$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/9/3230332e312e36382e302f32342d3234203d3e2039393133.roa File: 3230332e312e36382e302f32342d3234203d3e2039393133.roa (raw, json) Hash identifier: sf6xpmLBwwFxYc5zLhbA2o5zERE4ANPwwQpcoFqWw9Y= Subject key identifier: 74:59:AC:8F:9A:15:DE:35:B9:6D:96:2C:5A:26:B3:3F:06:C6:2A:55 Certificate issuer: /CN=A919B0BE0000/serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Certificate serial: 5D7363FB23607B28D59A1E6DE5EC55A5F69247E8 Authority key identifier: 33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e312e36382e302f32342d3234203d3e2039393133.roa Signing time: Mon 19 May 2025 06:51:26 +0000 ROA not before: Mon 19 May 2025 06:46:26 +0000 ROA not after: Mon 18 May 2026 06:51:26 +0000 asID: 9913 IP address blocks: 203.1.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 11:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:73:63:fb:23:60:7b:28:d5:9a:1e:6d:e5:ec:55:a5:f6:92:47:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0BE0000, serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Validity Not Before: May 19 06:46:26 2025 GMT Not After : May 18 06:51:26 2026 GMT Subject: CN=7459AC8F9A15DE35B96D962C5A26B33F06C62A55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a4:6a:7b:d1:a1:43:d8:7e:34:5f:9b:14:a0: 74:ae:63:04:0a:8a:43:51:36:ad:86:3c:34:ad:1a: 1b:24:30:7c:39:3e:41:e0:43:f2:cf:6c:0b:09:0b: f0:db:ee:7d:0e:b4:5e:58:96:e9:02:3d:2e:b3:64: 8d:cd:8e:9a:38:6e:b1:f8:06:6e:76:df:85:63:58: 72:a9:43:2d:79:99:87:90:7d:e1:a8:d8:8e:af:f4: 4f:93:85:c5:5f:f7:8f:8a:6e:49:4a:e6:ec:03:ba: 56:6c:77:a3:48:56:fd:34:f0:93:d6:e4:d8:54:45: c4:8e:29:da:0c:7c:f2:4e:08:f0:94:08:09:c5:7f: bd:74:1a:f4:0b:fc:ba:53:5a:5c:06:42:b9:f5:5d: 57:09:08:53:e6:71:14:7b:57:db:d8:6e:16:ef:38: f6:ed:e9:cd:88:a1:09:8c:83:b7:22:25:95:da:83: 49:35:15:0b:65:28:8d:68:ec:80:be:f6:b7:2a:aa: e7:be:94:8c:19:03:76:5e:43:fc:87:bb:d0:36:f2: 87:2d:f2:63:f9:d7:8f:dc:22:a5:a5:c5:56:cb:43: 92:0f:2a:a1:5b:77:4d:a9:58:af:94:32:e3:e3:f7: d6:76:0a:2a:a0:bf:e1:f8:a0:6f:1f:fd:31:80:30: 3a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:59:AC:8F:9A:15:DE:35:B9:6D:96:2C:5A:26:B3:3F:06:C6:2A:55 X509v3 Authority Key Identifier: keyid:33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e312e36382e302f32342d3234203d3e2039393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.1.68.