$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20313531393634.roa File: 34332e3235352e38312e302f32342d3234203d3e20313531393634.roa (raw, json) Hash identifier: 4e0hnp+mBksFQSBkEEMhLS8Zc6XMB5AlAB7ew9DvGO8= Subject key identifier: DC:4F:00:99:0C:D6:E4:CD:E1:56:80:D4:CF:E7:8E:89:FA:4B:5A:A9 Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 3D848F6356C6143B47B3A5BEFE90DC6D4B038C2B Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20313531393634.roa Signing time: Tue 16 Sep 2025 09:35:08 +0000 ROA not before: Tue 16 Sep 2025 09:30:08 +0000 ROA not after: Tue 15 Sep 2026 09:35:08 +0000 asID: 151964 IP address blocks: 43.255.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 01:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:84:8f:63:56:c6:14:3b:47:b3:a5:be:fe:90:dc:6d:4b:03:8c:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Sep 16 09:30:08 2025 GMT Not After : Sep 15 09:35:08 2026 GMT Subject: CN=DC4F00990CD6E4CDE15680D4CFE78E89FA4B5AA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:42:3a:69:f1:e8:04:60:6d:b7:f0:17:c0:45: af:3a:8a:c9:a0:18:87:0b:a7:67:8b:7f:27:e2:38: b1:6e:e5:51:12:80:7a:5b:1a:a7:91:e4:4c:4b:dc: 13:d6:ea:cc:9a:65:88:c5:5a:ca:25:0c:ef:f4:90: b0:db:91:5d:6e:dc:cb:46:a9:86:93:93:94:03:49: 17:47:3c:7b:db:1e:ad:d5:ae:35:a5:cc:47:32:61: 69:07:57:48:3c:7b:12:de:02:fd:a0:d4:b0:2f:f3: 10:d5:57:85:53:ce:08:17:d9:11:b4:64:84:c5:11: f0:03:cd:14:75:3d:9c:89:69:eb:23:45:b9:33:8c: b6:b6:03:55:15:35:af:fb:6d:81:5d:cb:bf:9f:14: 04:88:43:0f:8c:a4:4d:c4:b0:24:24:91:58:c1:d3: e7:96:65:54:41:bb:d4:73:00:7a:60:08:04:2f:9d: 42:d9:98:3f:8a:90:46:03:77:7a:73:3c:13:17:6c: 83:de:ec:5c:a6:0b:26:48:c8:36:c9:ed:45:fa:94: 96:64:b5:44:e8:4b:68:ce:56:19:20:77:7e:d6:a7: f5:84:7b:6e:fb:e9:ca:00:40:99:2c:b9:26:c4:ab: 95:e1:c2:f6:f8:82:46:5a:a3:e8:10:72:94:24:6b: 65:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4F:00:99:0C:D6:E4:CD:E1:56:80:D4:CF:E7:8E:89:FA:4B:5A:A9 X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20313531393634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.81.0/24 Signature Algorithm: sha256WithRSAEncryption 81:cd:4e:d8:ad:49:c2:0a:75:8d:c4:41:55:51:9c:51:0a:64: 98:f7:1b:9f:3d:ab:0b:99:d2:31:0a:49:5f:0b:24:e1:4d:57: c7:2a:fb:2a:fa:da:63:a4:5a:76:b5:df:fa:54:83:7d:68:ff: 46:74:18:d8:27:1d:52:61:1e:ce:21:21:27:c6:92:df:83:fd: 8e:56:90:69:34:ee:f9:d9:2a:cd:5b:71:77:2a:71:52:69:c8: 56:b9:d9:d2:dc:99:22:75:d3:f4:23:2d:42:d0:d1:58:06:7a: ad:c7:d5:b3:5f:a6:b9:90:16:68:38:a2:de:6d:b3:9e:c5:c0: 8a:fe:ee:70:17:a3:be:62:48:f2:c7:52:06:55:23:3d:7f:d0: 06:bf:f5:cd:91:00:3d:b7:c1:f8:e4:9f:85:d7:da:76:05:6d: ca:99:d2:85:4a:44:16:b4:87:5f:92:47:2f:2e:45:e8:5c:69: 4a:ca:cd:6c:0e:a1:82:c2:a8:e2:11:6a:7e:45:dd:04:39:4f: fb:e0:a3:f3:94:78:5e:b7:eb:72:b9:d9:b1:94:87:da:06:de: 6d:f9:0f:5f:ee:49:a2:73:99:3e:9d:5f:06:4a:9d:f5:b2:70: e1:fe:b5:2b:41:6d:1e:cf:87:2f:5e:4a:bf:60:c7:e0:44:6b: 14:a9:42:10 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUPYSPY1bGFDtHs6W+/pDcbUsDjCswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MDkxNjA5MzAwOFoX DTI2MDkxNTA5MzUwOFowMzExMC8GA1UEAxMoREM0RjAwOTkwQ0Q2RTRDREUxNTY4 MEQ0Q0ZFNzhFODlGQTRCNUFBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKRCOmnx6ARgbbfwF8BFrzqKyaAYhwunZ4t/J+I4sW7lURKAelsap5HkTEvc E9bqzJpliMVayiUM7/SQsNuRXW7cy0aphpOTlANJF0c8e9serdWuNaXMRzJhaQdX SDx7Et4C/aDUsC/zENVXhVPOCBfZEbRkhMUR8APNFHU9nIlp6yNFuTOMtrYDVRU1 r/ttgV3Lv58UBIhDD4ykTcSwJCSRWMHT55ZlVEG71HMAemAIBC+dQtmYP4qQRgN3 enM8Exdsg97sXKYLJkjINsntRfqUlmS1ROhLaM5WGSB3ftan9YR7bvvpygBAmSy5 JsSrleHC9viCRlqj6BBylCRrZXUCAwEAAaOCAhEwggINMB0GA1UdDgQWBBTcTwCZ DNbkzeFWgNTP546J+ktaqTAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxQTYx MzEwMDAwLzAvMzQzMzJlMzIzNTM1MmUzODMxMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzEzNTMxMzkzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/9RMA0GCSqGSIb3DQEBCwUAA4IB AQCBzU7YrUnCCnWNxEFVUZxRCmSY9xufPasLmdIxCklfCyThTVfHKvsq+tpjpFp2 td/6VIN9aP9GdBjYJx1SYR7OISEnxpLfg/2OVpBpNO752SrNW3F3KnFSachWudnS 3JkiddP0Iy1C0NFYBnqtx9WzX6a5kBZoOKLebbOexcCK/u5wF6O+Ykjyx1IGVSM9 f9AGv/XNkQA9t8H45J+F19p2BW3KmdKFSkQWtIdfkkcvLkXoXGlKys1sDqGCwqji EWp+Rd0EOU/74KPzlHhet+tyudmxlIfaBt5t+Q9f7kmic5k+nV8GSp31snDh/rUr QW0ez4cvXkq/YMfgRGsUqUIQ -----END CERTIFICATE-----Generated at Mon Oct 20 08:28:10 2025 by rpki-client