$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa File: 323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa (raw, json) Hash identifier: 9FXIqtvqlI1b6k7H88FgG5bPVoeiPlgW3c8/gsoxMSo= Subject key identifier: F7:BD:E1:9A:A8:45:E4:FB:38:94:FD:84:45:AB:D9:C0:1F:BF:EE:8F Certificate issuer: /CN=A917447B0000/serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Certificate serial: 70B307A086D92ED8F48BA27D8E173EDD9BF812C1 Authority key identifier: 17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa Signing time: Fri 19 Jun 2026 11:57:38 +0000 ROA not before: Fri 19 Jun 2026 11:52:38 +0000 ROA not after: Fri 18 Jun 2027 11:57:38 +0000 asID: 153346 IP address blocks: 2001:df4:514f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Jun 2026 04:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:b3:07:a0:86:d9:2e:d8:f4:8b:a2:7d:8e:17:3e:dd:9b:f8:12:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000, serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Validity Not Before: Jun 19 11:52:38 2026 GMT Not After : Jun 18 11:57:38 2027 GMT Subject: CN=F7BDE19AA845E4FB3894FD8445ABD9C01FBFEE8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0d:c3:eb:40:fc:50:19:9b:9a:c5:e7:61:da: e9:3f:13:d6:7e:9f:b4:8d:4e:b8:c4:0c:b1:31:ab: 5a:9b:b9:2f:90:5b:9a:7b:39:1e:7f:89:4f:63:a6: d9:60:51:9a:ff:7d:98:a1:3e:f7:88:39:e0:61:76: b4:b7:f1:c8:68:2f:55:d9:b8:f6:1b:6a:68:ff:7d: 2e:a5:81:ad:f1:e9:24:78:ab:8c:1a:20:0b:f2:55: e4:99:ed:d4:18:31:54:15:71:f5:f1:e2:f3:8d:ef: dc:24:14:78:98:a2:ed:4d:9b:02:6e:68:91:90:b6: ad:ed:ad:73:38:61:88:a5:9a:3f:0f:81:67:2b:c2: 9f:3a:ef:09:9a:fc:10:f6:1a:67:44:8b:65:95:ba: 4b:31:01:45:37:e6:d3:f7:fc:08:3c:05:20:2c:f6: a4:ea:c8:55:62:7a:ec:03:e3:37:24:b9:94:28:93: cd:03:89:ab:77:4a:7d:fc:57:60:32:9d:e6:23:1a: 17:c7:9a:90:f7:66:3b:67:fa:f9:81:7e:35:74:19: fe:46:9d:22:91:b6:69:28:5c:23:e4:b4:dd:b0:45: 39:6a:87:c0:1c:92:57:14:54:49:7b:aa:2c:bc:d5: 46:3f:3c:8c:14:d4:cb:d2:d9:b4:56:d0:a8:eb:69: a2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:BD:E1:9A:A8:45:E4:FB:38:94:FD:84:45:AB:D9:C0:1F:BF:EE:8F X509v3 Authority Key Identifier: keyid:17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:514f::/48 Signature Algorithm: sha256WithRSAEncryption 8c:9d:b5:8d:5f:9c:a1:f8:91:87:c6:1b:2e:20:b0:25:ec:45: 41:f6:a0:00:46:17:3b:d2:6b:f8:ef:89:eb:6f:c4:3c:2f:d0: eb:35:7e:e1:6d:5c:c3:17:76:17:d9:70:76:97:33:eb:cf:e5: 19:08:54:24:25:93:40:b8:4c:27:78:67:ae:e9:e5:81:00:1a: c0:6d:9e:7b:9d:b4:87:85:4c:1c:1b:af:6f:cb:48:04:8c:83: df:ab:ec:f8:69:2d:a5:46:81:fa:60:04:bd:28:0f:dd:57:b9: f4:b3:e5:85:04:d9:bc:d8:6e:e6:a1:4e:1c:47:d8:27:32:e8: 0d:4a:e8:39:7e:42:4b:f6:2e:8e:a7:5c:f3:96:79:98:46:b4: a5:81:91:f0:d6:ae:1d:57:14:28:06:76:87:c9:2f:fa:64:f6: a9:d4:91:46:1d:1c:1d:b9:a7:a7:65:39:86:f3:3b:93:e4:a1: 1f:fb:3f:b7:cb:dc:d9:58:e6:41:60:3c:7e:be:96:23:09:b4: 93:2a:c6:e8:9d:db:dd:c4:d2:20:a9:73:d1:5c:0a:b9:6e:f7: 82:99:98:07:03:48:b6:d4:f5:64:0c:b1:50:da:38:43:38:58: f8:cb:fb:e7:70:fd:e9:cd:5a:e0:23:ed:70:d5:66:88:0e:cd: 9f:10:30:90 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcLMHoIbZLtj0i6J9jhc+3Zv4EsEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEygxN0FBMzkyQzBD RkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBMB4XDTI2MDYxOTExNTIzOFoX DTI3MDYxODExNTczOFowMzExMC8GA1UEAxMoRjdCREUxOUFBODQ1RTRGQjM4OTRG RDg0NDVBQkQ5QzAxRkJGRUU4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMgNw+tA/FAZm5rF52Ha6T8T1n6ftI1OuMQMsTGrWpu5L5Bbmns5Hn+JT2Om 2WBRmv99mKE+94g54GF2tLfxyGgvVdm49htqaP99LqWBrfHpJHirjBogC/JV5Jnt 1BgxVBVx9fHi843v3CQUeJii7U2bAm5okZC2re2tczhhiKWaPw+BZyvCnzrvCZr8 EPYaZ0SLZZW6SzEBRTfm0/f8CDwFICz2pOrIVWJ67APjNyS5lCiTzQOJq3dKffxX YDKd5iMaF8eakPdmO2f6+YF+NXQZ/kadIpG2aShcI+S03bBFOWqHwBySVxRUSXuq LLzVRj88jBTUy9LZtFbQqOtposUCAwEAAaOCAh8wggIbMB0GA1UdDgQWBBT3veGa qEXk+ziU/YRFq9nAH7/ujzAfBgNVHSMEGDAWgBQXqjksDP91T2JJAG2JOG+HG5aT +jAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMS8xN0FBMzky QzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GNm81TEF6X2RV OWlTUUJ0aVRodmh4dVdrX28uY2VyMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYB BQUHMAuGd3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkx NzQ0N0IwMDAwLzEvMzIzMDMwMzEzYTY0NjYzNDNhMzUzMTM0NjYzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMTM1MzMzMzM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ30UU8wDQYJ KoZIhvcNAQELBQADggEBAIydtY1fnKH4kYfGGy4gsCXsRUH2oABGFzvSa/jvietv xDwv0Os1fuFtXMMXdhfZcHaXM+vP5RkIVCQlk0C4TCd4Z67p5YEAGsBtnnudtIeF TBwbr2/LSASMg9+r7PhpLaVGgfpgBL0oD91XufSz5YUE2bzYbuahThxH2Ccy6A1K 6Dl+Qkv2Lo6nXPOWeZhGtKWBkfDWrh1XFCgGdofJL/pk9qnUkUYdHB25p6dlOYbz O5PkoR/7P7fL3NlY5kFgPH6+liMJtJMqxuid293E0iCpc9FcCrlu94KZmAcDSLbU 9WQMsVDaOEM4WPjL++dw/enNWuAj7XDVZogOzZ8QMJA= -----END CERTIFICATE-----Generated at Wed Jun 24 14:37:52 2026 by rpki-client