$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/9/3230332e302e38302e302f32342d3234203d3e2039393133.roa File: 3230332e302e38302e302f32342d3234203d3e2039393133.roa (raw, json) Hash identifier: R7Xxtkh+I8I5SM+RNqD6t39Ei7w+LcPfWR//Yn+T4e4= Subject key identifier: C4:B4:F1:FD:A2:65:21:70:6E:5B:5E:32:49:63:E8:13:29:10:18:87 Certificate issuer: /CN=A919B0BE0000/serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Certificate serial: 5BC7C5E07AD1C288234E066B222E8E2D39C37921 Authority key identifier: 33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e302e38302e302f32342d3234203d3e2039393133.roa Signing time: Mon 20 Apr 2026 07:27:11 +0000 ROA not before: Mon 20 Apr 2026 07:22:11 +0000 ROA not after: Mon 19 Apr 2027 07:27:11 +0000 asID: 9913 IP address blocks: 203.0.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:c7:c5:e0:7a:d1:c2:88:23:4e:06:6b:22:2e:8e:2d:39:c3:79:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0BE0000, serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Validity Not Before: Apr 20 07:22:11 2026 GMT Not After : Apr 19 07:27:11 2027 GMT Subject: CN=C4B4F1FDA26521706E5B5E324963E81329101887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:38:13:5d:8f:0c:d6:5b:02:ce:41:57:4b: 22:32:b9:26:28:f1:dd:59:b1:ce:64:7c:55:6f:5d: b6:c7:95:96:09:50:28:03:9f:5d:10:a3:52:cc:8f: 79:9f:89:52:91:1f:46:1a:04:a8:12:64:96:8f:43: d5:5c:7b:eb:72:d8:ba:7c:58:5e:f3:4c:3f:69:82: 00:a8:8a:d3:33:58:09:0b:13:4e:85:8b:10:12:4b: bc:94:e9:45:52:7c:f1:62:ff:7a:8d:b5:53:67:b9: f8:6d:28:a4:3f:2c:32:86:c1:0d:b3:8c:ba:99:1b: de:fa:6a:a2:d7:6b:e7:07:75:e2:d5:c0:10:02:0f: 23:de:b9:99:e1:a8:17:14:f8:89:99:bf:6f:43:b7: a6:54:16:51:ec:77:dd:4a:6d:19:6c:f7:e8:25:fe: f2:6e:64:12:65:56:e4:80:ed:55:57:93:26:c1:10: ea:78:c2:24:29:a0:8c:4e:99:f7:0d:93:69:8d:98: 2f:32:35:b7:e0:b2:bd:ae:39:04:3c:76:76:f7:65: ed:13:1d:be:bb:8a:d6:5a:b4:ba:9d:f5:c8:65:70: 65:1a:25:b2:7d:1e:02:1d:24:3b:b0:f4:f6:aa:b6: 41:cd:c9:29:77:3d:47:17:02:26:35:68:a9:95:cf: 2d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B4:F1:FD:A2:65:21:70:6E:5B:5E:32:49:63:E8:13:29:10:18:87 X509v3 Authority Key Identifier: keyid:33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e302e38302e302f32342d3234203d3e2039393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.0.80.0/24 Signature Algorithm: sha256WithRSAEncryption 66:90:64:92:14:1b:32:83:23:77:1c:ca:35:fb:73:0f:1a:29: cb:73:ee:e5:c3:5b:fb:89:54:d2:45:fb:2a:41:95:f6:67:ed: 