$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e20383334.roa File: 3130332e3233382e3133312e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: uR6J+wDhHW6iJWcjlS3D/NgdsRX/KCHSv/gczr3BqWU= Subject key identifier: 2B:33:84:5D:E6:CB:8D:C0:C5:8E:D0:81:25:C9:29:63:95:F8:92:63 Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 4679AECDE8FCE73E49AEED9F5D24D8C1BDE3CC76 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e20383334.roa Signing time: Tue 12 Aug 2025 09:18:57 +0000 ROA not before: Tue 12 Aug 2025 09:13:57 +0000 ROA not after: Tue 11 Aug 2026 09:18:57 +0000 asID: 834 IP address blocks: 103.238.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 18:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:79:ae:cd:e8:fc:e7:3e:49:ae:ed:9f:5d:24:d8:c1:bd:e3:cc:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Aug 12 09:13:57 2025 GMT Not After : Aug 11 09:18:57 2026 GMT Subject: CN=2B33845DE6CB8DC0C58ED08125C9296395F89263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:94:01:ed:de:42:0a:7d:1c:f1:e0:e2:66:06: c6:79:ce:20:46:50:cc:4c:2e:7f:1f:a0:1e:9e:ef: 7b:f5:57:64:3b:f5:ae:de:99:60:60:32:ff:50:2a: f8:ed:21:e0:55:25:b6:53:5f:b4:10:40:86:bb:b5: d6:4d:fb:2b:89:f2:0c:cf:47:4b:3c:87:d4:de:4b: 8e:6e:b4:a6:13:71:21:3f:6e:88:4c:ae:4a:f6:73: d6:62:40:8c:7f:90:9f:cd:f0:ca:b0:c7:b0:20:07: 87:94:6f:0e:3b:ae:8a:db:fc:04:8e:ff:c0:68:1f: 81:2e:b6:82:b9:ec:02:98:57:ac:dd:31:c1:9f:60: 23:45:52:80:0c:91:15:86:b8:00:e4:7f:05:7d:9e: 68:df:6a:e8:10:38:d3:e6:af:35:ce:19:fc:82:73: 38:91:7d:84:f4:72:14:f5:3a:48:6a:8a:68:d4:1d: db:2b:49:82:f2:30:3d:78:1b:2a:43:39:4d:a9:db: a1:46:da:13:c6:b6:0f:82:06:ba:3f:0f:3a:84:d7: dd:2a:73:3d:c3:f6:19:08:12:24:32:d6:dc:32:cb: 84:a0:09:22:ad:29:b2:29:05:d7:95:82:26:0c:e2: 82:96:77:63:f2:ba:65:28:a2:ea:98:dc:7e:ea:63: 83:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:33:84:5D:E6:CB:8D:C0:C5:8E:D0:81:25:C9:29:63:95:F8:92:63 X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.131.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:d8:95:a9:91:00:e1:1e:2d:0a:63:7b:e5:27:05:12:d4:87: bd:e0:ed:29:1d:19:d2:67:54:e2:45:e1:bd:85:14:43:2c:f8: 3b:cf:36:27:64:dc:bb:95:bb:0c:62:d2:6c:6b:99:f2:f6:68: c3:d9:96:c9:f7:a3:2e:e3:39:a9:7c:9f:05:a1:e9:b4:11:d7: 44:da:04:cd:16:11:1a:ea:9d:0f:01:ef:fe:e1:d5:58:ff:dd: 58:ba:cf:ea:89:fd:ee:b3:30:05:01:06:ec:11:f7:66:62:8e: f5:74:79:c7:79:df:aa:6f:17:c3:26:cd:52:72:5b:53:a6:5e: e1:28:69:78:c0:a8:f2:ee:e3:b4:89:a3:16:0e:64:dc:c6:e3: 99:6b:c6:57:98:6c:2c:17:0b:65:fa:9f:b0:36:8b:04:31:5d: db:33:07:b3:79:2a:3a:52:fe:bb:2e:30:92:49:be:d5:69:77: e3:68:43:69:30:e7:2f:5c:24:ac:15:59:6c:dc:f8:ed:12:9e: f1:d9:85:79:70:b6:15:c2:62:1f:b4:53:b4:2c:c8:37:32:90: 37:21:60:a2:d7:22:71:82:9d:00:49:98:43:75:50:89:b4:aa: a5:07:95:5a:1c:68:70:52:83:4b:28:e7:ea:f0:0e:28:63:ed: 9f:39:1b:bf -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIURnmuzej85z5Jru2fXSTYwb3jzHYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MDgxMjA5MTM1N1oX DTI2MDgxMTA5MTg1N1owMzExMC8GA1UEAxMoMkIzMzg0NURFNkNCOERDMEM1OEVE MDgxMjVDOTI5NjM5NUY4OTI2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJGUAe3eQgp9HPHg4mYGxnnOIEZQzEwufx+gHp7ve/VXZDv1rt6ZYGAy/1Aq +O0h4FUltlNftBBAhru11k37K4nyDM9HSzyH1N5Ljm60phNxIT9uiEyuSvZz1mJA jH+Qn83wyrDHsCAHh5RvDjuuitv8BI7/wGgfgS62grnsAphXrN0xwZ9gI0VSgAyR FYa4AOR/BX2eaN9q6BA40+avNc4Z/IJzOJF9hPRyFPU6SGqKaNQd2ytJgvIwPXgb KkM5TanboUbaE8a2D4IGuj8POoTX3SpzPcP2GQgSJDLW3DLLhKAJIq0psikF15WC JgzigpZ3Y/K6ZSii6pjcfupjgw8CAwEAAaOCAg8wggILMB0GA1UdDgQWBBQrM4Rd 5suNwMWO0IElySljlfiSYzAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGJBggrBgEFBQcBCwR9MHsweQYIKwYBBQUH MAuGbXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxQTYx MzEwMDAwLzAvMzEzMDMzMmUzMjMzMzgyZTMxMzMzMTJlMzAyZjMyMzQyZDMyMzQy MDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfugzANBgkqhkiG9w0BAQsFAAOCAQEA i9iVqZEA4R4tCmN75ScFEtSHveDtKR0Z0mdU4kXhvYUUQyz4O882J2Tcu5W7DGLS bGuZ8vZow9mWyfejLuM5qXyfBaHptBHXRNoEzRYRGuqdDwHv/uHVWP/dWLrP6on9 7rMwBQEG7BH3ZmKO9XR5x3nfqm8XwybNUnJbU6Ze4ShpeMCo8u7jtImjFg5k3Mbj mWvGV5hsLBcLZfqfsDaLBDFd2zMHs3kqOlL+uy4wkkm+1Wl342hDaTDnL1wkrBVZ bNz47RKe8dmFeXC2FcJiH7RTtCzINzKQNyFgotcicYKdAEmYQ3VQibSqpQeVWhxo cFKDSyjn6vAOKGPtnzkbvw== -----END CERTIFICATE-----Generated at Sat Aug 23 09:09:52 2025 by rpki-client