$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/3/323030313a6466303a3230363a3a2f34382d3438203d3e2039343439.roa File: 323030313a6466303a3230363a3a2f34382d3438203d3e2039343439.roa (raw, json) Hash identifier: 50d2RggU8y4nILOGJZpWYefA0XMqCp6rq7Je4AWL+Ws= Subject key identifier: 2B:6D:5E:82:3D:7B:A8:FE:AD:4E:E4:E5:83:2A:39:AD:59:E8:C5:C0 Certificate issuer: /CN=A911AC370000/serialNumber=B18F989967D30F2509E3D29707C5F85B5F6BDB6F Certificate serial: 765079953EA7EA65F5B2158765B4D308A5FEA615 Authority key identifier: B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/3/323030313a6466303a3230363a3a2f34382d3438203d3e2039343439.roa Signing time: Sun 05 Oct 2025 05:27:55 +0000 ROA not before: Sun 05 Oct 2025 05:22:55 +0000 ROA not after: Sun 04 Oct 2026 05:27:55 +0000 asID: 9449 IP address blocks: 2001:df0:206::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.crl rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:50:79:95:3e:a7:ea:65:f5:b2:15:87:65:b4:d3:08:a5:fe:a6:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AC370000, serialNumber=B18F989967D30F2509E3D29707C5F85B5F6BDB6F Validity Not Before: Oct 5 05:22:55 2025 GMT Not After : Oct 4 05:27:55 2026 GMT Subject: CN=2B6D5E823D7BA8FEAD4EE4E5832A39AD59E8C5C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:19:1d:bd:4b:14:44:df:62:78:9d:4c:97:3f: b6:b8:5b:21:92:3b:e1:f0:ee:d5:63:3c:05:21:5c: ed:ba:0a:26:3c:61:d4:22:ec:1a:0b:e2:76:24:e6: b2:c1:8a:5d:10:a2:35:bc:13:95:4c:19:19:2c:b2: d5:16:7b:5a:f2:14:2b:3e:bd:2c:6e:5b:f3:bd:0c: 71:fb:1a:90:6c:95:06:88:57:5d:cb:00:49:b3:0f: 79:3d:4c:23:38:8e:03:56:3d:fa:37:03:7d:9c:8b: 4b:67:7e:b8:09:ec:2c:7d:22:65:18:a1:06:3a:e1: b7:c0:b0:13:4d:db:e4:2e:3d:bc:3d:e2:c0:35:41: 8d:60:9c:17:62:88:31:07:63:d5:71:51:2e:81:b1: 81:74:5f:09:7d:fb:28:39:9b:24:3c:0d:03:b4:b8: 2b:88:ed:a0:b0:f5:b1:01:02:30:d8:e4:f8:e6:2e: 35:91:22:64:61:42:5f:2f:fb:cb:97:6d:19:69:b3: d4:f6:5e:d2:35:56:95:5f:3a:4f:2f:af:68:91:79: 73:d6:e4:af:2f:e5:fd:1b:0d:ee:f7:e0:12:24:d0: 75:8e:40:95:f4:59:6f:13:b0:8f:76:6e:34:e5:2e: 06:94:15:87:49:76:03:91:05:f7:a1:dd:c5:a6:5a: d1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:6D:5E:82:3D:7B:A8:FE:AD:4E:E4:E5:83:2A:39:AD:59:E8:C5:C0 X509v3 Authority Key Identifier: keyid:B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/323030313a6466303a3230363a3a2f34382d3438203d3e2039343439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:206::/48 Signature Algorithm: sha256WithRSAEncryption 9e:b7:c1:bb:e8:f3:4a:6d:17:ca:76:86:9a:84:45:9a:b7:ec: 