$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134633a3a2f34362d3436203d3e20313533333436.roa File: 323030313a6466343a353134633a3a2f34362d3436203d3e20313533333436.roa (raw, json) Hash identifier: 1C3rbFzudLCdfutKbgqgtRQRfEtQCAigc6gLtTheXZU= Subject key identifier: C1:9D:EC:33:B8:69:1D:E2:C8:27:44:68:7C:FD:06:80:60:34:93:91 Certificate issuer: /CN=A917447B0000/serialNumber=7A443962573EC01D5131651F90F46DA19AFC21D2 Certificate serial: 03A2897F7A0D33BB532962F9AE5C9BD5F008C673 Authority key identifier: 7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134633a3a2f34362d3436203d3e20313533333436.roa Signing time: Mon 04 Nov 2024 11:37:05 +0000 ROA not before: Mon 04 Nov 2024 11:32:05 +0000 ROA not after: Mon 03 Nov 2025 11:37:05 +0000 asID: 153346 IP address blocks: 2001:df4:514c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 17:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:a2:89:7f:7a:0d:33:bb:53:29:62:f9:ae:5c:9b:d5:f0:08:c6:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000/serialNumber=7A443962573EC01D5131651F90F46DA19AFC21D2 Validity Not Before: Nov 4 11:32:05 2024 GMT Not After : Nov 3 11:37:05 2025 GMT Subject: CN=C19DEC33B8691DE2C82744687CFD068060349391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8d:7e:a6:28:96:09:20:38:5e:c9:fe:da:02: a6:30:d6:0c:c3:4f:cd:12:77:28:49:dd:03:93:0a: 75:76:be:fe:75:64:52:29:54:3c:45:0a:11:1a:6c: 03:da:b7:bb:e9:dc:fe:46:0d:c2:b4:c0:d8:c1:71: b7:ac:8d:df:e9:06:36:96:0f:dc:45:ba:8c:6e:ce: b9:83:ce:50:82:bf:2e:fe:37:63:97:45:8e:17:ae: 42:25:bc:02:a0:ba:50:1d:8e:dd:59:22:57:ce:4c: 2d:b3:ed:1e:01:b8:a6:b8:32:df:bf:ce:08:51:c6: ea:e9:8d:c4:78:a6:88:80:ba:a7:b3:b6:0b:40:19: 6d:c9:71:a2:24:30:24:f9:6a:68:c4:0b:57:af:69: e5:5a:83:9d:de:62:a2:46:63:1a:85:7b:50:ec:99: 54:28:2c:6c:1b:8d:9a:d8:4d:04:ab:1f:fa:eb:c8: 9e:4d:00:0c:24:c0:58:85:e2:4d:83:33:bc:e7:a3: 8c:2c:d4:a8:86:71:11:94:5d:cc:cd:d7:1c:16:27: 02:7b:b5:58:81:6c:58:8a:85:ba:07:2f:dc:da:e1: 6a:9f:54:84:b3:4a:53:1a:10:91:cc:0f:0a:1f:76: a9:87:e5:1c:cf:d3:11:e5:bc:af:de:60:01:5a:35: 92:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:9D:EC:33:B8:69:1D:E2:C8:27:44:68:7C:FD:06:80:60:34:93:91 X509v3 Authority Key Identifier: keyid:7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134633a3a2f34362d3436203d3e20313533333436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:514c::/46 Signature Algorithm: sha256WithRSAEncryption 2b:8c:04:b6:65:85:86:dd:4f:00:56:9b:62:97:e5:53:95:17: 31:5a:01:01:ae:2d:01:4b:36:8c:52:e5:ae:a8:02:0e:0e:0c: 