$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/0/3136302e3138372e3132342e302f32332d3234203d3e20313533333436.roa File: 3136302e3138372e3132342e302f32332d3234203d3e20313533333436.roa (raw, json) Hash identifier: g2WPQKmcG8F9BNMuoo0qRMIr0xGyZZKzcqG6wAbcjO8= Subject key identifier: F3:70:30:60:34:46:1D:26:32:E9:F8:CF:CE:14:D5:94:4A:8B:49:FE Certificate issuer: /CN=A917447B0000/serialNumber=BD435E3ED6FEEC26F879A0542F609A272CC71307 Certificate serial: 3818E799B6806FDE9A069EC0BB5203E9DB03DFFA Authority key identifier: BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/3136302e3138372e3132342e302f32332d3234203d3e20313533333436.roa Signing time: Sat 28 Sep 2024 16:26:23 +0000 ROA not before: Sat 28 Sep 2024 16:21:23 +0000 ROA not after: Sat 27 Sep 2025 16:26:23 +0000 asID: 153346 IP address blocks: 160.187.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Feb 2025 13:14:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:18:e7:99:b6:80:6f:de:9a:06:9e:c0:bb:52:03:e9:db:03:df:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000 Validity Not Before: Sep 28 16:21:23 2024 GMT Not After : Sep 27 16:26:23 2025 GMT Subject: CN=F370306034461D2632E9F8CFCE14D5944A8B49FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7a:94:e8:d3:a7:75:a0:0a:b8:14:72:a5:e0: 43:ca:8f:61:00:63:23:c9:cb:42:02:28:cd:35:1b: 52:18:79:0e:8a:9f:51:97:8f:f4:d3:71:76:90:4d: 5b:9a:40:34:fa:9d:04:9d:17:b0:b4:83:e2:5c:ca: a1:c7:55:98:ed:3d:ac:bf:cd:2e:bd:ed:6a:9f:68: a5:a1:b1:ca:a9:ad:e4:20:09:8c:1d:40:1d:52:43: 0b:ef:07:d5:08:0b:93:d8:7b:b0:ce:19:9a:69:4f: 4c:83:80:32:fc:72:9e:b1:77:22:81:c7:fd:11:04: 18:92:60:e8:4d:c6:9c:e6:b8:26:11:17:fc:2b:b9: 15:a6:60:2a:6e:68:78:02:c6:d4:35:de:34:99:52: 21:a5:91:cb:fa:c2:d8:dc:21:36:76:cd:4c:b5:77: a9:f0:c6:18:fb:09:6e:60:73:79:d8:72:02:16:91: 62:b6:3f:77:cd:ef:6c:96:67:60:56:40:18:7a:99: c0:25:d5:93:07:72:39:83:24:8c:eb:51:91:62:59: 31:90:d6:71:5e:2b:44:6e:0b:14:f0:25:e5:2b:7b: df:40:90:21:7c:9d:fc:ee:a8:79:90:08:7a:c2:ed: 7b:82:06:01:81:b5:7f:02:7a:17:41:7e:21:78:6f: 77:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:70:30:60:34:46:1D:26:32:E9:F8:CF:CE:14:D5:94:4A:8B:49:FE X509v3 Authority Key Identifier: keyid:BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/3136302e3138372e3132342e302f32332d3234203d3e20313533333436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.124.0/23 Signature Algorithm: sha256WithRSAEncryption 95:ef:cd:c2:d6:94:d0:eb:86:50:d7:8c:2e:c1:35:cb:c5:84: 