$ rpki-client -vvf rpki.sub.apnic.net/repository/A91E54810000/0/3130332e3137332e3232352e302f32342d3234203d3e20323036323634.roa File: 3130332e3137332e3232352e302f32342d3234203d3e20323036323634.roa (raw, json) Hash identifier: lAIKGbxFVCbuZH4Unn4B5dmf+xIFD6IcrD7k7TnBr/g= Subject key identifier: 41:9D:C1:FA:C7:C8:5D:34:7B:A0:0A:64:DA:EF:F8:51:29:77:9A:E9 Certificate issuer: /CN=A91E54810000/serialNumber=D988B2DA7F4305F0CDB93BF88B6F5A9DF98D8940 Certificate serial: 2307F0AA2AA50AC1965C263EA1CC28DD7AB20805 Authority key identifier: D9:88:B2:DA:7F:43:05:F0:CD:B9:3B:F8:8B:6F:5A:9D:F9:8D:89:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Yiy2n9DBfDNuTv4i29anfmNiUA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91E54810000/0/3130332e3137332e3232352e302f32342d3234203d3e20323036323634.roa Signing time: Mon 08 Jan 2024 03:11:00 +0000 ROA not before: Mon 08 Jan 2024 03:06:00 +0000 ROA not after: Mon 06 Jan 2025 03:11:00 +0000 asID: 206264 IP address blocks: 103.173.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91E54810000/0/D988B2DA7F4305F0CDB93BF88B6F5A9DF98D8940.crl rsync://rpki.sub.apnic.net/repository/A91E54810000/0/D988B2DA7F4305F0CDB93BF88B6F5A9DF98D8940.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Yiy2n9DBfDNuTv4i29anfmNiUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 11:15:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:07:f0:aa:2a:a5:0a:c1:96:5c:26:3e:a1:cc:28:dd:7a:b2:08:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E54810000/serialNumber=D988B2DA7F4305F0CDB93BF88B6F5A9DF98D8940 Validity Not Before: Jan 8 03:06:00 2024 GMT Not After : Jan 6 03:11:00 2025 GMT Subject: CN=419DC1FAC7C85D347BA00A64DAEFF85129779AE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5e:30:7a:01:0b:98:89:9f:50:0e:83:27:4d: da:7a:81:90:76:d3:a6:6c:75:72:f9:aa:25:6d:3c: f7:e6:a8:64:1f:9b:87:28:54:29:6d:f3:59:89:10: 02:48:46:b1:a9:15:44:73:7c:1b:f3:d5:fd:f8:dd: 2c:b3:6f:29:2a:2e:8a:32:22:c1:28:14:39:87:a8: cb:2f:c9:a5:03:f0:6c:19:ec:57:7c:68:67:37:05: 10:f3:86:a5:68:f1:44:2a:20:99:18:da:f7:ad:67: 17:e9:d7:3f:f9:93:78:15:d5:7b:34:fe:0b:fb:1e: d6:4f:98:10:d0:15:d7:d8:6f:96:09:9b:bd:29:8b: 27:01:f2:15:bd:fc:9b:f9:2c:a7:0f:ed:a6:e3:95: d7:53:46:a8:4a:0a:75:04:cd:6d:5b:ae:de:fc:35: 60:2c:67:d1:df:c4:15:c0:02:59:50:b7:9b:9e:01: 0f:00:a5:a8:52:51:b7:07:af:2a:5f:25:84:47:99: 43:5d:4f:e4:38:f0:65:19:d9:44:db:fb:eb:d8:75: 6d:c5:39:04:ec:d1:2e:76:28:66:9c:4d:b6:75:42: 7b:af:60:58:6d:e0:c7:15:54:d8:15:97:2d:bd:8b: 6b:64:d5:7b:e0:ee:a3:a2:24:83:a0:ce:d5:68:2a: 43:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:9D:C1:FA:C7:C8:5D:34:7B:A0:0A:64:DA:EF:F8:51:29:77:9A:E9 X509v3 Authority Key Identifier: keyid:D9:88:B2:DA:7F:43:05:F0:CD:B9:3B:F8:8B:6F:5A:9D:F9:8D:89:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91E54810000/0/D988B2DA7F4305F0CDB93BF88B6F5A9DF98D8940.