$ rpki-client -vvf rpki.sub.apnic.net/repository/A916FC1D0000/0/34392e3231332e36322e302f32342d3234203d3e20323133363035.roa File: 34392e3231332e36322e302f32342d3234203d3e20323133363035.roa (raw, json) Hash identifier: O+O3ngvT2eRgjWysCEGH5MTbHUuNdWckcsQv0KzXeTs= Subject key identifier: 4D:EA:19:41:1F:72:F0:07:6F:53:65:B5:ED:28:04:75:58:0A:D9:54 Certificate issuer: /CN=A916FC1D0000/serialNumber=8630DB364752FB672480309F11531C73BFEDD599 Certificate serial: 2EDFC19579EED90622B36C01AC4B06023A1FD1CC Authority key identifier: 86:30:DB:36:47:52:FB:67:24:80:30:9F:11:53:1C:73:BF:ED:D5:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hjDbNkdS-2ckgDCfEVMcc7_t1Zk.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A916FC1D0000/0/34392e3231332e36322e302f32342d3234203d3e20323133363035.roa Signing time: Wed 01 Oct 2025 11:15:07 +0000 ROA not before: Wed 01 Oct 2025 11:10:07 +0000 ROA not after: Wed 30 Sep 2026 11:15:07 +0000 asID: 213605 IP address blocks: 49.213.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A916FC1D0000/0/8630DB364752FB672480309F11531C73BFEDD599.crl rsync://rpki.sub.apnic.net/repository/A916FC1D0000/0/8630DB364752FB672480309F11531C73BFEDD599.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hjDbNkdS-2ckgDCfEVMcc7_t1Zk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 21:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:df:c1:95:79:ee:d9:06:22:b3:6c:01:ac:4b:06:02:3a:1f:d1:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FC1D0000, serialNumber=8630DB364752FB672480309F11531C73BFEDD599 Validity Not Before: Oct 1 11:10:07 2025 GMT Not After : Sep 30 11:15:07 2026 GMT Subject: CN=4DEA19411F72F0076F5365B5ED280475580AD954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:21:d8:b9:3b:65:f0:84:e3:59:99:c3:72:60: 76:2b:83:28:bb:b2:81:3f:92:3f:92:1b:64:02:26: 2a:58:42:c2:3a:38:3c:fc:e0:02:e9:4b:6d:ef:e2: d2:69:e4:c0:07:54:2b:42:33:2d:93:08:05:27:9e: 3a:dc:21:13:53:91:22:46:3f:b3:42:e2:41:c9:a2: 2d:5b:34:ec:a9:32:03:78:1d:62:4e:13:7e:8c:a2: c4:21:04:fa:27:6a:a4:0e:bc:1c:b1:74:c8:e3:b5: 8f:3f:46:4c:e9:a0:65:ba:1b:5a:95:80:1d:fe:20: 17:6d:74:7d:c6:88:f2:05:33:d9:7f:c2:0a:74:58: a1:cc:83:a9:c3:f0:a2:b0:c7:0a:41:27:92:a7:6b: eb:5d:b4:97:6d:2c:6f:05:73:3c:68:7e:6b:3a:e1: 67:f4:00:b7:96:69:a7:0d:7c:97:8e:0b:94:54:77: c6:37:bd:c2:2c:6f:34:fc:5e:aa:98:dd:bf:fd:bd: 68:d0:35:3e:d6:fc:72:7f:32:c9:79:ea:55:65:7a: d8:5f:2c:63:6d:70:76:52:2b:4e:ce:e3:8e:96:bf: 2b:25:3c:85:a5:54:a1:ee:3d:32:43:fc:40:38:e8: 8f:57:4b:f4:f8:22:68:39:2f:d7:91:9e:07:a2:f1: 16:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:EA:19:41:1F:72:F0:07:6F:53:65:B5:ED:28:04:75:58:0A:D9:54 X509v3 Authority Key Identifier: keyid:86:30:DB:36:47:52:FB:67:24:80:30:9F:11:53:1C:73:BF:ED:D5:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A916FC1D0000/0/8630DB364752FB672480309F11531C73BFEDD599.