:39:fe:4d:d0:ab:bd:0a: 79:8f:29:25:b7:b7:ad:c7:80:5c:b9:2b:b9:81:b8:32:42:fb: 19:22:0a:3b:d5:1b:e0:78:02:77:c7:ed:01:86:32:b7:2b:cc: 30:08:0a:59:13:5f:97:9f:3f:a3:52:5d:8b:5d:4c:68:4b:b9: 64:f7:0c:8f:8b:af:e7:57:a6:0a:7d:a7:28:ae:5b:fb:22:eb: 41:da:8f:a7:ee:fd:3d:7a:86:8e:ea:91:98:08:27:9d:64:0a: 0c:f7:6e:0a -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUQ/4N/F7qF62+jqQ7oRu9LKrJBpgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDhCRjcwMDAwMTEwLwYDVQQFEygzMzlGRkE5MzM1 N0ZBRjI2MTQyODI5RkFCRjIyNUFFQUU0MTczN0YwMB4XDTI0MTExMDE2MTcwNFoX DTI1MTEwOTE2MjIwNFowMzExMC8GA1UEAxMoNTg1NDIzMTY0OUNCNTQ3MjM3RjM2 REUzQjY3QTFEM0JFQUJGMjA5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALDvh9drLevjPE0dNexYnGBlclSaPzJjy0ADs7nHI/DEPpcI8iOoR+Tk6JmP 0covoWMSfZ8QoQH6gXRk4apPNIAI+KDK647bxZq+bd1siY4Yn7g9p5HVuyLK4k7x KVaRL1/A95xx1zwStEnxbygtqNPzDSiXAYMIe9bPuRwfiChnz+btYa4k4lJZMSuB lS/b+cW4Z6L55cQAbs8iY3xR438h2kpoTGTsT8I6g+Ya1Oeo5TqI2FfT3NN37X9E iL5i23xdIYKxjFaFQf06njPE2OV6g45+UJjjvLVAC0USsVA3mbt298ltkv54J4MP azu/lg2Z28CyLz2PtkW5453ZG0kCAwEAAaOCAhcwggITMB0GA1UdDgQWBBRYVCMW SctUcjfzbeO2eh076r8gnzAfBgNVHSMEGDAWgBQzn/qTNX+vJhQoKfq/Ilrq5Bc3 8DAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE0OEJGNzAwMDAvMC8zMzlGRkE5 MzM1N0ZBRjI2MTQyODI5RkFCRjIyNUFFQUU0MTczN0YwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NNV82a3pWX3J5 WVVLQ242dnlKYTZ1UVhOX0EuY2VyMIGRBggrBgEFBQcBCwSBhDCBgTB/BggrBgEF BQcwC4ZzcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE0 OEJGNzAwMDAvMC8zMTMwMzMyZTMyMzIzMzJlMzEzODM0MmUzMDJmMzIzMzJkMzIz NDIwM2QzZTIwMzEzNTMxMzEzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9+4MA0GCSqGSIb3DQEB CwUAA4IBAQCD3YnjtYcKARQGtI5Yu+YEK4Rb79dEXzy9/Vz8cz0m6+mI21r6Sq8e KlV/ozYlXMqEmdyE02d142c5AKrlMcUMd4ubdRz4wmXKaiy9o9fmp7HYW5yGK5Jk dYHWZirKQTF+pP6ll7Lfp2cCMY0Kw4E3++6EyYfnGxPJvzx+pAybSfQkPGweiGg+ 1rG+nItbxPbcVBeh4k+mCslaCjn+TdCrvQp5jyklt7etx4BcuSu5gbgyQvsZIgo7 1RvgeAJ3x+0BhjK3K8wwCApZE1+Xnz+jUl2LXUxoS7lk9wyPi6/nV6YKfacorlv7 IutB2o+n7v09eoaO6pGYCCedZAoM924K -----END CERTIFICATE-----Generated at Thu Nov 21 21:14:50 2024 by rpki-client on console-fra.rpki-client.org