$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134393a3a2f34382d3438203d3e2039343936.roa File: 323030313a6466343a353134393a3a2f34382d3438203d3e2039343936.roa (raw, json) Hash identifier: pfnGKBjA45icftUJKtSzNqxMYBnHP4IFEX9St9ZFSbc= Subject key identifier: F5:E1:7A:84:F2:A9:CA:2C:0C:21:FA:6C:97:89:47:D5:28:4B:28:3E Certificate issuer: /CN=A917447B0000/serialNumber=7A443962573EC01D5131651F90F46DA19AFC21D2 Certificate serial: 63D30129005452F944170B3BE693E9A121729E86 Authority key identifier: 7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134393a3a2f34382d3438203d3e2039343936.roa Signing time: Sat 08 Mar 2025 02:08:39 +0000 ROA not before: Sat 08 Mar 2025 02:03:39 +0000 ROA not after: Sat 07 Mar 2026 02:08:39 +0000 asID: 9496 IP address blocks: 2001:df4:5149::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:d3:01:29:00:54:52:f9:44:17:0b:3b:e6:93:e9:a1:21:72:9e:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000 Validity Not Before: Mar 8 02:03:39 2025 GMT Not After : Mar 7 02:08:39 2026 GMT Subject: CN=F5E17A84F2A9CA2C0C21FA6C978947D5284B283E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e2:66:48:0a:20:15:f7:59:9a:41:d5:df:fe: 85:d8:58:e4:7e:16:c5:cd:39:3b:d8:a9:9d:78:76: 77:12:ef:60:4d:0e:3a:19:40:8f:ed:61:f6:92:d3: ed:1c:3d:93:61:c4:3a:0b:1b:a4:5a:98:6f:af:6a: 45:6a:89:40:54:4b:c1:56:16:b8:97:bc:c6:10:02: 53:e8:81:03:9a:bd:9f:f9:ee:c0:f1:dd:a5:d4:e1: 13:d6:d7:63:51:aa:04:51:c4:dc:b3:ba:d4:a2:f3: 6e:37:ef:a9:08:65:39:26:e1:6c:1c:de:6a:b5:c0: f2:bb:2e:52:74:79:60:61:db:ab:a1:e9:f6:7a:07: 61:fd:07:d7:3e:6b:1a:44:d6:01:09:6b:4c:dd:bd: f8:62:a5:2f:05:49:8b:07:5c:4f:35:45:03:f1:38: 5f:79:71:b0:22:09:96:a1:3d:27:0b:09:67:fd:58: 98:d5:fe:46:24:be:15:57:68:f9:33:b2:c0:7c:81: f0:ab:fe:a9:fc:74:23:01:eb:a6:37:c9:f2:76:d4: 8a:05:df:94:17:ab:94:fb:57:d8:06:2e:4d:33:68: 5b:47:75:d5:ee:0f:ab:a4:cd:f8:16:1f:b9:5b:ac: 23:43:5a:54:64:85:28:34:28:38:47:46:8f:8c:68: e2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E1:7A:84:F2:A9:CA:2C:0C:21:FA:6C:97:89:47:D5:28:4B:28:3E X509v3 Authority Key Identifier: keyid:7A:44:39:62:57:3E:C0:1D:51:31:65:1F:90:F4:6D:A1:9A:FC:21:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/7A443962573EC01D5131651F90F46DA19AFC21D2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ekQ5Ylc-wB1RMWUfkPRtoZr8IdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134393a3a2f34382d3438203d3e2039343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:5149::/48 Signature Algorithm: sha256WithRSAEncryption 