$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/0/3136302e3138372e3132342e302f32342d3234203d3e20313533333436.roa File: 3136302e3138372e3132342e302f32342d3234203d3e20313533333436.roa (raw, json) Hash identifier: cbMDbQFybOhC0G9iTs0qjEoMRd0fCOiZgnIZV0fHXTE= Subject key identifier: CF:92:3C:3A:E4:AF:3C:8B:12:F7:8A:75:18:AC:79:33:5C:E2:82:5E Certificate issuer: /CN=A917447B0000/serialNumber=BEC716379E148BA880231B055E3B034159DB8697 Certificate serial: 4109471DD722A494655E2BE67A9A683DFD4138AD Authority key identifier: BE:C7:16:37:9E:14:8B:A8:80:23:1B:05:5E:3B:03:41:59:DB:86:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vscWN54Ui6iAIxsFXjsDQVnbhpc.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/3136302e3138372e3132342e302f32342d3234203d3e20313533333436.roa Signing time: Fri 18 Jul 2025 11:17:05 +0000 ROA not before: Fri 18 Jul 2025 11:12:05 +0000 ROA not after: Fri 17 Jul 2026 11:17:05 +0000 asID: 153346 IP address blocks: 160.187.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BEC716379E148BA880231B055E3B034159DB8697.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BEC716379E148BA880231B055E3B034159DB8697.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vscWN54Ui6iAIxsFXjsDQVnbhpc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 20:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:09:47:1d:d7:22:a4:94:65:5e:2b:e6:7a:9a:68:3d:fd:41:38:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000, serialNumber=BEC716379E148BA880231B055E3B034159DB8697 Validity Not Before: Jul 18 11:12:05 2025 GMT Not After : Jul 17 11:17:05 2026 GMT Subject: CN=CF923C3AE4AF3C8B12F78A7518AC79335CE2825E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:69:d3:a3:cd:7e:95:81:a9:9f:6d:39:d4:c5: 06:5b:16:73:f3:3b:08:38:64:a1:07:03:52:6e:0a: f4:d8:1b:73:e8:b3:7d:ea:18:59:51:af:a8:57:36: 69:39:25:08:fd:5c:a5:9f:60:cd:14:e1:13:48:10: 00:20:c3:02:02:16:21:ca:2f:a2:05:86:a2:4f:d3: 83:89:c4:f6:bf:65:49:b8:d1:47:78:44:01:b2:c2: d9:f9:12:57:a1:54:0d:3c:bc:c5:9e:d8:9d:57:12: 5d:5e:7b:91:71:01:00:4b:49:3a:b3:f6:89:36:11: 50:3e:fb:66:b2:b6:ac:f4:78:11:70:da:6c:2f:4f: 09:32:2e:64:2b:02:4b:54:5f:5d:c5:86:b6:79:5f: 0a:d2:55:a0:90:9a:d0:48:54:b4:64:22:f7:4d:46: ab:d6:22:3d:a8:ac:3a:e1:56:9d:8a:ff:a1:50:f2: 80:0b:77:fd:3e:b9:44:f3:1b:eb:66:33:5a:7a:68: ec:cc:4e:c3:65:f8:44:a5:0d:0a:32:fc:2a:1e:e0: 69:c6:e8:e4:41:cc:f4:79:d7:9b:5b:af:8e:de:02: 8e:20:95:b1:d7:2a:73:8f:a5:7e:39:ab:21:44:66: 9e:b4:63:3e:a1:89:59:94:5b:d8:0d:da:84:fb:76: 5d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:92:3C:3A:E4:AF:3C:8B:12:F7:8A:75:18:AC:79:33:5C:E2:82:5E X509v3 Authority Key Identifier: keyid:BE:C7:16:37:9E:14:8B:A8:80:23:1B:05:5E:3B:03:41:59:DB:86:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BEC716379E148BA880231B055E3B034159DB8697.