$ rpki-client -vvf rpki.sub.apnic.net/repository/A918C2870000/0/3230332e3137362e3138392e302f32352d3235203d3e203634343939.roa File: 3230332e3137362e3138392e302f32352d3235203d3e203634343939.roa (raw, json) Hash identifier: oaWk0P7quIWY48JUJJgD8BGzFYbWfjuctlxnugarjPc= Subject key identifier: 0F:5C:24:2E:08:C1:D3:11:E8:78:40:7A:2C:37:EC:45:8A:B9:A7:9A Certificate issuer: /CN=A918C2870000/serialNumber=8DE36DE00AD6C58EE63BE8708533D568D59F03ED Certificate serial: 0F7DDC93EC5F0F158FCDD7205397D2DFCA78768C Authority key identifier: 8D:E3:6D:E0:0A:D6:C5:8E:E6:3B:E8:70:85:33:D5:68:D5:9F:03:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeNt4ArWxY7mO-hwhTPVaNWfA-0.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A918C2870000/0/3230332e3137362e3138392e302f32352d3235203d3e203634343939.roa Signing time: Thu 09 Oct 2025 06:45:46 +0000 ROA not before: Thu 09 Oct 2025 06:40:46 +0000 ROA not after: Thu 08 Oct 2026 06:45:46 +0000 asID: 64499 IP address blocks: 203.176.189.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A918C2870000/0/8DE36DE00AD6C58EE63BE8708533D568D59F03ED.crl rsync://rpki.sub.apnic.net/repository/A918C2870000/0/8DE36DE00AD6C58EE63BE8708533D568D59F03ED.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeNt4ArWxY7mO-hwhTPVaNWfA-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:7d:dc:93:ec:5f:0f:15:8f:cd:d7:20:53:97:d2:df:ca:78:76:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C2870000, serialNumber=8DE36DE00AD6C58EE63BE8708533D568D59F03ED Validity Not Before: Oct 9 06:40:46 2025 GMT Not After : Oct 8 06:45:46 2026 GMT Subject: CN=0F5C242E08C1D311E878407A2C37EC458AB9A79A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0c:a9:de:ec:27:ca:49:d7:bc:53:8b:d5:8a: 8f:74:89:c4:46:12:50:57:5a:54:80:7c:3f:a3:ca: 0e:c1:a7:17:e2:47:32:6d:bb:0c:2d:e8:e0:60:df: ef:14:71:a7:03:c8:38:f6:5a:2e:c2:df:19:8d:44: 09:ee:7d:fd:24:cd:94:ed:bf:5d:d4:8b:b2:21:ae: c8:f4:84:47:42:e6:64:e1:b0:eb:00:0a:13:5a:a9: 33:56:17:d2:bb:8f:6d:2f:94:81:e1:0f:05:90:2a: fb:22:15:42:e2:d2:3b:8a:f8:8c:f7:33:85:02:98: a6:e3:37:35:a0:29:26:6d:21:0c:1f:8f:d4:e2:85: d8:27:7e:e3:09:25:b5:01:8f:9d:ad:7d:63:15:ca: c9:6c:2a:d7:86:14:e2:e6:a8:a9:f6:c6:b9:0e:51: 43:a8:6c:25:f5:de:90:9d:d8:7a:8c:09:a8:e7:cd: da:b7:c5:ff:61:7c:50:22:98:25:f8:27:f2:90:15: a2:72:44:10:75:d1:36:bd:21:c5:63:4f:6a:a4:f8: 62:2f:2b:c4:ef:63:91:0f:d5:34:89:a5:3b:fd:a9: c3:a0:72:5a:50:d6:4d:d3:d9:70:33:a1:15:46:24: c0:b3:6d:de:c8:a8:d8:c4:1c:a4:92:88:c2:ee:25: f9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5C:24:2E:08:C1:D3:11:E8:78:40:7A:2C:37:EC:45:8A:B9:A7:9A X509v3 Authority Key Identifier: keyid:8D:E3:6D:E0:0A:D6:C5:8E:E6:3B:E8:70:85:33:D5:68:D5:9F:03:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A918C2870000/0/8DE36DE00AD6C58EE63BE8708533D568D59F03ED.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeNt4ArWxY7mO-hwhTPVaNWfA-0.