$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38302e302f32342d3234203d3e20323134373636.roa File: 34332e3235352e38302e302f32342d3234203d3e20323134373636.roa (raw, json) Hash identifier: R06pByin/m/phSrNQN6fLr1e43axG1JDp2GOwtmPcDQ= Subject key identifier: 8D:A9:D9:52:EC:4F:86:E6:C3:BC:11:16:CF:78:68:DD:CF:A0:C5:9F Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 3F9458A88FA69174A6D2E0C733DC73C99050C0A2 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38302e302f32342d3234203d3e20323134373636.roa Signing time: Sun 14 Sep 2025 11:29:20 +0000 ROA not before: Sun 14 Sep 2025 11:24:20 +0000 ROA not after: Sun 13 Sep 2026 11:29:20 +0000 asID: 214766 IP address blocks: 43.255.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 08:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:94:58:a8:8f:a6:91:74:a6:d2:e0:c7:33:dc:73:c9:90:50:c0:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Sep 14 11:24:20 2025 GMT Not After : Sep 13 11:29:20 2026 GMT Subject: CN=8DA9D952EC4F86E6C3BC1116CF7868DDCFA0C59F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:06:5a:e9:83:f5:82:ce:2c:60:98:db:1d:68: 86:c7:9f:a6:47:c7:f0:48:af:7e:bb:f7:5d:f2:d0: 61:e9:26:34:d0:6f:23:14:5d:29:22:39:d7:38:71: d1:a3:1f:2a:06:b5:ee:ad:06:4a:16:89:62:56:52: 30:8a:f6:4f:ea:95:fe:74:66:7a:10:40:c7:25:62: 30:bc:8f:7a:39:48:81:cb:54:97:2e:0b:48:ea:e6: b5:9a:8a:29:2b:5c:24:76:95:91:f1:99:d8:d9:14: f9:fa:e5:8b:2d:01:91:f0:13:56:45:f2:d4:d8:b0: eb:60:b8:ea:8d:8e:2f:11:4f:61:c6:e0:6d:14:07: 8e:a9:8b:03:19:c3:e3:13:83:27:80:47:5c:9b:0a: ce:45:e6:1e:19:8c:c6:4e:0b:c8:4a:d5:16:66:15: 64:2a:5c:61:cc:99:a2:78:83:ad:34:4d:ae:f6:b3: 43:72:72:05:3b:c6:9f:2a:23:3f:f6:4f:90:26:50: a0:d4:00:46:f1:03:ca:f4:8c:32:ab:84:a8:d2:6b: f0:58:f2:d8:b2:68:d2:e8:a8:ad:2f:a5:97:32:5c: ea:c6:c1:b4:0c:92:fe:83:69:7d:f3:cf:9f:e3:b5: 48:95:c7:5f:46:c1:2a:4a:ba:6f:4e:24:1d:97:0e: 91:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A9:D9:52:EC:4F:86:E6:C3:BC:11:16:CF:78:68:DD:CF:A0:C5:9F X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38302e302f32342d3234203d3e20323134373636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.80.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:48:6a:2c:6a:ec:94:36:fa:2f:bc:44:4a:35:25:2c:0f:ad: 6e:9d:93:36:c6:8d:d2:2b:1d:bb:24:f7:32:88:66:2c:a6:1b: 76:ff:4b:92:a2:88:b2:65:16:a5:03:f3:9f:28:ac:59:4d:5c: 2b:26:80:24:35:fc:1a:ab:7e:b2:25:50:fc:e5:53:91:7a:1a: b6:98:73:cf:1b:3b:15:08:9e:4e:ab:dc:fd:67:a4:1e:35:6b: 8e:e1:78:0f:1e:02:d6:1b:34:ef:6b:86:d3:e2:87:c2:4e:b4: 9a:4e:ba:30:7d:f0:a0:5d:c0:18:b8:22:2f:d1:70:87:56:cd: 77:f8:32:2f:cb:75:ba:50:6c:f7:d7:aa:34:57:7b:2c:43:57: 18:9b:34:88:a9:61:64:43:bd:00:26:00:14:b5:6e:9e:ed:70: 38:62:00:b6:5b:03:06:b0:c0:03:0d:ac:64:b7:fb:29:87:94: b4:f2:59:0b:b3:c0:af:ce:c7:52:34:c1:8d:47:b6:e0:7f:5d: 61:cc:b8:54:29:a3:41:7b:b4:51:ed:b6:d5:0c:e4:9a:21:2a: f1:1b:70:51:68:81:4e:55:62:a1:39:7a:47:00:06:42:57:f5: 20:e0:a4:a5:9a:8b:4b:c4:fc:8e:62:3c:aa:1b:fb:dd:d6:0c: bc:41:e9:74 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUP5RYqI+mkXSm0uDHM9xzyZBQwKIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MDkxNDExMjQyMFoX DTI2MDkxMzExMjkyMFowMzExMC8GA1UEAxMoOERBOUQ5NTJFQzRGODZFNkMzQkMx MTE2Q0Y3ODY4RERDRkEwQzU5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKcGWumD9YLOLGCY2x1ohsefpkfH8Eivfrv3XfLQYekmNNBvIxRdKSI51zhx 0aMfKga17q0GShaJYlZSMIr2T+qV/nRmehBAxyViMLyPejlIgctUly4LSOrmtZqK KStcJHaVkfGZ2NkU+frliy0BkfATVkXy1Niw62C46o2OLxFPYcbgbRQHjqmLAxnD 4xODJ4BHXJsKzkXmHhmMxk4LyErVFmYVZCpcYcyZoniDrTRNrvazQ3JyBTvGnyoj P/ZPkCZQoNQARvEDyvSMMquEqNJr8Fjy2LJo0uiorS+llzJc6sbBtAyS/oNpffPP n+O1SJXHX0bBKkq6b04kHZcOkc8CAwEAAaOCAhEwggINMB0GA1UdDgQWBBSNqdlS 7E+G5sO8ERbPeGjdz6DFnzAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxQTYx MzEwMDAwLzAvMzQzMzJlMzIzNTM1MmUzODMwMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzIzMTM0MzczNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/9QMA0GCSqGSIb3DQEBCwUAA4IB AQCKSGosauyUNvovvERKNSUsD61unZM2xo3SKx27JPcyiGYspht2/0uSooiyZRal A/OfKKxZTVwrJoAkNfwaq36yJVD85VORehq2mHPPGzsVCJ5Oq9z9Z6QeNWuO4XgP HgLWGzTva4bT4ofCTrSaTrowffCgXcAYuCIv0XCHVs13+DIvy3W6UGz316o0V3ss Q1cYmzSIqWFkQ70AJgAUtW6e7XA4YgC2WwMGsMADDaxkt/sph5S08lkLs8CvzsdS NMGNR7bgf11hzLhUKaNBe7RR7bbVDOSaISrxG3BRaIFOVWKhOXpHAAZCV/Ug4KSl motLxPyOYjyqG/vd1gy8Qel0 -----END CERTIFICATE-----Generated at Mon Oct 20 00:21:13 2025 by rpki-client