$ rpki-client -vvf rpki.sub.apnic.net/repository/A9148BF70000/0/3130332e3232332e3138362e302f32332d3234203d3e20313531313036.roa File: 3130332e3232332e3138362e302f32332d3234203d3e20313531313036.roa (raw, json) Hash identifier: 5EZYnbNBnmMuoooKhi+JXfsSqTNbJA1q6nxShtBVdVs= Subject key identifier: 5F:EF:34:4A:B4:40:C0:71:9E:60:8B:65:4E:C5:A2:34:0C:2B:65:1A Certificate issuer: /CN=A9148BF70000/serialNumber=339FFA93357FAF26142829FABF225AEAE41737F0 Certificate serial: 0D3FDE291339068E55E895BE0EEB110CCCF002A9 Authority key identifier: 33:9F:FA:93:35:7F:AF:26:14:28:29:FA:BF:22:5A:EA:E4:17:37:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5_6kzV_ryYUKCn6vyJa6uQXN_A.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/3130332e3232332e3138362e302f32332d3234203d3e20313531313036.roa Signing time: Fri 10 Jan 2025 02:00:17 +0000 ROA not before: Fri 10 Jan 2025 01:55:17 +0000 ROA not after: Fri 09 Jan 2026 02:00:17 +0000 asID: 151106 IP address blocks: 103.223.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/339FFA93357FAF26142829FABF225AEAE41737F0.crl rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/339FFA93357FAF26142829FABF225AEAE41737F0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5_6kzV_ryYUKCn6vyJa6uQXN_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 14:21:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:3f:de:29:13:39:06:8e:55:e8:95:be:0e:eb:11:0c:cc:f0:02:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148BF70000 Validity Not Before: Jan 10 01:55:17 2025 GMT Not After : Jan 9 02:00:17 2026 GMT Subject: CN=5FEF344AB440C0719E608B654EC5A2340C2B651A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:db:b4:13:59:16:99:58:69:1e:a3:ab:f4:59: ce:7e:d5:d7:9e:cc:3b:45:a6:5c:f9:0b:9c:04:45: 3d:85:89:47:d7:01:fb:e9:55:2a:f8:0f:08:5a:7d: 1b:e5:7b:33:6e:00:80:62:66:1b:8a:86:48:62:d4: c5:b3:be:3a:9d:a3:3b:9e:a5:be:48:dd:80:ac:66: cc:65:81:72:b5:39:67:38:9b:a8:32:7e:73:1f:98: 01:b6:c2:83:78:cf:f9:11:fb:f6:9e:be:65:bc:37: 03:63:09:79:59:f8:d2:98:65:28:20:13:4c:61:f5: 59:fc:cf:6e:de:0f:4d:35:b1:f1:d9:37:ee:65:ac: 34:15:cc:0d:0e:0a:70:d7:3c:b3:6b:10:b5:11:0f: 38:d8:82:b9:0f:2d:fc:aa:2d:af:f9:ef:ba:7a:4e: c5:64:99:cf:65:85:f5:c5:aa:80:c2:5e:2d:91:92: 74:b5:45:d3:9b:6e:6c:e5:8c:f5:d7:63:ba:37:2f: 61:01:c0:57:9e:d7:d3:8b:7f:45:12:b4:d8:c9:98: 40:31:28:46:eb:47:6f:1c:24:19:43:5e:9b:e4:1a: 2b:af:c5:a1:41:62:09:75:66:e6:40:a5:8d:6d:9f: f5:fd:22:3a:73:80:1f:aa:98:ac:8a:54:58:2e:65: 63:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EF:34:4A:B4:40:C0:71:9E:60:8B:65:4E:C5:A2:34:0C:2B:65:1A X509v3 Authority Key Identifier: keyid:33:9F:FA:93:35:7F:AF:26:14:28:29:FA:BF:22:5A:EA:E4:17:37:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/339FFA93357FAF26142829FABF225AEAE41737F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5_6kzV_ryYUKCn6vyJa6uQXN_A.