$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/3/3230332e342e3136382e302f32322d3234203d3e203337393930.roa File: 3230332e342e3136382e302f32322d3234203d3e203337393930.roa (raw, json) Hash identifier: A2MpVUmS2HoA19ZogILSNm7O5BUrXzUuhmjKFdQmYk0= Subject key identifier: E7:CD:79:C1:C7:1E:5C:2D:7A:7A:AC:D1:2E:30:26:AC:AF:80:C5:2A Certificate issuer: /CN=A911AC370000/serialNumber=B18F989967D30F2509E3D29707C5F85B5F6BDB6F Certificate serial: 17CBF95E7E4B9275DEB76AEEE418DE4ED54F2EE4 Authority key identifier: B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/3/3230332e342e3136382e302f32322d3234203d3e203337393930.roa Signing time: Sun 05 Oct 2025 05:27:56 +0000 ROA not before: Sun 05 Oct 2025 05:22:56 +0000 ROA not after: Sun 04 Oct 2026 05:27:56 +0000 asID: 37990 IP address blocks: 203.4.168.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.crl rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:cb:f9:5e:7e:4b:92:75:de:b7:6a:ee:e4:18:de:4e:d5:4f:2e:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AC370000, serialNumber=B18F989967D30F2509E3D29707C5F85B5F6BDB6F Validity Not Before: Oct 5 05:22:56 2025 GMT Not After : Oct 4 05:27:56 2026 GMT Subject: CN=E7CD79C1C71E5C2D7A7AACD12E3026ACAF80C52A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a0:31:8f:75:94:a1:fc:49:2f:1c:ce:2d:45: 3d:67:4e:e0:a7:30:9d:e3:a4:5d:d4:e3:d5:95:f0: bb:a3:29:cf:f5:00:07:7c:09:65:bb:ad:46:6d:c9: 40:b4:b8:c5:d8:75:7e:cd:5e:c5:1e:71:78:da:c7: 79:64:4e:15:24:4d:8f:82:f3:c6:7d:5a:c3:72:d8: 49:2d:20:b4:6c:2b:ec:3d:30:c5:07:6f:c0:50:22: 6c:74:32:41:fb:57:c1:a9:e3:23:1a:93:20:42:17: 8a:90:fe:28:8d:51:11:ee:93:65:7b:d1:4c:5f:28: 1c:4a:f8:df:d3:44:ee:e1:ce:5e:cd:a0:39:3c:82: e0:2c:4b:1a:40:cc:71:00:dc:2b:92:97:fe:11:3c: 13:d8:3f:21:b4:31:64:dc:45:a5:d6:f1:c4:bf:7e: d4:e6:59:e5:27:c3:7b:c0:63:4f:81:32:5d:a3:2e: 56:c8:2a:9d:37:88:90:84:51:17:9e:fc:99:3b:ee: 7d:e6:17:80:be:40:d6:64:31:79:f8:9d:3d:ef:fc: 4f:1d:c5:95:b0:9a:9d:92:51:9c:a1:27:0f:d2:61: 88:0c:90:88:aa:00:3f:56:a9:78:e0:84:5e:e7:ba: 72:5a:8e:65:7f:86:68:da:28:11:dc:f3:ab:fe:2d: c9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:CD:79:C1:C7:1E:5C:2D:7A:7A:AC:D1:2E:30:26:AC:AF:80:C5:2A X509v3 Authority Key Identifier: keyid:B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/3230332e342e3136382e302f32322d3234203d3e203337393930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.4.168.0/22 Signature Algorithm: sha256WithRSAEncryption 06:1a:c1:67:96:58:6c:e2:a7:08:5b:bd:1f:9c:e1:91:f6:cd: 