$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20313431313538.roa File: 34332e3235352e38312e302f32342d3234203d3e20313431313538.roa (raw, json) Hash identifier: SQWzDg71lRig1vikM6oroRmKP7jytIrlrfxg8Lw3ga4= Subject key identifier: 78:CF:98:73:3F:CB:24:4F:C8:4C:3E:5C:B6:0D:06:D4:99:FA:09:CA Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 57C8CFA8D9FE1AD2DE6F12D5653870E7734D92CF Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20313431313538.roa Signing time: Thu 12 Dec 2024 07:28:36 +0000 ROA not before: Thu 12 Dec 2024 07:23:36 +0000 ROA not after: Thu 11 Dec 2025 07:28:36 +0000 asID: 141158 IP address blocks: 43.255.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Feb 2025 22:31:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:c8:cf:a8:d9:fe:1a:d2:de:6f:12:d5:65:38:70:e7:73:4d:92:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000 Validity Not Before: Dec 12 07:23:36 2024 GMT Not After : Dec 11 07:28:36 2025 GMT Subject: CN=78CF98733FCB244FC84C3E5CB60D06D499FA09CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0b:f0:36:ae:5c:92:63:d5:62:be:ab:7f:f1: 0d:e1:42:58:93:49:ae:6c:70:39:9d:cc:43:62:29: 1b:f6:0f:b9:3f:a5:2a:ae:21:52:b2:a9:21:eb:c7: 5b:1d:4b:80:3f:c1:cb:20:16:56:44:45:77:be:86: 37:93:a2:3a:42:f0:26:8e:6a:7a:27:27:a9:c5:27: 64:9f:26:00:4c:bc:98:68:88:02:fb:6b:2e:92:32: 8e:82:7b:23:b0:15:c2:60:36:53:e8:f4:09:7d:90: 1f:77:a4:4e:f3:05:0b:51:89:7a:68:fd:75:9d:c2: 30:85:39:00:a2:54:6d:11:42:69:ad:0b:0a:79:ab: 62:6c:45:b5:c3:b8:a7:96:1b:37:79:22:be:6f:bf: 0a:e5:dc:7f:72:e7:fa:9c:4c:57:14:a4:e8:a2:ff: 58:76:b0:99:46:c7:52:44:54:71:50:e5:e1:cd:3c: 72:c7:91:5d:35:b3:15:ac:b9:18:82:f9:b0:ed:03: 17:7c:f9:16:71:a2:89:04:27:87:21:4b:2c:02:d6: 23:0d:17:40:15:da:e5:cf:ff:a9:b3:a9:20:74:45: c8:f1:70:03:cb:48:b9:f0:c4:15:fe:3b:f8:a7:b5: c4:2e:57:19:4c:53:b3:07:c9:ed:fd:22:7e:53:d9: 67:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CF:98:73:3F:CB:24:4F:C8:4C:3E:5C:B6:0D:06:D4:99:FA:09:CA X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20313431313538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.81.0/24 Signature Algorithm: sha256WithRSAEncryption 03:b2:30:2b:62:b0:89:13:b3:d0:ab:38:0b:91:9d:39:2e:20: ad:01:89:11:cb:f4:d1:b6:95:c5:d0:cb:06:9b:20:7a:f5:5a: c4:5a:19:c2:20:31:2b:1c:49:1c:1f:57:5c:30:b1:63:44:85: 30:64:d8:7d:93:37:8c:c6:af:66:6e:ed:aa:b3:f7:04:b3:8f: c4:3f:38:34:2e:8a:54:60:6a:6d:52:1a:44:33:f4:4e:1c:c5: 82:1f:23:9f:da:f4:57:87:68:16:7f:93:d0:8c:18:04:37:2f: e6:07:a2:97:53:81:24:75:d5:e2:73:d7:27:8a:13:45:a5:bb: 85:04:72:f5:b9:c8:8d:70:ef:cf:d5:fe:b7:a8:05:4f:c7:28: 02:48:55:01:46:03:e9:f3:08:76:ad:3e:df:76:8c:1e:6e:b4: 45:58:7a:37:07:0c:c2:7f:a0:6d:f2:2c:fb:0c:b0:3f:b9:3e: 93:ce:e6:02:81:ef:5f:96:3b:5d:43:c4:c7:7a:8a:4d:a9:74: 17:87:d1:ca:8b:7e:83:cd:94:a2:e1:c7:2e:ca:93:1c:3a:cd: db:ed:50:a5:c3:dd:b1:47:a4:0a:66:98:da:8f:df:f1:f5:be: 7d:fb:4b:89:2c:84:29:4e:da:2c:5c:9a:7e:c4:9c:c7:42:15: 14:0e:da:6e -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUV8jPqNn+GtLebxLVZThw53NNks8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI0MTIxMjA3MjMzNloX DTI1MTIxMTA3MjgzNlowMzExMC8GA1UEAxMoNzhDRjk4NzMzRkNCMjQ0RkM4NEMz RTVDQjYwRDA2RDQ5OUZBMDlDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJsL8DauXJJj1WK+q3/xDeFCWJNJrmxwOZ3MQ2IpG/YPuT+lKq4hUrKpIevH Wx1LgD/ByyAWVkRFd76GN5OiOkLwJo5qeicnqcUnZJ8mAEy8mGiIAvtrLpIyjoJ7 I7AVwmA2U+j0CX2QH3ekTvMFC1GJemj9dZ3CMIU5AKJUbRFCaa0LCnmrYmxFtcO4 p5YbN3kivm+/CuXcf3Ln+pxMVxSk6KL/WHawmUbHUkRUcVDl4c08cseRXTWzFay5 GIL5sO0DF3z5FnGiiQQnhyFLLALWIw0XQBXa5c//qbOpIHRFyPFwA8tIufDEFf47 +Ke1xC5XGUxTswfJ7f0iflPZZ7kCAwEAAaOCAhEwggINMB0GA1UdDgQWBBR4z5hz P8skT8hMPly2DQbUmfoJyjAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxQTYx MzEwMDAwLzAvMzQzMzJlMzIzNTM1MmUzODMxMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzEzNDMxMzEzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/9RMA0GCSqGSIb3DQEBCwUAA4IB AQADsjArYrCJE7PQqzgLkZ05LiCtAYkRy/TRtpXF0MsGmyB69VrEWhnCIDErHEkc H1dcMLFjRIUwZNh9kzeMxq9mbu2qs/cEs4/EPzg0LopUYGptUhpEM/ROHMWCHyOf 2vRXh2gWf5PQjBgENy/mB6KXU4EkddXic9cnihNFpbuFBHL1uciNcO/P1f63qAVP xygCSFUBRgPp8wh2rT7fdowebrRFWHo3BwzCf6Bt8iz7DLA/uT6TzuYCge9fljtd Q8THeopNqXQXh9HKi36DzZSi4ccuypMcOs3b7VClw92xR6QKZpjaj9/x9b59+0uJ LIQpTtosXJp+xJzHQhUUDtpu -----END CERTIFICATE-----Generated at Sun Feb 16 22:23:28 2025 by rpki-client