3c:09:08:5c:68:29:df:ce:49:06:e8:d6:a8:35:79:d8:b4:d6: ac:bc:dc:e2:23:2b:95:f2:23:70:ef:bc:31:e6:72:21:84:5a: 81:1c:4b:86:26:7e:da:ea:e4:52:84:d5:c7:f9:e0:68:0e:78: 45:d1:cf:f3:e0:8d:83:56:b5:ec:7a:19:af:85:b7:2e:74:ed: 21:d6:4e:0e:23:46:b5:63:30:37:b7:4f:7c:25:d3:33:34:52: 7b:0f:54:55:9e:c8:d3:8a:0b:db:42:27:b6:4b:5b:27:c5:57: 95:6b:08:d6:e0:b4:01:b8:65:cd:1d:00:3b:60:e6:4b:7e:67: f3:fb:da:00:8e:b6:10:9d:54:63:aa:e1:82:4a:24:28:ba:a6: 5d:10:1c:dc:19:10:63:8a:e8:6e:cf:9f:ed:49:c9:5b:cd:23: f5:24:59:bb:48:48:b3:62:25:fa:c9:f2:48:3f:b8:21:34:82: 62:1b:ee:5d:74:f4:33:82:c1:0d:16:b6:32:d5:90:e3:0f:4c: fd:93:b8:7b:16:1b:48:a9:f8:30:8a:99:d0:84:27:6c:84:d9: 86:55:ff:59 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUA6KJf3oNM7tTKWL5rlyb1fAIxnMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEyg3QTQ0Mzk2MjU3 M0VDMDFENTEzMTY1MUY5MEY0NkRBMTlBRkMyMUQyMB4XDTI0MTEwNDExMzIwNVoX DTI1MTEwMzExMzcwNVowMzExMC8GA1UEAxMoQzE5REVDMzNCODY5MURFMkM4Mjc0 NDY4N0NGRDA2ODA2MDM0OTM5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKyNfqYolgkgOF7J/toCpjDWDMNPzRJ3KEndA5MKdXa+/nVkUilUPEUKERps A9q3u+nc/kYNwrTA2MFxt6yN3+kGNpYP3EW6jG7OuYPOUIK/Lv43Y5dFjheuQiW8 AqC6UB2O3VkiV85MLbPtHgG4prgy37/OCFHG6umNxHimiIC6p7O2C0AZbclxoiQw JPlqaMQLV69p5VqDnd5iokZjGoV7UOyZVCgsbBuNmthNBKsf+uvInk0ADCTAWIXi TYMzvOejjCzUqIZxEZRdzM3XHBYnAnu1WIFsWIqFugcv3Nrhap9UhLNKUxoQkcwP Ch92qYflHM/TEeW8r95gAVo1kqECAwEAAaOCAh8wggIbMB0GA1UdDgQWBBTBnewz uGkd4sgnRGh8/QaAYDSTkTAfBgNVHSMEGDAWgBR6RDliVz7AHVExZR+Q9G2hmvwh 0jAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMS83QTQ0Mzk2 MjU3M0VDMDFENTEzMTY1MUY5MEY0NkRBMTlBRkMyMUQyLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9la1E1WWxjLXdC MVJNV1Vma1BSdG9acjhJZEkuY2VyMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYB BQUHMAuGd3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkx NzQ0N0IwMDAwLzEvMzIzMDMwMzEzYTY0NjYzNDNhMzUzMTM0NjMzYTNhMmYzNDM2 MmQzNDM2MjAzZDNlMjAzMTM1MzMzMzM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwIgAQ30UUwwDQYJ KoZIhvcNAQELBQADggEBACuMBLZlhYbdTwBWm2KX5VOVFzFaAQGuLQFLNoxS5a6o Ag4ODDwJCFxoKd/OSQbo1qg1edi01qy83OIjK5XyI3DvvDHmciGEWoEcS4Ymftrq 5FKE1cf54GgOeEXRz/PgjYNWtex6Ga+Fty507SHWTg4jRrVjMDe3T3wl0zM0UnsP VFWeyNOKC9tCJ7ZLWyfFV5VrCNbgtAG4Zc0dADtg5kt+Z/P72gCOthCdVGOq4YJK JCi6pl0QHNwZEGOK6G7Pn+1JyVvNI/UkWbtISLNiJfrJ8kg/uCE0gmIb7l109DOC wQ0WtjLVkOMPTP2TuHsWG0ip+DCKmdCEJ2yE2YZV/1k= -----END CERTIFICATE-----Generated at Sat Nov 23 18:47:14 2024 by rpki-client on console-ams.rpki-client.org