$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/4/3230332e372e3139372e302f32342d3234203d3e20313334303930.roa File: 3230332e372e3139372e302f32342d3234203d3e20313334303930.roa (raw, json) Hash identifier: yVZN8uUTOOhqgDafcuJzyObo6OYnTkFGrZV6T9wM9pM= Subject key identifier: 44:93:5C:84:FB:11:47:FF:77:77:48:B6:89:4F:12:E0:4E:4C:6B:20 Certificate issuer: /CN=A91E539C0000/serialNumber=B7351B05B1619E9DE395F0B2FFC9EE1129F300B4 Certificate serial: 39129104F824ADF4DB9DA84BFEB5BFE93FCF5009 Authority key identifier: B7:35:1B:05:B1:61:9E:9D:E3:95:F0:B2:FF:C9:EE:11:29:F3:00:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/4/3230332e372e3139372e302f32342d3234203d3e20313334303930.roa Signing time: Sun 12 Oct 2025 01:56:29 +0000 ROA not before: Sun 12 Oct 2025 01:51:29 +0000 ROA not after: Sun 11 Oct 2026 01:56:29 +0000 asID: 134090 IP address blocks: 203.7.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/4/B7351B05B1619E9DE395F0B2FFC9EE1129F300B4.crl rsync://rpki.sub.apnic.net/repository/A91905300000/4/B7351B05B1619E9DE395F0B2FFC9EE1129F300B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 07:37:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:12:91:04:f8:24:ad:f4:db:9d:a8:4b:fe:b5:bf:e9:3f:cf:50:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E539C0000, serialNumber=B7351B05B1619E9DE395F0B2FFC9EE1129F300B4 Validity Not Before: Oct 12 01:51:29 2025 GMT Not After : Oct 11 01:56:29 2026 GMT Subject: CN=44935C84FB1147FF777748B6894F12E04E4C6B20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1a:f8:e5:ee:14:ad:37:f2:ff:90:3d:45:6b: ff:04:61:1d:ef:de:22:af:88:de:20:05:ac:0f:40: ff:65:74:7c:51:22:91:00:2f:62:d2:1d:f8:26:e9: 9b:45:e1:76:a7:e6:34:64:92:58:39:35:27:56:26: ee:7b:7e:7d:ba:dc:1f:7f:69:c4:e2:1a:f3:ec:b3: d4:7f:7e:d5:a1:3f:ca:cb:05:e8:8f:19:e6:8e:c6: e7:ef:af:fd:a3:3a:52:ff:b7:7f:8f:d5:30:44:19: 27:82:6b:be:5a:ea:03:60:a4:a9:cf:aa:4a:cb:8d: a1:e2:de:fa:fa:ed:8c:cf:58:1d:38:91:de:36:4f: 05:a0:6f:60:7e:dc:ef:7c:5a:94:39:4d:d9:97:b6: 71:a6:62:c8:56:e4:d0:0c:c1:54:06:9f:f8:9b:a1: 37:99:fd:5f:c0:23:df:bf:2b:1d:2c:ff:4e:9b:09: 9e:ba:53:63:03:c4:1d:20:d0:c9:52:08:23:7d:d9: 4a:d8:b7:e1:2a:64:51:33:dc:6e:8b:de:58:9f:79: 3a:b0:63:e5:69:50:0d:96:9d:b0:fc:25:42:90:e6: 23:80:3b:e9:41:96:00:5e:f7:74:1c:94:dc:8f:8f: 23:53:07:78:f9:46:60:9f:c5:18:f5:df:83:c2:ed: 5f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:93:5C:84:FB:11:47:FF:77:77:48:B6:89:4F:12:E0:4E:4C:6B:20 X509v3 Authority Key Identifier: keyid:B7:35:1B:05:B1:61:9E:9D:E3:95:F0:B2:FF:C9:EE:11:29:F3:00:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/4/B7351B05B1619E9DE395F0B2FFC9EE1129F300B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/4/3230332e372e3139372e302f32342d3234203d3e20313334303930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.7.197.0/24 