$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134653a3a2f34382d3438203d3e20313533333436.roa File: 323030313a6466343a353134653a3a2f34382d3438203d3e20313533333436.roa (raw, json) Hash identifier: RDNXpylv0IlOw3O/7fE48tOOsRe7Sfyvu1b+jDwo7qI= Subject key identifier: 57:03:50:B0:B3:C7:F6:94:B2:B4:FE:E4:FA:BE:39:A0:EA:D0:AA:16 Certificate issuer: /CN=A917447B0000/serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Certificate serial: 24F5E054ABE778F085232CEE8DE1D0275D2E495D Authority key identifier: 17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134653a3a2f34382d3438203d3e20313533333436.roa Signing time: Sun 14 Sep 2025 04:35:15 +0000 ROA not before: Sun 14 Sep 2025 04:30:15 +0000 ROA not after: Sun 13 Sep 2026 04:35:15 +0000 asID: 153346 IP address blocks: 2001:df4:514e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Sep 2025 03:46:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:f5:e0:54:ab:e7:78:f0:85:23:2c:ee:8d:e1:d0:27:5d:2e:49:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000, serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Validity Not Before: Sep 14 04:30:15 2025 GMT Not After : Sep 13 04:35:15 2026 GMT Subject: CN=570350B0B3C7F694B2B4FEE4FABE39A0EAD0AA16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d4:0b:56:66:35:e1:08:43:16:fa:5c:8d:6d: 5e:14:75:81:c5:4a:f2:a8:2e:6a:27:45:58:a2:7e: a9:25:c9:c4:54:df:09:b2:94:be:7e:d6:3d:ea:2a: 2e:f5:5e:f8:55:af:60:1d:39:4b:e8:a8:9c:7a:3b: ab:58:93:69:4c:d2:9e:61:9e:43:08:d5:7e:ae:eb: 06:8a:ce:98:69:05:ef:21:93:7c:37:84:09:b7:8c: 57:7f:6b:6c:79:60:2f:a7:38:ea:d5:a3:ad:7a:90: cb:6f:7a:de:3c:e5:fa:b0:b5:03:d7:3d:4e:fd:92: f7:26:39:95:35:26:8e:14:47:ae:b6:c8:bf:bc:a0: fd:73:35:f4:f9:91:a2:9f:94:3d:0e:06:d0:55:a7: 49:a1:83:e7:47:d8:ec:eb:b6:33:a4:23:93:1e:0a: a4:02:0d:1b:f6:b3:96:b8:68:a0:d8:c9:84:0b:a3: df:b8:09:04:63:75:1d:77:a4:15:87:33:95:9b:49: 6a:82:6d:7e:c3:2e:1e:85:d5:4b:51:60:ff:f9:fd: 0b:05:40:20:9b:d0:e2:d4:c8:7c:23:81:d0:a6:ff: 57:3d:a6:0e:47:49:b8:69:78:d9:15:ef:ff:b3:26: 4b:95:45:be:1d:89:4e:8b:2b:9d:8b:9e:f8:be:a4: 04:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:03:50:B0:B3:C7:F6:94:B2:B4:FE:E4:FA:BE:39:A0:EA:D0:AA:16 X509v3 Authority Key Identifier: keyid:17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134653a3a2f34382d3438203d3e20313533333436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:514e::/48 Signature Algorithm: sha256WithRSAEncryption 32:81:00:76:a4:c7:ad:e9:9d:c1:3e:76:0a:ac:92:37:5c:d5: