$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/3/3230332e342e3137312e302f32342d3234203d3e2039343439.roa File: 3230332e342e3137312e302f32342d3234203d3e2039343439.roa (raw, json) Hash identifier: hnoMIclcB05NmUd2xDmWX3bZIBs6hnWFPDfYc7/JghY= Subject key identifier: DC:8E:6D:F0:CB:EC:79:74:41:5C:9E:BC:40:67:F8:D0:98:48:CD:F5 Certificate issuer: /CN=A911AC370000/serialNumber=B18F989967D30F2509E3D29707C5F85B5F6BDB6F Certificate serial: 7C4C638B1EC71A989C2725964042D2DCF1631EDC Authority key identifier: B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/3/3230332e342e3137312e302f32342d3234203d3e2039343439.roa Signing time: Sun 05 Oct 2025 05:27:56 +0000 ROA not before: Sun 05 Oct 2025 05:22:56 +0000 ROA not after: Sun 04 Oct 2026 05:27:56 +0000 asID: 9449 IP address blocks: 203.4.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.crl rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:4c:63:8b:1e:c7:1a:98:9c:27:25:96:40:42:d2:dc:f1:63:1e:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AC370000, serialNumber=B18F989967D30F2509E3D29707C5F85B5F6BDB6F Validity Not Before: Oct 5 05:22:56 2025 GMT Not After : Oct 4 05:27:56 2026 GMT Subject: CN=DC8E6DF0CBEC7974415C9EBC4067F8D09848CDF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9d:7d:4f:f5:fa:dc:8c:80:21:38:c4:7a:fb: ac:82:11:a8:b1:2b:f7:fa:a7:f8:bf:7f:45:fc:8e: ee:27:5e:8c:2f:23:18:0d:30:4a:02:6d:4f:17:b4: 0b:87:cb:56:4c:81:d0:a2:ed:08:25:5c:21:52:98: 42:48:57:bc:97:88:2a:4a:f6:7e:46:42:2c:31:ff: 55:8b:94:76:b0:f3:d8:39:dd:f9:aa:9a:8c:23:6f: 48:7c:b8:1c:1b:ad:39:74:97:04:44:d0:91:cf:37: 71:6b:e1:a9:45:d4:f9:a7:17:f7:d4:76:44:eb:16: c3:8a:30:d3:04:66:c2:dd:88:b8:26:1c:2c:cf:c1: aa:0a:8c:35:bd:b8:d7:67:40:9b:cf:93:84:be:37: 90:0d:70:9d:02:c2:19:af:87:28:cd:03:28:93:71: 9f:11:a5:4f:43:e5:a2:32:34:32:99:da:80:5c:ff: af:5c:63:af:08:97:1d:28:0a:2f:40:0f:c2:8a:85: 16:f5:1b:bf:fe:0c:33:40:f8:66:94:5a:fa:ba:be: 61:ea:a4:c2:24:be:0f:40:8c:91:60:19:53:75:b0: 7e:6c:ec:a6:bc:00:ef:26:1a:67:7f:50:d1:57:fe: 86:d5:ca:39:5a:93:8b:1c:83:b9:81:84:d9:8f:b6: ce:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:8E:6D:F0:CB:EC:79:74:41:5C:9E:BC:40:67:F8:D0:98:48:CD:F5 X509v3 Authority Key Identifier: keyid:B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/3230332e342e3137312e302f32342d3234203d3e2039343439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.4.171.