$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/0/323430313a373363303a3a2f33322d3332203d3e20313336373932.roa File: 323430313a373363303a3a2f33322d3332203d3e20313336373932.roa (raw, json) Hash identifier: qr6zGc4NdTGG5ScRahYWoyNf6IHmCSZEkDUdA2n4VP8= Subject key identifier: 32:67:98:78:C5:46:16:30:4D:7F:16:ED:55:D2:55:D9:54:D4:A0:89 Certificate issuer: /CN=A9192A980000/serialNumber=989D32D5B62AC9389286C17CA5078BD0066F1E12 Certificate serial: 2ABA8DD15723F8F3E8C988151E3C36D6EB8ADE61 Authority key identifier: 98:9D:32:D5:B6:2A:C9:38:92:86:C1:7C:A5:07:8B:D0:06:6F:1E:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJ0y1bYqyTiShsF8pQeL0AZvHhI.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/0/323430313a373363303a3a2f33322d3332203d3e20313336373932.roa Signing time: Fri 04 Jul 2025 12:05:03 +0000 ROA not before: Fri 04 Jul 2025 12:00:03 +0000 ROA not after: Fri 03 Jul 2026 12:05:03 +0000 asID: 136792 IP address blocks: 2401:73c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/0/989D32D5B62AC9389286C17CA5078BD0066F1E12.crl rsync://rpki.sub.apnic.net/repository/A9192A980000/0/989D32D5B62AC9389286C17CA5078BD0066F1E12.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJ0y1bYqyTiShsF8pQeL0AZvHhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 06:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:ba:8d:d1:57:23:f8:f3:e8:c9:88:15:1e:3c:36:d6:eb:8a:de:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192A980000, serialNumber=989D32D5B62AC9389286C17CA5078BD0066F1E12 Validity Not Before: Jul 4 12:00:03 2025 GMT Not After : Jul 3 12:05:03 2026 GMT Subject: CN=32679878C54616304D7F16ED55D255D954D4A089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:de:9c:ab:45:08:02:17:0f:bb:74:c1:0b:dc: 5a:9f:29:78:99:b6:89:68:e2:b9:58:28:57:db:1e: 5f:4d:d8:b4:d6:2e:b3:18:d0:80:ff:6d:c3:8a:68: 8e:4f:1f:77:1d:85:41:8e:6a:fc:1b:55:99:e8:f6: 70:3f:2c:49:be:3c:c6:5e:d2:cb:f9:60:8c:e4:8b: 8c:1d:1c:82:35:dd:63:2e:03:72:92:df:ff:86:95: 4c:6b:92:e1:b3:c8:bc:ec:b8:2c:96:8e:06:9e:2a: 73:90:e3:14:ed:fc:60:50:dd:18:1c:bb:62:17:8a: cd:7f:b9:c0:4e:62:a5:8e:00:a5:fc:5c:4e:a8:42: 9d:c5:57:fd:40:52:95:3e:cd:45:0f:ae:e8:02:00: 67:c9:08:71:ea:79:e6:f7:8c:02:67:13:2c:24:80: 1f:2b:bb:49:a1:3e:55:28:6b:a5:bb:2e:fa:9a:4d: 16:cb:c1:a0:d8:a0:94:9b:32:c5:d3:1e:32:a7:31: 72:b9:62:5f:b5:b2:2f:b1:68:e6:2b:d3:c1:7c:30: 6a:47:9e:98:28:57:12:15:e4:94:de:08:4b:7b:ff: 02:75:d6:04:43:ec:00:6f:b2:4f:bb:ec:38:cb:ee: c1:05:50:8c:a6:9b:0a:dc:d6:a0:d1:1e:78:aa:80: 15:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:67:98:78:C5:46:16:30:4D:7F:16:ED:55:D2:55:D9:54:D4:A0:89 X509v3 Authority Key Identifier: keyid:98:9D:32:D5:B6:2A:C9:38:92:86:C1:7C:A5:07:8B:D0:06:6F:1E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/0/989D32D5B62AC9389286C17CA5078BD0066F1E12.