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Yiy2n9DBfDNuTv4i29anfmNiUA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91E54810000/0/3130332e3137332e3232352e302f32342d3234203d3e20323036323634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.225.0/24 Signature Algorithm: sha256WithRSAEncryption 79:d3:45:85:41:ef:b3:6d:9b:a9:f1:90:b8:0a:33:11:bb:28: b7:a7:f8:c2:a3:9f:49:05:d8:49:73:4e:65:25:1e:87:d2:b0: ac:fc:8e:9b:67:3b:81:c3:7e:94:08:17:0e:49:df:b8:45:86: 15:d1:8c:e5:ee:3b:04:16:70:a2:76:c9:29:96:6f:a2:2a:5b: c8:03:91:8d:c6:7e:c9:20:16:39:69:e5:5c:2c:be:f0:9a:b6: 53:4e:bf:24:4c:51:ec:61:9b:44:fd:9e:24:47:1c:c9:8e:9d: 0a:3b:e8:7d:3e:8d:2c:d9:5a:dd:2d:5c:94:b3:46:37:28:9f: 31:f6:34:a6:3b:e3:a8:95:96:85:6a:f5:0f:a0:55:85:3b:2f: 3c:3e:8c:9a:4b:c2:58:55:a0:26:8a:00:88:1e:bb:6e:90:7c: 18:45:e1:5b:04:31:37:68:84:0a:5f:11:dc:ab:be:ee:fe:25: 92:36:49:03:3d:97:c1:e5:71:c4:86:82:e4:a1:1c:db:47:4f: b4:8c:ae:ed:86:53:31:5c:74:c5:be:37:d7:c6:48:ec:58:d2: 91:a9:7f:d9:e4:b3:18:c2:1c:fb:00:95:38:fa:30:99:1d:3f: d2:56:fe:81:fe:fe:72:d4:78:b1:36:13:6d:45:80:0b:b9:09: d7:92:d2:60 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUIwfwqiqlCsGWXCY+ocwo3XqyCAUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTU0ODEwMDAwMTEwLwYDVQQFEyhEOTg4QjJEQTdG NDMwNUYwQ0RCOTNCRjg4QjZGNUE5REY5OEQ4OTQwMB4XDTI0MDEwODAzMDYwMFoX DTI1MDEwNjAzMTEwMFowMzExMC8GA1UEAxMoNDE5REMxRkFDN0M4NUQzNDdCQTAw QTY0REFFRkY4NTEyOTc3OUFFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKdeMHoBC5iJn1AOgydN2nqBkHbTpmx1cvmqJW089+aoZB+bhyhUKW3zWYkQ AkhGsakVRHN8G/PV/fjdLLNvKSouijIiwSgUOYeoyy/JpQPwbBnsV3xoZzcFEPOG pWjxRCogmRja961nF+nXP/mTeBXVezT+C/se1k+YENAV19hvlgmbvSmLJwHyFb38 m/kspw/tpuOV11NGqEoKdQTNbVuu3vw1YCxn0d/EFcACWVC3m54BDwClqFJRtwev Kl8lhEeZQ11P5DjwZRnZRNv769h1bcU5BOzRLnYoZpxNtnVCe69gWG3gxxVU2BWX Lb2La2TVe+Duo6Ikg6DO1WgqQ20CAwEAAaOCAhcwggITMB0GA1UdDgQWBBRBncH6 x8hdNHugCmTa7/hRKXea6TAfBgNVHSMEGDAWgBTZiLLaf0MF8M25O/iLb1qd+Y2J QDAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFFNTQ4MTAwMDAvMC9EOTg4QjJE QTdGNDMwNUYwQ0RCOTNCRjg4QjZGNUE5REY5OEQ4OTQwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8yWWl5Mm45REJm RE51VHY0aTI5YW5mbU5pVUEuY2VyMIGRBggrBgEFBQcBCwSBhDCBgTB/BggrBgEF BQcwC4ZzcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFF NTQ4MTAwMDAvMC8zMTMwMzMyZTMxMzczMzJlMzIzMjM1MmUzMDJmMzIzNDJkMzIz NDIwM2QzZTIwMzIzMDM2MzIzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ63hMA0GCSqGSIb3DQEB CwUAA4IBAQB500WFQe+zbZup8ZC4CjMRuyi3p/jCo59JBdhJc05lJR6H0rCs/I6b ZzuBw36UCBcOSd+4RYYV0Yzl7jsEFnCidskplm+iKlvIA5GNxn7JIBY5aeVcLL7w mrZTTr8kTFHsYZtE/Z4kRxzJjp0KO+h9Po0s2VrdLVyUs0Y3KJ8x9jSmO+OolZaF avUPoFWFOy88PoyaS8JYVaAmigCIHrtukHwYReFbBDE3aIQKXxHcq77u/iWSNkkD PZfB5XHEhoLkoRzbR0+0jK7thlMxXHTFvjfXxkjsWNKRqX/Z5LMYwhz7AJU4+jCZ HT/SVv6B/v5y1HixNhNtRYALuQnXktJg -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org