$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38302e302f32342d3234203d3e20333935373933.roa File: 34332e3235352e38302e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: 34ZLdvJWRlaz+jTDs3YF3eEhOoQyE7fhuoEG/fJaNVY= Subject key identifier: F1:31:F4:60:B3:26:A8:93:A0:4A:DF:F0:34:59:E8:14:8E:EC:26:3E Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 690362A572DD305EA156A973133BD74271A76E58 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38302e302f32342d3234203d3e20333935373933.roa Signing time: Tue 05 Nov 2024 14:39:55 +0000 ROA not before: Tue 05 Nov 2024 14:34:55 +0000 ROA not after: Tue 04 Nov 2025 14:39:55 +0000 asID: 395793 IP address blocks: 43.255.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 05:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:03:62:a5:72:dd:30:5e:a1:56:a9:73:13:3b:d7:42:71:a7:6e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Nov 5 14:34:55 2024 GMT Not After : Nov 4 14:39:55 2025 GMT Subject: CN=F131F460B326A893A04ADFF03459E8148EEC263E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4a:0d:ab:57:36:fb:5d:22:0d:a0:06:90:a5: 09:8c:3b:d5:84:a1:fa:aa:e4:07:31:b6:0c:94:de: cb:50:4d:40:55:19:0d:b9:59:d5:5b:d9:18:a1:30: 6c:73:9e:1b:d5:da:fe:8d:7f:c0:f8:46:8a:aa:8f: dd:ef:ad:95:f0:73:b5:17:6c:d9:2b:e0:dc:0e:01: 09:c9:a6:6e:6f:18:a2:56:e5:62:e0:26:d2:f9:de: 81:9d:70:c6:7f:bd:cf:68:fb:d1:2a:a1:26:88:e0: 53:8e:3f:3c:9e:d0:4a:01:55:6b:a7:8a:95:22:29: fc:2b:dc:d6:e4:34:b4:07:bd:7b:76:3f:77:8b:4e: 3b:cc:4a:c1:a1:12:90:79:c5:dd:eb:b3:c3:fb:03: 91:29:85:d5:89:5a:56:a2:19:09:53:bd:fe:76:13: 63:ae:6c:fa:45:35:36:28:d9:39:02:39:0d:49:8e: 38:43:d7:38:2f:b6:ff:e2:49:b8:40:40:d3:cd:dd: f6:02:42:0c:91:c4:ba:84:6a:7c:eb:82:08:b5:d4: aa:f2:80:8d:e8:f0:fe:3b:c9:14:f1:97:47:75:9a: e0:0f:1b:13:a2:5c:96:ce:1f:bb:2d:4d:de:8a:f2: 61:7f:c2:fc:fa:cc:4f:5d:11:c2:fe:5a:3a:39:67: b8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:31:F4:60:B3:26:A8:93:A0:4A:DF:F0:34:59:E8:14:8E:EC:26:3E X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38302e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.80.0/24 Signature Algorithm: sha256WithRSAEncryption 70:5d:6a:8f:c9:19:4b:6e:1f:d6:b2:75:a5:4d:36:1f:c2:08: 2a:7b:58:7c:d1:d5:b1:9e:25:79:0f:a9:1b:f9:1c:7d:77:89: 0b:0a:a9:27:3e:09:c1:62:7c:75:df:93:78:94:36:bd:2f:48: 5f:d1:1b:28:16:eb:78:5e:b3:6d:2b:fb:25:25:45:da:9f:b2: 8d:b9:54:94:ee:54:98:fa:0b:70:79:a0:35:da:62:49:b9:8d: 6b:33:21:c9:ed:69:b7:28:53:a7:e3:2a:90:99:52:a9:14:dc: c5:76:8e:f4:80:97:72:25:e0:4e:66:c4:ca:3e:f9:6c:8f:c4: 8e:e7:5a:3a:ad:8f:c4:b3:43:f1:b7:fc:33:ab:fe:ef:33:d9: e4:ed:5d:f2:b8:99:cc:b1:bd:7e:59:31:3c:9b:6f:60:b6:07: f2:e4:2a:f6:b0:ab:4a:4a:1a:55:40:74:06:79:25:ed:eb:fd: 8b:fa:59:cb:e8:d1:57:70:84:49:72:c0:a0:c9:cf:7b:8c:59: e6:fe:08:e2:67:33:48:9b:58:8a:a1:b3:99:03:84:59:08:bf: ba:ef:4a:87:24:44:1c:e7:a6:1d:52:92:4e:d2:e8:42:3d:d7: bb:74:0d:0f:fc:a2:16:87:33:66:ab:0a:15:96:cc:85:cb:a4: ec:fc:73:a0 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUaQNipXLdMF6hVqlzEzvXQnGnblgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI0MTEwNTE0MzQ1NVoX DTI1MTEwNDE0Mzk1NVowMzExMC8GA1UEAxMoRjEzMUY0NjBCMzI2QTg5M0EwNEFE RkYwMzQ1OUU4MTQ4RUVDMjYzRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALVKDatXNvtdIg2gBpClCYw71YSh+qrkBzG2DJTey1BNQFUZDblZ1VvZGKEw bHOeG9Xa/o1/wPhGiqqP3e+tlfBztRds2Svg3A4BCcmmbm8YolblYuAm0vnegZ1w xn+9z2j70SqhJojgU44/PJ7QSgFVa6eKlSIp/Cvc1uQ0tAe9e3Y/d4tOO8xKwaES kHnF3euzw/sDkSmF1YlaVqIZCVO9/nYTY65s+kU1NijZOQI5DUmOOEPXOC+2/+JJ uEBA083d9gJCDJHEuoRqfOuCCLXUqvKAjejw/jvJFPGXR3Wa4A8bE6Jcls4fuy1N 3oryYX/C/PrMT10Rwv5aOjlnuDkCAwEAAaOCAhEwggINMB0GA1UdDgQWBBTxMfRg syaok6BK3/A0WegUjuwmPjAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxQTYx MzEwMDAwLzAvMzQzMzJlMzIzNTM1MmUzODMwMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/9QMA0GCSqGSIb3DQEBCwUAA4IB AQBwXWqPyRlLbh/WsnWlTTYfwggqe1h80dWxniV5D6kb+Rx9d4kLCqknPgnBYnx1 35N4lDa9L0hf0RsoFut4XrNtK/slJUXan7KNuVSU7lSY+gtweaA12mJJuY1rMyHJ 7Wm3KFOn4yqQmVKpFNzFdo70gJdyJeBOZsTKPvlsj8SO51o6rY/Es0Pxt/wzq/7v M9nk7V3yuJnMsb1+WTE8m29gtgfy5Cr2sKtKShpVQHQGeSXt6/2L+lnL6NFXcIRJ csCgyc97jFnm/gjiZzNIm1iKobOZA4RZCL+670qHJEQc56YdUpJO0uhCPde7dA0P /KIWhzNmqwoVlsyFy6Ts/HOg -----END CERTIFICATE-----Generated at Fri Nov 22 04:58:40 2024 by rpki-client on console-ams.rpki-client.org