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJ0y1bYqyTiShsF8pQeL0AZvHhI.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/0/323430313a373363303a3a2f33322d3332203d3e20313336373932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:73c0::/32 Signature Algorithm: sha256WithRSAEncryption 4b:a5:43:de:b3:53:3f:eb:77:b6:09:9f:dd:71:c7:f3:00:74: dc:bc:73:4c:2f:6c:6f:01:ff:fa:dd:a9:26:21:9f:c8:ff:ac: 89:5d:e7:0e:6a:92:b5:4b:b1:25:a3:1f:0b:21:c0:a2:49:ca: b2:41:cf:a0:0f:14:e5:fb:2f:da:7a:fc:83:e8:b6:88:ff:d8: c2:f9:58:3b:25:2f:0e:6d:1c:03:9d:ac:03:41:c0:fb:bb:1a: 89:c2:27:ff:3a:32:38:e0:bd:35:7c:29:69:6c:53:d0:3b:3a: 9f:2a:66:60:6f:1d:04:7a:34:07:9a:53:6f:c3:ec:b1:e2:31: 9d:99:2d:ed:a7:f9:c3:ad:f4:e4:1d:15:67:2e:f2:fa:5c:f6: 71:73:b4:1d:c1:7e:11:a7:95:69:21:86:fd:34:07:d8:3b:47: ac:f9:5d:34:4a:5d:cb:17:52:f9:31:4a:f1:d8:df:64:b1:e2: 7a:b2:a8:e4:18:fd:39:ca:c4:9a:a2:73:80:97:ca:fe:0c:58: c3:1b:4d:48:a0:b4:af:b2:1f:7f:1c:d7:4a:f7:72:cc:d0:6e: 96:5a:e6:b9:36:0e:3f:ce:8d:04:2a:49:4a:53:fb:b0:92:6b: 6a:61:8b:0d:c0:3b:1c:fe:18:20:aa:2a:87:17:11:61:9b:ff: 7d:84:20:db -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgIUKrqN0Vcj+PPoyYgVHjw21uuK3mEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOTJBOTgwMDAwMTEwLwYDVQQFEyg5ODlEMzJENUI2 MkFDOTM4OTI4NkMxN0NBNTA3OEJEMDA2NkYxRTEyMB4XDTI1MDcwNDEyMDAwM1oX DTI2MDcwMzEyMDUwM1owMzExMC8GA1UEAxMoMzI2Nzk4NzhDNTQ2MTYzMDREN0Yx NkVENTVEMjU1RDk1NEQ0QTA4OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjenKtFCAIXD7t0wQvcWp8peJm2iWjiuVgoV9seX03YtNYusxjQgP9tw4po jk8fdx2FQY5q/BtVmej2cD8sSb48xl7Sy/lgjOSLjB0cgjXdYy4DcpLf/4aVTGuS 4bPIvOy4LJaOBp4qc5DjFO38YFDdGBy7YheKzX+5wE5ipY4ApfxcTqhCncVX/UBS lT7NRQ+u6AIAZ8kIcep55veMAmcTLCSAHyu7SaE+VShrpbsu+ppNFsvBoNiglJsy xdMeMqcxcrliX7WyL7Fo5ivTwXwwakeemChXEhXklN4IS3v/AnXWBEPsAG+yT7vs OMvuwQVQjKabCtzWoNEeeKqAFUECAwEAAaOCAhIwggIOMB0GA1UdDgQWBBQyZ5h4 xUYWME1/Fu1V0lXZVNSgiTAfBgNVHSMEGDAWgBSYnTLVtirJOJKGwXylB4vQBm8e EjAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MkE5ODAwMDAvMC85ODlEMzJE NUI2MkFDOTM4OTI4NkMxN0NBNTA3OEJEMDA2NkYxRTEyLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9tSjB5MWJZcXlU aVNoc0Y4cFFlTDBBWnZIaEkuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTJB OTgwMDAwLzAvMzIzNDMwMzEzYTM3MzM2MzMwM2EzYTJmMzMzMjJkMzMzMjIwM2Qz ZTIwMzEzMzM2MzczOTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAG CCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAFzwDANBgkqhkiG9w0BAQsFAAOC AQEAS6VD3rNTP+t3tgmf3XHH8wB03LxzTC9sbwH/+t2pJiGfyP+siV3nDmqStUux JaMfCyHAoknKskHPoA8U5fsv2nr8g+i2iP/YwvlYOyUvDm0cA52sA0HA+7saicIn /zoyOOC9NXwpaWxT0Ds6nypmYG8dBHo0B5pTb8PsseIxnZkt7af5w6305B0VZy7y +lz2cXO0HcF+EaeVaSGG/TQH2DtHrPldNEpdyxdS+TFK8djfZLHierKo5Bj9OcrE mqJzgJfK/gxYwxtNSKC0r7IffxzXSvdyzNBullrmuTYOP86NBCpJSlP7sJJramGL DcA7HP4YIKoqhxcRYZv/fYQg2w== -----END CERTIFICATE-----Generated at Sat Jul 26 08:01:44 2025 by rpki-client