$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa File: 323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa (raw, json) Hash identifier: HOBlUUzXIgqWknT1VOL1nB3qMa6Fu6vRC1OMoEBjewg= Subject key identifier: 9B:AB:79:0C:FE:AA:A3:9B:BC:8A:EF:38:EC:FB:9A:6E:E3:28:24:E6 Certificate issuer: /CN=A917447B0000/serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Certificate serial: 7F1B43116F62D01022B3BA0E14328F055E169BDB Authority key identifier: 17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa Signing time: Fri 18 Jul 2025 11:18:04 +0000 ROA not before: Fri 18 Jul 2025 11:13:04 +0000 ROA not after: Fri 17 Jul 2026 11:18:04 +0000 asID: 153346 IP address blocks: 2001:df4:514f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 14:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:1b:43:11:6f:62:d0:10:22:b3:ba:0e:14:32:8f:05:5e:16:9b:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000, serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Validity Not Before: Jul 18 11:13:04 2025 GMT Not After : Jul 17 11:18:04 2026 GMT Subject: CN=9BAB790CFEAAA39BBC8AEF38ECFB9A6EE32824E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9a:41:b7:2f:fe:94:ab:5d:84:db:a4:33:16: 28:2d:40:a3:22:02:38:26:90:bf:67:40:51:e0:34: 58:ed:cb:ae:7d:41:5d:ee:9c:8a:fb:04:b5:83:73: 1e:b9:4d:5e:62:b1:af:55:e5:8c:65:d7:f9:53:23: bb:e5:53:46:cc:77:ca:ec:f9:81:c0:c5:58:17:7c: 7e:cb:40:85:3c:9f:ff:82:0c:7e:1c:f9:ea:7a:56: f2:c0:49:b4:09:57:cb:d0:9a:f5:81:c0:77:e7:57: 0e:aa:19:df:20:1c:69:0d:78:e7:8e:46:8f:90:bc: ce:61:61:1f:0a:31:c3:97:a2:87:fa:1d:0d:c3:f6: 46:be:4d:cb:0c:9d:9a:5d:b0:13:97:92:24:dd:a6: 89:1c:46:90:03:43:9e:d7:f1:c2:e2:cb:f4:85:36: eb:df:98:23:82:15:c6:31:47:80:14:49:e6:d1:c1: 6e:75:7e:d3:50:2c:ab:32:77:db:50:7f:72:de:cb: fa:73:f8:b4:af:0d:bb:9e:42:b7:fb:db:7e:22:93: 56:1d:f2:b6:62:25:08:2b:b7:c3:e2:62:92:9e:07: 1b:0d:2a:c1:33:37:b2:c8:74:87:0c:b2:5e:03:e6: 14:6f:bd:0e:3a:10:d1:81:a7:0f:61:d4:e2:45:91: 02:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:AB:79:0C:FE:AA:A3:9B:BC:8A:EF:38:EC:FB:9A:6E:E3:28:24:E6 X509v3 Authority Key Identifier: keyid:17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:514f::/48 Signature Algorithm: sha256WithRSAEncryption b4:48:cb:ef:ad:b8:38:96:69:dc:55:6e:3a:ab:24:f9:83:03: 66:f1:b3:b0:43:b0:01:d8:f7:26:b8:9f:43:50:35:d7:f5:11: 57:10:23:1a:d1:4d:07:fa:8c:cb:1f:a3:a2:37:4c:c6:71:9d: 34:4f:8e:44:2a:cf:87:9f:35:5b:33:8d:e4:a8:93:45:62:e5: 5e:47:e5:62:39:19:f0:85:5f:46:40:d7:97:a3:4e:33:f1:c8: cc:2f:af:ec:08:0b:8c:ba:ec:2e:a3:67:7f:52:e0:98:1f:2c: f2:71:80:77:d5:10:30:97:43:99:cf:fa:66:ae:da:cf:b0:7b: cd:95:5a:8a:cf:5c:9b:d5:4f:de:bd:34:84:8d:b0:23:59:eb: 4b:bf:9c:58:7a:22:fe:4e:1b:c9:8c:78:ca:64:02:32:3b:71: 62:f1:22:7b:30:a0:8a:c5:8e:8c:08:4a:22:51:1e:4d:ce:94: 15:3e:28:f9:38:61:c0:09:03:b9:bc:3c:23:c7:85:97:81:c9: c3:4f:b5:04:e9:8f:50:a9:ea:66:6d:5f:33:8d:cf:38:c5:36: 18:6f:6f:bb:d9:e4:75:6e:37:d6:30:94:b2:f7:dc:1e:e7:e2: 8d:86:93:f8:20:48:4e:f1:b0:0b:3b:b7:58:66:ad:68:be:76: 52:6c:11:c1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfxtDEW9i0BAis7oOFDKPBV4Wm9swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEygxN0FBMzkyQzBD RkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBMB4XDTI1MDcxODExMTMwNFoX DTI2MDcxNzExMTgwNFowMzExMC8GA1UEAxMoOUJBQjc5MENGRUFBQTM5QkJDOEFF RjM4RUNGQjlBNkVFMzI4MjRFNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOaQbcv/pSrXYTbpDMWKC1AoyICOCaQv2dAUeA0WO3Lrn1BXe6civsEtYNz HrlNXmKxr1XljGXX+VMju+VTRsx3yuz5gcDFWBd8fstAhTyf/4IMfhz56npW8sBJ tAlXy9Ca9YHAd+dXDqoZ3yAcaQ14545Gj5C8zmFhHwoxw5eih/odDcP2Rr5Nywyd ml2wE5eSJN2miRxGkANDntfxwuLL9IU269+YI4IVxjFHgBRJ5tHBbnV+01AsqzJ3 21B/ct7L+nP4tK8Nu55Ct/vbfiKTVh3ytmIlCCu3w+Jikp4HGw0qwTM3ssh0hwyy XgPmFG+9DjoQ0YGnD2HU4kWRAh0CAwEAAaOCAh8wggIbMB0GA1UdDgQWBBSbq3kM /qqjm7yK7zjs+5pu4ygk5jAfBgNVHSMEGDAWgBQXqjksDP91T2JJAG2JOG+HG5aT +jAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMS8xN0FBMzky QzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GNm81TEF6X2RV OWlTUUJ0aVRodmh4dVdrX28uY2VyMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYB BQUHMAuGd3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkx NzQ0N0IwMDAwLzEvMzIzMDMwMzEzYTY0NjYzNDNhMzUzMTM0NjYzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMTM1MzMzMzM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ30UU8wDQYJ KoZIhvcNAQELBQADggEBALRIy++tuDiWadxVbjqrJPmDA2bxs7BDsAHY9ya4n0NQ Ndf1EVcQIxrRTQf6jMsfo6I3TMZxnTRPjkQqz4efNVszjeSok0Vi5V5H5WI5GfCF X0ZA15ejTjPxyMwvr+wIC4y67C6jZ39S4JgfLPJxgHfVEDCXQ5nP+mau2s+we82V WorPXJvVT969NISNsCNZ60u/nFh6Iv5OG8mMeMpkAjI7cWLxInswoIrFjowISiJR Hk3OlBU+KPk4YcAJA7m8PCPHhZeBycNPtQTpj1Cp6mZtXzONzzjFNhhvb7vZ5HVu N9YwlLL33B7n4o2Gk/ggSE7xsAs7t1hmrWi+dlJsEcE= -----END CERTIFICATE-----Generated at Mon Jul 21 19:00:42 2025 by rpki-client