$ rpki-client -vvf rpki.sub.apnic.net/repository/A9150E4D0000/0/323430313a323036303a323830303a3a2f33372d3337203d3e20313437303230.roa File: 323430313a323036303a323830303a3a2f33372d3337203d3e20313437303230.roa (raw, json) Hash identifier: vFw/WSs6D6jd2Ze4eBe2w3dDlJC6SLr66QvmUP7RTNg= Subject key identifier: 8E:4E:C6:6A:5F:DB:57:BC:7D:E8:BF:E8:1D:D7:72:E6:87:59:CA:8B Certificate issuer: /CN=A9150E4D0000/serialNumber=11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E Certificate serial: 28A973091DEE4653D0DD623047DA064B9E5FE3A6 Authority key identifier: 11:F9:8F:3F:8D:D4:F5:5C:C7:FF:B7:A4:BA:CC:65:6E:0D:19:3D:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EfmPP43U9VzH_7ekusxlbg0ZPR4.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/323430313a323036303a323830303a3a2f33372d3337203d3e20313437303230.roa Signing time: Wed 04 Jun 2025 05:28:41 +0000 ROA not before: Wed 04 Jun 2025 05:23:41 +0000 ROA not after: Wed 03 Jun 2026 05:28:41 +0000 asID: 147020 IP address blocks: 2401:2060:2800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E.crl rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EfmPP43U9VzH_7ekusxlbg0ZPR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 07:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:a9:73:09:1d:ee:46:53:d0:dd:62:30:47:da:06:4b:9e:5f:e3:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150E4D0000, serialNumber=11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E Validity Not Before: Jun 4 05:23:41 2025 GMT Not After : Jun 3 05:28:41 2026 GMT Subject: CN=8E4EC66A5FDB57BC7DE8BFE81DD772E68759CA8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cf:46:5c:33:f3:45:ae:5e:8f:9b:40:92:06: 3a:6d:df:bd:e7:0e:fe:93:87:bd:a1:9d:3d:64:57: da:e8:59:44:ce:c8:3f:b3:69:fe:7a:fa:80:99:2b: 38:ba:88:72:d0:f8:a9:ba:01:31:c5:5b:27:3e:50: 97:64:6b:35:5b:f4:b7:4b:9f:48:2c:43:b4:07:b1: ba:d2:6b:f7:2d:33:d4:bc:ee:51:5f:32:2c:4f:0e: f9:9c:23:9e:c2:75:b5:73:65:42:94:5a:dc:63:32: 06:56:14:23:e4:b8:25:1d:52:4a:43:f8:1e:64:01: 15:de:6d:a7:87:aa:58:6d:31:f5:63:a0:e2:ba:d0: 08:09:4a:12:66:c9:30:96:3d:30:53:71:56:ff:9b: 0c:22:e7:5e:8d:22:ee:4a:29:ed:b1:8c:4b:47:51: 88:1f:69:02:ce:fe:11:80:30:b7:87:3e:e0:12:54: 07:b1:67:e2:da:cd:ad:87:08:68:f8:e2:a8:d9:b0: 06:c6:8b:13:6b:05:75:3d:be:e5:bb:4a:d5:7e:29: 51:a3:42:10:03:8f:b6:61:04:cc:64:8b:3e:bf:58: 02:75:b2:21:92:39:51:6e:f9:3a:c5:a5:02:6a:82: 34:33:2a:f5:36:07:75:a0:31:fa:c0:69:dc:fc:0a: 6b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:4E:C6:6A:5F:DB:57:BC:7D:E8:BF:E8:1D:D7:72:E6:87:59:CA:8B X509v3 Authority Key Identifier: keyid:11:F9:8F:3F:8D:D4:F5:5C:C7:FF:B7:A4:BA:CC:65:6E:0D:19:3D:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EfmPP43U9VzH_7ekusxlbg0ZPR4.