$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38322e302f32342d3234203d3e20393834.roa File: 34332e3235352e38322e302f32342d3234203d3e20393834.roa (raw, json) Hash identifier: koN3m+5vDonD19xHUxIlMjPKw9wAE7Tgr4bm47buMEc= Subject key identifier: EA:06:33:52:0E:6A:94:3E:C2:76:68:95:E2:E5:36:D1:B0:B5:45:AD Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 15B97D11811F905C80B5667A5A923CC0D9383083 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38322e302f32342d3234203d3e20393834.roa Signing time: Thu 11 Jan 2024 06:59:20 +0000 ROA not before: Thu 11 Jan 2024 06:54:20 +0000 ROA not after: Thu 09 Jan 2025 06:59:20 +0000 asID: 984 IP address blocks: 43.255.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 05:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:b9:7d:11:81:1f:90:5c:80:b5:66:7a:5a:92:3c:c0:d9:38:30:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Jan 11 06:54:20 2024 GMT Not After : Jan 9 06:59:20 2025 GMT Subject: CN=EA0633520E6A943EC2766895E2E536D1B0B545AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7c:ff:f3:f8:7c:61:9a:35:f4:5c:1a:28:e6: 41:35:39:4b:93:7b:2d:ca:8b:64:3d:2f:9c:a0:b4: 7c:5b:8d:9c:09:0b:08:93:b1:1b:bc:47:60:c8:b9: 34:2f:49:a2:0e:a2:a6:12:4d:28:ab:3b:20:60:dd: b5:57:bd:cd:5c:16:ec:3e:79:59:21:0f:76:c0:cf: a0:66:17:77:5c:86:d6:55:59:66:36:96:66:cc:54: a0:f8:c4:08:2b:d5:2e:0c:f0:4b:60:4f:00:8c:7a: 72:a9:5c:5e:19:71:a2:21:2a:18:c9:9f:8b:55:45: 85:6b:41:eb:17:32:b8:8a:fe:d1:fd:8c:0a:1c:1c: bf:7b:9f:c4:e0:ee:19:cc:1b:9f:c7:e1:f6:5b:d9: b2:ff:23:52:27:94:d4:97:96:09:1a:b7:fe:4e:e1: ac:aa:eb:5d:f8:2c:9a:a1:f9:47:c0:6a:12:0e:82: 3b:22:b7:82:22:93:10:d2:28:db:06:d2:6c:c6:56: 35:c0:48:c0:20:b3:19:6a:c3:7e:93:1d:a1:20:9b: 8d:39:e3:67:a9:78:f7:08:8e:0e:e7:50:3f:0e:0b: ad:f5:8e:ae:e2:9d:e2:25:58:17:79:54:f8:5c:bd: 8c:ff:4d:42:5a:97:f7:bd:f6:cb:3d:d1:f5:b3:76: 34:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:06:33:52:0E:6A:94:3E:C2:76:68:95:E2:E5:36:D1:B0:B5:45:AD X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38322e302f32342d3234203d3e20393834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.82.0/24 Signature Algorithm: sha256WithRSAEncryption 70:60:84:ff:bf:3a:82:98:23:b2:81:c0:e7:e4:85:bf:f7:2e: 31:de:cb:db:24:08:94:07:20:a1:35:07:07:06:ea:74:df:7a: 84:b6:76:7b:f4:2d:f9:7a:62:f5:6a:2c:8e:6a:cb:38:dd:19: 71:9b:30:99:49:45:0b:7e:d4:44:fb:1e:bf:3f:cf:e3:fd:de: 25:e0:af:f6:0e:2d:be:08:d5:86:e5:3e:c2:db:97:fd:62:cc: 6a:cb:f6:cf:cf:f5:1a:29:55:8c:1f:a1:19:81:ab:fe:5e:55: a9:c1:e4:7c:cd:25:73:5e:81:4f:05:c5:39:3a:a2:3e:e2:b5: 43:4c:db:81:6a:fa:d9:65:23:60:58:03:0f:e3:9e:8f:bf:d7: 18:8e:fc:07:5f:b2:15:92:e6:32:1f:7e:84:d5:04:fc:0b:fb: 9e:e5:d7:0d:89:81:97:2f:bf:64:7b:1a:a3:6f:ea:af:13:24: 4f:ec:18:27:d9:3c:c7:5d:67:1e:9a:01:d6:33:1b:55:92:30: 84:18:61:e5:c3:b9:8a:25:4b:9b:3b:4e:33:9e:09:fb:ff:f3: e7:e1:cc:94:f0:c3:f7:5b:c8:7e:35:a2:ac:bf:62:f4:29:ef: d1:de:42:29:55:a0:50:b2:b2:9f:f3:25:7b:42:69:14:7a:b3: c0:cd:6a:51 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUFbl9EYEfkFyAtWZ6WpI8wNk4MIMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI0MDExMTA2NTQyMFoX DTI1MDEwOTA2NTkyMFowMzExMC8GA1UEAxMoRUEwNjMzNTIwRTZBOTQzRUMyNzY2 ODk1RTJFNTM2RDFCMEI1NDVBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ58//P4fGGaNfRcGijmQTU5S5N7LcqLZD0vnKC0fFuNnAkLCJOxG7xHYMi5 NC9Jog6iphJNKKs7IGDdtVe9zVwW7D55WSEPdsDPoGYXd1yG1lVZZjaWZsxUoPjE CCvVLgzwS2BPAIx6cqlcXhlxoiEqGMmfi1VFhWtB6xcyuIr+0f2MChwcv3ufxODu Gcwbn8fh9lvZsv8jUieU1JeWCRq3/k7hrKrrXfgsmqH5R8BqEg6COyK3giKTENIo 2wbSbMZWNcBIwCCzGWrDfpMdoSCbjTnjZ6l49wiODudQPw4LrfWOruKd4iVYF3lU +Fy9jP9NQlqX9732yz3R9bN2NIkCAwEAAaOCAgswggIHMB0GA1UdDgQWBBTqBjNS DmqUPsJ2aJXi5TbRsLVFrTAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGFBggrBgEFBQcBCwR5MHcwdQYIKwYBBQUH MAuGaXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxQTYx MzEwMDAwLzAvMzQzMzJlMzIzNTM1MmUzODMyMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzkzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAK/9SMA0GCSqGSIb3DQEBCwUAA4IBAQBwYIT/ vzqCmCOygcDn5IW/9y4x3svbJAiUByChNQcHBup033qEtnZ79C35emL1aiyOass4 3RlxmzCZSUULftRE+x6/P8/j/d4l4K/2Di2+CNWG5T7C25f9Ysxqy/bPz/UaKVWM H6EZgav+XlWpweR8zSVzXoFPBcU5OqI+4rVDTNuBavrZZSNgWAMP456Pv9cYjvwH X7IVkuYyH36E1QT8C/ue5dcNiYGXL79kexqjb+qvEyRP7Bgn2TzHXWcemgHWMxtV kjCEGGHlw7mKJUubO04zngn7//Pn4cyU8MP3W8h+NaKsv2L0Ke/R3kIpVaBQsrKf 8yV7QmkUerPAzWpR -----END CERTIFICATE-----Generated at Fri Nov 22 04:36:53 2024 by rpki-client on console-fra.rpki-client.org