$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/9/3230322e31342e3134382e302f32342d3234203d3e2039393133.roa File: 3230322e31342e3134382e302f32342d3234203d3e2039393133.roa (raw, json) Hash identifier: jEqn8jELxuDQMwvht+ON+P9QmjrSbE+0mwwGAYlItGo= Subject key identifier: 8C:27:6E:A0:C6:87:01:26:14:27:02:80:80:14:77:B9:FC:AB:ED:BD Certificate issuer: /CN=A919B0BE0000/serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Certificate serial: 5096B8BC456C14751A19189C8C907AB5A9FCB7BC Authority key identifier: 33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230322e31342e3134382e302f32342d3234203d3e2039393133.roa Signing time: Mon 19 May 2025 06:53:06 +0000 ROA not before: Mon 19 May 2025 06:48:06 +0000 ROA not after: Mon 18 May 2026 06:53:06 +0000 asID: 9913 IP address blocks: 202.14.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 03:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:96:b8:bc:45:6c:14:75:1a:19:18:9c:8c:90:7a:b5:a9:fc:b7:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0BE0000, serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Validity Not Before: May 19 06:48:06 2025 GMT Not After : May 18 06:53:06 2026 GMT Subject: CN=8C276EA0C687012614270280801477B9FCABEDBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e2:d3:b4:92:19:4d:d1:af:02:a8:8e:1f:95: b1:bb:1e:b7:05:fc:22:3a:10:22:15:11:0a:be:ca: 60:33:f2:b9:e9:48:78:47:33:d4:6b:ba:8a:55:4a: fb:86:de:80:da:54:ed:fd:94:4b:6d:79:9d:d3:f5: 30:ec:1d:70:a8:05:d0:47:79:0d:38:06:7c:b0:a2: 7e:84:61:f8:16:7d:3e:45:c0:52:50:e2:1d:09:da: 52:f2:b8:a5:e1:65:31:f9:7b:4e:08:93:44:91:08: 58:b1:58:f1:50:e2:1f:93:37:b6:d8:ea:9f:84:85: 2e:10:e7:ff:aa:5b:08:66:40:1a:25:97:b6:ec:a2: cd:02:94:42:6d:c8:e0:ef:7b:94:fd:56:c7:59:e7: d8:bd:59:e5:a9:f9:27:17:be:7a:52:03:8b:f6:7b: cb:05:3e:ce:1a:98:c9:cb:ef:b4:e3:0f:43:62:2d: 4b:dd:8d:75:d8:76:b2:59:d0:39:45:0e:68:36:19: 58:db:98:58:07:c7:e1:55:ba:ab:59:3e:4b:73:4c: 80:66:12:82:3f:48:ac:4a:bd:e6:67:f8:42:85:9c: b6:b2:1a:a2:c0:3f:88:14:36:f0:76:83:bf:7a:0f: ac:b2:b3:52:b2:46:36:04:ee:11:e9:72:2e:f4:27: 4d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:27:6E:A0:C6:87:01:26:14:27:02:80:80:14:77:B9:FC:AB:ED:BD X509v3 Authority Key Identifier: keyid:33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230322e31342e3134382e302f32342d3234203d3e2039393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.14.148.0/24 Signature Algorithm: sha256WithRSAEncryption 75:d1:6f:3f:9f:ae:f9:ed:5f:19:33:2e:2d:35:c2:83:20:06: 