$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/3/323030313a6466303a3230363a3a2f34382d3438203d3e2039343439.roa File: 323030313a6466303a3230363a3a2f34382d3438203d3e2039343439.roa (raw, json) Hash identifier: 80CpzkiLx1c06/0pwQ3quJ9oi9EPPdt7jyfdolVAfdI= Subject key identifier: F4:AF:22:68:F2:53:F5:88:8B:91:C4:F8:DA:95:32:AF:91:15:EC:99 Certificate issuer: /CN=A911AC370000/serialNumber=B18F989967D30F2509E3D29707C5F85B5F6BDB6F Certificate serial: 2D37B87B10ED85B16CD4D1565117D5E2293E3477 Authority key identifier: B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/3/323030313a6466303a3230363a3a2f34382d3438203d3e2039343439.roa Signing time: Sun 03 Nov 2024 05:08:56 +0000 ROA not before: Sun 03 Nov 2024 05:03:56 +0000 ROA not after: Sun 02 Nov 2025 05:08:56 +0000 asID: 9449 IP address blocks: 2001:df0:206::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.crl rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 03:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:37:b8:7b:10:ed:85:b1:6c:d4:d1:56:51:17:d5:e2:29:3e:34:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AC370000, serialNumber=B18F989967D30F2509E3D29707C5F85B5F6BDB6F Validity Not Before: Nov 3 05:03:56 2024 GMT Not After : Nov 2 05:08:56 2025 GMT Subject: CN=F4AF2268F253F5888B91C4F8DA9532AF9115EC99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:69:78:83:f9:5c:db:c2:54:b8:c6:e5:3e:37: a2:54:b1:df:01:9d:10:61:4b:62:40:6d:5d:5e:5d: 90:06:f7:2c:f0:68:5f:31:71:63:7f:b8:e9:a5:c6: c9:74:57:b9:70:58:f2:fe:c9:24:85:1d:85:5c:89: 56:44:06:77:72:37:6a:c9:f9:e6:ba:0e:9a:c3:bb: c8:24:75:ee:41:e9:14:a9:e4:17:9f:05:40:1d:cb: c1:51:dc:cc:f9:61:f1:e8:c4:6b:05:4d:63:3b:dd: 5a:2f:a7:8d:0a:c8:7c:a1:c3:d5:4a:cb:8c:60:e5: fe:53:4f:6a:94:03:cc:4d:a7:26:78:8c:ac:35:69: 32:88:25:59:ba:ce:50:53:f7:65:0c:68:1e:40:3b: a3:84:10:8b:d5:cc:30:08:fb:da:75:a6:43:08:6f: 2c:28:23:04:8e:43:5e:b8:41:86:d9:39:4a:40:71: f7:e7:1b:68:48:72:09:a4:99:f9:b6:15:d0:37:bd: d0:a7:9e:21:0f:7e:a9:02:18:99:d6:c9:34:d5:e8: 11:fa:0d:69:37:51:59:40:6a:d4:9a:5c:5f:50:5d: 01:52:8c:16:e6:01:68:09:a8:45:53:38:2a:ed:1a: 48:18:cc:c7:ba:75:af:f6:05:ea:b1:d5:8d:b7:3d: f9:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:AF:22:68:F2:53:F5:88:8B:91:C4:F8:DA:95:32:AF:91:15:EC:99 X509v3 Authority Key Identifier: keyid:B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/323030313a6466303a3230363a3a2f34382d3438203d3e2039343439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:206::/48 Signature Algorithm: sha256WithRSAEncryption 