$ rpki-client -vvf rpki.sub.apnic.net/repository/A9150E4D0000/0/323430313a323036303a313030303a3a2f33362d3336203d3e20313437303230.roa File: 323430313a323036303a313030303a3a2f33362d3336203d3e20313437303230.roa (raw, json) Hash identifier: 6A+RAPF1FjajEq+hpmFTSc6gNJm2L4qY2MERJgDbUes= Subject key identifier: 41:1C:B9:DF:7B:32:45:69:12:42:AD:BF:CB:06:E4:65:71:9D:64:97 Certificate issuer: /CN=A9150E4D0000/serialNumber=11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E Certificate serial: 425D2B304F3083AE090F4CE6FC4AAD8412B10D9B Authority key identifier: 11:F9:8F:3F:8D:D4:F5:5C:C7:FF:B7:A4:BA:CC:65:6E:0D:19:3D:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EfmPP43U9VzH_7ekusxlbg0ZPR4.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/323430313a323036303a313030303a3a2f33362d3336203d3e20313437303230.roa Signing time: Wed 04 Jun 2025 05:27:53 +0000 ROA not before: Wed 04 Jun 2025 05:22:53 +0000 ROA not after: Wed 03 Jun 2026 05:27:53 +0000 asID: 147020 IP address blocks: 2401:2060:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E.crl rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EfmPP43U9VzH_7ekusxlbg0ZPR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 07:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:5d:2b:30:4f:30:83:ae:09:0f:4c:e6:fc:4a:ad:84:12:b1:0d:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150E4D0000, serialNumber=11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E Validity Not Before: Jun 4 05:22:53 2025 GMT Not After : Jun 3 05:27:53 2026 GMT Subject: CN=411CB9DF7B3245691242ADBFCB06E465719D6497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:92:8d:4d:e3:38:14:1a:1f:b0:d0:99:5d:6b: d2:08:18:36:f3:db:a6:17:d9:85:b4:8d:08:0d:fe: 9e:36:a8:65:07:90:2a:29:6a:a0:8c:b1:c6:b6:15: 60:f1:6e:98:81:93:12:fd:10:f6:57:c0:65:bd:a1: a5:63:31:97:0e:1f:44:43:a1:1a:4d:1b:72:1b:fc: 33:92:ad:59:c0:f7:94:6d:40:87:e3:38:50:84:be: 9f:a0:d3:be:3c:f3:c4:95:2b:36:80:af:89:7f:32: 86:da:28:79:78:5f:8e:49:70:8f:cf:ca:93:58:2e: ad:b1:f8:62:1a:42:b5:33:f5:5c:d7:d7:ca:56:0a: 94:86:44:9a:0a:72:60:27:49:1b:0d:50:e8:ac:ab: 48:a6:72:6e:d9:99:06:10:ee:90:de:f1:d6:26:49: 17:f7:df:dc:eb:a3:ed:d5:dc:15:c2:4a:f7:76:a3: 3f:70:30:33:5c:e2:ab:a3:21:60:7e:92:5b:75:34: 14:9c:12:11:c1:67:33:5d:93:35:c3:84:4f:fd:12: b2:75:d0:c1:e8:e2:10:7f:ff:ab:13:b3:ca:7c:4a: 21:b2:19:88:ed:c9:38:2a:be:1c:0c:06:42:46:8c: 12:7a:34:7f:8f:bb:fe:3f:9e:27:60:66:d1:78:26: d8:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:1C:B9:DF:7B:32:45:69:12:42:AD:BF:CB:06:E4:65:71:9D:64:97 X509v3 Authority Key Identifier: keyid:11:F9:8F:3F:8D:D4:F5:5C:C7:FF:B7:A4:BA:CC:65:6E:0D:19:3D:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EfmPP43U9VzH_7ekusxlbg0ZPR4.