$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/4/323430333a376530303a3a2f33322d3438203d3e2037353436.roa File: 323430333a376530303a3a2f33322d3438203d3e2037353436.roa (raw, json) Hash identifier: /tu1GLPgmx3L59lA9DS67uY00dm6i5Wm3Y/TLJzZPPI= Subject key identifier: 0A:56:D8:EE:47:F5:D7:F0:BC:76:17:2D:71:DF:9E:FF:BC:78:36:0A Certificate issuer: /CN=A91E539C0000/serialNumber=B7351B05B1619E9DE395F0B2FFC9EE1129F300B4 Certificate serial: 36A1D79B8BEB578240209041CC1BFCA42A87AF34 Authority key identifier: B7:35:1B:05:B1:61:9E:9D:E3:95:F0:B2:FF:C9:EE:11:29:F3:00:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/4/323430333a376530303a3a2f33322d3438203d3e2037353436.roa Signing time: Sun 05 Oct 2025 05:27:58 +0000 ROA not before: Sun 05 Oct 2025 05:22:58 +0000 ROA not after: Sun 04 Oct 2026 05:27:58 +0000 asID: 7546 IP address blocks: 2403:7e00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/4/B7351B05B1619E9DE395F0B2FFC9EE1129F300B4.crl rsync://rpki.sub.apnic.net/repository/A91905300000/4/B7351B05B1619E9DE395F0B2FFC9EE1129F300B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:a1:d7:9b:8b:eb:57:82:40:20:90:41:cc:1b:fc:a4:2a:87:af:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E539C0000, serialNumber=B7351B05B1619E9DE395F0B2FFC9EE1129F300B4 Validity Not Before: Oct 5 05:22:58 2025 GMT Not After : Oct 4 05:27:58 2026 GMT Subject: CN=0A56D8EE47F5D7F0BC76172D71DF9EFFBC78360A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:18:d2:0d:e2:f5:ff:b0:61:d0:ba:e5:9c:59: 22:79:a9:03:32:e8:4e:c0:d1:ba:aa:ce:16:a1:8f: d0:f4:de:93:f7:dd:d6:16:8f:ea:7b:ae:72:1a:fe: 67:8b:e4:b7:de:a9:b4:f5:0d:d3:cc:94:8c:b5:ae: ba:b0:df:55:85:60:2c:b5:73:bf:79:e1:e3:10:f3: 37:a8:40:86:b5:19:4e:70:9b:54:b3:9c:93:d4:c7: 6d:20:54:b3:88:20:5d:d2:7d:b3:99:d9:50:18:76: ad:0a:d6:ae:95:5b:ac:aa:c3:a5:3d:a4:35:ce:c6: c1:d1:b8:d6:03:7c:44:1a:3d:bd:e4:bc:e2:a3:fc: ee:b6:e9:4e:5a:28:da:3a:dc:1c:80:05:60:c9:c1: c9:79:27:7d:8e:49:1f:9e:57:7b:d8:37:2a:79:82: 70:84:a2:1f:c7:b9:b0:9e:b9:f9:03:59:90:0d:76: 8d:3c:6c:65:70:40:13:a2:d5:d4:28:53:42:67:f6: 2e:71:4a:06:e5:05:06:9c:db:f9:04:34:40:dd:1d: 49:11:58:a6:c4:9c:e5:50:33:dd:c3:25:6c:17:22: 3b:ef:aa:85:0a:eb:93:22:3b:26:c3:3a:78:0a:57: 16:6e:1a:56:a9:2b:54:fb:5a:c7:8b:38:3d:a9:93: e1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:56:D8:EE:47:F5:D7:F0:BC:76:17:2D:71:DF:9E:FF:BC:78:36:0A X509v3 Authority Key Identifier: keyid:B7:35:1B:05:B1:61:9E:9D:E3:95:F0:B2:FF:C9:EE:11:29:F3:00:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/4/B7351B05B1619E9DE395F0B2FFC9EE1129F300B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/4/323430333a376530303a3a2f33322d3438203d3e2037353436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:7e00::/32 