$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132382e302f32342d3234203d3e20383334.roa File: 3130332e3233382e3132382e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: kP0TsSyJU+IY/owZpZbe+2MFOBqb7Ph6/KkSLIVVibE= Subject key identifier: 71:04:7B:0B:90:DA:91:5D:B1:F2:24:EF:DA:E4:09:87:D0:F9:1D:7E Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 444157B67FC76BE06ADAC6876E6C7D5FAB16514E Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132382e302f32342d3234203d3e20383334.roa Signing time: Sat 31 May 2025 00:03:22 +0000 ROA not before: Fri 30 May 2025 23:58:22 +0000 ROA not after: Sat 30 May 2026 00:03:22 +0000 asID: 834 IP address blocks: 103.238.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 21:44:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:41:57:b6:7f:c7:6b:e0:6a:da:c6:87:6e:6c:7d:5f:ab:16:51:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: May 30 23:58:22 2025 GMT Not After : May 30 00:03:22 2026 GMT Subject: CN=71047B0B90DA915DB1F224EFDAE40987D0F91D7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:9d:be:1b:5f:c6:09:e7:23:4a:4b:af:44:36: 03:82:c7:6d:8b:d6:9d:9f:bf:d9:82:a0:73:29:26: ea:37:cd:f0:51:53:68:40:15:3d:63:24:a2:64:80: 1d:23:72:84:34:35:2b:9a:34:41:1d:e7:c1:77:bc: c6:d6:0f:ff:92:01:60:24:19:1f:fd:df:46:bc:b3: 67:29:56:31:d7:6c:b6:85:d7:40:f2:60:53:ba:65: a7:7f:1d:e3:e8:cb:69:25:f2:fb:05:18:2d:b2:ee: 9d:b0:f6:f5:c3:15:fd:8f:fc:3d:79:79:c6:63:86: 26:3c:a7:56:1e:92:11:ad:5c:d6:03:32:3f:39:b6: 29:ff:b0:6c:8a:67:ba:32:41:bf:8c:a7:a1:c8:41: 5e:01:cf:6a:60:a4:cc:57:6e:5f:66:1a:4a:b2:34: ba:cf:17:ae:de:f6:0a:7b:21:05:7b:43:18:f2:e9: b5:c1:4e:19:0c:02:fc:0a:6a:2b:88:dc:70:66:7f: b8:49:6d:2d:8e:0c:38:8b:57:5b:cf:f0:fc:24:c4: 59:f6:c1:af:0a:f9:ba:19:48:62:2c:26:be:e7:e1: 92:cf:9e:32:a5:f1:b3:ba:6d:a5:84:7c:8c:59:1b: 38:31:91:84:7e:93:c6:2f:18:25:d9:87:1a:cc:ed: 26:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:04:7B:0B:90:DA:91:5D:B1:F2:24:EF:DA:E4:09:87:D0:F9:1D:7E X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132382e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.128.0/24 Signature Algorithm: sha256WithRSAEncryption 21:4a:96:5e:4e:68:ca:be:0c:a5:73:b9:53:ff:c6:ee:3d:0b: 45:54:c2:cc:cc:a7:3b:74:6b:5f:b6:98:b7:26:4e:a6:4d:11: eb:87:68:77:84:4d:5a:3a:d1:96:2e:41:27:0b:fb:11:19:b9: 1c:b9:00:23:5c:94:03:02:48:9e:93:ef:b5:2f:e3:cc:d7:44: 76:6d:29:ef:d0:89:73:6a:e9:0c:65:ab:2c:25:0c:c5:be:fe: 32:0b:42:52:d9:26:d7:a1:9e:43:39:1b:ab:64:aa:b5:d6:78: a2:2e:e6:47:29:08:41:6f:62:c1:59:40:13:8d:b3:04:38:d7: 0c:ef:fc:c0:7f:a0:8e:96:59:26:c6:20:55:b6:51:f1:e9:09: bf:9f:ca:e6:c8:91:c8:51:01:8a:3a:09:49:45:99:0f:d1:61: 1b:7d:9b:df:9d:2d:17:11:27:93:de:93:3f:a8:bf:7e:6b:b0: 6e:35:fe:cd:9f:9f:98:7e:ba:61:0f:05:93:9f:40:46:fe:51: c4:33:54:5c:4b:f0:74:ea:cc:13:2a:5f:28:f7:42:ef:c1:18: 40:85:7f:29:1e:bb:ac:b4:68:34:eb:ff:06:a2:2f:59:58:5f: f1:8a:c8:40:1d:89:78:b7:3a:0e:fd:58:4e:b4:0e:1a:aa:34: 83:4f:ad:dc -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUREFXtn/Ha+Bq2saHbmx9X6sWUU4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MDUzMDIzNTgyMloX DTI2MDUzMDAwMDMyMlowMzExMC8GA1UEAxMoNzEwNDdCMEI5MERBOTE1REIxRjIy NEVGREFFNDA5ODdEMEY5MUQ3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIydvhtfxgnnI0pLr0Q2A4LHbYvWnZ+/2YKgcykm6jfN8FFTaEAVPWMkomSA HSNyhDQ1K5o0QR3nwXe8xtYP/5IBYCQZH/3fRryzZylWMddstoXXQPJgU7plp38d 4+jLaSXy+wUYLbLunbD29cMV/Y/8PXl5xmOGJjynVh6SEa1c1gMyPzm2Kf+wbIpn ujJBv4ynochBXgHPamCkzFduX2YaSrI0us8Xrt72CnshBXtDGPLptcFOGQwC/Apq K4jccGZ/uEltLY4MOItXW8/w/CTEWfbBrwr5uhlIYiwmvufhks+eMqXxs7ptpYR8 jFkbODGRhH6Txi8YJdmHGsztJq8CAwEAAaOCAg8wggILMB0GA1UdDgQWBBRxBHsL kNqRXbHyJO/a5AmH0PkdfjAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGJBggrBgEFBQcBCwR9MHsweQYIKwYBBQUH MAuGbXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxQTYx MzEwMDAwLzAvMzEzMDMzMmUzMjMzMzgyZTMxMzIzODJlMzAyZjMyMzQyZDMyMzQy MDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfugDANBgkqhkiG9w0BAQsFAAOCAQEA IUqWXk5oyr4MpXO5U//G7j0LRVTCzMynO3RrX7aYtyZOpk0R64dod4RNWjrRli5B Jwv7ERm5HLkAI1yUAwJInpPvtS/jzNdEdm0p79CJc2rpDGWrLCUMxb7+MgtCUtkm 16GeQzkbq2SqtdZ4oi7mRykIQW9iwVlAE42zBDjXDO/8wH+gjpZZJsYgVbZR8ekJ v5/K5siRyFEBijoJSUWZD9FhG32b350tFxEnk96TP6i/fmuwbjX+zZ+fmH66YQ8F k59ARv5RxDNUXEvwdOrMEypfKPdC78EYQIV/KR67rLRoNOv/BqIvWVhf8YrIQB2J eLc6Dv1YTrQOGqo0g0+t3A== -----END CERTIFICATE-----Generated at Tue Jun 3 23:53:29 2025 by rpki-client