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:5d:95:d8:eb:0c:1b:4a:9b:f0:17:1f:fe:c0:ab:9b:ac:2f: f0:aa:02:bd:d1:e1:e1:0c:0c:6a:5b:d6:a3:c3:e8:24:3c:fb: 32:9a:e1:b3:68:d1:20:c5:7f:e5:55:66:60:8b:87:9f:3f:8a: cf:00:75:b9:46:11:01:39:94:33:24:24:be:52:1c:91:0d:53: 70:c9:fd:0a:0a:50:4c:8e:a5:51:c0:75:1b:01:02:8e:61:5a: 8b:4b:5e:71:f6:40:45:a3:3f:4e:86:cf:33:a7:64:1a:94:e7: 69:6f:cc:74:e1:5f:5e:f9:b1:ec:a5:fb:44:0d:1f:f4:e3:c6: 13:9a:9f:69:7c:7f:76:40:f6:09:32:14:3e:93:47:3d:64:dd: fa:1e:a8:c4:ae:cc:cd:18:7d:69:cc:54:dc:c8:5f:38:64:fc: 5b:d4:45:7b:80:b8:04:0a:0c:08:1b:16:ca:2c:e1:ef:f5:e6: c2:f5:53:fd:92:08:4b:da:73:96:73:ba:a5:dc:e8:6c:6f:0f: e8:82:4e:4b:b7:84:9c:0b:a5:62:aa:33:c5:0f:b7:d1:69:ab: 6d:d8:4a:e7:d8:90:3d:5d:77:36:28:1a:d8:9e:fa:52:82:b4: 79:ac:e8:c5:60:27:1d:a8:0c:c6:81:89:62:cb:f4:b7:ce:3d: 5c:25:16:de -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgIUfExjix7HGpicJyWWQELS3PFjHtwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMUFDMzcwMDAwMTEwLwYDVQQFEyhCMThGOTg5OTY3 RDMwRjI1MDlFM0QyOTcwN0M1Rjg1QjVGNkJEQjZGMB4XDTI1MTAwNTA1MjI1NloX DTI2MTAwNDA1Mjc1NlowMzExMC8GA1UEAxMoREM4RTZERjBDQkVDNzk3NDQxNUM5 RUJDNDA2N0Y4RDA5ODQ4Q0RGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMSdfU/1+tyMgCE4xHr7rIIRqLEr9/qn+L9/RfyO7idejC8jGA0wSgJtTxe0 C4fLVkyB0KLtCCVcIVKYQkhXvJeIKkr2fkZCLDH/VYuUdrDz2Dnd+aqajCNvSHy4 HButOXSXBETQkc83cWvhqUXU+acX99R2ROsWw4ow0wRmwt2IuCYcLM/BqgqMNb24 12dAm8+ThL43kA1wnQLCGa+HKM0DKJNxnxGlT0PlojI0MpnagFz/r1xjrwiXHSgK L0APwoqFFvUbv/4MM0D4ZpRa+rq+YeqkwiS+D0CMkWAZU3WwfmzsprwA7yYaZ39Q 0Vf+htXKOVqTixyDuYGE2Y+2zlcCAwEAAaOCAg0wggIJMB0GA1UdDgQWBBTcjm3w y+x5dEFcnrxAZ/jQmEjN9TAfBgNVHSMEGDAWgBSxj5iZZ9MPJQnj0pcHxfhbX2vb bzAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvMy9CMThGOTg5 OTY3RDMwRjI1MDlFM0QyOTcwN0M1Rjg1QjVGNkJEQjZGLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9zWS1ZbVdmVER5 VUo0OUtYQjhYNFcxOXIyMjguY2VyMIGHBggrBgEFBQcBCwR7MHkwdwYIKwYBBQUH MAuGa3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzMvMzIzMDMzMmUzNDJlMzEzNzMxMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzkzNDM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYB BQUHAQcBAf8EEDAOMAwEAgABMAYDBADLBKswDQYJKoZIhvcNAQELBQADggEBAJpd ldjrDBtKm/AXH/7Aq5usL/CqAr3R4eEMDGpb1qPD6CQ8+zKa4bNo0SDFf+VVZmCL h58/is8AdblGEQE5lDMkJL5SHJENU3DJ/QoKUEyOpVHAdRsBAo5hWotLXnH2QEWj P06GzzOnZBqU52lvzHThX175seyl+0QNH/TjxhOan2l8f3ZA9gkyFD6TRz1k3foe qMSuzM0YfWnMVNzIXzhk/FvURXuAuAQKDAgbFsos4e/15sL1U/2SCEvac5ZzuqXc 6GxvD+iCTku3hJwLpWKqM8UPt9Fpq23YSufYkD1ddzYoGtie+lKCtHms6MVgJx2o DMaBiWLL9LfOPVwlFt4= -----END CERTIFICATE-----Generated at Mon Oct 20 19:46:06 2025 by rpki-client