$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/9/3230332e33312e3131312e302f32342d3234203d3e2039393133.roa File: 3230332e33312e3131312e302f32342d3234203d3e2039393133.roa (raw, json) Hash identifier: dtJRARG5+BtRZcmiFZ9zHEYQh6J1meTmlcz69DUCY8E= Subject key identifier: 8F:2A:D3:08:63:F2:C9:5A:D7:64:AC:DF:03:7B:DB:71:97:EF:A8:36 Certificate issuer: /CN=A919B0BE0000/serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Certificate serial: 24F75796E56C855085E9FEF6D896C81DC084FF3A Authority key identifier: 33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e33312e3131312e302f32342d3234203d3e2039393133.roa Signing time: Mon 20 Apr 2026 07:27:11 +0000 ROA not before: Mon 20 Apr 2026 07:22:11 +0000 ROA not after: Mon 19 Apr 2027 07:27:11 +0000 asID: 9913 IP address blocks: 203.31.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:f7:57:96:e5:6c:85:50:85:e9:fe:f6:d8:96:c8:1d:c0:84:ff:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0BE0000, serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Validity Not Before: Apr 20 07:22:11 2026 GMT Not After : Apr 19 07:27:11 2027 GMT Subject: CN=8F2AD30863F2C95AD764ACDF037BDB7197EFA836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5a:58:fb:ee:88:dc:10:e6:13:aa:71:aa:c7: 7a:45:ec:b5:50:d3:da:9c:7e:62:34:ea:fc:46:11: 83:a5:bd:70:12:c3:12:72:41:c2:3f:6f:35:26:b2: bb:d6:fd:84:d9:49:5f:c9:6a:de:4d:aa:6b:15:80: fa:bc:08:f8:86:c9:31:3d:51:cb:cb:00:e7:da:2a: 36:0e:33:80:3c:c1:67:f9:6a:0c:bb:92:42:70:42: 8b:aa:d3:c9:ae:07:14:af:cf:c7:34:bd:94:10:be: 92:6d:49:fe:00:3c:1d:eb:65:f6:b3:c5:cc:39:82: b5:0e:50:f3:9d:19:ad:e7:42:20:01:85:4b:b7:5f: 67:8e:9b:50:40:cd:c3:93:2c:82:ea:dd:99:df:46: 76:a4:5f:73:d4:72:4c:e7:9f:2d:1c:10:7f:64:5a: 7e:73:3d:72:a0:0b:7d:a8:68:08:a3:f1:4d:39:7d: 41:0e:0e:2d:2d:cd:d1:80:0b:95:6b:ab:62:76:66: 0e:ab:4c:23:9b:96:08:fc:98:2a:00:d3:cc:cc:a2: b1:8b:fc:8d:df:97:f7:ae:86:2d:74:cf:93:82:d6: e6:4a:3e:8e:58:27:b7:e1:fb:ff:3c:8b:10:5c:37: f2:34:38:da:0e:5b:92:26:ee:5d:2c:9f:a6:2a:ad: 29:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:2A:D3:08:63:F2:C9:5A:D7:64:AC:DF:03:7B:DB:71:97:EF:A8:36 X509v3 Authority Key Identifier: keyid:33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/3230332e33312e3131312e302f32342d3234203d3e2039393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.31.111.0/24 Signature Algorithm: sha256WithRSAEncryption 51:8e:4b:af:c1:56:17:92:f3:e5:80:e2:75:4c:de:c3:b5:57: f2:7e:56:84:e5:24:84:8d:dd:1f:b9:6d:6a:4e:b0:5e:49:8b: 34:be:78:72:7f:34:89:22:43:88:3a:82:65:02:b4:a0:76:05: 2f:07:f1:88:f5:45:6f:28:fa:ec:a7:13:bf:a5:61:da:0f:c3: d1:a0:a4:1e:01:d3:2c:33:81:fd:84:4e:08:99:a7:d3:2c:76: 6a:72:30:2e:ac:5f:9e:a2:75:b8:f7:8b:db:02:a4:9b:80:8e: d7:af:5f:e7:af:7f:47:da:4b:55:9d:a8:de:5d:25:cc:2b:f6: cf:bc:bf:13:be:3e:5c:45:1e:d2:8d:0c:f3:6e:06:8f:9b:35: 2d:91:28:66:e2:cb:af:90:2c:0d:08:5c:ee:e8:2c:b7:3b:ad: 5a:6c:b1:e9:6b:7d:fb:63:19:7f:a2:cd:7f:1c:3c:a7:6f:e4: 29:57:b3:c4:93:6f:cd:02:5b:b9:66:3d:a8:a7:77:bd:47:6b: 05:32:39:4e:fe:48:dd:d0:80:49:fa:52:98:02:b0:71:e3:2e: 3a:e8:6f:6b:54:a3:54:a2:11:ab:2d:a6:a2:3a:d0:b2:a5:ff: d1:cd:22:cf:43:e9:c9:4d:00:23:41:2d:5e:de:52:8f:3c:06: da:e0:38:66 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUJPdXluVshVCF6f722JbIHcCE/zowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOUIwQkUwMDAwMTEwLwYDVQQFEygzM0Y0MDgyMTY2 QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCMB4XDTI2MDQyMDA3MjIxMVoX DTI3MDQxOTA3MjcxMVowMzExMC8GA1UEAxMoOEYyQUQzMDg2M0YyQzk1QUQ3NjRB Q0RGMDM3QkRCNzE5N0VGQTgzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZaWPvuiNwQ5hOqcarHekXstVDT2px+YjTq/EYRg6W9cBLDEnJBwj9vNSay u9b9hNlJX8lq3k2qaxWA+rwI+IbJMT1Ry8sA59oqNg4zgDzBZ/lqDLuSQnBCi6rT ya4HFK/PxzS9lBC+km1J/gA8Hetl9rPFzDmCtQ5Q850ZredCIAGFS7dfZ46bUEDN w5Msgurdmd9GdqRfc9RyTOefLRwQf2RafnM9cqALfahoCKPxTTl9QQ4OLS3N0YAL lWurYnZmDqtMI5uWCPyYKgDTzMyisYv8jd+X966GLXTPk4LW5ko+jlgnt+H7/zyL EFw38jQ42g5bkibuXSyfpiqtKTMCAwEAAaOCAg8wggILMB0GA1UdDgQWBBSPKtMI Y/LJWtdkrN8De9txl++oNjAfBgNVHSMEGDAWgBQz9AghZqif/28yauCbRL++8WKf 6zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvOS8zM0Y0MDgy MTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NX1FJSVdhb25f OXZNbXJnbTBTX3Z2RmluLXMuY2VyMIGJBggrBgEFBQcBCwR9MHsweQYIKwYBBQUH MAuGbXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzkvMzIzMDMzMmUzMzMxMmUzMTMxMzEyZTMwMmYzMjM0MmQzMjM0MjAz ZDNlMjAzOTM5MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMsfbzANBgkqhkiG9w0BAQsFAAOCAQEA UY5Lr8FWF5Lz5YDidUzew7VX8n5WhOUkhI3dH7ltak6wXkmLNL54cn80iSJDiDqC ZQK0oHYFLwfxiPVFbyj67KcTv6Vh2g/D0aCkHgHTLDOB/YROCJmn0yx2anIwLqxf nqJ1uPeL2wKkm4CO169f569/R9pLVZ2o3l0lzCv2z7y/E74+XEUe0o0M824Gj5s1 LZEoZuLLr5AsDQhc7ugstzutWmyx6Wt9+2MZf6LNfxw8p2/kKVezxJNvzQJbuWY9 qKd3vUdrBTI5Tv5I3dCASfpSmAKwceMuOuhva1SjVKIRqy2mojrQsqX/0c0iz0Pp yU0AI0EtXt5SjzwG2uA4Zg== -----END CERTIFICATE-----Generated at Wed May 13 03:22:03 2026 by rpki-client