$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/34332e3235322e32332e302f32342d3234203d3e203239383032.roa File: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (raw, json) Hash identifier: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE= Subject key identifier: 36:13:13:74:23:CD:CC:B8:DB:B6:D9:93:42:48:DB:C2:7C:AD:6E:01 Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 5F4A7AF1A64873539C7F9D4CEED2471A55A559EE Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/34332e3235322e32332e302f32342d3234203d3e203239383032.roa Signing time: Mon 14 Apr 2025 17:56:24 +0000 ROA not before: Mon 14 Apr 2025 17:51:24 +0000 ROA not after: Mon 13 Apr 2026 17:56:24 +0000 asID: 29802 IP address blocks: 43.252.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 05:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:4a:7a:f1:a6:48:73:53:9c:7f:9d:4c:ee:d2:47:1a:55:a5:59:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Apr 14 17:51:24 2025 GMT Not After : Apr 13 17:56:24 2026 GMT Subject: CN=3613137423CDCCB8DBB6D9934248DBC27CAD6E01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d5:81:10:69:33:b7:70:d9:53:86:07:ef:e7: c5:7d:a5:37:7a:64:f2:05:cc:97:58:73:ad:78:11: c2:dd:39:48:55:08:b6:71:a5:90:a5:9f:13:71:ea: ac:ac:49:19:a7:ba:40:7a:f5:a4:a9:1b:51:93:d9: bb:80:08:8d:5f:5e:97:1b:3c:9e:0e:e5:1b:55:f9: b3:04:85:a9:1a:cb:9c:46:a3:93:b8:ea:67:ac:8d: 28:d1:59:5e:4f:7e:56:72:84:35:ec:df:b0:37:a6: 64:81:ab:df:86:57:8c:e9:8b:5d:c2:b0:5a:b3:69: f9:98:9b:6e:a6:3e:d0:0b:44:ee:a4:6f:94:59:62: 27:18:1b:80:b3:1e:58:d1:e9:60:49:f0:df:9e:a1: c1:8f:22:9b:b3:57:f4:57:e7:d2:d7:4b:88:5f:59: f2:75:7c:86:0c:40:9d:a6:16:0e:41:eb:42:9e:0d: 61:1f:b1:07:4e:36:ab:9f:4b:8a:de:8f:54:f1:37: 8f:35:41:c3:20:d5:d0:90:84:ea:b1:67:01:fe:cd: d3:fb:49:06:44:b1:b6:cd:9f:3b:ec:e5:a9:11:9b: 7e:23:f3:e7:f2:19:8f:0b:87:52:9d:85:ca:77:d5: 8f:07:15:ac:ec:54:b6:4e:60:cf:5d:56:2d:23:33: 2f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:13:13:74:23:CD:CC:B8:DB:B6:D9:93:42:48:DB:C2:7C:AD:6E:01 X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/34332e3235322e32332e302f32342d3234203d3e203239383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.23.0/24 Signature Algorithm: sha256WithRSAEncryption ca:a7:d7:79:0c:75:d5:35:f9:54:fe:c7:d2:cc:bb:a0:b1:42: 53:e3:7a:c0:d6:04:ed:de:5a:fc:84:6f:96:ed:cf:d1:b2:d0: b1:fd:e9:3d:05:e3:29:b6:2e:af:9e:e9:af:ee:f6:7e:c3:c6: c6:16:68:8e:31:3d:7c:4f:92:52:83:f4:69:8c:80:4e:a5:c9: bb:4d:47:ad:3f:9d:33:e5:b0:cc:a9:ad:b6:c8:ad:ce:1c:f7: bc:9c:ec:04:c7:13:ac:05:49:6a:c0:e5:d5:30:e7:e1:c9:17: 29:f4:8c:de:71:eb:74:c4:ce:c9:f3:2d:0d:35:35:79:3d:fa: d4:36:52:c8:c0:e4:71:29:be:fd:3e:b5:6b:f1:1f:6e:10:cd: 22:b0:eb:a7:a2:5b:c9:0b:d7:a3:f3:51:69:13:74:97:43:bb: a9:32:8f:00:83:c6:37:4d:57:95:39:c6:53:6a:e9:df:8b:d4: b2:1d:32:e3:89:b7:14:97:c7:b6:b4:85:ba:90:1c:26:80:7d: e3:92:b4:ae:de:ac:f9:d4:54:63:b1:c4:0d:6c:5e:8d:c0:2b: 0a:a7:68:7f:c1:4b:32:a9:c4:c2:2c:58:93:f8:1d:59:a5:e9: cf:e3:58:e3:3a:f8:2b:84:a8:f3:f7:fd:cb:1e:13:d3:9f:f2: 45:88:1e:26 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUX0p68aZIc1Ocf51M7tJHGlWlWe4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI1MDQxNDE3NTEyNFoX DTI2MDQxMzE3NTYyNFowMzExMC8GA1UEAxMoMzYxMzEzNzQyM0NEQ0NCOERCQjZE OTkzNDI0OERCQzI3Q0FENkUwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7VgRBpM7dw2VOGB+/nxX2lN3pk8gXMl1hzrXgRwt05SFUItnGlkKWfE3Hq rKxJGae6QHr1pKkbUZPZu4AIjV9elxs8ng7lG1X5swSFqRrLnEajk7jqZ6yNKNFZ Xk9+VnKENezfsDemZIGr34ZXjOmLXcKwWrNp+ZibbqY+0AtE7qRvlFliJxgbgLMe WNHpYEnw356hwY8im7NX9Ffn0tdLiF9Z8nV8hgxAnaYWDkHrQp4NYR+xB042q59L it6PVPE3jzVBwyDV0JCE6rFnAf7N0/tJBkSxts2fO+zlqRGbfiPz5/IZjwuHUp2F ynfVjwcVrOxUtk5gz11WLSMzLwkCAwEAAaOCAg8wggILMB0GA1UdDgQWBBQ2ExN0 I83MuNu22ZNCSNvCfK1uATAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMIGJBggrBgEFBQcBCwR9MHsweQYIKwYBBQUH MAuGbXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxREQ1 MTAwMDAwLzAvMzQzMzJlMzIzNTMyMmUzMjMzMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzIzOTM4MzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8FzANBgkqhkiG9w0BAQsFAAOCAQEA yqfXeQx11TX5VP7H0sy7oLFCU+N6wNYE7d5a/IRvlu3P0bLQsf3pPQXjKbYur57p r+72fsPGxhZojjE9fE+SUoP0aYyATqXJu01HrT+dM+WwzKmttsitzhz3vJzsBMcT rAVJasDl1TDn4ckXKfSM3nHrdMTOyfMtDTU1eT361DZSyMDkcSm+/T61a/EfbhDN IrDrp6JbyQvXo/NRaRN0l0O7qTKPAIPGN01XlTnGU2rp34vUsh0y44m3FJfHtrSF upAcJoB945K0rt6s+dRUY7HEDWxejcArCqdof8FLMqnEwixYk/gdWaXpz+NY4zr4 K4So8/f9yx4T05/yRYgeJg== -----END CERTIFICATE-----Generated at Thu Apr 24 04:40:25 2025 by rpki-client on console.sobornost.net