$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/9/3230332e312e36382e302f32342d3234203d3e2039393133.roa File: 3230332e312e36382e302f32342d3234203d3e2039393133.roa (raw, json) Hash identifier: i4MOXpZ+JJO1Ou/5KA98cmmyul9itGAIk/VXC8WVFIw= Subject key identifier: 43:C2:FE:A2:CE:4B:44:C5:47:8E:76:E2:DA:30:51:E8:96:CD:78:F3 Certificate issuer: /CN=A919B0BE0000/serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Certificate serial: 4A8976CBF48ED87C60C0E39BA4ADE153B668F732 Authority key identifier: 33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e312e36382e302f32342d3234203d3e2039393133.roa Signing time: Mon 20 Apr 2026 07:27:12 +0000 ROA not before: Mon 20 Apr 2026 07:22:12 +0000 ROA not after: Mon 19 Apr 2027 07:27:12 +0000 asID: 9913 IP address blocks: 203.1.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:89:76:cb:f4:8e:d8:7c:60:c0:e3:9b:a4:ad:e1:53:b6:68:f7:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0BE0000, serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Validity Not Before: Apr 20 07:22:12 2026 GMT Not After : Apr 19 07:27:12 2027 GMT Subject: CN=43C2FEA2CE4B44C5478E76E2DA3051E896CD78F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:74:12:41:4b:70:14:14:05:32:4e:8c:20:b0: 36:d9:e8:50:49:03:38:e4:ca:b0:7a:33:21:22:0e: 60:ed:44:93:0c:ad:b1:bf:2a:87:e8:80:96:7b:44: 04:68:49:c8:5f:74:50:97:01:f2:8c:33:d8:6d:23: de:7f:17:ab:a0:d2:b2:06:5d:7a:d6:02:75:3b:5e: 13:fb:88:0a:5d:b2:8a:80:c8:0e:c7:5a:ee:c9:aa: 8b:38:f8:04:36:67:c5:85:d8:1b:9a:0a:1c:b1:39: 12:36:30:50:bb:97:7c:89:85:2f:ac:a7:13:8e:57: d3:f2:78:df:f2:41:af:a4:94:e3:ba:15:a1:cf:23: db:ce:6e:0a:4a:07:0f:bc:da:74:b5:14:50:cc:50: 9b:52:bf:b1:2a:7d:a1:de:e1:08:ce:ae:46:3a:c7: 8c:3a:18:f8:b0:b4:da:c7:38:b4:9b:cd:12:e3:1d: 24:9e:5c:2e:5b:5a:1d:c7:dd:71:e1:00:2f:bf:de: 03:07:59:92:f9:f3:0a:4c:a5:e2:c7:2f:64:01:88: d4:ac:45:60:e5:fd:99:c0:a3:98:f1:36:61:fe:bc: 15:d3:0e:f0:22:6a:e1:7e:91:d2:17:4c:75:7b:8e: 55:64:db:28:32:c3:0e:10:66:0d:da:a5:56:51:f7: 39:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C2:FE:A2:CE:4B:44:C5:47:8E:76:E2:DA:30:51:E8:96:CD:78:F3 X509v3 Authority Key Identifier: keyid:33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e312e36382e302f32342d3234203d3e2039393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.1.68.0/24 Signature Algorithm: sha256WithRSAEncryption 71:2d:fb:d8:a1:39:45:07:47:d4:ad:e3:fa:b7:54:96:bd:38: b0:fe:f7:51:75:9f:82:e3:b3:fe:e7:08:c8:e2:36:30:47:74: 75:a8:7e:37:2b:30:90:63:aa:0c:4d:c5:c1:11:f4:6e:99:e9: 9c:71:7b:d0:0a:66:b6:c6:43:22:d6:1b:57:b8:91:38:ac:a7: 99:ac:b9:df:12:dc:d2:88:a0:a4:9b:f7:d8:04:96:13:18:92: 23:e8:8e:f4:b5:25:66:5a:42:a4:3e:6b:b7:f3:71:cf:fe:f1: 53:33:d5:6b:0f:3d:64:24:8b:b2:ed:a7:65:aa:3b:c7:09:98: 2d:50:87:a5:27:be:ce:d8:25:a0:b9:fd:f3:51:c4:82:83:67: fb:f7:26:5b:30:0f:4d:e7:ea:41:3e:00:ef:0c:bf:ad:5b:73: 43:b2:76:e9:9b:03:17:69:c6:a1:88:bb:a3:62:8e:7d:54:8d: 12:f7:12:de:aa:40:09:fd:df:a0:be:b7:ce:6b:4d:42:af:11: cc:0f:cd:48:ea:59:f2:76:e6:c1:40:55:99:3b:cb:cd:ec:bf: dc:21:4d:2f:01:7a:11:99:96:24:e8:62:bb:3c:76:37:b4:da: f4:07:59:25:9e:5f:ee:22:71:a0:75:26:d7:b2:ef:19:78:54: c4:9a:10:8e -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUSol2y/SO2HxgwOObpK3hU7Zo9zIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOUIwQkUwMDAwMTEwLwYDVQQFEygzM0Y0MDgyMTY2 QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCMB4XDTI2MDQyMDA3MjIxMloX DTI3MDQxOTA3MjcxMlowMzExMC8GA1UEAxMoNDNDMkZFQTJDRTRCNDRDNTQ3OEU3 NkUyREEzMDUxRTg5NkNENzhGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKN0EkFLcBQUBTJOjCCwNtnoUEkDOOTKsHozISIOYO1Ekwytsb8qh+iAlntE BGhJyF90UJcB8owz2G0j3n8Xq6DSsgZdetYCdTteE/uICl2yioDIDsda7smqizj4 BDZnxYXYG5oKHLE5EjYwULuXfImFL6ynE45X0/J43/JBr6SU47oVoc8j285uCkoH D7zadLUUUMxQm1K/sSp9od7hCM6uRjrHjDoY+LC02sc4tJvNEuMdJJ5cLltaHcfd ceEAL7/eAwdZkvnzCkyl4scvZAGI1KxFYOX9mcCjmPE2Yf68FdMO8CJq4X6R0hdM dXuOVWTbKDLDDhBmDdqlVlH3OZsCAwEAAaOCAgswggIHMB0GA1UdDgQWBBRDwv6i zktExUeOduLaMFHols148zAfBgNVHSMEGDAWgBQz9AghZqif/28yauCbRL++8WKf 6zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvOS8zM0Y0MDgy MTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NX1FJSVdhb25f OXZNbXJnbTBTX3Z2RmluLXMuY2VyMIGFBggrBgEFBQcBCwR5MHcwdQYIKwYBBQUH MAuGaXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzkvMzIzMDMzMmUzMTJlMzYzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2Uy MDM5MzkzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAywFEMA0GCSqGSIb3DQEBCwUAA4IBAQBxLfvY oTlFB0fUreP6t1SWvTiw/vdRdZ+C47P+5wjI4jYwR3R1qH43KzCQY6oMTcXBEfRu memccXvQCma2xkMi1htXuJE4rKeZrLnfEtzSiKCkm/fYBJYTGJIj6I70tSVmWkKk Pmu383HP/vFTM9VrDz1kJIuy7adlqjvHCZgtUIelJ77O2CWguf3zUcSCg2f79yZb MA9N5+pBPgDvDL+tW3NDsnbpmwMXacahiLujYo59VI0S9xLeqkAJ/d+gvrfOa01C rxHMD81I6lnydubBQFWZO8vN7L/cIU0vAXoRmZYk6GK7PHY3tNr0B1klnl/uInGg dSbXsu8ZeFTEmhCO -----END CERTIFICATE-----Generated at Wed May 13 03:36:08 2026 by rpki-client