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/323430313a323036303a313030303a3a2f33362d3336203d3e20313437303230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2060:1000::/36 Signature Algorithm: sha256WithRSAEncryption 6b:60:37:8e:59:ef:37:31:35:26:a6:1e:64:46:2c:fb:b8:3b: 5e:9e:99:60:9a:97:be:59:7b:42:61:82:89:33:ff:d6:fa:d4: 37:4e:05:5b:de:0a:42:e4:b4:61:44:1e:bc:b4:1d:56:1f:b0: dd:ed:ca:94:f7:03:7f:29:ae:c5:d3:e1:64:d6:c6:9b:b5:25: fa:41:d7:52:fb:ee:78:f1:f0:fe:5c:99:ce:cc:4c:c6:a3:a6: 38:c1:84:a7:db:08:07:4f:01:c0:2f:d8:f6:a8:4b:9c:57:d7: 69:7a:5f:17:97:74:4d:21:cb:2e:23:67:eb:7e:ea:c5:bf:5f: 02:82:4f:ac:fb:ec:15:dc:08:e7:76:72:3d:d2:f5:35:12:85: d4:49:a4:02:7d:80:46:e3:11:9d:06:0a:44:89:7d:e1:32:f5: 00:23:53:9e:d5:1b:2e:46:79:d5:ac:64:89:c9:55:ae:1e:63: 74:c4:df:31:e0:cd:b8:30:97:1d:0d:56:be:98:24:a9:f8:ef: 4a:2e:95:3d:f6:ae:54:b7:be:31:f8:c5:c1:60:f0:9f:b6:94: d7:d7:cf:e8:27:57:b4:11:48:13:60:69:6a:fa:77:e1:e5:93: fc:f6:8e:71:f9:71:2f:99:ae:53:ca:c6:82:d9:49:6f:3e:d0: c7:50:14:7c -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUQl0rME8wg64JD0zm/EqthBKxDZswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTBFNEQwMDAwMTEwLwYDVQQFEygxMUY5OEYzRjhE RDRGNTVDQzdGRkI3QTRCQUNDNjU2RTBEMTkzRDFFMB4XDTI1MDYwNDA1MjI1M1oX DTI2MDYwMzA1Mjc1M1owMzExMC8GA1UEAxMoNDExQ0I5REY3QjMyNDU2OTEyNDJB REJGQ0IwNkU0NjU3MTlENjQ5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJSSjU3jOBQaH7DQmV1r0ggYNvPbphfZhbSNCA3+njaoZQeQKilqoIyxxrYV YPFumIGTEv0Q9lfAZb2hpWMxlw4fREOhGk0bchv8M5KtWcD3lG1Ah+M4UIS+n6DT vjzzxJUrNoCviX8yhtooeXhfjklwj8/Kk1gurbH4YhpCtTP1XNfXylYKlIZEmgpy YCdJGw1Q6KyrSKZybtmZBhDukN7x1iZJF/ff3Ouj7dXcFcJK93ajP3AwM1ziq6Mh YH6SW3U0FJwSEcFnM12TNcOET/0SsnXQwejiEH//qxOzynxKIbIZiO3JOCq+HAwG QkaMEno0f4+7/j+eJ2Bm0Xgm2O0CAwEAAaOCAiAwggIcMB0GA1UdDgQWBBRBHLnf ezJFaRJCrb/LBuRlcZ1klzAfBgNVHSMEGDAWgBQR+Y8/jdT1XMf/t6S6zGVuDRk9 HjAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE1MEU0RDAwMDAvMC8xMUY5OEYz RjhERDRGNTVDQzdGRkI3QTRCQUNDNjU2RTBEMTkzRDFFLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9FZm1QUDQzVTlW ekhfN2VrdXN4bGJnMFpQUjQuY2VyMIGYBggrBgEFBQcBCwSBizCBiDCBhQYIKwYB BQUHMAuGeXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkx NTBFNEQwMDAwLzAvMzIzNDMwMzEzYTMyMzAzNjMwM2EzMTMwMzAzMDNhM2EyZjMz MzYyZDMzMzYyMDNkM2UyMDMxMzQzNzMwMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQBIGAQMA0G CSqGSIb3DQEBCwUAA4IBAQBrYDeOWe83MTUmph5kRiz7uDtenplgmpe+WXtCYYKJ M//W+tQ3TgVb3gpC5LRhRB68tB1WH7Dd7cqU9wN/Ka7F0+Fk1sabtSX6QddS++54 8fD+XJnOzEzGo6Y4wYSn2wgHTwHAL9j2qEucV9dpel8Xl3RNIcsuI2frfurFv18C gk+s++wV3AjndnI90vU1EoXUSaQCfYBG4xGdBgpEiX3hMvUAI1Oe1RsuRnnVrGSJ yVWuHmN0xN8x4M24MJcdDVa+mCSp+O9KLpU99q5Ut74x+MXBYPCftpTX18/oJ1e0 EUgTYGlq+nfh5ZP89o5x+XEvma5TysaC2UlvPtDHUBR8 -----END CERTIFICATE-----Generated at Thu Jun 19 16:10:00 2025 by rpki-client