6a:f3:db:68:ad:db:e6:e5:63:67:ab:10:d2:3d:ed:be:cb:7b: 83:1e:da:23:a6:6e:05:9a:f4:05:a5:33:e7:be:b3:2b:87:77: 5b:3f:8e:74:60:45:f2:74:2d:67:84:ee:70:54:2e:9a:7b:26: be:4a:88:44:69:6e:2b:31:c2:c4:18:73:22:74:71:42:b3:ba: 69:2a:fe:2d:5d:86:c6:06:c5:bc:1a:fb:ab:0a:17:4d:89:78: 18:6b:80:16:71:d5:c7:62:60:b4:69:61:70:74:94:45:b2:de: 98:29:14:74:27:ee:a8:63:6d:63:67:63:d2:40:cc:05:82:36: 9c:18:cb:f5:30:86:b0:1a:34:7b:dc:4d:5b:f6:d4:d8:89:cf: 91:3b:78:1b:dd:c3:03:b7:2d:9a:30:aa:72:7b:0b:6a:76:b0: a8:7a:89:0c:09:77:c4:84:67:28:b1:1a:2c:a1:0a:91:68:78: b8:e4:8e:d7:89:cb:50:70:39:b5:33:c1:db:e5:50:79:ae:85: 56:c2:7e:d0:8a:c3:03:ae:44:b5:5c:ae:46:be:83:2e:ba:eb: 23:c0:56:ca:32:5b:37:fb:8b:f3:cb:a9:76:d9:42:19:a7:9f: 87:14:f8:43:e7:b8:da:b4:65:5d:c2:d2:a7:19:d2:81:3d:cd: bd:5a:f7:64 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIULTe4exDthbFs1NFWURfV4ik+NHcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMUFDMzcwMDAwMTEwLwYDVQQFEyhCMThGOTg5OTY3 RDMwRjI1MDlFM0QyOTcwN0M1Rjg1QjVGNkJEQjZGMB4XDTI0MTEwMzA1MDM1NloX DTI1MTEwMjA1MDg1NlowMzExMC8GA1UEAxMoRjRBRjIyNjhGMjUzRjU4ODhCOTFD NEY4REE5NTMyQUY5MTE1RUM5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtpeIP5XNvCVLjG5T43olSx3wGdEGFLYkBtXV5dkAb3LPBoXzFxY3+46aXG yXRXuXBY8v7JJIUdhVyJVkQGd3I3asn55roOmsO7yCR17kHpFKnkF58FQB3LwVHc zPlh8ejEawVNYzvdWi+njQrIfKHD1UrLjGDl/lNPapQDzE2nJniMrDVpMoglWbrO UFP3ZQxoHkA7o4QQi9XMMAj72nWmQwhvLCgjBI5DXrhBhtk5SkBx9+cbaEhyCaSZ +bYV0De90KeeIQ9+qQIYmdbJNNXoEfoNaTdRWUBq1JpcX1BdAVKMFuYBaAmoRVM4 Ku0aSBjMx7p1r/YF6rHVjbc9+ZkCAwEAAaOCAhcwggITMB0GA1UdDgQWBBT0ryJo 8lP1iIuRxPjalTKvkRXsmTAfBgNVHSMEGDAWgBSxj5iZZ9MPJQnj0pcHxfhbX2vb bzAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvMy9CMThGOTg5 OTY3RDMwRjI1MDlFM0QyOTcwN0M1Rjg1QjVGNkJEQjZGLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9zWS1ZbVdmVER5 VUo0OUtYQjhYNFcxOXIyMjguY2VyMIGOBggrBgEFBQcBCwSBgTB/MH0GCCsGAQUF BzALhnFyc3luYzovL3Jwa2kuc3ViLmFwbmljLm5ldC9yZXBvc2l0b3J5L0E5MTkw NTMwMDAwMC8zLzMyMzAzMDMxM2E2NDY2MzAzYTMyMzAzNjNhM2EyZjM0MzgyZDM0 MzgyMDNkM2UyMDM5MzQzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8AIGMA0GCSqGSIb3DQEB CwUAA4IBAQBq89tordvm5WNnqxDSPe2+y3uDHtojpm4FmvQFpTPnvrMrh3dbP450 YEXydC1nhO5wVC6aeya+SohEaW4rMcLEGHMidHFCs7ppKv4tXYbGBsW8GvurChdN iXgYa4AWcdXHYmC0aWFwdJRFst6YKRR0J+6oY21jZ2PSQMwFgjacGMv1MIawGjR7 3E1b9tTYic+RO3gb3cMDty2aMKpyewtqdrCoeokMCXfEhGcosRosoQqRaHi45I7X ictQcDm1M8Hb5VB5roVWwn7QisMDrkS1XK5GvoMuuusjwFbKMls3+4vzy6l22UIZ p5+HFPhD57jatGVdwtKnGdKBPc29Wvdk -----END CERTIFICATE-----Generated at Thu Jul 3 21:00:55 2025 by rpki-client