$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/4/3230332e33302e36302e302f32342d3234203d3e2037353436.roa File: 3230332e33302e36302e302f32342d3234203d3e2037353436.roa (raw, json) Hash identifier: ciSHjom7uhsnTUry3euH0kEf+ood81S/2eHdQ8CkHns= Subject key identifier: ED:07:57:F4:29:FB:17:5B:D0:87:66:C9:58:8C:D4:EA:6E:2B:73:D8 Certificate issuer: /CN=A91E539C0000/serialNumber=B7351B05B1619E9DE395F0B2FFC9EE1129F300B4 Certificate serial: 3CC84111DD1123AB60D94F85180D461EF8E683D0 Authority key identifier: B7:35:1B:05:B1:61:9E:9D:E3:95:F0:B2:FF:C9:EE:11:29:F3:00:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/4/3230332e33302e36302e302f32342d3234203d3e2037353436.roa Signing time: Sun 05 Oct 2025 05:27:58 +0000 ROA not before: Sun 05 Oct 2025 05:22:58 +0000 ROA not after: Sun 04 Oct 2026 05:27:58 +0000 asID: 7546 IP address blocks: 203.30.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/4/B7351B05B1619E9DE395F0B2FFC9EE1129F300B4.crl rsync://rpki.sub.apnic.net/repository/A91905300000/4/B7351B05B1619E9DE395F0B2FFC9EE1129F300B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 07:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:c8:41:11:dd:11:23:ab:60:d9:4f:85:18:0d:46:1e:f8:e6:83:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E539C0000, serialNumber=B7351B05B1619E9DE395F0B2FFC9EE1129F300B4 Validity Not Before: Oct 5 05:22:58 2025 GMT Not After : Oct 4 05:27:58 2026 GMT Subject: CN=ED0757F429FB175BD08766C9588CD4EA6E2B73D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6e:9f:55:e2:b6:09:31:6c:c0:ae:d5:43:53: e4:5c:24:5d:30:26:b2:bd:56:d4:4e:c5:63:33:44: 3c:a1:83:1a:36:2e:67:66:1d:49:ef:bd:46:49:2b: 9c:55:2b:41:9c:7c:6c:f5:fa:db:ab:cd:b1:08:9d: a6:9d:eb:d8:24:a5:b1:ee:f8:37:4d:a8:ac:2f:87: 09:2a:a8:38:20:68:04:64:8b:d0:f7:48:30:37:75: 79:f0:c1:3c:ba:41:bc:c1:66:a4:b7:62:cf:49:c8: a0:2c:31:b1:41:9e:4b:49:4b:ee:0e:f3:81:6a:c3: 9d:21:d6:c2:04:8a:bd:cd:5a:c2:5b:67:d3:ff:bb: f2:2b:8c:f6:c4:cf:f5:d1:f9:aa:34:08:bc:83:85: 67:9f:4b:13:21:b3:e8:87:88:8c:e5:ea:5e:5f:14: 6b:2e:62:27:9d:2f:52:14:d9:e3:c9:eb:92:70:1e: a5:ae:00:7b:d3:3b:77:ef:6b:bc:42:27:ef:56:00: 1d:38:5f:86:9f:27:72:90:df:2f:2f:a3:11:7c:ce: 51:1e:2d:7e:d2:25:88:f3:ef:90:f0:6e:7e:f5:05: 3a:0d:33:66:de:41:53:07:dc:b9:33:9d:21:7a:b1: d8:ad:bd:a8:0f:74:85:a5:99:2c:29:59:dc:6f:88: 07:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:07:57:F4:29:FB:17:5B:D0:87:66:C9:58:8C:D4:EA:6E:2B:73:D8 X509v3 Authority Key Identifier: keyid:B7:35:1B:05:B1:61:9E:9D:E3:95:F0:B2:FF:C9:EE:11:29:F3:00:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/4/B7351B05B1619E9DE395F0B2FFC9EE1129F300B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/4/3230332e33302e36302e302f32342d3234203d3e2037353436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.30.60.0/24 