$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133302e302f32342d3234203d3e20323133343034.roa File: 3130332e3233382e3133302e302f32342d3234203d3e20323133343034.roa (raw, json) Hash identifier: 0t7ldh54zvdsSveMZy06MhLdyjIZtHukNx1jlJgyUSE= Subject key identifier: D6:4B:A4:38:92:E4:23:B9:3B:80:41:89:EB:7B:7C:A5:58:35:6E:6F Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 5A38997CA5B710552C1F5144EB5AA7B2925DCBC3 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133302e302f32342d3234203d3e20323133343034.roa Signing time: Tue 12 Aug 2025 09:16:16 +0000 ROA not before: Tue 12 Aug 2025 09:11:16 +0000 ROA not after: Tue 11 Aug 2026 09:16:16 +0000 asID: 213404 IP address blocks: 103.238.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 12:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:38:99:7c:a5:b7:10:55:2c:1f:51:44:eb:5a:a7:b2:92:5d:cb:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Aug 12 09:11:16 2025 GMT Not After : Aug 11 09:16:16 2026 GMT Subject: CN=D64BA43892E423B93B804189EB7B7CA558356E6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8c:79:27:aa:db:1d:81:bd:51:3b:ee:41:42: c4:6f:a2:68:d3:13:9b:01:be:49:de:1c:11:1f:81: e5:4b:19:01:aa:83:a4:61:9f:d6:7e:6a:ac:ab:cf: c6:b2:e1:d0:8c:22:5b:c2:1f:9e:b9:b9:4c:c1:13: 8c:36:26:bf:39:48:f8:01:ba:56:d1:8a:37:df:c6: d3:ce:d2:27:25:d8:65:43:1f:fb:40:fd:80:5e:4f: 55:88:00:6f:60:25:25:66:0b:80:ec:ed:8b:b0:60: 0a:d0:2a:d7:5c:66:e0:a9:e5:9d:ae:de:42:ef:d7: b4:4a:b7:e9:8e:28:c9:1b:b5:4e:b2:f3:e7:c3:e3: 8d:7d:c8:00:a0:98:ea:5b:c8:e5:c2:c0:d9:29:6e: 6b:ed:e4:c8:22:51:12:e7:ec:b9:2f:27:b9:ce:60: 7f:f8:fd:6c:1f:7a:74:16:ba:e4:7d:89:3a:06:d2: aa:09:57:f6:fc:0c:7f:82:7f:da:79:87:6b:a9:74: 1e:5e:6f:94:5b:47:56:38:52:a3:41:c3:50:ca:ba: 62:32:23:56:46:7f:23:ec:2c:5b:68:26:2f:b6:66: 68:b7:f9:e2:59:60:2d:8b:f1:ab:ac:27:e6:a8:39: d4:5e:2c:f5:d6:1d:e2:c6:d1:d3:65:ec:69:96:2e: a9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:4B:A4:38:92:E4:23:B9:3B:80:41:89:EB:7B:7C:A5:58:35:6E:6F X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133302e302f32342d3234203d3e20323133343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.130.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:1d:d0:c3:89:2a:31:43:f9:a4:ec:36:6d:21:96:a1:a2:0d: 12:15:c0:61:02:38:70:2f:3a:9b:7a:72:79:91:f2:55:1f:ef: 3e:0f:84:f7:ab:0d:4d:2a:12:0a:c1:ac:85:64:27:91:40:09: 62:78:46:f8:ea:6a:68:cc:fe:bd:49:c8:e6:22:3f:c4:22:fc: eb:84:8e:97:37:8d:cc:3f:d4:56:fc:62:db:0c:3f:4a:cb:a2: 81:69:f1:dc:d1:38:68:cd:db:14:af:5b:b5:35:dc:43:71:d1: b3:4d:ac:27:0e:e9:d4:57:45:05:5e:e4:bf:49:7a:60:10:ef: e6:ed:15:08:2a:35:65:d9:d8:d4:2a:97:4c:03:5f:f5:13:71: 26:bb:1a:0d:46:31:da:b5:fa:1d:e1:b5:7c:24:fa:be:4e:c9: c6:46:6c:83:66:57:4b:38:38:1f:80:72:ce:e3:94:d1:b3:6b: c7:cc:5d:01:03:1f:cf:ce:16:1b:df:ac:21:4e:4d:9f:9d:c7: 16:e3:ef:85:cc:e3:a8:e2:07:b9:48:c4:2f:58:79:ab:b0:6c: 89:98:98:a0:41:c0:c5:d7:b0:23:d6:8f:18:e8:9c:a2:83:2b: 23:41:c5:ca:3d:39:6c:76:7d:92:67:be:25:82:de:83:c2:76: 26:ca:04:e3 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUWjiZfKW3EFUsH1FE61qnspJdy8MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MDgxMjA5MTExNloX DTI2MDgxMTA5MTYxNlowMzExMC8GA1UEAxMoRDY0QkE0Mzg5MkU0MjNCOTNCODA0 MTg5RUI3QjdDQTU1ODM1NkU2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmMeSeq2x2BvVE77kFCxG+iaNMTmwG+Sd4cER+B5UsZAaqDpGGf1n5qrKvP xrLh0IwiW8Ifnrm5TMETjDYmvzlI+AG6VtGKN9/G087SJyXYZUMf+0D9gF5PVYgA b2AlJWYLgOzti7BgCtAq11xm4Knlna7eQu/XtEq36Y4oyRu1TrLz58PjjX3IAKCY 6lvI5cLA2Slua+3kyCJREufsuS8nuc5gf/j9bB96dBa65H2JOgbSqglX9vwMf4J/ 2nmHa6l0Hl5vlFtHVjhSo0HDUMq6YjIjVkZ/I+wsW2gmL7ZmaLf54llgLYvxq6wn 5qg51F4s9dYd4sbR02XsaZYuqRcCAwEAAaOCAhcwggITMB0GA1UdDgQWBBTWS6Q4 kuQjuTuAQYnre3ylWDVubzAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGRBggrBgEFBQcBCwSBhDCBgTB/BggrBgEF BQcwC4ZzcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFB NjEzMTAwMDAvMC8zMTMwMzMyZTMyMzMzODJlMzEzMzMwMmUzMDJmMzIzNDJkMzIz NDIwM2QzZTIwMzIzMTMzMzQzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+6CMA0GCSqGSIb3DQEB CwUAA4IBAQCaHdDDiSoxQ/mk7DZtIZahog0SFcBhAjhwLzqbenJ5kfJVH+8+D4T3 qw1NKhIKwayFZCeRQAlieEb46mpozP69ScjmIj/EIvzrhI6XN43MP9RW/GLbDD9K y6KBafHc0ThozdsUr1u1NdxDcdGzTawnDunUV0UFXuS/SXpgEO/m7RUIKjVl2djU KpdMA1/1E3EmuxoNRjHatfod4bV8JPq+TsnGRmyDZldLODgfgHLO45TRs2vHzF0B Ax/PzhYb36whTk2fnccW4++FzOOo4ge5SMQvWHmrsGyJmJigQcDF17Aj1o8Y6Jyi gysjQcXKPTlsdn2SZ74lgt6DwnYmygTj -----END CERTIFICATE-----Generated at Sat Aug 23 21:32:28 2025 by rpki-client