$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/0/323430363a653934303a3a2f33322d3536203d3e2039343439.roa File: 323430363a653934303a3a2f33322d3536203d3e2039343439.roa (raw, json) Hash identifier: L0lWQ5cza5vzg//b4IOx6GUQ2FbNhEwtk8QfgcTn3pQ= Subject key identifier: D6:31:6D:87:E7:B1:7D:84:C4:E0:8A:95:B3:B6:F8:F2:82:87:0A:6D Certificate issuer: /CN=A91905300000/serialNumber=30356EF46D594DA57C7697011183ACFFE04613E0 Certificate serial: 055CBF8F09941D0546571D30DF161711E6BBC433 Authority key identifier: 30:35:6E:F4:6D:59:4D:A5:7C:76:97:01:11:83:AC:FF:E0:46:13:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDVu9G1ZTaV8dpcBEYOs_-BGE-A.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/0/323430363a653934303a3a2f33322d3536203d3e2039343439.roa Signing time: Sun 03 Nov 2024 05:08:54 +0000 ROA not before: Sun 03 Nov 2024 05:03:54 +0000 ROA not after: Sun 02 Nov 2025 05:08:54 +0000 asID: 9449 IP address blocks: 2406:e940::/32 maxlen: 56 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/0/30356EF46D594DA57C7697011183ACFFE04613E0.crl rsync://rpki.sub.apnic.net/repository/A91905300000/0/30356EF46D594DA57C7697011183ACFFE04613E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDVu9G1ZTaV8dpcBEYOs_-BGE-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 04:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:5c:bf:8f:09:94:1d:05:46:57:1d:30:df:16:17:11:e6:bb:c4:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91905300000, serialNumber=30356EF46D594DA57C7697011183ACFFE04613E0 Validity Not Before: Nov 3 05:03:54 2024 GMT Not After : Nov 2 05:08:54 2025 GMT Subject: CN=D6316D87E7B17D84C4E08A95B3B6F8F282870A6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:9d:d3:12:f1:50:99:2c:63:4f:40:20:d7:de: 4c:ad:fe:08:9c:af:14:0e:56:2a:3b:f7:ca:be:95: 9c:92:0f:a6:84:97:2b:e3:fd:74:81:3e:48:fc:0b: 6b:a2:87:d3:6e:96:1a:ba:39:b8:b8:67:f2:f2:84: e0:74:31:c0:5e:65:3a:13:32:ae:b8:34:f2:b4:b5: 71:65:29:56:8c:d3:b9:59:d9:3b:bc:02:8f:2f:70: f1:26:fa:d3:82:61:8f:d3:9c:84:91:08:b0:d7:8e: d1:7a:95:52:2c:af:cf:1d:96:18:46:81:36:25:ee: 61:f5:fb:65:d6:0b:a0:df:46:72:14:41:d9:9f:82: c8:9c:5f:f3:2b:a8:e3:a5:5a:1e:1a:e0:73:3e:a0: 49:36:51:83:9a:0a:e3:01:fb:77:93:a7:ca:09:ab: 19:40:17:b1:98:a9:97:db:61:7e:94:1e:28:93:28: e9:d8:ab:54:44:20:56:e8:5a:04:80:f2:12:6b:54: a7:34:1e:fc:72:0f:85:06:bf:68:e5:8d:52:f5:a8: 2f:24:c1:5f:b9:1d:87:fe:e6:dd:2f:38:45:5c:1d: 09:32:94:7a:06:56:63:13:07:20:ec:1d:49:22:bf: 7a:60:ab:42:53:a8:83:27:ed:e5:25:be:ea:41:fd: 54:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:31:6D:87:E7:B1:7D:84:C4:E0:8A:95:B3:B6:F8:F2:82:87:0A:6D X509v3 Authority Key Identifier: keyid:30:35:6E:F4:6D:59:4D:A5:7C:76:97:01:11:83:AC:FF:E0:46:13:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/0/30356EF46D594DA57C7697011183ACFFE04613E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDVu9G1ZTaV8dpcBEYOs_-BGE-A.