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hjDbNkdS-2ckgDCfEVMcc7_t1Zk.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A916FC1D0000/0/34392e3231332e36322e302f32342d3234203d3e20323133363035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.213.62.0/24 Signature Algorithm: sha256WithRSAEncryption 19:25:7f:a7:f9:91:21:a4:70:47:6d:49:44:38:01:5c:e3:3a: 18:1f:29:f6:84:b6:e8:59:31:05:3b:c5:20:64:cc:98:26:14: fa:5d:01:8a:a1:7e:9d:0b:25:b1:71:08:67:0f:99:31:f1:6b: c1:81:c3:82:b9:c5:0c:3c:6e:28:cc:a1:28:79:65:44:a4:ab: 81:48:86:e1:76:ed:c1:e1:47:b3:2e:9f:78:0e:2e:75:34:ed: cc:3a:da:5a:36:ce:41:e8:71:e8:cf:b9:8f:b9:42:6b:67:93: 58:58:15:5a:57:b2:75:8f:c9:2e:b9:5e:af:4b:b4:0d:ce:3b: 7d:1b:62:3a:1b:50:4a:47:e5:9b:16:b9:f9:09:f4:6f:d0:60: af:48:15:6d:49:60:8d:3b:16:f8:cb:aa:59:fe:0c:35:15:f2: 58:4b:25:54:fc:c5:aa:91:5f:e2:97:c0:53:77:6a:ae:1c:5d: 84:40:2c:a3:3f:d0:b5:d8:ab:52:6c:ea:59:41:a6:2b:2f:aa: 92:4b:5d:a7:ac:69:ee:68:5d:03:f8:3f:b1:50:43:ad:58:8b: f1:0d:fe:33:9e:ea:ed:b0:b2:0a:d5:da:72:d1:8e:86:78:4d: e8:06:91:91:7f:20:9b:b8:60:45:96:f5:9d:ed:88:9c:fe:aa: 24:e7:8f:b1 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIULt/BlXnu2QYis2wBrEsGAjof0cwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNkZDMUQwMDAwMTEwLwYDVQQFEyg4NjMwREIzNjQ3 NTJGQjY3MjQ4MDMwOUYxMTUzMUM3M0JGRURENTk5MB4XDTI1MTAwMTExMTAwN1oX DTI2MDkzMDExMTUwN1owMzExMC8GA1UEAxMoNERFQTE5NDExRjcyRjAwNzZGNTM2 NUI1RUQyODA0NzU1ODBBRDk1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ8h2Lk7ZfCE41mZw3JgdiuDKLuygT+SP5IbZAImKlhCwjo4PPzgAulLbe/i 0mnkwAdUK0IzLZMIBSeeOtwhE1ORIkY/s0LiQcmiLVs07KkyA3gdYk4TfoyixCEE +idqpA68HLF0yOO1jz9GTOmgZbobWpWAHf4gF210fcaI8gUz2X/CCnRYocyDqcPw orDHCkEnkqdr6120l20sbwVzPGh+azrhZ/QAt5Zppw18l44LlFR3xje9wixvNPxe qpjdv/29aNA1Ptb8cn8yyXnqVWV62F8sY21wdlIrTs7jjpa/KyU8haVUoe49MkP8 QDjoj1dL9PgiaDkv15GeB6LxFokCAwEAAaOCAhEwggINMB0GA1UdDgQWBBRN6hlB H3LwB29TZbXtKAR1WArZVDAfBgNVHSMEGDAWgBSGMNs2R1L7ZySAMJ8RUxxzv+3V mTAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE2RkMxRDAwMDAvMC84NjMwREIz NjQ3NTJGQjY3MjQ4MDMwOUYxMTUzMUM3M0JGRURENTk5LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9oakRiTmtkUy0y Y2tnRENmRVZNY2M3X3QxWmsuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxNkZD MUQwMDAwLzAvMzQzOTJlMzIzMTMzMmUzNjMyMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzIzMTMzMzYzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAMdU+MA0GCSqGSIb3DQEBCwUAA4IB AQAZJX+n+ZEhpHBHbUlEOAFc4zoYHyn2hLboWTEFO8UgZMyYJhT6XQGKoX6dCyWx cQhnD5kx8WvBgcOCucUMPG4ozKEoeWVEpKuBSIbhdu3B4UezLp94Di51NO3MOtpa Ns5B6HHoz7mPuUJrZ5NYWBVaV7J1j8kuuV6vS7QNzjt9G2I6G1BKR+WbFrn5CfRv 0GCvSBVtSWCNOxb4y6pZ/gw1FfJYSyVU/MWqkV/il8BTd2quHF2EQCyjP9C12KtS bOpZQaYrL6qSS12nrGnuaF0D+D+xUEOtWIvxDf4znurtsLIK1dpy0Y6GeE3oBpGR fyCbuGBFlvWd7Yic/qok54+x -----END CERTIFICATE-----Generated at Mon Oct 20 01:34:21 2025 by rpki-client