27:04:da:be:1d:ba:b7:33:f7:9d:e9:79:29:e9:dd:81:00:61: 85:3c:f4:69:94:25:89:ef:a7:d3:68:05:3f:96:99:84:80:f4: 4f:9b:ca:2a:a8:8a:09:4f:ee:dc:6b:6f:d6:c8:24:21:c3:84: 45:40:c0:7b:1a:41:b3:8f:e5:f4:8c:ff:89:59:62:1e:3b:f0: cc:94:59:2c:89:be:45:37:9d:fd:dd:36:a0:c2:97:b8:cd:d6: 7c:c1:14:7e:3a:e7:1c:b7:08:61:66:c9:22:6c:35:fa:d4:29: 53:fe:ba:c9:17:b3:09:e5:c6:11:6f:10:56:53:e9:13:14:54: 9b:2b:2f:15:be:b1:29:df:0d:f2:e0:48:9b:11:7c:a1:b1:07: a6:a3:69:f2:d7:a3:15:da:f8:f3:17:07:d9:63:ef:90:de:13: bf:a7:89:6e:86:6d:8a:0c:7a:38:96:21:cd:64:d2:da:85:75: 7a:d4:3d:f6:c0:01:b5:7c:5a:f6:c2:15:9f:c3:bb:e5:81:74: 40:fb:15:d3:e4:60:c4:74:29:51:0c:ef:38:c2:f3:48:ef:db: e2:69:61:a9:21:2f:ee:df:f6:2b:51:48:94:bc:1c:6f:0c:77: 42:e5:a7:ad -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUOBjnmbaAb96aBp7Au1ID6dsD3/owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEyhCRDQzNUUzRUQ2 RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3MB4XDTI0MDkyODE2MjEyM1oX DTI1MDkyNzE2MjYyM1owMzExMC8GA1UEAxMoRjM3MDMwNjAzNDQ2MUQyNjMyRTlG OENGQ0UxNEQ1OTQ0QThCNDlGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZ6lOjTp3WgCrgUcqXgQ8qPYQBjI8nLQgIozTUbUhh5DoqfUZeP9NNxdpBN W5pANPqdBJ0XsLSD4lzKocdVmO09rL/NLr3tap9opaGxyqmt5CAJjB1AHVJDC+8H 1QgLk9h7sM4ZmmlPTIOAMvxynrF3IoHH/REEGJJg6E3GnOa4JhEX/Cu5FaZgKm5o eALG1DXeNJlSIaWRy/rC2NwhNnbNTLV3qfDGGPsJbmBzedhyAhaRYrY/d83vbJZn YFZAGHqZwCXVkwdyOYMkjOtRkWJZMZDWcV4rRG4LFPAl5St730CQIXyd/O6oeZAI esLte4IGAYG1fwJ6F0F+IXhvdwcCAwEAAaOCAhcwggITMB0GA1UdDgQWBBTzcDBg NEYdJjLp+M/OFNWUSotJ/jAfBgNVHSMEGDAWgBS9Q14+1v7sJvh5oFQvYJonLMcT BzAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMC9CRDQzNUUz RUQ2RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi92VU5lUHRiLTdD YjRlYUJVTDJDYUp5ekhFd2MuY2VyMIGRBggrBgEFBQcBCwSBhDCBgTB/BggrBgEF BQcwC4ZzcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3 NDQ3QjAwMDAvMC8zMTM2MzAyZTMxMzgzNzJlMzEzMjM0MmUzMDJmMzIzMzJkMzIz NDIwM2QzZTIwMzEzNTMzMzMzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoLt8MA0GCSqGSIb3DQEB CwUAA4IBAQCV783C1pTQ64ZQ14wuwTXLxYQnBNq+Hbq3M/ed6Xkp6d2BAGGFPPRp lCWJ76fTaAU/lpmEgPRPm8oqqIoJT+7ca2/WyCQhw4RFQMB7GkGzj+X0jP+JWWIe O/DMlFksib5FN5393Tagwpe4zdZ8wRR+OucctwhhZskibDX61ClT/rrJF7MJ5cYR bxBWU+kTFFSbKy8VvrEp3w3y4EibEXyhsQemo2ny16MV2vjzFwfZY++Q3hO/p4lu hm2KDHo4liHNZNLahXV61D32wAG1fFr2whWfw7vlgXRA+xXT5GDEdClRDO84wvNI 79viaWGpIS/u3/YrUUiUvBxvDHdC5aet -----END CERTIFICATE-----Generated at Sun Feb 16 21:46:01 2025 by rpki-client