Signature Algorithm: sha256WithRSAEncryption 44:d8:d3:df:aa:f4:55:09:ec:d3:c4:e9:6d:4a:7d:d8:07:5a: 6a:5b:fd:fe:95:a4:74:08:2f:61:89:bf:42:eb:4a:6b:26:30: 50:cc:5c:94:da:c7:80:c1:93:59:d7:e7:65:15:5e:bd:88:c4: 8c:6b:d4:99:9f:ec:26:c8:83:53:75:06:ab:aa:22:bb:db:63: f4:6d:27:7a:88:09:13:8f:be:01:23:51:f2:d5:aa:68:e9:c2: 8f:91:dd:85:23:62:be:ba:84:93:e0:ee:5a:37:ae:ff:1d:23: 52:85:63:94:e4:99:ce:6a:a6:90:6e:1e:a3:0f:02:e8:f0:fb: 06:5a:ec:70:47:d4:24:c0:65:b9:60:4d:52:9e:2f:da:3e:14: 79:ea:8c:de:2b:50:73:0c:1f:04:41:63:10:32:eb:ac:89:16: 4f:6b:79:70:b1:82:fb:47:ac:e4:9e:3d:47:ce:1d:2f:25:71: 8b:a7:3b:51:3a:d1:ac:a0:04:23:e6:21:56:6f:d2:e4:de:43: 1a:e7:15:17:a3:01:17:64:d2:09:0a:8d:f4:91:33:eb:34:52: f3:97:f5:ab:89:00:fe:6b:99:45:24:13:8b:a5:7c:31:1e:75: e8:40:59:b7:10:b5:d7:db:fa:af:4a:2b:7c:8d:ac:59:fc:54: c3:15:8d:ce -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgIUPMhBEd0RI6tg2U+FGA1GHvjmg9AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTUzOUMwMDAwMTEwLwYDVQQFEyhCNzM1MUIwNUIx NjE5RTlERTM5NUYwQjJGRkM5RUUxMTI5RjMwMEI0MB4XDTI1MTAwNTA1MjI1OFoX DTI2MTAwNDA1Mjc1OFowMzExMC8GA1UEAxMoRUQwNzU3RjQyOUZCMTc1QkQwODc2 NkM5NTg4Q0Q0RUE2RTJCNzNEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBun1XitgkxbMCu1UNT5FwkXTAmsr1W1E7FYzNEPKGDGjYuZ2YdSe+9Rkkr nFUrQZx8bPX626vNsQidpp3r2CSlse74N02orC+HCSqoOCBoBGSL0PdIMDd1efDB PLpBvMFmpLdiz0nIoCwxsUGeS0lL7g7zgWrDnSHWwgSKvc1awltn0/+78iuM9sTP 9dH5qjQIvIOFZ59LEyGz6IeIjOXqXl8Uay5iJ50vUhTZ48nrknAepa4Ae9M7d+9r vEIn71YAHThfhp8ncpDfLy+jEXzOUR4tftIliPPvkPBufvUFOg0zZt5BUwfcuTOd IXqx2K29qA90haWZLClZ3G+IB4cCAwEAAaOCAg0wggIJMB0GA1UdDgQWBBTtB1f0 KfsXW9CHZslYjNTqbitz2DAfBgNVHSMEGDAWgBS3NRsFsWGeneOV8LL/ye4RKfMA tDAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvNC9CNzM1MUIw NUIxNjE5RTlERTM5NUYwQjJGRkM5RUUxMTI5RjMwMEI0LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi90elViQmJGaG5w M2psZkN5XzhudUVTbnpBTFEuY2VyMIGHBggrBgEFBQcBCwR7MHkwdwYIKwYBBQUH MAuGa3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1 MzAwMDAwLzQvMzIzMDMzMmUzMzMwMmUzNjMwMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzczNTM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYB BQUHAQcBAf8EEDAOMAwEAgABMAYDBADLHjwwDQYJKoZIhvcNAQELBQADggEBAETY 09+q9FUJ7NPE6W1KfdgHWmpb/f6VpHQIL2GJv0LrSmsmMFDMXJTax4DBk1nX52UV Xr2IxIxr1Jmf7CbIg1N1BquqIrvbY/RtJ3qICROPvgEjUfLVqmjpwo+R3YUjYr66 hJPg7lo3rv8dI1KFY5Tkmc5qppBuHqMPAujw+wZa7HBH1CTAZblgTVKeL9o+FHnq jN4rUHMMHwRBYxAy66yJFk9reXCxgvtHrOSePUfOHS8lcYunO1E60aygBCPmIVZv 0uTeQxrnFRejARdk0gkKjfSRM+s0UvOX9auJAP5rmUUkE4ulfDEedehAWbcQtdfb +q9KK3yNrFn8VMMVjc4= -----END CERTIFICATE-----Generated at Wed Nov 5 21:27:50 2025 by rpki-client