$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132392e302f32342d3234203d3e203531383437.roa File: 3130332e3233382e3132392e302f32342d3234203d3e203531383437.roa (raw, json) Hash identifier: E4ONBceQGtTtMJwjbxI/zmDC8SS3yBbRlcMhg4vXlLU= Subject key identifier: 5B:CD:2D:BF:1A:E9:C3:B0:63:39:44:6C:33:0F:B7:BF:FA:D8:B7:FD Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 57DCA542982AEB52EACD935F9B679F92EEA528F6 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132392e302f32342d3234203d3e203531383437.roa Signing time: Wed 18 Dec 2024 16:28:37 +0000 ROA not before: Wed 18 Dec 2024 16:23:37 +0000 ROA not after: Wed 17 Dec 2025 16:28:37 +0000 asID: 51847 IP address blocks: 103.238.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Feb 2025 22:31:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:dc:a5:42:98:2a:eb:52:ea:cd:93:5f:9b:67:9f:92:ee:a5:28:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000 Validity Not Before: Dec 18 16:23:37 2024 GMT Not After : Dec 17 16:28:37 2025 GMT Subject: CN=5BCD2DBF1AE9C3B06339446C330FB7BFFAD8B7FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5e:00:91:29:00:ff:a3:d2:77:04:69:70:4e: 42:e1:80:b4:94:f7:47:e6:e7:e9:0a:89:c7:0d:67: b1:01:e7:ba:73:5b:84:13:1a:84:56:9f:44:3f:e3: e9:f0:85:f6:fe:a5:95:ed:97:0c:a4:05:c1:99:50: c5:65:f6:89:57:7f:5d:0e:46:79:da:2c:3b:45:49: 5a:cf:ee:93:7e:5c:06:46:e3:45:e3:5c:cd:69:a1: ae:7d:a4:a4:89:26:77:a5:55:92:44:96:23:81:48: d0:46:08:9e:3d:99:d0:8b:1b:c2:a8:bf:fa:70:82: f6:4b:d4:98:2b:24:61:d5:08:17:fe:07:f7:c8:95: 70:36:86:9a:6a:88:87:0e:fd:75:26:7d:3e:ea:8d: 43:da:70:f3:b0:e6:40:a5:ec:97:66:76:34:d6:a6: 23:8d:5b:9a:82:a6:e2:aa:d3:68:15:aa:af:80:42: c3:c7:f1:c8:e1:16:f8:cd:da:f6:7d:f3:ab:04:7d: 7a:19:be:f6:ae:a8:6b:fd:11:6b:09:c1:1b:80:0f: f9:a2:39:02:7b:de:a9:70:8f:d9:c9:72:f2:30:da: af:5b:43:1f:c7:9c:b3:71:e9:73:78:c7:f2:0f:58: a4:7a:20:d6:30:1d:41:1b:41:3c:c6:be:ca:f6:ef: ec:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:CD:2D:BF:1A:E9:C3:B0:63:39:44:6C:33:0F:B7:BF:FA:D8:B7:FD X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132392e302f32342d3234203d3e203531383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.129.0/24 Signature Algorithm: sha256WithRSAEncryption 83:f6:63:f6:af:c4:8f:66:14:9e:d3:d9:8e:15:ac:97:6e:88: b6:f2:c5:05:1b:08:ee:a9:55:80:6e:4f:de:23:9f:24:c6:00: 70:0e:5e:89:15:62:9c:34:bc:91:62:7f:36:61:87:bd:d6:a6: b9:0f:a8:a6:b6:9d:71:0b:d3:83:ab:3b:17:08:23:17:6f:ab: 4a:e9:93:ab:05:9e:4a:4b:ed:62:bd:82:21:b7:e7:9a:6a:5f: 29:b8:bc:9f:46:17:0c:ef:01:47:4a:6d:32:e0:e0:27:c8:37: c7:e0:73:5e:a5:62:fc:12:ab:c1:33:90:9f:5c:0b:6f:b0:0d: f9:55:94:7d:84:b7:96:01:28:ba:66:71:c0:88:66:ee:28:6e: 34:f1:c6:02:d1:40:0f:06:22:3c:a0:35:16:df:90:3f:05:e0: 4b:de:7e:11:3f:52:20:62:57:45:3b:ac:48:56:d5:69:7a:2c: 6b:fd:9e:3f:31:c1:15:0f:db:30:99:e4:52:4e:7b:4f:17:47: 41:91:09:8d:a8:8d:e2:d5:0f:d3:de:51:9c:f2:c7:e1:ad:c2: 40:59:25:90:f2:62:4d:14:ab:c4:77:9a:48:d6:3c:0f:f0:cb: 14:dd:50:32:e4:62:9b:3d:6f:e7:c5:8a:e0:f7:4a:c0:60:8b: 28:32:f2:42 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUV9ylQpgq61LqzZNfm2efku6lKPYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI0MTIxODE2MjMzN1oX DTI1MTIxNzE2MjgzN1owMzExMC8GA1UEAxMoNUJDRDJEQkYxQUU5QzNCMDYzMzk0 NDZDMzMwRkI3QkZGQUQ4QjdGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMJeAJEpAP+j0ncEaXBOQuGAtJT3R+bn6QqJxw1nsQHnunNbhBMahFafRD/j 6fCF9v6lle2XDKQFwZlQxWX2iVd/XQ5GedosO0VJWs/uk35cBkbjReNczWmhrn2k pIkmd6VVkkSWI4FI0EYInj2Z0Isbwqi/+nCC9kvUmCskYdUIF/4H98iVcDaGmmqI hw79dSZ9PuqNQ9pw87DmQKXsl2Z2NNamI41bmoKm4qrTaBWqr4BCw8fxyOEW+M3a 9n3zqwR9ehm+9q6oa/0RawnBG4AP+aI5AnveqXCP2cly8jDar1tDH8ecs3Hpc3jH 8g9YpHog1jAdQRtBPMa+yvbv7NkCAwEAAaOCAhQwggIQMB0GA1UdDgQWBBRbzS2/ GunDsGM5RGwzD7e/+ti3/TAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGOBggrBgEFBQcBCwSBgTB/MH0GCCsGAQUF BzALhnFyc3luYzovL3Jwa2kuc3ViLmFwbmljLm5ldC9yZXBvc2l0b3J5L0E5MUE2 MTMxMDAwMC8wLzMxMzAzMzJlMzIzMzM4MmUzMTMyMzkyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzNTMxMzgzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+6BMA0GCSqGSIb3DQEBCwUA A4IBAQCD9mP2r8SPZhSe09mOFayXboi28sUFGwjuqVWAbk/eI58kxgBwDl6JFWKc NLyRYn82YYe91qa5D6imtp1xC9ODqzsXCCMXb6tK6ZOrBZ5KS+1ivYIht+eaal8p uLyfRhcM7wFHSm0y4OAnyDfH4HNepWL8EqvBM5CfXAtvsA35VZR9hLeWASi6ZnHA iGbuKG408cYC0UAPBiI8oDUW35A/BeBL3n4RP1IgYldFO6xIVtVpeixr/Z4/McEV D9swmeRSTntPF0dBkQmNqI3i1Q/T3lGc8sfhrcJAWSWQ8mJNFKvEd5pI1jwP8MsU 3VAy5GKbPW/nxYrg90rAYIsoMvJC -----END CERTIFICATE-----Generated at Sun Feb 16 22:20:33 2025 by rpki-client