$ rpki-client -vvf rpki.sub.apnic.net/repository/A9148BF70000/0/3130332e3232332e3138342e302f32332d3234203d3e2039333034.roa File: 3130332e3232332e3138342e302f32332d3234203d3e2039333034.roa (raw, json) Hash identifier: HwU7tbEQ6vnFTdeo613VOopEUDCOQYuG2KP+TRqPIxM= Subject key identifier: 27:E4:D5:32:DA:83:61:85:F2:5F:D1:12:32:6D:5A:26:11:4E:5C:F4 Certificate issuer: /CN=A9148BF70000/serialNumber=339FFA93357FAF26142829FABF225AEAE41737F0 Certificate serial: 792DE69CFD36AE4A99A46CB212A648F4A79D9C1B Authority key identifier: 33:9F:FA:93:35:7F:AF:26:14:28:29:FA:BF:22:5A:EA:E4:17:37:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5_6kzV_ryYUKCn6vyJa6uQXN_A.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/3130332e3232332e3138342e302f32332d3234203d3e2039333034.roa Signing time: Fri 26 Sep 2025 05:36:28 +0000 ROA not before: Fri 26 Sep 2025 05:31:28 +0000 ROA not after: Fri 25 Sep 2026 05:36:28 +0000 asID: 9304 IP address blocks: 103.223.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/339FFA93357FAF26142829FABF225AEAE41737F0.crl rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/339FFA93357FAF26142829FABF225AEAE41737F0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5_6kzV_ryYUKCn6vyJa6uQXN_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 10:19:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:2d:e6:9c:fd:36:ae:4a:99:a4:6c:b2:12:a6:48:f4:a7:9d:9c:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148BF70000, serialNumber=339FFA93357FAF26142829FABF225AEAE41737F0 Validity Not Before: Sep 26 05:31:28 2025 GMT Not After : Sep 25 05:36:28 2026 GMT Subject: CN=27E4D532DA836185F25FD112326D5A26114E5CF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d9:1e:56:e8:82:03:b3:89:fd:8d:50:47:b5: 40:25:7a:65:3d:70:ff:d0:2a:6b:f6:a8:e9:91:f7: 15:25:e3:59:8c:27:2c:fe:2a:fb:36:f9:2a:75:54: 2a:33:8f:cc:57:6a:a4:9c:a1:79:51:2e:34:af:2f: 12:3c:2d:bc:25:b6:1b:0e:20:f0:01:b5:aa:53:8e: 14:a2:6f:65:e6:49:8a:9e:0f:ac:20:fb:d3:38:44: 4b:71:75:65:a9:28:b9:58:44:08:08:3a:46:a0:aa: dc:a2:90:e3:53:e2:04:f7:10:4e:da:0d:04:cb:77: b4:fe:25:99:19:a6:a2:7e:36:b2:d0:5f:8d:6b:06: fb:02:e6:78:43:43:c3:1d:79:eb:bc:32:87:b5:05: fe:95:6e:90:fb:a6:3b:dd:7e:b7:23:50:6b:2d:73: e3:fb:c0:b5:28:ff:a6:78:2b:73:30:1b:87:26:cd: e0:82:d1:0a:55:91:5f:f0:c3:cc:8f:6e:ca:1a:a1: a4:e2:2a:ab:27:c9:3d:d9:d0:26:be:65:e9:1a:96: 34:5a:f8:1c:7f:82:98:31:93:88:23:fd:92:77:12: 6a:57:72:79:a2:ff:6d:4c:ea:f0:5b:e8:35:ef:26: 14:d1:3f:12:96:50:e4:49:7a:10:79:b9:2a:1d:a7: 0b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E4:D5:32:DA:83:61:85:F2:5F:D1:12:32:6D:5A:26:11:4E:5C:F4 X509v3 Authority Key Identifier: keyid:33:9F:FA:93:35:7F:AF:26:14:28:29:FA:BF:22:5A:EA:E4:17:37:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/339FFA93357FAF26142829FABF225AEAE41737F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5_6kzV_ryYUKCn6vyJa6uQXN_A.