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A918C2870000/0/3230332e3137362e3138392e302f32352d3235203d3e203634343939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.176.189.0/25 Signature Algorithm: sha256WithRSAEncryption 2a:45:7d:85:52:a2:28:2b:88:81:5d:11:85:db:b4:9e:c2:40: 64:a8:ba:ee:62:8e:cd:c0:1d:0d:67:24:58:7a:50:dd:da:d2: 5e:f5:4e:ca:89:ff:9a:a6:e1:2d:a3:28:03:73:e7:c5:0d:eb: e9:44:b0:66:67:c0:45:00:74:cf:90:9e:a4:b0:c0:f6:2b:60: 05:e4:db:c5:8a:91:a0:eb:8d:5d:cc:9b:3e:df:0f:6f:07:e3: 90:92:bd:44:44:2e:0a:c4:cc:af:0b:2a:17:c3:ac:57:c2:a2: 1f:e1:cf:12:e7:af:69:7a:68:3b:35:a4:a3:1d:84:34:a4:19: 17:06:51:f6:b4:1c:fe:7e:31:aa:54:17:5a:8d:e7:72:f9:2a: dc:a3:bf:ca:e7:4d:34:99:b5:c3:5c:88:b8:9f:f8:69:63:f2: 57:0d:b4:41:24:51:5c:c5:49:2f:3c:a7:b4:79:2f:9e:3c:9d: 8a:26:49:3a:fe:ef:09:8e:df:9a:2d:16:af:3c:3f:19:0b:01: b8:34:ca:45:0d:11:90:ff:2d:f2:a9:ca:9c:7d:00:bf:df:d3: a1:9b:7e:ce:0a:ac:3f:95:ff:9e:80:13:d0:91:e6:b6:aa:f2: ca:54:67:e8:01:d9:ef:1e:9d:55:09:4c:1d:da:32:33:c1:c1: a2:8a:62:46 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUD33ck+xfDxWPzdcgU5fS38p4dowwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOEMyODcwMDAwMTEwLwYDVQQFEyg4REUzNkRFMDBB RDZDNThFRTYzQkU4NzA4NTMzRDU2OEQ1OUYwM0VEMB4XDTI1MTAwOTA2NDA0NloX DTI2MTAwODA2NDU0NlowMzExMC8GA1UEAxMoMEY1QzI0MkUwOEMxRDMxMUU4Nzg0 MDdBMkMzN0VDNDU4QUI5QTc5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMMqd7sJ8pJ17xTi9WKj3SJxEYSUFdaVIB8P6PKDsGnF+JHMm27DC3o4GDf 7xRxpwPIOPZaLsLfGY1ECe59/STNlO2/XdSLsiGuyPSER0LmZOGw6wAKE1qpM1YX 0ruPbS+UgeEPBZAq+yIVQuLSO4r4jPczhQKYpuM3NaApJm0hDB+P1OKF2Cd+4wkl tQGPna19YxXKyWwq14YU4uaoqfbGuQ5RQ6hsJfXekJ3YeowJqOfN2rfF/2F8UCKY Jfgn8pAVonJEEHXRNr0hxWNPaqT4Yi8rxO9jkQ/VNImlO/2pw6ByWlDWTdPZcDOh FUYkwLNt3sio2MQcpJKIwu4l+VUCAwEAAaOCAhUwggIRMB0GA1UdDgQWBBQPXCQu CMHTEeh4QHosN+xFirmnmjAfBgNVHSMEGDAWgBSN423gCtbFjuY76HCFM9Vo1Z8D 7TAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE4QzI4NzAwMDAvMC84REUzNkRF MDBBRDZDNThFRTYzQkU4NzA4NTMzRDU2OEQ1OUYwM0VELmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9qZU50NEFyV3hZ N21PLWh3aFRQVmFOV2ZBLTAuY2VyMIGOBggrBgEFBQcBCwSBgTB/MH0GCCsGAQUF BzALhnFyc3luYzovL3Jwa2kuc3ViLmFwbmljLm5ldC9yZXBvc2l0b3J5L0E5MThD Mjg3MDAwMC8wLzMyMzAzMzJlMzEzNzM2MmUzMTM4MzkyZTMwMmYzMjM1MmQzMjM1 MjAzZDNlMjAzNjM0MzQzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUHy7C9ADANBgkqhkiG9w0BAQsF AAOCAQEAKkV9hVKiKCuIgV0Rhdu0nsJAZKi67mKOzcAdDWckWHpQ3drSXvVOyon/ mqbhLaMoA3PnxQ3r6USwZmfARQB0z5CepLDA9itgBeTbxYqRoOuNXcybPt8Pbwfj kJK9REQuCsTMrwsqF8OsV8KiH+HPEuevaXpoOzWkox2ENKQZFwZR9rQc/n4xqlQX Wo3ncvkq3KO/yudNNJm1w1yIuJ/4aWPyVw20QSRRXMVJLzyntHkvnjydiiZJOv7v CY7fmi0Wrzw/GQsBuDTKRQ0RkP8t8qnKnH0Av9/ToZt+zgqsP5X/noAT0JHmtqry ylRn6AHZ7x6dVQlMHdoyM8HBoopiRg== -----END CERTIFICATE-----Generated at Mon Oct 20 16:22:33 2025 by rpki-client