$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134633a3a2f34382d3438203d3e20313533333436.roa File: 323030313a6466343a353134633a3a2f34382d3438203d3e20313533333436.roa (raw, json) Hash identifier: dqeOZ/w+XH5bLYPbin6nNJo90aCcBDQmU9w+LphFW2I= Subject key identifier: 5F:88:D4:6E:B7:7C:87:88:F5:57:C6:17:A8:58:DC:1F:97:ED:19:CB Certificate issuer: /CN=A917447B0000/serialNumber=7A443962573EC01D5131651F90F46DA19AFC21D2 Certificate serial: 4B21764F56EBAB116F224EF6C028B338107E89C8 Authority key identifier: 7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134633a3a2f34382d3438203d3e20313533333436.roa Signing time: Sat 28 Sep 2024 16:30:07 +0000 ROA not before: Sat 28 Sep 2024 16:25:07 +0000 ROA not after: Sat 27 Sep 2025 16:30:07 +0000 asID: 153346 IP address blocks: 2001:df4:514c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Oct 2024 11:18:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:21:76:4f:56:eb:ab:11:6f:22:4e:f6:c0:28:b3:38:10:7e:89:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000/serialNumber=7A443962573EC01D5131651F90F46DA19AFC21D2 Validity Not Before: Sep 28 16:25:07 2024 GMT Not After : Sep 27 16:30:07 2025 GMT Subject: CN=5F88D46EB77C8788F557C617A858DC1F97ED19CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9b:4a:df:d6:1e:75:09:cd:f5:37:14:a1:0c: 6e:a0:37:c7:54:30:11:62:97:63:d1:65:df:1f:dd: a9:17:75:15:ec:84:a2:32:2d:2e:94:a6:37:90:29: 7f:ea:ac:98:c1:01:12:68:d1:71:b3:2c:da:a7:3b: 17:20:c2:91:28:eb:3c:89:a4:bc:5a:6e:54:78:4b: 3e:7f:63:af:3c:f8:0a:61:18:ef:7d:99:4f:d2:c5: 93:21:0a:48:fe:db:02:78:51:c6:28:d1:6c:8e:eb: 03:b9:2f:48:36:6c:d8:b5:c9:ec:94:8e:25:94:c1: 84:e8:4c:6b:6b:2e:87:ea:28:a8:0e:c8:d9:65:2e: 34:3b:19:9e:d1:0e:09:2c:83:87:0d:4b:67:9a:b1: c7:5a:9d:71:fd:23:3a:44:a5:fd:7f:f0:eb:ec:b1: bb:a9:4f:df:c8:1d:6f:2c:40:7e:0b:c6:8d:12:2a: 37:09:19:8f:ca:0d:6c:ab:62:f9:7d:64:96:e5:19: c4:c4:f6:d1:29:0b:bd:b2:d3:9c:4d:43:fc:c3:d8: 65:42:05:f7:f7:9d:0e:7c:59:4a:03:2a:08:57:9b: 09:fb:80:9e:29:d3:6a:32:98:e9:d8:4d:b5:40:05: 24:77:a6:a2:18:81:52:60:5b:5d:9d:99:a8:45:3d: c3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:88:D4:6E:B7:7C:87:88:F5:57:C6:17:A8:58:DC:1F:97:ED:19:CB X509v3 Authority Key Identifier: keyid:7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134633a3a2f34382d3438203d3e20313533333436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:514c::/48 Signature Algorithm: sha256WithRSAEncryption 10:ca:8b:ad:c7:26:97:f7:8e:83:dd:7d:e4:49:90:03:51:a9: b8:3e:28:4d:e1:f7:ce:4b:9c:d8:5b:67:2e:fa:36:1d:87:2c: e8:cd:c2:59:21:f0:07:31:24:de:ed:05:e4:a4:7c:e9:49:26: 6f:cf:eb:c8:05:76:92:c7:82:5f:d3:9f:ed:c3:73:1c:2c:1c: de:b3:1e:6f:ee:7a:13:d5:d7:dc:f3:cf:94:6f:fe:c8:49:28: 7a:87:03:39:8c:b7:26:70:29:6e:2f:00:7e:b2:88:32:2d:1f: 1c:c7:7b:1f:90:94:1e:d5:ac:99:90:b6:bf:57:7d:70:cb:45: 71:7f:bc:fe:b2:94:d3:48:d0:85:d3:97:0d:53:5a:c9:40:f8: 31:51:50:c1:d4:a8:c2:e0:27:7b:c6:a2:5a:57:be:48:b0:9f: 02:8d:bf:06:d4:9c:8f:96:3b:ba:40:de:32:0d:ed:2b:4f:ec: c8:30:de:fa:fe:ba:7e:f4:7c:3f:ad:d9:60:8a:06:91:84:b5: c5:a4:9e:b7:1f:64:4b:42:82:8d:b5:3c:bb:91:4b:99:28:71: 48:27:b8:20:13:77:99:ae:d5:65:78:fc:10:ee:ae:be:a1:37: 51:79:d8:96:7e:b9:7c:5e:bd:b9:49:1c:b3:01:19:cd:77:6f: 1c:c1:b1:e4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSyF2T1brqxFvIk72wCizOBB+icgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEyg3QTQ0Mzk2MjU3 M0VDMDFENTEzMTY1MUY5MEY0NkRBMTlBRkMyMUQyMB4XDTI0MDkyODE2MjUwN1oX DTI1MDkyNzE2MzAwN1owMzExMC8GA1UEAxMoNUY4OEQ0NkVCNzdDODc4OEY1NTdD NjE3QTg1OERDMUY5N0VEMTlDQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANqbSt/WHnUJzfU3FKEMbqA3x1QwEWKXY9Fl3x/dqRd1FeyEojItLpSmN5Ap f+qsmMEBEmjRcbMs2qc7FyDCkSjrPImkvFpuVHhLPn9jrzz4CmEY732ZT9LFkyEK SP7bAnhRxijRbI7rA7kvSDZs2LXJ7JSOJZTBhOhMa2suh+ooqA7I2WUuNDsZntEO CSyDhw1LZ5qxx1qdcf0jOkSl/X/w6+yxu6lP38gdbyxAfgvGjRIqNwkZj8oNbKti +X1kluUZxMT20SkLvbLTnE1D/MPYZUIF9/edDnxZSgMqCFebCfuAninTajKY6dhN tUAFJHemohiBUmBbXZ2ZqEU9w9cCAwEAAaOCAh8wggIbMB0GA1UdDgQWBBRfiNRu t3yHiPVXxheoWNwfl+0ZyzAfBgNVHSMEGDAWgBR6RDliVz7AHVExZR+Q9G2hmvwh 0jAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMS83QTQ0Mzk2 MjU3M0VDMDFENTEzMTY1MUY5MEY0NkRBMTlBRkMyMUQyLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9la1E1WWxjLXdC MVJNV1Vma1BSdG9acjhJZEkuY2VyMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYB BQUHMAuGd3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkx NzQ0N0IwMDAwLzEvMzIzMDMwMzEzYTY0NjYzNDNhMzUzMTM0NjMzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMTM1MzMzMzM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ30UUwwDQYJ KoZIhvcNAQELBQADggEBABDKi63HJpf3joPdfeRJkANRqbg+KE3h985LnNhbZy76 Nh2HLOjNwlkh8AcxJN7tBeSkfOlJJm/P68gFdpLHgl/Tn+3DcxwsHN6zHm/uehPV 19zzz5Rv/shJKHqHAzmMtyZwKW4vAH6yiDItHxzHex+QlB7VrJmQtr9XfXDLRXF/ vP6ylNNI0IXTlw1TWslA+DFRUMHUqMLgJ3vGolpXvkiwnwKNvwbUnI+WO7pA3jIN 7StP7Mgw3vr+un70fD+t2WCKBpGEtcWknrcfZEtCgo21PLuRS5kocUgnuCATd5mu 1WV4/BDurr6hN1F52JZ+uXxevblJHLMBGc13bxzBseQ= -----END CERTIFICATE-----Generated at Thu Oct 24 10:01:56 2024 by rpki-client on console-ams.rpki-client.org