$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/0/323430363a653934303a3a2f33322d3536203d3e2039343439.roa File: 323430363a653934303a3a2f33322d3536203d3e2039343439.roa (raw, json) Hash identifier: qktH9CmoSMi4zY7SUgxfdRgLAlOa3yTYkuOYxTloRPw= Subject key identifier: 84:C3:8D:54:47:1F:AB:C8:59:F7:4B:78:E4:D4:9B:31:BB:5F:52:7E Certificate issuer: /CN=A91905300000/serialNumber=30356EF46D594DA57C7697011183ACFFE04613E0 Certificate serial: 0F352E077E8A274C77D3A073529A1E7F7F2FFFD5 Authority key identifier: 30:35:6E:F4:6D:59:4D:A5:7C:76:97:01:11:83:AC:FF:E0:46:13:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDVu9G1ZTaV8dpcBEYOs_-BGE-A.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/0/323430363a653934303a3a2f33322d3536203d3e2039343439.roa Signing time: Sun 05 Oct 2025 05:27:58 +0000 ROA not before: Sun 05 Oct 2025 05:22:58 +0000 ROA not after: Sun 04 Oct 2026 05:27:58 +0000 asID: 9449 IP address blocks: 2406:e940::/32 maxlen: 56 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/0/30356EF46D594DA57C7697011183ACFFE04613E0.crl rsync://rpki.sub.apnic.net/repository/A91905300000/0/30356EF46D594DA57C7697011183ACFFE04613E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDVu9G1ZTaV8dpcBEYOs_-BGE-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 00:46:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:35:2e:07:7e:8a:27:4c:77:d3:a0:73:52:9a:1e:7f:7f:2f:ff:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91905300000, serialNumber=30356EF46D594DA57C7697011183ACFFE04613E0 Validity Not Before: Oct 5 05:22:58 2025 GMT Not After : Oct 4 05:27:58 2026 GMT Subject: CN=84C38D54471FABC859F74B78E4D49B31BB5F527E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:52:2a:38:3c:4d:ad:0a:d0:d8:a9:b3:14:33: 0f:14:75:7c:2b:75:d4:9d:5b:91:8e:09:7a:c4:28: a0:16:41:8a:56:3a:d8:93:e8:4c:3c:59:bc:d4:8f: 97:14:63:b1:32:0a:fe:1d:be:9a:8a:43:dc:ed:d3: 5b:fb:e7:3f:1b:b8:38:29:5c:22:e2:6e:a3:7d:f5: 27:cd:05:b5:c5:68:de:de:7b:0b:0b:35:90:5b:c5: b1:17:7c:2f:80:0e:42:34:2a:f2:32:59:7a:3b:5f: ee:a8:fe:bf:c7:d3:2f:1a:17:c9:03:53:48:0e:56: e9:19:c6:90:49:36:46:07:64:8d:d4:42:e4:f9:f6: fb:b0:e0:e7:80:16:22:b7:7a:b9:df:70:8e:63:c0: 22:c0:3d:3e:c8:6b:49:c3:04:8f:b2:79:12:36:46: 5a:67:2a:9b:b5:8c:99:a0:78:56:ad:e0:fe:58:7d: db:e6:f3:60:21:63:15:f0:ea:95:e5:a4:ac:26:b8: 6f:88:5f:75:09:c1:d6:01:01:6e:80:5c:65:0e:ec: 3f:3f:a9:d0:5b:52:29:da:47:37:b1:df:2d:fb:55: 91:83:1d:77:72:87:e6:c7:ad:93:4b:f2:8e:88:a6: cf:f5:9e:5b:06:e2:1d:13:43:31:63:7c:35:bc:49: 5b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:C3:8D:54:47:1F:AB:C8:59:F7:4B:78:E4:D4:9B:31:BB:5F:52:7E X509v3 Authority Key Identifier: keyid:30:35:6E:F4:6D:59:4D:A5:7C:76:97:01:11:83:AC:FF:E0:46:13:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/0/30356EF46D594DA57C7697011183ACFFE04613E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDVu9G1ZTaV8dpcBEYOs_-BGE-A.