Signature Algorithm: sha256WithRSAEncryption 30:75:33:43:86:bf:e5:26:df:06:f0:c4:fb:14:94:e1:e1:79: 13:94:ac:33:a0:9e:bb:53:d3:bc:9b:24:d7:a3:97:2e:ac:b5: 03:a1:bf:34:ea:46:ee:e3:8c:e5:21:9b:e7:09:70:9b:70:ec: 38:86:c0:7e:48:11:83:a3:92:f2:50:ea:ed:fc:af:67:fe:bf: 63:c7:70:2a:9e:db:11:11:85:3d:3f:db:0c:f1:a1:88:4b:2c: 2a:d7:5b:0e:7f:5e:06:2c:f0:cc:2a:6d:02:bc:6b:a6:72:77: 9c:dc:08:cb:95:89:36:6a:f2:82:f6:4d:9c:c1:21:a1:09:ee: 84:81:9e:b6:12:5d:f6:c5:40:a3:b6:46:5a:68:67:d2:12:89: cb:52:12:64:be:0b:f8:19:66:0b:59:da:c9:37:8c:7a:68:ef: 45:b9:6d:bd:b3:e3:54:bf:4c:d1:5a:88:e3:dc:38:91:12:11: 34:94:a8:a5:aa:db:45:9f:00:78:0f:5c:45:8b:ed:dc:f4:77: 9c:cc:68:06:3d:0d:65:9e:c9:3b:81:f4:82:5d:9f:3f:22:8c: 74:31:a3:34:48:14:9d:19:4f:16:5a:1d:25:00:ef:c7:ea:54: 20:1c:68:6a:b1:18:11:b7:38:c2:c8:b9:5f:2f:d6:da:65:a4: 66:2b:94:4c -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUORKRBPgkrfTbnahL/rW/6T/PUAkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTUzOUMwMDAwMTEwLwYDVQQFEyhCNzM1MUIwNUIx NjE5RTlERTM5NUYwQjJGRkM5RUUxMTI5RjMwMEI0MB4XDTI1MTAxMjAxNTEyOVoX DTI2MTAxMTAxNTYyOVowMzExMC8GA1UEAxMoNDQ5MzVDODRGQjExNDdGRjc3Nzc0 OEI2ODk0RjEyRTA0RTRDNkIyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIa+OXuFK038v+QPUVr/wRhHe/eIq+I3iAFrA9A/2V0fFEikQAvYtId+Cbp m0XhdqfmNGSSWDk1J1Ym7nt+fbrcH39pxOIa8+yz1H9+1aE/yssF6I8Z5o7G5++v /aM6Uv+3f4/VMEQZJ4JrvlrqA2Ckqc+qSsuNoeLe+vrtjM9YHTiR3jZPBaBvYH7c 73xalDlN2Ze2caZiyFbk0AzBVAaf+JuhN5n9X8Aj378rHSz/TpsJnrpTYwPEHSDQ yVIII33ZSti34SpkUTPcboveWJ95OrBj5WlQDZadsPwlQpDmI4A76UGWAF73dByU 3I+PI1MHePlGYJ/FGPXfg8LtXz8CAwEAAaOCAhEwggINMB0GA1UdDgQWBBREk1yE +xFH/3d3SLaJTxLgTkxrIDAfBgNVHSMEGDAWgBS3NRsFsWGeneOV8LL/ye4RKfMA tDAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvNC9CNzM1MUIw NUIxNjE5RTlERTM5NUYwQjJGRkM5RUUxMTI5RjMwMEI0LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi90elViQmJGaG5w M2psZkN5XzhudUVTbnpBTFEuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzQvMzIzMDMzMmUzNzJlMzEzOTM3MmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzEzMzM0MzAzOTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAywfFMA0GCSqGSIb3DQEBCwUAA4IB AQAwdTNDhr/lJt8G8MT7FJTh4XkTlKwzoJ67U9O8myTXo5curLUDob806kbu44zl IZvnCXCbcOw4hsB+SBGDo5LyUOrt/K9n/r9jx3AqntsREYU9P9sM8aGISywq11sO f14GLPDMKm0CvGumcnec3AjLlYk2avKC9k2cwSGhCe6EgZ62El32xUCjtkZaaGfS EonLUhJkvgv4GWYLWdrJN4x6aO9FuW29s+NUv0zRWojj3DiREhE0lKilqttFnwB4 D1xFi+3c9HeczGgGPQ1lnsk7gfSCXZ8/Iox0MaM0SBSdGU8WWh0lAO/H6lQgHGhq sRgRtzjCyLlfL9baZaRmK5RM -----END CERTIFICATE-----Generated at Mon Oct 20 16:09:35 2025 by rpki-client