58:b3:12:57:57:74:34:14:dd:e6:72:b7:6f:f2:38:65:ed:a3: e5:89:33:6b:8a:ff:26:3d:ba:09:b4:e9:47:94:4e:f8:93:a4: 74:53:b0:84:2e:b4:ac:58:58:90:2d:1e:2b:22:8e:6c:74:f0: 1b:39:dc:df:d5:3b:d2:6a:ad:d5:03:89:02:8b:ec:89:32:f3: 78:3a:fe:74:9c:5b:72:13:a8:1d:78:9c:1a:af:18:fa:3f:02: e9:5b:1d:c6:10:2b:34:6a:78:53:73:ab:e7:b9:f4:bf:5b:bb: 9a:32:62:89:39:9b:db:0f:aa:d1:c3:9e:a9:2f:4a:dc:3f:36: cb:1a:12:00:c7:f7:af:ad:4e:41:ba:8f:ca:a5:6c:47:0c:15: 34:f2:d6:9e:b0:63:d9:a3:38:84:e1:f1:a6:e6:9d:1a:06:75: 60:8f:10:a1:3e:59:fc:e2:93:fc:ca:11:25:a1:ba:3c:10:c9: 8b:f7:a2:84:8f:d0:7c:4a:20:b1:58:ec:5a:cd:35:73:aa:8c: ae:a1:bf:db:6f:a2:42:f9:c5:14:c8:10:67:37:52:d3:b7:fb: 27:d5:54:7d:6d:57:d4:06:c6:48:2e:db:f3:b7:03:f0:82:87: 02:d7:30:b6 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUUJa4vEVsFHUaGRicjJB6tan8t7wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOUIwQkUwMDAwMTEwLwYDVQQFEygzM0Y0MDgyMTY2 QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCMB4XDTI1MDUxOTA2NDgwNloX DTI2MDUxODA2NTMwNlowMzExMC8GA1UEAxMoOEMyNzZFQTBDNjg3MDEyNjE0Mjcw MjgwODAxNDc3QjlGQ0FCRURCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALzi07SSGU3RrwKojh+VsbsetwX8IjoQIhURCr7KYDPyuelIeEcz1Gu6ilVK +4begNpU7f2US215ndP1MOwdcKgF0Ed5DTgGfLCifoRh+BZ9PkXAUlDiHQnaUvK4 peFlMfl7TgiTRJEIWLFY8VDiH5M3ttjqn4SFLhDn/6pbCGZAGiWXtuyizQKUQm3I 4O97lP1Wx1nn2L1Z5an5Jxe+elIDi/Z7ywU+zhqYycvvtOMPQ2ItS92Nddh2slnQ OUUOaDYZWNuYWAfH4VW6q1k+S3NMgGYSgj9IrEq95mf4QoWctrIaosA/iBQ28HaD v3oPrLKzUrJGNgTuEelyLvQnTdECAwEAAaOCAg8wggILMB0GA1UdDgQWBBSMJ26g xocBJhQnAoCAFHe5/KvtvTAfBgNVHSMEGDAWgBQz9AghZqif/28yauCbRL++8WKf 6zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvOS8zM0Y0MDgy MTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NX1FJSVdhb25f OXZNbXJnbTBTX3Z2RmluLXMuY2VyMIGJBggrBgEFBQcBCwR9MHsweQYIKwYBBQUH MAuGbXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzkvMzIzMDMyMmUzMTM0MmUzMTM0MzgyZTMwMmYzMjM0MmQzMjM0MjAz ZDNlMjAzOTM5MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoOlDANBgkqhkiG9w0BAQsFAAOCAQEA ddFvP5+u+e1fGTMuLTXCgyAGWLMSV1d0NBTd5nK3b/I4Ze2j5Ykza4r/Jj26CbTp R5RO+JOkdFOwhC60rFhYkC0eKyKObHTwGznc39U70mqt1QOJAovsiTLzeDr+dJxb chOoHXicGq8Y+j8C6VsdxhArNGp4U3Or57n0v1u7mjJiiTmb2w+q0cOeqS9K3D82 yxoSAMf3r61OQbqPyqVsRwwVNPLWnrBj2aM4hOHxpuadGgZ1YI8QoT5Z/OKT/MoR JaG6PBDJi/eihI/QfEogsVjsWs01c6qMrqG/22+iQvnFFMgQZzdS07f7J9VUfW1X 1AbGSC7b87cD8IKHAtcwtg== -----END CERTIFICATE-----Generated at Fri Jul 4 00:49:31 2025 by rpki-client