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:92:da:4d:58:f7:14:ef:df:88:7a:fd:07:db:17:74:db:87: 24:80:80:17:e2:05:e3:08:a4:1a:64:65:e6:39:ff:67:f7:9a: 83:7b:ed:67:6d:36:3e:ef:d9:36:d7:dc:f9:a7:01:29:16:10: ca:12:d4:5d:ba:7c:06:99:d9:57:8a:32:ed:93:be:32:eb:92: 82:cc:d4:76:b2:fe:1a:86:c1:4f:f7:c3:87:89:c2:9c:be:0a: de:76:11:a0:95:0a:05:7d:da:1b:22:f0:f3:43:66:33:fc:3d: 12:3d:e7:9f:e2:72:bc:d1:5e:c3:31:97:e9:b5:2d:0f:7b:2f: 20:ac:da:79:34:fe:a2:e5:7c:7c:a7:64:f9:c1:50:67:df:ed: 82:81:04:7e:e3:c7:d6:27:21:63:2a:fa:d1:33:1d:d7:c3:38: 19:aa:8b:93:4c:c4:18:23:89:01:d0:b3:ae:1c:8c:c4:08:c2: 3b:a0:64:d4:77:ea:50:68:e6:18:1b:e5:1e:93:92:c9:30:a3: 80:10:77:40:eb:80:bf:84:13:42:22:96:cb:2b:11:6a:cb:0b: 64:e5:bc:bd:00:c6:60:4c:51:54:95:c0:f4:7f:e1:b2:5e:ab: e0:5d:be:bf:ad:60:87:7d:0c:ea:3a:ef:ea:c3:4a:8c:bb:0a: f5:44:4d:1b -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUXXNj+yNgeyjVmh5t5exVpfaSR+gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOUIwQkUwMDAwMTEwLwYDVQQFEygzM0Y0MDgyMTY2 QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCMB4XDTI1MDUxOTA2NDYyNloX DTI2MDUxODA2NTEyNlowMzExMC8GA1UEAxMoNzQ1OUFDOEY5QTE1REUzNUI5NkQ5 NjJDNUEyNkIzM0YwNkM2MkE1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMukanvRoUPYfjRfmxSgdK5jBAqKQ1E2rYY8NK0aGyQwfDk+QeBD8s9sCwkL 8NvufQ60XliW6QI9LrNkjc2OmjhusfgGbnbfhWNYcqlDLXmZh5B94ajYjq/0T5OF xV/3j4puSUrm7AO6Vmx3o0hW/TTwk9bk2FRFxI4p2gx88k4I8JQICcV/vXQa9Av8 ulNaXAZCufVdVwkIU+ZxFHtX29huFu849u3pzYihCYyDtyIlldqDSTUVC2UojWjs gL72tyqq576UjBkDdl5D/Ie70Dbyhy3yY/nXj9wipaXFVstDkg8qoVt3TalYr5Qy 4+P31nYKKqC/4figbx/9MYAwOv0CAwEAAaOCAgswggIHMB0GA1UdDgQWBBR0WayP mhXeNbltlixaJrM/BsYqVTAfBgNVHSMEGDAWgBQz9AghZqif/28yauCbRL++8WKf 6zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvOS8zM0Y0MDgy MTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NX1FJSVdhb25f OXZNbXJnbTBTX3Z2RmluLXMuY2VyMIGFBggrBgEFBQcBCwR5MHcwdQYIKwYBBQUH MAuGaXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzkvMzIzMDMzMmUzMTJlMzYzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2Uy MDM5MzkzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAywFEMA0GCSqGSIb3DQEBCwUAA4IBAQB/ktpN WPcU79+Iev0H2xd024ckgIAX4gXjCKQaZGXmOf9n95qDe+1nbTY+79k219z5pwEp FhDKEtRdunwGmdlXijLtk74y65KCzNR2sv4ahsFP98OHicKcvgredhGglQoFfdob IvDzQ2Yz/D0SPeef4nK80V7DMZfptS0Pey8grNp5NP6i5Xx8p2T5wVBn3+2CgQR+ 48fWJyFjKvrRMx3XwzgZqouTTMQYI4kB0LOuHIzECMI7oGTUd+pQaOYYG+Uek5LJ MKOAEHdA64C/hBNCIpbLKxFqywtk5by9AMZgTFFUlcD0f+GyXqvgXb6/rWCHfQzq Ou/qw0qMuwr1RE0b -----END CERTIFICATE-----Generated at Tue Oct 21 00:09:38 2025 by rpki-client