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/3130332e3232332e3138342e302f32332d3234203d3e2039333034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.223.184.0/23 Signature Algorithm: sha256WithRSAEncryption 67:18:3a:50:16:ef:e6:53:79:32:a8:18:57:04:4c:08:a0:68: 7a:65:82:5c:aa:f7:b9:66:f6:48:d6:e2:8e:92:60:31:9b:3e: 88:af:cd:08:75:28:d3:ed:af:7b:1d:04:60:46:64:9d:38:7c: 84:27:cb:61:bd:8c:aa:aa:55:e9:59:e5:4b:eb:ac:9d:7a:97: cb:23:46:a9:21:88:a8:74:76:62:e5:ac:d7:72:30:c5:5e:f5: 3f:bd:af:5b:d2:f0:fc:31:e3:fa:89:f6:7b:4a:79:a5:78:67: 6d:ea:f0:b3:b2:13:d7:cf:6f:ef:02:7a:d2:f7:be:68:bd:8b: 51:1b:3f:56:b6:17:22:d3:98:18:4f:fe:b5:1c:ad:4e:09:e6: 8b:4a:c7:50:1b:cf:55:a9:de:b3:57:09:7f:80:97:9d:af:6d: c4:39:d1:c9:f5:cf:ed:78:9f:00:f6:29:6a:d8:c8:b3:b6:4a: 17:00:7b:ad:77:32:6f:eb:e5:eb:ee:7c:db:e7:82:d8:4e:ab: c8:90:87:93:f7:6a:9e:d4:58:26:52:c1:ae:fe:70:f5:9e:5f: 11:a8:5d:b0:dd:a7:f7:38:b3:c3:dc:8d:e4:f0:6d:02:98:ef: a4:22:f8:ec:fa:87:5e:9c:2d:2d:d3:83:2b:1a:23:a4:c7:f5: 88:b0:14:f9 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUeS3mnP02rkqZpGyyEqZI9KednBswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDhCRjcwMDAwMTEwLwYDVQQFEygzMzlGRkE5MzM1 N0ZBRjI2MTQyODI5RkFCRjIyNUFFQUU0MTczN0YwMB4XDTI1MDkyNjA1MzEyOFoX DTI2MDkyNTA1MzYyOFowMzExMC8GA1UEAxMoMjdFNEQ1MzJEQTgzNjE4NUYyNUZE MTEyMzI2RDVBMjYxMTRFNUNGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKHZHlboggOzif2NUEe1QCV6ZT1w/9Aqa/ao6ZH3FSXjWYwnLP4q+zb5KnVU KjOPzFdqpJyheVEuNK8vEjwtvCW2Gw4g8AG1qlOOFKJvZeZJip4PrCD70zhES3F1 ZakouVhECAg6RqCq3KKQ41PiBPcQTtoNBMt3tP4lmRmmon42stBfjWsG+wLmeEND wx1567wyh7UF/pVukPumO91+tyNQay1z4/vAtSj/pngrczAbhybN4ILRClWRX/DD zI9uyhqhpOIqqyfJPdnQJr5l6RqWNFr4HH+CmDGTiCP9kncSaldyeaL/bUzq8Fvo Ne8mFNE/EpZQ5El6EHm5Kh2nC9UCAwEAAaOCAhEwggINMB0GA1UdDgQWBBQn5NUy 2oNhhfJf0RIybVomEU5c9DAfBgNVHSMEGDAWgBQzn/qTNX+vJhQoKfq/Ilrq5Bc3 8DAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE0OEJGNzAwMDAvMC8zMzlGRkE5 MzM1N0ZBRjI2MTQyODI5RkFCRjIyNUFFQUU0MTczN0YwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NNV82a3pWX3J5 WVVLQ242dnlKYTZ1UVhOX0EuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxNDhC RjcwMDAwLzAvMzEzMDMzMmUzMjMyMzMyZTMxMzgzNDJlMzAyZjMyMzMyZDMyMzQy MDNkM2UyMDM5MzMzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9+4MA0GCSqGSIb3DQEBCwUAA4IB AQBnGDpQFu/mU3kyqBhXBEwIoGh6ZYJcqve5ZvZI1uKOkmAxmz6Ir80IdSjT7a97 HQRgRmSdOHyEJ8thvYyqqlXpWeVL66ydepfLI0apIYiodHZi5azXcjDFXvU/va9b 0vD8MeP6ifZ7SnmleGdt6vCzshPXz2/vAnrS975ovYtRGz9Wthci05gYT/61HK1O CeaLSsdQG89Vqd6zVwl/gJedr23EOdHJ9c/teJ8A9ilq2MiztkoXAHutdzJv6+Xr 7nzb54LYTqvIkIeT92qe1FgmUsGu/nD1nl8RqF2w3af3OLPD3I3k8G0CmO+kIvjs +odenC0t04MrGiOkx/WIsBT5 -----END CERTIFICATE-----Generated at Sun Oct 19 18:34:20 2025 by rpki-client