$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/0/323430313a373363303a343a3a2f34382d3438203d3e203134363138.roa File: 323430313a373363303a343a3a2f34382d3438203d3e203134363138.roa (raw, json) Hash identifier: Mm2Q/pLpu7nZeX6YcfUZK6f/DObsvCX5rLONYL2/UAM= Subject key identifier: AF:F5:EC:33:02:F2:D2:DF:58:3D:54:8D:08:74:8A:AA:FC:E9:AD:20 Certificate issuer: /CN=A9192A980000/serialNumber=989D32D5B62AC9389286C17CA5078BD0066F1E12 Certificate serial: 3BF47B8FAD5A878960DB544599BDFFD2A2F53F24 Authority key identifier: 98:9D:32:D5:B6:2A:C9:38:92:86:C1:7C:A5:07:8B:D0:06:6F:1E:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJ0y1bYqyTiShsF8pQeL0AZvHhI.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/0/323430313a373363303a343a3a2f34382d3438203d3e203134363138.roa Signing time: Thu 19 Jun 2025 10:58:46 +0000 ROA not before: Thu 19 Jun 2025 10:53:46 +0000 ROA not after: Thu 18 Jun 2026 10:58:46 +0000 asID: 14618 IP address blocks: 2401:73c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/0/989D32D5B62AC9389286C17CA5078BD0066F1E12.crl rsync://rpki.sub.apnic.net/repository/A9192A980000/0/989D32D5B62AC9389286C17CA5078BD0066F1E12.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJ0y1bYqyTiShsF8pQeL0AZvHhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 03:08:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:f4:7b:8f:ad:5a:87:89:60:db:54:45:99:bd:ff:d2:a2:f5:3f:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192A980000, serialNumber=989D32D5B62AC9389286C17CA5078BD0066F1E12 Validity Not Before: Jun 19 10:53:46 2025 GMT Not After : Jun 18 10:58:46 2026 GMT Subject: CN=AFF5EC3302F2D2DF583D548D08748AAAFCE9AD20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:66:82:e7:e5:5f:4e:75:ed:15:37:49:11:f9: b2:12:96:cf:69:25:b2:fc:bc:a6:b1:df:18:01:95: 29:07:4f:3d:d4:80:7f:71:78:95:c1:dd:9c:68:ef: 28:54:77:09:50:0e:45:2d:25:92:6f:50:08:b1:a4: b4:64:3b:1e:18:03:43:8d:fb:67:2c:5b:25:3d:f4: b2:19:18:c3:b3:f8:55:43:fb:c8:68:c6:eb:ab:8d: db:f9:63:39:49:ae:6a:c1:8f:86:ca:48:61:e1:29: c8:c6:49:a0:1c:ca:84:1f:80:52:3e:22:49:a1:52: b3:a8:1a:c7:a1:f2:bd:59:00:0d:61:11:9e:fb:22: a5:7b:48:ca:64:e6:75:80:55:4e:14:a6:06:46:e1: b1:a0:6f:19:bf:5e:8c:48:16:48:42:c7:a5:e7:d2: ae:7e:a3:30:19:c3:34:bd:ea:6b:51:c9:4e:5f:3b: c2:00:3d:46:21:db:70:53:16:29:86:47:11:2b:9a: 07:31:f4:11:88:8a:01:ab:c1:d9:d9:22:fe:db:a5: 07:a5:7f:82:19:04:3e:2c:78:55:81:17:c0:04:dd: 9c:c1:22:27:58:b2:9d:73:69:a6:cd:9f:fc:59:40: ed:91:de:a2:35:2c:3c:14:fe:39:12:63:13:4a:fc: dd:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F5:EC:33:02:F2:D2:DF:58:3D:54:8D:08:74:8A:AA:FC:E9:AD:20 X509v3 Authority Key Identifier: keyid:98:9D:32:D5:B6:2A:C9:38:92:86:C1:7C:A5:07:8B:D0:06:6F:1E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/0/989D32D5B62AC9389286C17CA5078BD0066F1E12.