$ rpki-client -vvf rpki.sub.apnic.net/repository/A918C2870000/0/3230332e3137362e3138392e302f32342d3234203d3e203634343939.roa File: 3230332e3137362e3138392e302f32342d3234203d3e203634343939.roa (raw, json) Hash identifier: cc8VyDqhkEa1zP4MPtaFm5Nq0t+jvQdkIXFmrwtTX4Q= Subject key identifier: 0F:A8:BF:10:06:5C:F2:9F:0D:5F:96:A4:96:B4:E6:29:3D:2E:4F:68 Certificate issuer: /CN=A918C2870000/serialNumber=8DE36DE00AD6C58EE63BE8708533D568D59F03ED Certificate serial: 6E57B4B99C83DB31BD6857843FDEB35DE66BD24F Authority key identifier: 8D:E3:6D:E0:0A:D6:C5:8E:E6:3B:E8:70:85:33:D5:68:D5:9F:03:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeNt4ArWxY7mO-hwhTPVaNWfA-0.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A918C2870000/0/3230332e3137362e3138392e302f32342d3234203d3e203634343939.roa Signing time: Thu 09 Oct 2025 06:04:58 +0000 ROA not before: Thu 09 Oct 2025 05:59:58 +0000 ROA not after: Thu 08 Oct 2026 06:04:58 +0000 asID: 64499 IP address blocks: 203.176.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A918C2870000/0/8DE36DE00AD6C58EE63BE8708533D568D59F03ED.crl rsync://rpki.sub.apnic.net/repository/A918C2870000/0/8DE36DE00AD6C58EE63BE8708533D568D59F03ED.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeNt4ArWxY7mO-hwhTPVaNWfA-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:57:b4:b9:9c:83:db:31:bd:68:57:84:3f:de:b3:5d:e6:6b:d2:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C2870000, serialNumber=8DE36DE00AD6C58EE63BE8708533D568D59F03ED Validity Not Before: Oct 9 05:59:58 2025 GMT Not After : Oct 8 06:04:58 2026 GMT Subject: CN=0FA8BF10065CF29F0D5F96A496B4E6293D2E4F68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b7:55:85:d2:1d:d1:f2:2e:61:8b:8a:6a:b0: 47:51:ac:94:a9:be:bd:96:a2:99:94:8c:62:8f:b6: ed:3c:97:35:d2:9a:25:a9:fc:1f:a6:9a:85:d9:1c: ad:f0:91:72:d0:65:97:7c:cc:24:09:9f:35:03:74: 88:74:d9:e1:b6:3e:d1:a4:e9:59:6d:6a:01:fb:d5: bc:73:f2:b7:57:65:66:91:88:06:2d:7c:c0:01:fc: b9:a4:9e:c6:81:eb:84:37:42:25:57:b9:7a:a3:a1: 7a:a1:98:5f:ca:4f:bd:13:a6:72:ab:cd:35:87:51: 5c:64:01:71:99:90:fe:fe:24:6a:2e:8c:02:26:07: 95:be:8b:11:ac:1a:b6:b3:d6:91:6f:a1:5e:29:fa: d3:ec:e5:80:a6:a5:ec:1e:1c:e3:97:20:d8:13:64: 72:a7:dd:10:34:b3:df:7a:69:c0:3e:c3:35:0f:55: ee:32:4d:6d:52:b8:e6:26:d4:24:9d:42:d8:89:4e: 86:52:0a:91:d0:c0:c7:b0:92:55:e4:59:f4:3b:65: 8f:f5:f6:88:c1:03:95:1b:b3:be:26:df:bb:03:a7: f1:ba:31:db:9f:1e:33:dd:9a:0b:56:dd:0b:41:4b: cb:39:e0:47:65:9b:86:26:de:b3:50:3f:1f:5f:f8: 58:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:A8:BF:10:06:5C:F2:9F:0D:5F:96:A4:96:B4:E6:29:3D:2E:4F:68 X509v3 Authority Key Identifier: keyid:8D:E3:6D:E0:0A:D6:C5:8E:E6:3B:E8:70:85:33:D5:68:D5:9F:03:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A918C2870000/0/8DE36DE00AD6C58EE63BE8708533D568D59F03ED.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeNt4ArWxY7mO-hwhTPVaNWfA-0.