9f:4a:33:01:a2:b2:b4:16:7e:f1:5b:b8:c7:72:69:9f:54:f0: 5a:36:b0:66:a5:83:b0:19:0b:7d:7b:84:ff:29:c8:f8:65:f0: 01:6f:24:da:c8:f3:96:1f:aa:1e:13:2b:fd:68:a0:ed:25:19: 7e:5d:01:57:38:68:c5:cd:eb:c0:6c:df:97:28:54:57:40:bd: f7:a2:d7:ce:6c:61:de:df:fe:50:95:a7:9f:3d:b7:43:2c:8f: 6c:8b:0f:3d:d6:d3:6a:c7:8c:28:07:b2:be:d4:21:30:be:b4: 21:fb:83:54:f3:cf:7d:13:73:b4:6d:e9:d2:75:05:c7:35:83: f5:55:af:20:33:5d:b0:c1:27:4d:42:6b:a7:64:60:7e:14:5e: 55:cd:d0:d4:24:61:46:c7:df:b2:d4:6a:e8:c4:8d:bf:4a:4a: ba:b7:74:2c:49:67:7b:06:15:cc:d8:b1:6b:50:b9:c6:c8:a3: a2:40:1d:bf:84:ce:20:55:bd:11:de:34:4d:65:a6:9f:32:29: b9:34:7f:98:24:7b:7f:bd:fb:19:4e:15:dc:15:df:46:2e:61: d1:47:df:d6 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUW8fF4HrRwogjTgZrIi6OLTnDeSEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOUIwQkUwMDAwMTEwLwYDVQQFEygzM0Y0MDgyMTY2 QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCMB4XDTI2MDQyMDA3MjIxMVoX DTI3MDQxOTA3MjcxMVowMzExMC8GA1UEAxMoQzRCNEYxRkRBMjY1MjE3MDZFNUI1 RTMyNDk2M0U4MTMyOTEwMTg4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMbVOBNdjwzWWwLOQVdLIjK5Jijx3VmxzmR8VW9dtseVlglQKAOfXRCjUsyP eZ+JUpEfRhoEqBJklo9D1Vx763LYunxYXvNMP2mCAKiK0zNYCQsTToWLEBJLvJTp RVJ88WL/eo21U2e5+G0opD8sMobBDbOMupkb3vpqotdr5wd14tXAEAIPI965meGo FxT4iZm/b0O3plQWUex33UptGWz36CX+8m5kEmVW5IDtVVeTJsEQ6njCJCmgjE6Z 9w2TaY2YLzI1t+Cyva45BDx2dvdl7RMdvruK1lq0up31yGVwZRolsn0eAh0kO7D0 9qq2Qc3JKXc9RxcCJjVoqZXPLWkCAwEAAaOCAgswggIHMB0GA1UdDgQWBBTEtPH9 omUhcG5bXjJJY+gTKRAYhzAfBgNVHSMEGDAWgBQz9AghZqif/28yauCbRL++8WKf 6zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvOS8zM0Y0MDgy MTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NX1FJSVdhb25f OXZNbXJnbTBTX3Z2RmluLXMuY2VyMIGFBggrBgEFBQcBCwR5MHcwdQYIKwYBBQUH MAuGaXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzkvMzIzMDMzMmUzMDJlMzgzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2Uy MDM5MzkzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAywBQMA0GCSqGSIb3DQEBCwUAA4IBAQBmkGSS FBsygyN3HMo1+3MPGinLc+7lw1v7iVTSRfsqQZX2Z+2fSjMBorK0Fn7xW7jHcmmf VPBaNrBmpYOwGQt9e4T/Kcj4ZfABbyTayPOWH6oeEyv9aKDtJRl+XQFXOGjFzevA bN+XKFRXQL33otfObGHe3/5QlaefPbdDLI9siw891tNqx4woB7K+1CEwvrQh+4NU 8899E3O0benSdQXHNYP1Va8gM12wwSdNQmunZGB+FF5VzdDUJGFGx9+y1GroxI2/ Skq6t3QsSWd7BhXM2LFrULnGyKOiQB2/hM4gVb0R3jRNZaafMim5NH+YJHt/vfsZ ThXcFd9GLmHRR9/W -----END CERTIFICATE-----Generated at Wed May 13 03:36:03 2026 by rpki-client