$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/323430383a323030303a3a2f32342d3234203d3e2034363038.roa File: 323430383a323030303a3a2f32342d3234203d3e2034363038.roa (raw, json) Hash identifier: odxXuw9t56FFIVWRF6USpgfH3EtxcqrQch+FND/pnf8= Subject key identifier: 81:44:4F:F8:39:14:C8:1B:84:10:D0:CF:60:C0:FE:6C:8E:6C:46:04 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 18E44AEE77980E24790377E788DD3B0EEF002908 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/323430383a323030303a3a2f32342d3234203d3e2034363038.roa Signing time: Tue 12 Aug 2025 16:23:12 +0000 ROA not before: Tue 12 Aug 2025 16:18:12 +0000 ROA not after: Tue 11 Aug 2026 16:23:12 +0000 asID: 4608 IP address blocks: 2408:2000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 14:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:e4:4a:ee:77:98:0e:24:79:03:77:e7:88:dd:3b:0e:ef:00:29:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Aug 12 16:18:12 2025 GMT Not After : Aug 11 16:23:12 2026 GMT Subject: CN=81444FF83914C81B8410D0CF60C0FE6C8E6C4604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f3:1f:56:1f:5d:90:1d:9f:0f:87:da:25:49: cf:60:e4:a5:09:6a:ad:85:1d:c3:5a:ad:53:63:41: da:b2:c6:55:fb:bf:b7:2c:00:d6:a5:6d:0e:05:ad: 45:30:d0:8c:18:a8:c1:f7:0d:19:4f:7d:61:cf:bc: e1:75:76:8a:cd:43:95:02:91:2b:af:d4:8c:42:7b: b5:5e:4a:de:26:97:2b:02:d8:d5:cc:18:a9:63:86: 50:ac:3d:d6:16:9b:32:c3:58:51:f9:9f:f8:d7:14: b6:9d:d7:e9:3c:5f:f9:96:b1:84:89:d7:73:96:14: e8:ce:73:38:90:3c:54:03:42:35:f7:d6:2f:88:77: 40:0d:d5:b1:ff:79:b0:bf:8f:99:d3:a4:1b:eb:70: 83:8e:b3:29:2e:fe:26:eb:6c:d0:d7:12:3f:9e:5f: af:f3:b7:85:15:85:57:f8:bb:69:36:67:06:62:81: 14:c7:ba:78:7a:17:f4:03:14:0b:34:17:12:d7:53: ae:ab:b6:93:2c:3a:83:54:a3:9d:c2:b5:da:7f:f3: c1:e4:56:6c:e1:ef:5e:5f:8f:4d:6d:ce:93:b7:9c: 84:83:54:d8:43:6b:4c:eb:4d:d0:37:4e:ee:c8:9e: 1d:cb:49:20:eb:a2:c0:12:89:84:46:68:0e:d7:97: f8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:44:4F:F8:39:14:C8:1B:84:10:D0:CF:60:C0:FE:6C:8E:6C:46:04 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/323430383a323030303a3a2f32342d3234203d3e2034363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2408:2000::/24 Signature Algorithm: sha256WithRSAEncryption 27:6b:6b:37:b8:7a:36:a4:13:65:ee:15:2e:2d:0f:dc:f1:1d: 44:c4:ef:e4:fc:5a:af:15:4c:59:bd:e6:f6:83:dc:e9:2e:e6: 56:84:93:09:28:87:f9:c8:c0:11:f5:8e:fe:c0:3a:31:80:b7: a2:60:1f:17:ea:51:69:e0:d0:82:03:10:5b:08:db:f8:a0:a0: a0:a3:40:dd:10:c8:d2:d9:44:df:85:8e:c3:ff:7b:43:2a:ee: b2:79:50:47:30:90:6b:4a:68:6e:d8:e9:98:8d:4f:42:43:a3: d6:eb:97:9a:83:8e:49:a6:24:ae:d2:19:27:e2:e8:64:0c:e5: f6:63:e5:bf:2b:81:bb:02:12:38:e0:27:75:9f:d8:0e:50:aa: 37:36:2d:f3:de:fb:6c:16:45:6c:71:7e:51:f1:1d:9d:6c:29: 93:cc:1c:6c:8b:2e:b2:a5:d6:47:f3:87:9d:96:e6:75:f4:b7: 5d:4f:35:7d:27:05:1d:e8:c0:08:f3:fc:32:00:12:bc:30:67: 91:7e:35:43:23:16:58:4e:1f:c0:c5:b6:8e:5c:67:b0:44:c2: 41:15:1e:5f:dc:de:96:8a:92:82:4c:60:f3:f2:07:fd:d2:28: 1c:3c:e6:80:ea:1d:de:94:99:38:6d:d4:cc:44:f2:a5:43:02: a3:6b:9e:8c -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUGORK7neYDiR5A3fniN07Du8AKQgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDgxMjE2MTgxMloX DTI2MDgxMTE2MjMxMlowMzExMC8GA1UEAxMoODE0NDRGRjgzOTE0QzgxQjg0MTBE MENGNjBDMEZFNkM4RTZDNDYwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOXzH1YfXZAdnw+H2iVJz2DkpQlqrYUdw1qtU2NB2rLGVfu/tywA1qVtDgWt RTDQjBiowfcNGU99Yc+84XV2is1DlQKRK6/UjEJ7tV5K3iaXKwLY1cwYqWOGUKw9 1habMsNYUfmf+NcUtp3X6Txf+ZaxhInXc5YU6M5zOJA8VANCNffWL4h3QA3Vsf95 sL+PmdOkG+twg46zKS7+Juts0NcSP55fr/O3hRWFV/i7aTZnBmKBFMe6eHoX9AMU CzQXEtdTrqu2kyw6g1SjncK12n/zweRWbOHvXl+PTW3Ok7echINU2ENrTOtN0DdO 7sieHctJIOuiwBKJhEZoDteX+DsCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBSBRE/4 ORTIG4QQ0M9gwP5sjmxGBDAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBggYIKwYBBQUHAQsEdjB0MHIGCCsGAQUFBzALhmZy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjM0MzAzODNhMzIzMDMwMzAzYTNhMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAz OC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAIwBgMEACQIIDANBgkqhkiG9w0BAQsFAAOCAQEAJ2trN7h6NqQTZe4V Li0P3PEdRMTv5PxarxVMWb3m9oPc6S7mVoSTCSiH+cjAEfWO/sA6MYC3omAfF+pR aeDQggMQWwjb+KCgoKNA3RDI0tlE34WOw/97QyrusnlQRzCQa0pobtjpmI1PQkOj 1uuXmoOOSaYkrtIZJ+LoZAzl9mPlvyuBuwISOOAndZ/YDlCqNzYt8977bBZFbHF+ UfEdnWwpk8wcbIsusqXWR/OHnZbmdfS3XU81fScFHejACPP8MgASvDBnkX41QyMW WE4fwMW2jlxnsETCQRUeX9zeloqSgkxg8/IH/dIoHDzmgOod3pSZOG3UzETypUMC o2uejA== -----END CERTIFICATE-----Generated at Sun Aug 24 01:27:17 2025 by rpki-client