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/3130332e3232332e3138362e302f32332d3234203d3e20313531313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.223.186.0/23 Signature Algorithm: sha256WithRSAEncryption 06:bc:e1:d8:ca:1e:24:7e:cc:5a:88:c3:54:97:f4:82:1d:be: 56:46:75:52:00:76:13:fa:41:c9:65:82:19:9f:cb:40:73:89: 15:b3:2f:67:99:f0:49:e2:ec:97:79:51:b6:0b:3b:aa:82:f9: 59:c9:c0:c8:dc:d6:ce:8d:36:17:d0:33:03:2a:fb:9a:75:e7: 60:3a:05:c9:da:27:bf:31:a7:88:0a:b7:52:c8:39:00:32:39: 7f:b4:e7:8b:aa:19:34:49:b8:23:ab:34:ee:93:47:66:34:d8: fd:26:6e:ef:44:e9:82:24:33:d0:76:24:f8:49:be:09:11:73: b7:64:3c:fd:1a:38:84:a3:07:cb:24:0e:c5:6b:92:1d:08:d6: 89:17:2a:75:66:b9:be:58:3c:bd:8c:34:c4:55:1d:98:c3:73: 9d:e4:54:a6:de:89:43:fc:6a:74:76:32:c1:ef:42:52:64:e8: 5c:5e:4b:06:62:80:a8:45:9f:3f:af:ea:67:d4:83:47:21:25: 13:ef:70:d9:61:86:28:32:db:c8:0b:94:5b:71:dd:e2:67:0f: 85:a7:5c:23:6f:f8:f6:69:b1:b9:eb:35:64:99:00:1a:c4:63: f4:fc:f5:9d:37:40:f0:7c:48:da:0e:96:fd:e5:f1:08:eb:79: 7a:51:c7:13 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUDT/eKRM5Bo5V6JW+DusRDMzwAqkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDhCRjcwMDAwMTEwLwYDVQQFEygzMzlGRkE5MzM1 N0ZBRjI2MTQyODI5RkFCRjIyNUFFQUU0MTczN0YwMB4XDTI1MDExMDAxNTUxN1oX DTI2MDEwOTAyMDAxN1owMzExMC8GA1UEAxMoNUZFRjM0NEFCNDQwQzA3MTlFNjA4 QjY1NEVDNUEyMzQwQzJCNjUxQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANnbtBNZFplYaR6jq/RZzn7V157MO0WmXPkLnARFPYWJR9cB++lVKvgPCFp9 G+V7M24AgGJmG4qGSGLUxbO+Op2jO56lvkjdgKxmzGWBcrU5ZzibqDJ+cx+YAbbC g3jP+RH79p6+Zbw3A2MJeVn40phlKCATTGH1WfzPbt4PTTWx8dk37mWsNBXMDQ4K cNc8s2sQtREPONiCuQ8t/Kotr/nvunpOxWSZz2WF9cWqgMJeLZGSdLVF05tubOWM 9ddjujcvYQHAV57X04t/RRK02MmYQDEoRutHbxwkGUNem+QaK6/FoUFiCXVm5kCl jW2f9f0iOnOAH6qYrIpUWC5lY6ECAwEAAaOCAhcwggITMB0GA1UdDgQWBBRf7zRK tEDAcZ5gi2VOxaI0DCtlGjAfBgNVHSMEGDAWgBQzn/qTNX+vJhQoKfq/Ilrq5Bc3 8DAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE0OEJGNzAwMDAvMC8zMzlGRkE5 MzM1N0ZBRjI2MTQyODI5RkFCRjIyNUFFQUU0MTczN0YwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NNV82a3pWX3J5 WVVLQ242dnlKYTZ1UVhOX0EuY2VyMIGRBggrBgEFBQcBCwSBhDCBgTB/BggrBgEF BQcwC4ZzcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE0 OEJGNzAwMDAvMC8zMTMwMzMyZTMyMzIzMzJlMzEzODM2MmUzMDJmMzIzMzJkMzIz NDIwM2QzZTIwMzEzNTMxMzEzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9+6MA0GCSqGSIb3DQEB CwUAA4IBAQAGvOHYyh4kfsxaiMNUl/SCHb5WRnVSAHYT+kHJZYIZn8tAc4kVsy9n mfBJ4uyXeVG2CzuqgvlZycDI3NbOjTYX0DMDKvuadedgOgXJ2ie/MaeICrdSyDkA Mjl/tOeLqhk0SbgjqzTuk0dmNNj9Jm7vROmCJDPQdiT4Sb4JEXO3ZDz9GjiEowfL JA7Fa5IdCNaJFyp1Zrm+WDy9jDTEVR2Yw3Od5FSm3olD/Gp0djLB70JSZOhcXksG YoCoRZ8/r+pn1INHISUT73DZYYYoMtvIC5Rbcd3iZw+Fp1wjb/j2abG56zVkmQAa xGP0/PWdN0DwfEjaDpb95fEI63l6UccT -----END CERTIFICATE-----Generated at Wed Feb 19 22:36:26 2025 by rpki-client