40:4b:00:d9:42:cf:19:13:52:67:79:00:04:67:a5:64:c9:b3: 36:03:ea:1b:a8:24:e1:c7:76:44:af:2f:75:ac:e6:9e:d1:2b: 37:dd:09:0c:0c:d3:f6:18:a6:12:5a:1f:4d:57:3f:c3:5f:57: b0:df:53:9c:48:85:58:45:f1:d5:56:59:f7:3c:11:2c:a6:ff: 33:07:02:00:7b:99:9c:1d:f4:96:0b:32:49:33:fe:f5:de:fa: 52:69:c8:40:67:62:16:7b:34:1c:4e:98:7d:80:f6:9d:f4:5c: 34:fa:af:70:32:fa:15:66:dc:a5:72:f2:cc:f5:0c:45:ee:2b: 83:bb:f4:b6:b6:c5:13:15:17:c6:39:9c:49:5f:ef:87:de:ed: f4:f1:57:d3:e9:46:f6:87:ce:07:31:b9:95:31:56:c1:b6:49: a0:48:66:2f:82:4f:02:3d:59:68:78:e2:34:ce:96:77:86:82: 17:de:46:c9:6c:af:85:36:f4:4a:cb:c7:8f:6c:4b:93:7a:4f: bc:bf:45:57:8e:f1:1a:a6:d4:47:fa:57:26:71:e2:92:f1:d3: eb:fd:c7:3e:11:3d:b2:c8:8e:7e:b3:39:82:01:61:e0:35:0c: 1a:68:51:7b -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUF8v5Xn5LknXet2ru5BjeTtVPLuQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMUFDMzcwMDAwMTEwLwYDVQQFEyhCMThGOTg5OTY3 RDMwRjI1MDlFM0QyOTcwN0M1Rjg1QjVGNkJEQjZGMB4XDTI1MTAwNTA1MjI1NloX DTI2MTAwNDA1Mjc1NlowMzExMC8GA1UEAxMoRTdDRDc5QzFDNzFFNUMyRDdBN0FB Q0QxMkUzMDI2QUNBRjgwQzUyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKKgMY91lKH8SS8czi1FPWdO4KcwneOkXdTj1ZXwu6Mpz/UAB3wJZbutRm3J QLS4xdh1fs1exR5xeNrHeWROFSRNj4Lzxn1aw3LYSS0gtGwr7D0wxQdvwFAibHQy QftXwanjIxqTIEIXipD+KI1REe6TZXvRTF8oHEr439NE7uHOXs2gOTyC4CxLGkDM cQDcK5KX/hE8E9g/IbQxZNxFpdbxxL9+1OZZ5SfDe8BjT4EyXaMuVsgqnTeIkIRR F578mTvufeYXgL5A1mQxefidPe/8Tx3FlbCanZJRnKEnD9JhiAyQiKoAP1apeOCE Xue6clqOZX+GaNooEdzzq/4tyc8CAwEAAaOCAg8wggILMB0GA1UdDgQWBBTnzXnB xx5cLXp6rNEuMCasr4DFKjAfBgNVHSMEGDAWgBSxj5iZZ9MPJQnj0pcHxfhbX2vb bzAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvMy9CMThGOTg5 OTY3RDMwRjI1MDlFM0QyOTcwN0M1Rjg1QjVGNkJEQjZGLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9zWS1ZbVdmVER5 VUo0OUtYQjhYNFcxOXIyMjguY2VyMIGJBggrBgEFBQcBCwR9MHsweQYIKwYBBQUH MAuGbXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzMvMzIzMDMzMmUzNDJlMzEzNjM4MmUzMDJmMzIzMjJkMzIzNDIwM2Qz ZTIwMzMzNzM5MzkzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAssEqDANBgkqhkiG9w0BAQsFAAOCAQEA BhrBZ5ZYbOKnCFu9H5zhkfbNQEsA2ULPGRNSZ3kABGelZMmzNgPqG6gk4cd2RK8v dazmntErN90JDAzT9himElofTVc/w19XsN9TnEiFWEXx1VZZ9zwRLKb/MwcCAHuZ nB30lgsySTP+9d76UmnIQGdiFns0HE6YfYD2nfRcNPqvcDL6FWbcpXLyzPUMRe4r g7v0trbFExUXxjmcSV/vh97t9PFX0+lG9ofOBzG5lTFWwbZJoEhmL4JPAj1ZaHji NM6Wd4aCF95GyWyvhTb0SsvHj2xLk3pPvL9FV47xGqbUR/pXJnHikvHT6/3HPhE9 ssiOfrM5ggFh4DUMGmhRew== -----END CERTIFICATE-----Generated at Tue Oct 21 05:29:52 2025 by rpki-client