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/0/323430363a653934303a3a2f33322d3536203d3e2039343439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:e940::/32 Signature Algorithm: sha256WithRSAEncryption 30:08:22:16:9f:62:da:6f:81:06:a3:65:65:1b:1b:17:16:bf: 58:7b:4b:d6:1c:0b:d9:3b:76:d4:4f:3c:a2:20:08:c4:02:eb: 18:22:0b:d7:13:70:f9:fa:da:ab:46:a2:77:2e:16:b0:1a:7a: 44:f5:0f:f0:73:e1:ec:f3:a6:d3:a7:59:c6:7d:83:89:f5:0d: 94:d4:46:5f:bb:d8:c5:76:81:4b:83:1b:c7:d0:47:5e:fa:0f: e5:fd:62:e6:4b:1c:f6:73:09:2d:76:ae:2c:af:83:fe:c3:b8: 97:7e:00:cc:6b:2d:a1:f2:ae:53:95:ee:7d:7b:c0:50:3e:02: c1:f8:30:42:24:5c:a1:9c:39:ce:dd:46:ba:51:26:0f:f9:b9: 5e:a5:96:fb:1a:ff:43:6a:fe:94:6d:23:05:8f:3a:82:30:1b: 00:6b:bb:4a:c7:c8:89:a1:5d:04:98:d3:6f:e7:6a:00:f6:09: 33:23:d9:ee:7d:bd:8e:fe:38:9d:e2:0b:f4:cf:75:6f:42:0d: 8a:21:a8:f4:5f:14:a1:e4:01:04:d5:34:f2:ab:9a:a5:a5:38: 8b:20:78:21:a7:44:b9:e1:8d:ed:9f:01:d2:2a:d8:a7:ad:cf: 36:33:48:28:84:ad:71:c7:c9:8c:31:d6:00:33:2a:34:e2:01: 90:91:e5:14 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgIUBVy/jwmUHQVGVx0w3xYXEea7xDMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOTA1MzAwMDAwMTEwLwYDVQQFEygzMDM1NkVGNDZE NTk0REE1N0M3Njk3MDExMTgzQUNGRkUwNDYxM0UwMB4XDTI0MTEwMzA1MDM1NFoX DTI1MTEwMjA1MDg1NFowMzExMC8GA1UEAxMoRDYzMTZEODdFN0IxN0Q4NEM0RTA4 QTk1QjNCNkY4RjI4Mjg3MEE2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI2d0xLxUJksY09AINfeTK3+CJyvFA5WKjv3yr6VnJIPpoSXK+P9dIE+SPwL a6KH026WGro5uLhn8vKE4HQxwF5lOhMyrrg08rS1cWUpVozTuVnZO7wCjy9w8Sb6 04Jhj9OchJEIsNeO0XqVUiyvzx2WGEaBNiXuYfX7ZdYLoN9GchRB2Z+CyJxf8yuo 46VaHhrgcz6gSTZRg5oK4wH7d5OnygmrGUAXsZipl9thfpQeKJMo6dirVEQgVuha BIDyEmtUpzQe/HIPhQa/aOWNUvWoLyTBX7kdh/7m3S84RVwdCTKUegZWYxMHIOwd SSK/emCrQlOogyft5SW+6kH9VEMCAwEAAaOCAg4wggIKMB0GA1UdDgQWBBTWMW2H 57F9hMTgipWztvjygocKbTAfBgNVHSMEGDAWgBQwNW70bVlNpXx2lwERg6z/4EYT 4DAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvMC8zMDM1NkVG NDZENTk0REE1N0M3Njk3MDExMTgzQUNGRkUwNDYxM0UwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NRFZ1OUcxWlRh VjhkcGNCRVlPc18tQkdFLUEuY2VyMIGHBggrBgEFBQcBCwR7MHkwdwYIKwYBBQUH MAuGa3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzAvMzIzNDMwMzYzYTY1MzkzNDMwM2EzYTJmMzMzMjJkMzUzNjIwM2Qz ZTIwMzkzNDM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYB BQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBulAMA0GCSqGSIb3DQEBCwUAA4IBAQAw CCIWn2Lab4EGo2VlGxsXFr9Ye0vWHAvZO3bUTzyiIAjEAusYIgvXE3D5+tqrRqJ3 LhawGnpE9Q/wc+Hs86bTp1nGfYOJ9Q2U1EZfu9jFdoFLgxvH0Ede+g/l/WLmSxz2 cwktdq4sr4P+w7iXfgDMay2h8q5Tle59e8BQPgLB+DBCJFyhnDnO3Ua6USYP+ble pZb7Gv9Dav6UbSMFjzqCMBsAa7tKx8iJoV0EmNNv52oA9gkzI9nufb2O/jid4gv0 z3VvQg2KIaj0XxSh5AEE1TTyq5qlpTiLIHghp0S54Y3tnwHSKtinrc82M0gohK1x x8mMMdYAMyo04gGQkeUU -----END CERTIFICATE-----Generated at Thu Jul 3 23:37:49 2025 by rpki-client