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJ0y1bYqyTiShsF8pQeL0AZvHhI.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/0/323430313a373363303a343a3a2f34382d3438203d3e203134363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:73c0:4::/48 Signature Algorithm: sha256WithRSAEncryption 4d:7b:6c:43:04:6f:79:f1:95:72:26:8b:7b:52:74:2b:07:a7: bf:fa:aa:31:a9:28:5e:bb:f8:e6:2e:16:7d:9e:50:f1:1b:d7: d8:22:7c:9d:6a:ce:35:18:48:70:d4:e4:d0:4a:0b:d9:bf:cf: c2:12:37:88:16:63:fb:2f:72:66:cd:56:41:a2:96:66:6e:0e: e5:66:b4:2c:ce:e3:5a:9c:ac:32:84:fd:43:5e:85:e7:58:9c: 78:b6:e6:f0:55:cb:86:b7:84:42:97:cc:6d:70:22:4c:38:bc: 51:dd:b0:64:90:08:78:ed:f1:ef:cf:93:de:ba:a2:e7:a7:4d: 60:3c:3d:bb:14:ee:21:f0:e7:b9:95:30:04:b6:2f:46:d9:84: c8:11:e5:15:2f:67:13:89:40:fd:60:0e:21:6c:fa:51:22:26: 4d:f2:7c:cc:28:b6:44:1f:f7:80:d2:0a:22:82:30:ed:ad:ae: 16:98:7f:1d:e7:20:08:75:79:0e:b3:3c:a7:4e:60:ba:39:be: 1a:49:e5:cd:b3:ef:ad:b2:9c:1d:d1:1b:95:5d:a1:c4:23:0c: 58:c1:7a:78:93:4a:cc:f0:27:b7:54:7b:e1:83:5d:21:62:be: 2b:3f:7c:6d:6c:b5:d3:1f:19:af:f1:c1:58:c3:87:b1:e5:d4: ea:1e:2c:25 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUO/R7j61ah4lg21RFmb3/0qL1PyQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOTJBOTgwMDAwMTEwLwYDVQQFEyg5ODlEMzJENUI2 MkFDOTM4OTI4NkMxN0NBNTA3OEJEMDA2NkYxRTEyMB4XDTI1MDYxOTEwNTM0NloX DTI2MDYxODEwNTg0NlowMzExMC8GA1UEAxMoQUZGNUVDMzMwMkYyRDJERjU4M0Q1 NDhEMDg3NDhBQUFGQ0U5QUQyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOtmguflX0517RU3SRH5shKWz2klsvy8prHfGAGVKQdPPdSAf3F4lcHdnGjv KFR3CVAORS0lkm9QCLGktGQ7HhgDQ437ZyxbJT30shkYw7P4VUP7yGjG66uN2/lj OUmuasGPhspIYeEpyMZJoBzKhB+AUj4iSaFSs6gax6HyvVkADWERnvsipXtIymTm dYBVThSmBkbhsaBvGb9ejEgWSELHpefSrn6jMBnDNL3qa1HJTl87wgA9RiHbcFMW KYZHESuaBzH0EYiKAavB2dki/tulB6V/ghkEPix4VYEXwATdnMEiJ1iynXNpps2f /FlA7ZHeojUsPBT+ORJjE0r83YECAwEAAaOCAhcwggITMB0GA1UdDgQWBBSv9ewz AvLS31g9VI0IdIqq/OmtIDAfBgNVHSMEGDAWgBSYnTLVtirJOJKGwXylB4vQBm8e EjAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MkE5ODAwMDAvMC85ODlEMzJE NUI2MkFDOTM4OTI4NkMxN0NBNTA3OEJEMDA2NkYxRTEyLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9tSjB5MWJZcXlU aVNoc0Y4cFFlTDBBWnZIaEkuY2VyMIGOBggrBgEFBQcBCwSBgTB/MH0GCCsGAQUF BzALhnFyc3luYzovL3Jwa2kuc3ViLmFwbmljLm5ldC9yZXBvc2l0b3J5L0E5MTky QTk4MDAwMC8wLzMyMzQzMDMxM2EzNzMzNjMzMDNhMzQzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM0MzYzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAFzwAAEMA0GCSqGSIb3DQEB CwUAA4IBAQBNe2xDBG958ZVyJot7UnQrB6e/+qoxqSheu/jmLhZ9nlDxG9fYInyd as41GEhw1OTQSgvZv8/CEjeIFmP7L3JmzVZBopZmbg7lZrQszuNanKwyhP1DXoXn WJx4tubwVcuGt4RCl8xtcCJMOLxR3bBkkAh47fHvz5PeuqLnp01gPD27FO4h8Oe5 lTAEti9G2YTIEeUVL2cTiUD9YA4hbPpRIiZN8nzMKLZEH/eA0goigjDtra4WmH8d 5yAIdXkOszynTmC6Ob4aSeXNs++tspwd0RuVXaHEIwxYwXp4k0rM8Ce3VHvhg10h Yr4rP3xtbLXTHxmv8cFYw4ex5dTqHiwl -----END CERTIFICATE-----Generated at Tue Nov 4 16:35:58 2025 by rpki-client