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A918C2870000/0/3230332e3137362e3138392e302f32342d3234203d3e203634343939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.176.189.0/24 Signature Algorithm: sha256WithRSAEncryption 46:6a:1f:2f:1f:1a:26:83:d3:86:0e:e3:ff:5e:58:8e:2b:df: de:8f:d1:8d:eb:a6:d9:56:b7:df:93:fb:6d:fc:aa:03:11:f0: b7:f9:87:4f:3d:fe:a5:48:1e:c6:48:5e:8c:3f:8b:45:4c:66: 7a:fc:b9:25:09:ad:ee:5b:9c:a8:04:77:99:7e:83:30:bd:e5: dd:a8:17:ef:c6:77:d4:5e:8a:66:d8:3b:64:e9:79:2c:bd:1d: 7c:82:d5:25:29:c7:3e:d7:a4:92:31:1e:57:2b:13:04:c4:39: c9:a7:87:b0:7f:76:be:a7:88:e7:d6:35:74:9f:ca:b9:af:ae: b2:8f:44:1c:14:29:7d:f8:46:eb:46:90:d4:66:54:80:c5:f6: e9:5f:2e:76:32:58:e4:8d:48:27:68:4a:ea:82:da:9c:4d:bc: 66:5e:a3:92:bf:37:15:6c:00:2d:36:b6:0c:6e:17:43:d3:05: 7d:d1:b5:d9:14:de:4b:72:6b:7a:b3:f7:cb:29:8f:c5:05:05: 2a:d1:f9:74:a9:ea:79:ce:88:f7:45:40:74:a1:9d:a8:da:d7: 98:1f:0b:2c:ab:e3:cc:a8:e7:ed:aa:0f:42:65:af:e6:c3:16: 82:dc:3a:82:3c:4a:38:db:c8:b2:82:f2:13:48:d8:e4:45:da: 1b:b4:01:d7 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUble0uZyD2zG9aFeEP96zXeZr0k8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOEMyODcwMDAwMTEwLwYDVQQFEyg4REUzNkRFMDBB RDZDNThFRTYzQkU4NzA4NTMzRDU2OEQ1OUYwM0VEMB4XDTI1MTAwOTA1NTk1OFoX DTI2MTAwODA2MDQ1OFowMzExMC8GA1UEAxMoMEZBOEJGMTAwNjVDRjI5RjBENUY5 NkE0OTZCNEU2MjkzRDJFNEY2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALa3VYXSHdHyLmGLimqwR1GslKm+vZaimZSMYo+27TyXNdKaJan8H6aahdkc rfCRctBll3zMJAmfNQN0iHTZ4bY+0aTpWW1qAfvVvHPyt1dlZpGIBi18wAH8uaSe xoHrhDdCJVe5eqOheqGYX8pPvROmcqvNNYdRXGQBcZmQ/v4kai6MAiYHlb6LEawa trPWkW+hXin60+zlgKal7B4c45cg2BNkcqfdEDSz33ppwD7DNQ9V7jJNbVK45ibU JJ1C2IlOhlIKkdDAx7CSVeRZ9Dtlj/X2iMEDlRuzvibfuwOn8box258eM92aC1bd C0FLyzngR2Wbhibes1A/H1/4WF0CAwEAAaOCAhQwggIQMB0GA1UdDgQWBBQPqL8Q Blzynw1flqSWtOYpPS5PaDAfBgNVHSMEGDAWgBSN423gCtbFjuY76HCFM9Vo1Z8D 7TAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE4QzI4NzAwMDAvMC84REUzNkRF MDBBRDZDNThFRTYzQkU4NzA4NTMzRDU2OEQ1OUYwM0VELmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9qZU50NEFyV3hZ N21PLWh3aFRQVmFOV2ZBLTAuY2VyMIGOBggrBgEFBQcBCwSBgTB/MH0GCCsGAQUF BzALhnFyc3luYzovL3Jwa2kuc3ViLmFwbmljLm5ldC9yZXBvc2l0b3J5L0E5MThD Mjg3MDAwMC8wLzMyMzAzMzJlMzEzNzM2MmUzMTM4MzkyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzNjM0MzQzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy7C9MA0GCSqGSIb3DQEBCwUA A4IBAQBGah8vHxomg9OGDuP/XliOK9/ej9GN66bZVrffk/tt/KoDEfC3+YdPPf6l SB7GSF6MP4tFTGZ6/LklCa3uW5yoBHeZfoMwveXdqBfvxnfUXopm2Dtk6XksvR18 gtUlKcc+16SSMR5XKxMExDnJp4ewf3a+p4jn1jV0n8q5r66yj0QcFCl9+EbrRpDU ZlSAxfbpXy52MljkjUgnaErqgtqcTbxmXqOSvzcVbAAtNrYMbhdD0wV90bXZFN5L cmt6s/fLKY/FBQUq0fl0qep5zoj3RUB0oZ2o2teYHwssq+PMqOftqg9CZa/mwxaC 3DqCPEo428iygvITSNjkRdobtAHX -----END CERTIFICATE-----Generated at Mon Oct 20 16:22:33 2025 by rpki-client