44:5e:7d:48:5a:50:fa:6d:66:e5:c3:42:c5:21:78:df:04:33: 13:5f:06:ad:f0:53:71:44:ff:29:2a:31:f2:f9:e2:e4:e5:6b: bf:5b:70:ed:66:2f:d6:fd:b0:3f:82:23:7a:34:79:e2:e9:3e: ac:c4:15:4a:2d:43:ca:76:7f:d9:d7:25:18:c8:d9:76:cb:b8: aa:e6:ba:ce:5d:1c:92:df:21:69:4f:ba:aa:78:92:45:fe:c7: 6f:cf:47:d2:04:cc:ce:a3:c5:13:39:52:08:2e:23:4d:80:28: bd:5f:73:ef:55:0c:05:e1:86:34:f8:eb:cb:e2:f7:f6:0c:9f: a8:f9:0b:f1:22:b7:77:c9:0d:45:09:df:f3:eb:03:8e:2c:d0: 7f:6d:f6:31:87:7b:a0:10:44:da:5f:dc:ca:d7:63:b1:90:09: 3b:0c:41:7e:2f:d3:0c:b8:bc:e0:74:27:ff:fc:1e:eb:93:03: aa:ba:37:8e:83:c3:25:a3:ba:ba:9f:f0:c1:cc:5e:02:21:55: 31:f2:b5:9c:7b:45:44:78:16:51:1c:88:f6:a9:06:49:65:5a: de:cf:31:cb:77:e1:dd:a0:de:9b:b4:4d:2d:b8:40:24:dc:90: 31:fe:09:46 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUdlB5lT6n6mX1shWHZbTTCKX+phUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMUFDMzcwMDAwMTEwLwYDVQQFEyhCMThGOTg5OTY3 RDMwRjI1MDlFM0QyOTcwN0M1Rjg1QjVGNkJEQjZGMB4XDTI1MTAwNTA1MjI1NVoX DTI2MTAwNDA1Mjc1NVowMzExMC8GA1UEAxMoMkI2RDVFODIzRDdCQThGRUFENEVF NEU1ODMyQTM5QUQ1OUU4QzVDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJAZHb1LFETfYnidTJc/trhbIZI74fDu1WM8BSFc7boKJjxh1CLsGgvidiTm ssGKXRCiNbwTlUwZGSyy1RZ7WvIUKz69LG5b870McfsakGyVBohXXcsASbMPeT1M IziOA1Y9+jcDfZyLS2d+uAnsLH0iZRihBjrht8CwE03b5C49vD3iwDVBjWCcF2KI MQdj1XFRLoGxgXRfCX37KDmbJDwNA7S4K4jtoLD1sQECMNjk+OYuNZEiZGFCXy/7 y5dtGWmz1PZe0jVWlV86Ty+vaJF5c9bkry/l/RsN7vfgEiTQdY5AlfRZbxOwj3Zu NOUuBpQVh0l2A5EF96HdxaZa0X8CAwEAAaOCAhcwggITMB0GA1UdDgQWBBQrbV6C PXuo/q1O5OWDKjmtWejFwDAfBgNVHSMEGDAWgBSxj5iZZ9MPJQnj0pcHxfhbX2vb bzAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvMy9CMThGOTg5 OTY3RDMwRjI1MDlFM0QyOTcwN0M1Rjg1QjVGNkJEQjZGLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9zWS1ZbVdmVER5 VUo0OUtYQjhYNFcxOXIyMjguY2VyMIGOBggrBgEFBQcBCwSBgTB/MH0GCCsGAQUF BzALhnFyc3luYzovL3Jwa2kuc3ViLmFwbmljLm5ldC9yZXBvc2l0b3J5L0E5MTkw NTMwMDAwMC8zLzMyMzAzMDMxM2E2NDY2MzAzYTMyMzAzNjNhM2EyZjM0MzgyZDM0 MzgyMDNkM2UyMDM5MzQzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8AIGMA0GCSqGSIb3DQEB CwUAA4IBAQCet8G76PNKbRfKdoaahEWat+xEXn1IWlD6bWblw0LFIXjfBDMTXwat 8FNxRP8pKjHy+eLk5Wu/W3DtZi/W/bA/giN6NHni6T6sxBVKLUPKdn/Z1yUYyNl2 y7iq5rrOXRyS3yFpT7qqeJJF/sdvz0fSBMzOo8UTOVIILiNNgCi9X3PvVQwF4YY0 +OvL4vf2DJ+o+QvxIrd3yQ1FCd/z6wOOLNB/bfYxh3ugEETaX9zK12OxkAk7DEF+ L9MMuLzgdCf//B7rkwOqujeOg8Mlo7q6n/DBzF4CIVUx8rWce0VEeBZRHIj2qQZJ ZVrezzHLd+HdoN6btE0tuEAk3JAx/glG -----END CERTIFICATE-----Generated at Mon Oct 20 21:55:12 2025 by rpki-client