$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20313431313538.roa File: 34332e3235352e38312e302f32342d3234203d3e20313431313538.roa (raw, json) Hash identifier: h6di5JU9M99tiCp6Fk71YuElkT1RNcweqk+7/FsPxNA= Subject key identifier: 99:41:F2:6E:5F:D4:CB:75:00:83:F8:89:8E:6B:C0:31:64:99:55:9D Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 5E0873AA05687D96B1E34695881CFAA3C492DE7B Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20313431313538.roa Signing time: Thu 11 Jan 2024 06:59:45 +0000 ROA not before: Thu 11 Jan 2024 06:54:45 +0000 ROA not after: Thu 09 Jan 2025 06:59:45 +0000 asID: 141158 IP address blocks: 43.255.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 13:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:08:73:aa:05:68:7d:96:b1:e3:46:95:88:1c:fa:a3:c4:92:de:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Jan 11 06:54:45 2024 GMT Not After : Jan 9 06:59:45 2025 GMT Subject: CN=9941F26E5FD4CB750083F8898E6BC0316499559D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:5f:01:49:a4:41:01:cd:16:67:88:f5:b0:a5: 64:99:1c:7e:c0:2e:4d:98:dd:a7:4d:54:c0:d7:87: 14:44:e3:b1:a0:65:f6:9b:21:5d:23:b6:ce:64:7e: 50:5f:3c:f2:81:00:90:f1:69:2a:ad:00:36:65:0a: 1b:d0:d5:00:ad:f4:de:c5:19:a2:4d:24:bc:d5:b9: 7a:ca:80:11:43:b9:94:36:b1:92:6c:f0:b2:6a:07: ae:14:8e:a2:f3:7d:cf:1a:56:53:ca:14:e1:30:c0: 36:d0:43:78:71:1f:b9:c4:02:3d:bd:e1:7f:f3:5d: 3a:92:ef:95:88:6d:f8:96:18:45:4b:5b:ac:0e:43: 4d:f0:cf:d4:c9:bc:4d:79:45:a3:8a:85:92:a9:af: 51:72:78:41:98:a4:d5:c0:0c:2b:b4:9f:0b:7c:0b: 6a:e9:ca:a9:6c:04:d6:05:bc:62:d5:24:f0:0e:d4: 8e:db:58:37:9e:d0:7e:96:d4:a1:e1:5f:c6:e2:00: ad:c6:41:ff:f2:be:93:ae:7a:5f:4d:c9:d9:09:7e: dd:75:ca:71:b6:5b:2e:d2:ed:9b:52:3e:f7:6f:f7: 17:1e:63:44:a8:13:a7:51:0b:ad:e7:2e:1e:22:2d: d9:f2:5c:9d:28:b0:06:07:e7:6c:60:fe:0f:72:c8: 62:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:41:F2:6E:5F:D4:CB:75:00:83:F8:89:8E:6B:C0:31:64:99:55:9D X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20313431313538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.81.0/24 Signature Algorithm: sha256WithRSAEncryption 58:66:d6:b7:5c:32:a8:6e:17:fc:44:47:c5:f8:6d:73:68:db: 59:cd:06:44:f6:c4:1f:24:ee:53:bf:24:fa:2d:ac:74:f0:62: c4:65:f6:c8:5a:c4:56:3d:1a:68:6b:a9:d6:0c:79:15:f3:49: 98:c3:45:ea:8c:9a:a6:d9:5d:62:c1:5a:73:25:84:bc:72:85: 1e:4e:38:9f:62:df:5c:a0:f3:35:ba:84:50:27:a6:1c:63:98: 5a:c7:1b:87:e4:4d:43:0d:8d:a5:40:20:45:59:0b:ac:e9:bb: b7:74:fa:74:93:2e:54:d5:9f:63:5b:f7:e1:b6:20:b5:2b:b4: 08:19:6f:71:fa:a9:af:9c:17:5f:d6:f1:7d:47:2d:89:3c:0a: 0b:a7:21:0c:21:39:f9:77:7e:8d:2f:fd:39:6f:8e:a8:80:74: 88:c5:90:9f:d4:17:25:0c:55:1c:c2:9a:3c:63:79:1a:61:7b: c4:d2:12:f6:ce:2c:99:ba:84:64:11:29:af:ce:d1:9d:51:79: d6:8e:b1:35:98:f0:6b:2b:40:29:bf:21:64:71:8b:cc:c6:9f: d5:1e:6c:e9:5f:43:0c:26:88:e0:68:b1:62:c9:df:81:f5:a3: a0:41:2c:84:21:5d:e3:90:f9:64:8d:71:a2:4e:15:45:c3:21: 16:c5:91:29 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUXghzqgVofZax40aViBz6o8SS3nswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI0MDExMTA2NTQ0NVoX DTI1MDEwOTA2NTk0NVowMzExMC8GA1UEAxMoOTk0MUYyNkU1RkQ0Q0I3NTAwODNG ODg5OEU2QkMwMzE2NDk5NTU5RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJRfAUmkQQHNFmeI9bClZJkcfsAuTZjdp01UwNeHFETjsaBl9pshXSO2zmR+ UF888oEAkPFpKq0ANmUKG9DVAK303sUZok0kvNW5esqAEUO5lDaxkmzwsmoHrhSO ovN9zxpWU8oU4TDANtBDeHEfucQCPb3hf/NdOpLvlYht+JYYRUtbrA5DTfDP1Mm8 TXlFo4qFkqmvUXJ4QZik1cAMK7SfC3wLaunKqWwE1gW8YtUk8A7UjttYN57QfpbU oeFfxuIArcZB//K+k656X03J2Ql+3XXKcbZbLtLtm1I+92/3Fx5jRKgTp1ELrecu HiIt2fJcnSiwBgfnbGD+D3LIYscCAwEAAaOCAhEwggINMB0GA1UdDgQWBBSZQfJu X9TLdQCD+ImOa8AxZJlVnTAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxQTYx MzEwMDAwLzAvMzQzMzJlMzIzNTM1MmUzODMxMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzEzNDMxMzEzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/9RMA0GCSqGSIb3DQEBCwUAA4IB AQBYZta3XDKobhf8REfF+G1zaNtZzQZE9sQfJO5TvyT6Lax08GLEZfbIWsRWPRpo a6nWDHkV80mYw0XqjJqm2V1iwVpzJYS8coUeTjifYt9coPM1uoRQJ6YcY5haxxuH 5E1DDY2lQCBFWQus6bu3dPp0ky5U1Z9jW/fhtiC1K7QIGW9x+qmvnBdf1vF9Ry2J PAoLpyEMITn5d36NL/05b46ogHSIxZCf1BclDFUcwpo8Y3kaYXvE0hL2ziyZuoRk ESmvztGdUXnWjrE1mPBrK0ApvyFkcYvMxp/VHmzpX0MMJojgaLFiyd+B9aOgQSyE IV3jkPlkjXGiThVFwyEWxZEp -----END CERTIFICATE-----Generated at Sun May 5 13:18:34 2024 by rpki-client on console-ams.rpki-client.org