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vscWN54Ui6iAIxsFXjsDQVnbhpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/3136302e3138372e3132342e302f32342d3234203d3e20313533333436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.124.0/24 Signature Algorithm: sha256WithRSAEncryption 38:0b:8b:2f:6b:12:13:d6:5f:97:bb:c0:a4:8a:03:73:04:f1: 29:26:e1:45:6c:cc:4e:7b:26:c0:2d:cf:8c:83:d7:6a:fd:0d: fc:86:96:b2:2a:0f:6e:67:68:93:8b:f4:8c:ef:d7:9f:95:29: f8:8e:42:67:b1:7f:7e:e8:1f:59:c9:42:13:68:a0:48:8e:ae: 94:56:2c:ea:89:40:5f:95:3f:95:85:32:f0:ac:93:30:6d:51: 3a:6d:12:37:91:2b:ca:8d:59:7a:dd:df:45:29:ad:34:a0:a8: 68:b3:02:5e:8c:c9:3d:52:4a:43:cc:42:95:3d:0b:18:0e:0b: b8:ca:1d:c8:f0:67:f5:30:e7:0e:bc:ef:32:7c:c0:8f:83:f1: 08:48:45:d5:0e:49:3c:7c:26:f9:cf:62:af:3a:29:22:d7:3c: e4:3e:76:e1:8b:29:a9:09:ef:16:cb:16:ca:d6:b4:31:de:55: 71:93:b5:00:41:2a:5b:ec:1e:8d:71:86:a0:45:57:4e:ca:3b: 6e:b0:ed:bb:48:23:88:89:d5:db:28:0b:04:6d:09:a6:f2:6f: 98:bc:89:78:0b:88:62:dc:76:04:79:54:19:72:a1:b4:ff:38: ab:52:f1:27:d5:f7:2c:20:93:93:47:b2:a3:ba:bd:8a:d2:9b: db:93:b5:08 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUQQlHHdcipJRlXivmeppoPf1BOK0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEyhCRUM3MTYzNzlF MTQ4QkE4ODAyMzFCMDU1RTNCMDM0MTU5REI4Njk3MB4XDTI1MDcxODExMTIwNVoX DTI2MDcxNzExMTcwNVowMzExMC8GA1UEAxMoQ0Y5MjNDM0FFNEFGM0M4QjEyRjc4 QTc1MThBQzc5MzM1Q0UyODI1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMdp06PNfpWBqZ9tOdTFBlsWc/M7CDhkoQcDUm4K9Ngbc+izfeoYWVGvqFc2 aTklCP1cpZ9gzRThE0gQACDDAgIWIcovogWGok/Tg4nE9r9lSbjRR3hEAbLC2fkS V6FUDTy8xZ7YnVcSXV57kXEBAEtJOrP2iTYRUD77ZrK2rPR4EXDabC9PCTIuZCsC S1RfXcWGtnlfCtJVoJCa0EhUtGQi901Gq9YiPaisOuFWnYr/oVDygAt3/T65RPMb 62YzWnpo7MxOw2X4RKUNCjL8Kh7gacbo5EHM9HnXm1uvjt4CjiCVsdcqc4+lfjmr IURmnrRjPqGJWZRb2A3ahPt2XfsCAwEAAaOCAhcwggITMB0GA1UdDgQWBBTPkjw6 5K88ixL3inUYrHkzXOKCXjAfBgNVHSMEGDAWgBS+xxY3nhSLqIAjGwVeOwNBWduG lzAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMC9CRUM3MTYz NzlFMTQ4QkE4ODAyMzFCMDU1RTNCMDM0MTU5REI4Njk3LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi92c2NXTjU0VWk2 aUFJeHNGWGpzRFFWbmJocGMuY2VyMIGRBggrBgEFBQcBCwSBhDCBgTB/BggrBgEF BQcwC4ZzcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3 NDQ3QjAwMDAvMC8zMTM2MzAyZTMxMzgzNzJlMzEzMjM0MmUzMDJmMzIzNDJkMzIz NDIwM2QzZTIwMzEzNTMzMzMzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoLt8MA0GCSqGSIb3DQEB CwUAA4IBAQA4C4svaxIT1l+Xu8CkigNzBPEpJuFFbMxOeybALc+Mg9dq/Q38hpay Kg9uZ2iTi/SM79eflSn4jkJnsX9+6B9ZyUITaKBIjq6UVizqiUBflT+VhTLwrJMw bVE6bRI3kSvKjVl63d9FKa00oKhoswJejMk9UkpDzEKVPQsYDgu4yh3I8Gf1MOcO vO8yfMCPg/EISEXVDkk8fCb5z2KvOiki1zzkPnbhiympCe8WyxbK1rQx3lVxk7UA QSpb7B6NcYagRVdOyjtusO27SCOIidXbKAsEbQmm8m+YvIl4C4hi3HYEeVQZcqG0 /zirUvEn1fcsIJOTR7Kjur2K0pvbk7UI -----END CERTIFICATE-----Generated at Sun Jul 20 22:43:54 2025 by rpki-client