Signature Algorithm: sha256WithRSAEncryption be:a8:67:5b:dc:04:5f:47:9e:b8:45:8d:1b:c5:6a:79:32:32: aa:58:59:0b:7f:cf:db:90:81:c6:ce:a7:22:d9:d3:dd:40:88: 31:e8:56:f9:20:76:3e:0a:7a:23:55:2f:cc:03:1b:03:ed:3d: 14:cb:ea:d0:94:b7:e3:f1:30:f7:a3:a1:d0:be:7e:9a:8d:45: de:b1:67:fc:0d:cd:cf:79:83:2c:0d:66:62:9d:b7:6f:51:51: 50:c9:dc:10:a0:d1:3a:92:e9:0d:fe:ff:81:ce:f9:bb:e5:1b: 49:11:ae:1d:b0:0d:56:7e:18:ca:25:44:8b:63:e3:e4:02:91: a8:f4:fb:04:48:a2:6a:16:2f:e1:1f:10:6d:e6:74:60:87:dd: b5:86:12:0a:0c:12:f8:7d:5e:33:8e:c5:84:9f:98:6a:a3:f9: af:ce:b2:94:51:7d:cc:98:43:db:d6:38:46:64:7f:c6:dd:0f: 2f:64:28:b4:b9:bf:b1:c5:ed:24:65:66:84:1c:28:3d:94:ef: 82:c8:c4:9b:26:45:c4:0c:af:a3:24:c2:bf:7f:a9:2c:6d:3e: aa:7e:55:b7:24:c1:b1:b0:f7:c3:d0:73:da:9b:ab:7f:c7:ca: 33:c1:1c:1b:5b:99:d8:27:1c:91:64:e7:25:2b:59:6c:3f:57: 95:18:5c:23 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgIUNqHXm4vrV4JAIJBBzBv8pCqHrzQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTUzOUMwMDAwMTEwLwYDVQQFEyhCNzM1MUIwNUIx NjE5RTlERTM5NUYwQjJGRkM5RUUxMTI5RjMwMEI0MB4XDTI1MTAwNTA1MjI1OFoX DTI2MTAwNDA1Mjc1OFowMzExMC8GA1UEAxMoMEE1NkQ4RUU0N0Y1RDdGMEJDNzYx NzJENzFERjlFRkZCQzc4MzYwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM0Y0g3i9f+wYdC65ZxZInmpAzLoTsDRuqrOFqGP0PTek/fd1haP6nuuchr+ Z4vkt96ptPUN08yUjLWuurDfVYVgLLVzv3nh4xDzN6hAhrUZTnCbVLOck9THbSBU s4ggXdJ9s5nZUBh2rQrWrpVbrKrDpT2kNc7GwdG41gN8RBo9veS84qP87rbpTloo 2jrcHIAFYMnByXknfY5JH55Xe9g3KnmCcISiH8e5sJ65+QNZkA12jTxsZXBAE6LV 1ChTQmf2LnFKBuUFBpzb+QQ0QN0dSRFYpsSc5VAz3cMlbBciO++qhQrrkyI7JsM6 eApXFm4aVqkrVPtax4s4PamT4ZsCAwEAAaOCAg4wggIKMB0GA1UdDgQWBBQKVtju R/XX8Lx2Fy1x357/vHg2CjAfBgNVHSMEGDAWgBS3NRsFsWGeneOV8LL/ye4RKfMA tDAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvNC9CNzM1MUIw NUIxNjE5RTlERTM5NUYwQjJGRkM5RUUxMTI5RjMwMEI0LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi90elViQmJGaG5w M2psZkN5XzhudUVTbnpBTFEuY2VyMIGHBggrBgEFBQcBCwR7MHkwdwYIKwYBBQUH MAuGa3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzQvMzIzNDMwMzMzYTM3NjUzMDMwM2EzYTJmMzMzMjJkMzQzODIwM2Qz ZTIwMzczNTM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYB BQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA34AMA0GCSqGSIb3DQEBCwUAA4IBAQC+ qGdb3ARfR564RY0bxWp5MjKqWFkLf8/bkIHGzqci2dPdQIgx6Fb5IHY+CnojVS/M AxsD7T0Uy+rQlLfj8TD3o6HQvn6ajUXesWf8Dc3PeYMsDWZinbdvUVFQydwQoNE6 kukN/v+Bzvm75RtJEa4dsA1WfhjKJUSLY+PkApGo9PsESKJqFi/hHxBt5nRgh921 hhIKDBL4fV4zjsWEn5hqo/mvzrKUUX3MmEPb1jhGZH/G3Q8vZCi0ub+xxe0kZWaE HCg9lO+CyMSbJkXEDK+jJMK/f6ksbT6qflW3JMGxsPfD0HPam6t/x8ozwRwbW5nY JxyRZOclK1lsP1eVGFwj -----END CERTIFICATE-----Generated at Mon Oct 20 05:38:16 2025 by rpki-client