16:c7:4f:74:cd:0d:7b:2a:03:b3:9a:ff:06:f7:26:c0:f7:5c: 53:3d:e7:ab:80:37:a8:7d:85:43:d9:2c:b5:78:19:a3:ba:b4: ee:70:a7:85:20:7c:ac:d9:7c:67:1f:95:a2:8b:6b:83:d0:9b: 7b:c5:dc:ce:0f:e4:32:dd:f5:46:44:14:b4:46:2f:40:5f:99: f4:6e:c5:7b:0d:37:36:fe:c9:79:da:3a:d1:81:cb:90:8b:30: 53:16:2e:68:51:32:4e:04:26:78:42:43:6a:b7:f6:3e:3a:25: a6:39:cb:94:3f:90:5f:69:e8:e7:1f:52:e4:b8:80:61:f7:8a: 11:31:9d:02:c5:7e:4a:56:f0:3c:5e:f5:d3:e5:7a:f1:48:dd: c8:e8:6a:0e:bb:9d:84:c3:33:b0:5d:5e:55:12:7c:e9:11:1b: 0e:44:0a:d1:b3:48:de:b9:1a:47:13:20:af:8e:c7:0c:63:0e: ab:33:1e:91:1e:a2:a9:af:92:4e:f6:ce:00:af:31:9a:a8:44: 25:4d:cd:b5:cf:02:ca:fb:b3:20:f9:bf:81:29:37:9b:c0:02: d3:34:fe:4c:85:66:d4:88:cf:eb:10:28:6f:92:00:06:bd:a4: 7e:0e:62:99:ed:24:f3:b3:89:01:c1:36:8d:c1:11:34:9b:d0: 69:53:08:c5 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUY9MBKQBUUvlEFws75pPpoSFynoYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEyg3QTQ0Mzk2MjU3 M0VDMDFENTEzMTY1MUY5MEY0NkRBMTlBRkMyMUQyMB4XDTI1MDMwODAyMDMzOVoX DTI2MDMwNzAyMDgzOVowMzExMC8GA1UEAxMoRjVFMTdBODRGMkE5Q0EyQzBDMjFG QTZDOTc4OTQ3RDUyODRCMjgzRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANjiZkgKIBX3WZpB1d/+hdhY5H4Wxc05O9ipnXh2dxLvYE0OOhlAj+1h9pLT 7Rw9k2HEOgsbpFqYb69qRWqJQFRLwVYWuJe8xhACU+iBA5q9n/nuwPHdpdThE9bX Y1GqBFHE3LO61KLzbjfvqQhlOSbhbBzearXA8rsuUnR5YGHbq6Hp9noHYf0H1z5r GkTWAQlrTN29+GKlLwVJiwdcTzVFA/E4X3lxsCIJlqE9JwsJZ/1YmNX+RiS+FVdo +TOywHyB8Kv+qfx0IwHrpjfJ8nbUigXflBerlPtX2AYuTTNoW0d11e4Pq6TN+BYf uVusI0NaVGSFKDQoOEdGj4xo4oECAwEAAaOCAhowggIWMB0GA1UdDgQWBBT14XqE 8qnKLAwh+myXiUfVKEsoPjAfBgNVHSMEGDAWgBR6RDliVz7AHVExZR+Q9G2hmvwh 0jAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMS83QTQ0Mzk2 MjU3M0VDMDFENTEzMTY1MUY5MEY0NkRBMTlBRkMyMUQyLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9la1E1WWxjLXdC MVJNV1Vma1BSdG9acjhJZEkuY2VyMIGRBggrBgEFBQcBCwSBhDCBgTB/BggrBgEF BQcwC4ZzcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3 NDQ3QjAwMDAvMS8zMjMwMzAzMTNhNjQ2NjM0M2EzNTMxMzQzOTNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDM5MzQzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN9FFJMA0GCSqGSIb3 DQEBCwUAA4IBAQAWx090zQ17KgOzmv8G9ybA91xTPeergDeofYVD2Sy1eBmjurTu cKeFIHys2XxnH5Wii2uD0Jt7xdzOD+Qy3fVGRBS0Ri9AX5n0bsV7DTc2/sl52jrR gcuQizBTFi5oUTJOBCZ4QkNqt/Y+OiWmOcuUP5BfaejnH1LkuIBh94oRMZ0CxX5K VvA8XvXT5XrxSN3I6GoOu52EwzOwXV5VEnzpERsORArRs0jeuRpHEyCvjscMYw6r Mx6RHqKpr5JO9s4ArzGaqEQlTc21zwLK+7Mg+b+BKTebwALTNP5MhWbUiM/rEChv kgAGvaR+DmKZ7STzs4kBwTaNwRE0m9BpUwjF -----END CERTIFICATE-----Generated at Tue Apr 8 18:39:01 2025 by rpki-client