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/323430313a323036303a323830303a3a2f33372d3337203d3e20313437303230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2060:2800::/37 Signature Algorithm: sha256WithRSAEncryption 7c:22:f1:d1:c4:34:95:8a:f2:bd:e6:2a:58:7b:6d:4f:c1:b2: 63:9d:0b:9e:ef:a7:a2:d4:db:b5:ec:e7:79:12:2d:32:78:15: 3e:1d:61:46:e9:76:69:76:9f:27:13:61:ee:ff:55:28:21:94: da:42:59:ec:36:f6:24:cb:38:f9:5b:2d:ae:fa:e6:4f:78:8a: 24:bc:1f:dc:a7:7c:c8:d3:07:68:71:b1:23:9e:a3:90:e6:c7: a4:d1:cd:66:df:6c:d5:7f:12:9a:d3:b6:f7:cc:fd:bb:3a:cc: e9:22:f4:0b:ad:0d:ba:0c:2b:a9:c4:74:a7:21:7b:ad:d3:c1: 9b:b1:d8:73:57:f7:25:45:1f:f0:6e:20:8e:e6:87:60:4c:b9: b4:42:76:19:0e:4c:e7:f5:fe:64:0a:3b:11:9d:8c:ae:4b:50: f9:75:5e:65:74:aa:e1:fe:45:2f:d1:86:fd:04:61:b6:20:be: 29:ff:bc:59:24:5d:8a:90:4c:5b:86:1b:7e:a6:0a:3b:7e:4b: a6:1e:f3:50:f8:e8:85:15:b3:34:ec:9e:5b:c3:6d:01:97:de: 5a:0a:73:aa:a6:06:74:97:cb:ef:75:4f:a3:06:a8:77:ef:41: a2:b7:af:3c:2f:20:9d:41:34:0f:16:c4:a0:2d:1e:16:cc:a2: 9c:76:32:e5 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUKKlzCR3uRlPQ3WIwR9oGS55f46YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTBFNEQwMDAwMTEwLwYDVQQFEygxMUY5OEYzRjhE RDRGNTVDQzdGRkI3QTRCQUNDNjU2RTBEMTkzRDFFMB4XDTI1MDYwNDA1MjM0MVoX DTI2MDYwMzA1Mjg0MVowMzExMC8GA1UEAxMoOEU0RUM2NkE1RkRCNTdCQzdERThC RkU4MURENzcyRTY4NzU5Q0E4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANvPRlwz80WuXo+bQJIGOm3fvecO/pOHvaGdPWRX2uhZRM7IP7Np/nr6gJkr OLqIctD4qboBMcVbJz5Ql2RrNVv0t0ufSCxDtAexutJr9y0z1LzuUV8yLE8O+Zwj nsJ1tXNlQpRa3GMyBlYUI+S4JR1SSkP4HmQBFd5tp4eqWG0x9WOg4rrQCAlKEmbJ MJY9MFNxVv+bDCLnXo0i7kop7bGMS0dRiB9pAs7+EYAwt4c+4BJUB7Fn4trNrYcI aPjiqNmwBsaLE2sFdT2+5btK1X4pUaNCEAOPtmEEzGSLPr9YAnWyIZI5UW75OsWl AmqCNDMq9TYHdaAx+sBp3PwKa1UCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBSOTsZq X9tXvH3ov+gd13Lmh1nKizAfBgNVHSMEGDAWgBQR+Y8/jdT1XMf/t6S6zGVuDRk9 HjAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE1MEU0RDAwMDAvMC8xMUY5OEYz RjhERDRGNTVDQzdGRkI3QTRCQUNDNjU2RTBEMTkzRDFFLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9FZm1QUDQzVTlW ekhfN2VrdXN4bGJnMFpQUjQuY2VyMIGYBggrBgEFBQcBCwSBizCBiDCBhQYIKwYB BQUHMAuGeXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkx NTBFNEQwMDAwLzAvMzIzNDMwMzEzYTMyMzAzNjMwM2EzMjM4MzAzMDNhM2EyZjMz MzcyZDMzMzcyMDNkM2UyMDMxMzQzNzMwMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAyQBIGAoMA0G CSqGSIb3DQEBCwUAA4IBAQB8IvHRxDSVivK95ipYe21PwbJjnQue76ei1Nu17Od5 Ei0yeBU+HWFG6XZpdp8nE2Hu/1UoIZTaQlnsNvYkyzj5Wy2u+uZPeIokvB/cp3zI 0wdocbEjnqOQ5sek0c1m32zVfxKa07b3zP27OszpIvQLrQ26DCupxHSnIXut08Gb sdhzV/clRR/wbiCO5odgTLm0QnYZDkzn9f5kCjsRnYyuS1D5dV5ldKrh/kUv0Yb9 BGG2IL4p/7xZJF2KkExbhht+pgo7fkumHvNQ+OiFFbM07J5bw20Bl95aCnOqpgZ0 l8vvdU+jBqh370Git688LyCdQTQPFsSgLR4WzKKcdjLl -----END CERTIFICATE-----Generated at Thu Jun 19 14:33:43 2025 by rpki-client