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/0/323430363a653934303a3a2f33322d3536203d3e2039343439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:e940::/32 Signature Algorithm: sha256WithRSAEncryption 98:2e:d7:cc:3c:40:89:20:07:5e:9c:ed:d3:58:e2:c0:9c:6c: 6d:fa:95:4d:5c:4f:09:61:bd:81:51:55:c7:50:40:4d:5c:11: 0f:a4:0c:68:7a:42:a0:8e:f5:78:72:35:d1:61:b8:47:e3:e9: 37:af:d6:5d:42:f7:87:00:40:b4:ce:50:8f:12:2c:f9:46:a2: 6a:0a:c6:da:b4:ca:c6:65:8d:24:99:b0:b7:99:a4:5f:0a:60: 34:fb:e0:a4:e1:bb:9a:e7:3a:3a:ac:c9:38:10:6f:1b:63:29: ba:10:e2:3e:5e:42:8e:0f:c8:99:55:de:99:48:3c:17:5c:cf: b8:00:e3:e1:78:be:e7:82:63:f4:4d:8a:0e:c1:0a:d8:43:8f: fb:7b:ac:8b:1c:ab:fb:80:98:41:c7:2b:04:2b:94:b9:6f:d9: db:65:16:fa:ac:07:9b:e7:3c:b6:53:05:3f:d7:b6:92:9f:97: 22:a8:27:ab:46:fc:39:cd:e8:33:d0:0f:8c:61:f0:64:4b:9a: 4b:c6:07:27:75:dd:d0:ea:ac:9f:be:dd:b8:02:e7:69:d7:ac: 75:ab:91:52:03:a7:12:0c:6c:5c:11:84:1e:b6:9c:d9:62:33: 1d:53:2c:f5:a1:ce:7e:33:ad:e2:8e:bb:80:b3:35:f7:d1:05: 12:00:8b:77 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgIUDzUuB36KJ0x306BzUpoef38v/9UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOTA1MzAwMDAwMTEwLwYDVQQFEygzMDM1NkVGNDZE NTk0REE1N0M3Njk3MDExMTgzQUNGRkUwNDYxM0UwMB4XDTI1MTAwNTA1MjI1OFoX DTI2MTAwNDA1Mjc1OFowMzExMC8GA1UEAxMoODRDMzhENTQ0NzFGQUJDODU5Rjc0 Qjc4RTRENDlCMzFCQjVGNTI3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKFSKjg8Ta0K0NipsxQzDxR1fCt11J1bkY4JesQooBZBilY62JPoTDxZvNSP lxRjsTIK/h2+mopD3O3TW/vnPxu4OClcIuJuo331J80FtcVo3t57Cws1kFvFsRd8 L4AOQjQq8jJZejtf7qj+v8fTLxoXyQNTSA5W6RnGkEk2RgdkjdRC5Pn2+7Dg54AW Ird6ud9wjmPAIsA9PshrScMEj7J5EjZGWmcqm7WMmaB4Vq3g/lh92+bzYCFjFfDq leWkrCa4b4hfdQnB1gEBboBcZQ7sPz+p0FtSKdpHN7HfLftVkYMdd3KH5setk0vy joimz/WeWwbiHRNDMWN8NbxJWwsCAwEAAaOCAg4wggIKMB0GA1UdDgQWBBSEw41U Rx+ryFn3S3jk1Jsxu19SfjAfBgNVHSMEGDAWgBQwNW70bVlNpXx2lwERg6z/4EYT 4DAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvMC8zMDM1NkVG NDZENTk0REE1N0M3Njk3MDExMTgzQUNGRkUwNDYxM0UwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NRFZ1OUcxWlRh VjhkcGNCRVlPc18tQkdFLUEuY2VyMIGHBggrBgEFBQcBCwR7MHkwdwYIKwYBBQUH MAuGa3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzAvMzIzNDMwMzYzYTY1MzkzNDMwM2EzYTJmMzMzMjJkMzUzNjIwM2Qz ZTIwMzkzNDM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYB BQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBulAMA0GCSqGSIb3DQEBCwUAA4IBAQCY LtfMPECJIAdenO3TWOLAnGxt+pVNXE8JYb2BUVXHUEBNXBEPpAxoekKgjvV4cjXR YbhH4+k3r9ZdQveHAEC0zlCPEiz5RqJqCsbatMrGZY0kmbC3maRfCmA0++Ck4bua 5zo6rMk4EG8bYym6EOI+XkKOD8iZVd6ZSDwXXM+4AOPheL7ngmP0TYoOwQrYQ4/7 e6yLHKv7gJhBxysEK5S5b9nbZRb6rAeb5zy2UwU/17aSn5ciqCerRvw5zegz0A+M YfBkS5pLxgcndd3Q6qyfvt24Audp16x1q5FSA6cSDGxcEYQetpzZYjMdUyz1oc5+ M63ijruAszX30QUSAIt3 -----END CERTIFICATE-----Generated at Tue Oct 21 00:40:43 2025 by rpki-client