$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e203630353034.roa File: 3130332e3233382e3133312e302f32342d3234203d3e203630353034.roa (raw, json) Hash identifier: It+R5HxtEYqqDgRfdkfgqAnNxZX3mTjU885v1lTIBOA= Subject key identifier: 39:4A:9F:DB:28:37:78:F1:E5:EC:58:FB:A6:C8:3E:2A:46:16:62:E9 Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 1367CD662A9D9A0EC56CE5D2D449CF56B5F1361B Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e203630353034.roa Signing time: Thu 12 Dec 2024 07:28:36 +0000 ROA not before: Thu 12 Dec 2024 07:23:36 +0000 ROA not after: Thu 11 Dec 2025 07:28:36 +0000 asID: 60504 IP address blocks: 103.238.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Feb 2025 22:31:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:67:cd:66:2a:9d:9a:0e:c5:6c:e5:d2:d4:49:cf:56:b5:f1:36:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000 Validity Not Before: Dec 12 07:23:36 2024 GMT Not After : Dec 11 07:28:36 2025 GMT Subject: CN=394A9FDB283778F1E5EC58FBA6C83E2A461662E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f8:4a:4a:b8:40:e4:94:8d:61:92:03:10:a9: c0:e1:4a:34:ab:38:41:56:50:cf:59:26:3b:db:5a: f9:63:0c:a4:05:9e:71:f7:e0:e4:bb:90:72:ae:fb: bd:fc:46:0a:e1:b8:8e:34:92:81:3a:83:64:fe:6e: cf:ec:77:47:56:9a:be:84:f9:f6:b5:26:5b:0e:98: 6f:f4:0e:6e:69:ba:4e:26:6e:6a:37:bc:70:aa:34: 32:a4:f8:2d:26:f4:6c:05:83:d5:74:bb:ff:ba:f9: 6e:c6:43:f4:41:00:be:40:ec:29:01:cf:1d:58:50: c7:56:b8:f2:78:6b:35:93:a7:95:dd:96:43:72:f8: 10:85:19:9b:67:eb:fe:ec:8f:f2:b2:71:1d:25:e1: 83:ce:b2:b3:bf:65:f3:87:51:55:08:9d:5b:f5:f9: bb:4a:9e:2c:cc:81:a4:16:b1:d8:fe:e5:e5:28:65: b6:df:3d:39:4b:d0:82:21:8f:5d:90:01:8b:79:63: 18:cc:f3:39:0f:f8:e1:ed:ce:9b:99:e9:14:69:03: 67:06:16:91:dd:0e:e5:5d:bd:ad:da:09:de:93:f5: 59:48:b5:be:5a:2b:02:b8:1d:e0:ab:46:7b:0e:6d: e9:ac:d3:44:97:34:30:58:13:eb:70:dc:cd:6d:ca: 70:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:4A:9F:DB:28:37:78:F1:E5:EC:58:FB:A6:C8:3E:2A:46:16:62:E9 X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e203630353034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.131.0/24 Signature Algorithm: sha256WithRSAEncryption 06:34:56:48:13:3d:9e:77:9e:91:6b:48:f4:99:d2:7f:2c:d5: 3c:7b:03:98:ed:d3:57:f5:df:29:04:f3:5b:9d:71:43:4c:ad: 48:05:41:4c:dd:e7:e1:e0:30:94:1a:7b:7a:d4:eb:a4:74:4a: 74:5c:b4:87:3e:52:b3:e1:f7:3f:a4:3e:e1:50:e2:2b:80:c2: 11:06:ca:2a:8f:48:03:11:b3:c8:05:6d:61:83:7c:fd:e7:ee: 16:97:87:ec:ff:d5:42:3f:01:a4:83:1d:4d:71:4a:b0:87:db: 29:e5:05:7c:0e:de:53:16:09:f7:bd:a6:ab:b4:b5:99:59:81: d5:29:a4:39:f5:23:0c:64:14:76:36:3d:a8:a5:89:ef:4f:28: ee:e6:78:23:3f:4d:17:a9:aa:b2:6a:f5:d1:19:d6:ef:11:ef: 6b:d8:3d:77:b5:49:8f:17:b3:5a:85:2c:53:26:40:0d:39:1f: cb:1a:3d:63:37:ff:1f:4d:82:60:1a:37:a7:8e:67:fe:76:c4: 01:5e:3e:00:e7:56:ef:4b:26:b3:8a:37:4e:4a:10:6e:3c:58: c4:24:33:b1:ca:81:09:95:b5:6d:1d:8c:4f:f4:c2:d8:3c:42: 80:17:4f:70:c6:ee:d9:f2:a5:47:5f:0e:23:29:12:db:50:df: 54:62:09:20 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUE2fNZiqdmg7FbOXS1EnPVrXxNhswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI0MTIxMjA3MjMzNloX DTI1MTIxMTA3MjgzNlowMzExMC8GA1UEAxMoMzk0QTlGREIyODM3NzhGMUU1RUM1 OEZCQTZDODNFMkE0NjE2NjJFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOz4Skq4QOSUjWGSAxCpwOFKNKs4QVZQz1kmO9ta+WMMpAWecffg5LuQcq77 vfxGCuG4jjSSgTqDZP5uz+x3R1aavoT59rUmWw6Yb/QObmm6TiZuaje8cKo0MqT4 LSb0bAWD1XS7/7r5bsZD9EEAvkDsKQHPHVhQx1a48nhrNZOnld2WQ3L4EIUZm2fr /uyP8rJxHSXhg86ys79l84dRVQidW/X5u0qeLMyBpBax2P7l5Shltt89OUvQgiGP XZABi3ljGMzzOQ/44e3Om5npFGkDZwYWkd0O5V29rdoJ3pP1WUi1vlorArgd4KtG ew5t6azTRJc0MFgT63DczW3KcP8CAwEAAaOCAhQwggIQMB0GA1UdDgQWBBQ5Sp/b KDd48eXsWPumyD4qRhZi6TAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGOBggrBgEFBQcBCwSBgTB/MH0GCCsGAQUF BzALhnFyc3luYzovL3Jwa2kuc3ViLmFwbmljLm5ldC9yZXBvc2l0b3J5L0E5MUE2 MTMxMDAwMC8wLzMxMzAzMzJlMzIzMzM4MmUzMTMzMzEyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzNjMwMzUzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+6DMA0GCSqGSIb3DQEBCwUA A4IBAQAGNFZIEz2ed56Ra0j0mdJ/LNU8ewOY7dNX9d8pBPNbnXFDTK1IBUFM3efh 4DCUGnt61OukdEp0XLSHPlKz4fc/pD7hUOIrgMIRBsoqj0gDEbPIBW1hg3z95+4W l4fs/9VCPwGkgx1NcUqwh9sp5QV8Dt5TFgn3vaartLWZWYHVKaQ59SMMZBR2Nj2o pYnvTyju5ngjP00XqaqyavXRGdbvEe9r2D13tUmPF7NahSxTJkANOR/LGj1jN/8f TYJgGjenjmf+dsQBXj4A51bvSyazijdOShBuPFjEJDOxyoEJlbVtHYxP9MLYPEKA F09wxu7Z8qVHXw4jKRLbUN9UYgkg -----END CERTIFICATE-----Generated at Sun Feb 16 22:17:18 2025 by rpki-client