e0:e2:eb:ca:3a:a4:b8:a3:21:a0:c3:ea:19:15:68:ca:29:3b: 0e:17:ce:19:7a:bb:91:fd:3d:55:6c:7b:c4:77:46:54:09:b3: 41:d6:5d:12:48:4e:9c:37:f8:21:63:88:7e:6b:4a:7c:96:d7: 81:c8:27:3f:7d:71:6e:7f:65:dd:f4:39:58:d1:4f:f6:36:42: 80:40:fe:0c:44:69:c8:15:38:73:d8:70:37:5c:5e:73:16:ff: d9:59:63:56:27:d6:8c:00:6a:3a:80:23:69:85:a4:7f:2d:c5: d1:09:51:f4:f0:a1:12:18:34:57:2a:6f:28:29:44:96:0b:8c: 65:72:32:1e:47:1c:70:f2:f1:18:ee:98:f8:e0:b7:a0:bc:4a: 17:2d:4f:fb:1a:79:59:3d:3a:0f:07:8a:73:6e:54:02:7a:e2: 39:74:19:99:f1:5a:e6:07:7d:91:40:4f:b7:d6:83:37:ab:5a: c1:cc:f6:b9:72:2f:75:75:ca:25:35:77:56:10:97:e5:d7:0b: 56:c6:42:76:56:be:dc:50:7d:30:cb:66:77:84:ab:cd:ee:de: fb:a3:ce:9d:ba:e6:f8:c6:6e:2a:32:0f:87:24:2b:bc:41:dd: 00:c9:bb:e7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJPXgVKvnePCFIyzujeHQJ10uSV0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEygxN0FBMzkyQzBD RkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBMB4XDTI1MDkxNDA0MzAxNVoX DTI2MDkxMzA0MzUxNVowMzExMC8GA1UEAxMoNTcwMzUwQjBCM0M3RjY5NEIyQjRG RUU0RkFCRTM5QTBFQUQwQUExNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJXUC1ZmNeEIQxb6XI1tXhR1gcVK8qguaidFWKJ+qSXJxFTfCbKUvn7WPeoq LvVe+FWvYB05S+ionHo7q1iTaUzSnmGeQwjVfq7rBorOmGkF7yGTfDeECbeMV39r bHlgL6c46tWjrXqQy2963jzl+rC1A9c9Tv2S9yY5lTUmjhRHrrbIv7yg/XM19PmR op+UPQ4G0FWnSaGD50fY7Ou2M6Qjkx4KpAING/azlrhooNjJhAuj37gJBGN1HXek FYczlZtJaoJtfsMuHoXVS1Fg//n9CwVAIJvQ4tTIfCOB0Kb/Vz2mDkdJuGl42RXv /7MmS5VFvh2JTosrnYue+L6kBLUCAwEAAaOCAh8wggIbMB0GA1UdDgQWBBRXA1Cw s8f2lLK0/uT6vjmg6tCqFjAfBgNVHSMEGDAWgBQXqjksDP91T2JJAG2JOG+HG5aT +jAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMS8xN0FBMzky QzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GNm81TEF6X2RV OWlTUUJ0aVRodmh4dVdrX28uY2VyMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYB BQUHMAuGd3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkx NzQ0N0IwMDAwLzEvMzIzMDMwMzEzYTY0NjYzNDNhMzUzMTM0NjUzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMTM1MzMzMzM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ30UU4wDQYJ KoZIhvcNAQELBQADggEBADKBAHakx63pncE+dgqskjdc1eDi68o6pLijIaDD6hkV aMopOw4Xzhl6u5H9PVVse8R3RlQJs0HWXRJITpw3+CFjiH5rSnyW14HIJz99cW5/ Zd30OVjRT/Y2QoBA/gxEacgVOHPYcDdcXnMW/9lZY1Yn1owAajqAI2mFpH8txdEJ UfTwoRIYNFcqbygpRJYLjGVyMh5HHHDy8RjumPjgt6C8ShctT/saeVk9Og8HinNu VAJ64jl0GZnxWuYHfZFAT7fWgzerWsHM9rlyL3V1yiU1d1YQl+XXC1bGQnZWvtxQ fTDLZneEq83u3vujzp265vjGbioyD4ckK7xB3QDJu+c= -----END CERTIFICATE-----Generated at Fri Sep 19 08:49:35 2025 by rpki-client