$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e2039333034.roa File: 3130332e3233382e3133312e302f32342d3234203d3e2039333034.roa (raw, json) Hash identifier: xJHD6oJOmKsdm6y2bTs9H7Pd88grt6jIjKGTOKL3muY= Subject key identifier: 95:AD:61:D6:52:B3:24:81:CF:5B:73:E5:B6:9D:14:A8:6C:95:35:F1 Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 0420109F1C27C5D8104AA08BC195DB3FE9C3F9BA Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e2039333034.roa Signing time: Fri 17 Oct 2025 14:33:40 +0000 ROA not before: Fri 17 Oct 2025 14:28:40 +0000 ROA not after: Fri 16 Oct 2026 14:33:40 +0000 asID: 9304 IP address blocks: 103.238.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 08:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:20:10:9f:1c:27:c5:d8:10:4a:a0:8b:c1:95:db:3f:e9:c3:f9:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Oct 17 14:28:40 2025 GMT Not After : Oct 16 14:33:40 2026 GMT Subject: CN=95AD61D652B32481CF5B73E5B69D14A86C9535F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e8:45:2d:2f:e8:51:dd:19:18:f1:36:a3:6a: 17:93:e5:57:15:7f:b9:ae:c8:c2:c6:17:0c:03:0a: 1e:e2:7f:1b:85:69:23:12:33:4c:47:38:e2:3c:d7: 5b:63:aa:00:86:80:e9:db:52:2b:3f:25:5c:7c:0e: e5:69:6d:58:45:cd:b5:67:6f:5f:b0:d7:50:1b:45: bc:ff:18:8c:b4:19:8d:25:34:92:78:f4:8c:b1:56: 7e:21:a9:c9:52:86:4f:bd:e2:1b:53:ad:31:b8:e6: 09:1a:3e:b3:28:d8:9c:73:b8:3c:2f:8e:eb:bc:2d: 08:5f:e1:e2:0f:01:d5:d6:09:33:75:43:9d:4d:77: e2:b5:c0:fd:ea:2b:34:9a:cf:40:02:49:0f:51:15: 9b:d5:c6:3a:53:eb:0e:6c:e8:81:27:d2:66:75:e5: 09:87:2f:a9:ab:9a:ce:71:38:13:0f:06:e9:dd:ee: e4:f7:a5:06:88:ea:86:05:86:a9:7b:22:09:fa:a9: 8b:cd:ce:44:81:90:e6:2c:09:0e:26:55:16:c0:99: f9:8c:93:1d:7c:09:b5:d2:b3:84:87:0e:8a:dd:bd: 9a:ef:f8:e7:69:6b:94:f0:6f:03:7b:38:02:21:2e: 82:10:33:17:61:e8:5d:d4:18:91:7b:26:51:a8:2d: 08:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:AD:61:D6:52:B3:24:81:CF:5B:73:E5:B6:9D:14:A8:6C:95:35:F1 X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e2039333034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.131.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:37:38:6b:75:41:4d:1e:80:bf:02:df:65:09:db:77:75:d6: 5e:31:91:dc:08:e0:3d:97:72:e3:51:eb:c3:90:b9:1b:1c:af: 93:82:a9:6f:ec:ea:24:7a:a0:a6:8b:6c:5a:d0:3f:97:41:b0: 0d:1f:af:64:a5:b9:7c:6f:7d:22:37:1b:61:12:dd:2e:f5:91: f8:21:f2:f5:f7:94:34:1b:eb:d3:b4:35:4e:c4:10:27:20:96: 58:76:b1:52:24:b4:74:ea:c0:c4:36:25:da:57:e3:e0:b3:a2: e6:53:46:18:71:8a:ad:dd:c1:87:e4:56:77:74:26:d2:85:83: 9a:1a:3b:c1:57:a5:d9:0b:82:8c:9a:49:2d:72:f0:90:47:7d: 24:25:71:03:ce:50:38:f5:8c:ba:97:7b:fa:ee:cc:d6:d4:22: fe:2e:ad:65:f5:6f:71:4e:ff:52:44:12:a2:40:a7:7e:22:d5: 86:79:42:ee:d9:25:62:f6:05:fa:29:62:a5:27:a7:78:bd:93: 79:8c:79:e9:c3:5a:77:05:ec:72:d2:a2:1d:3d:49:7f:a4:9e: 5e:16:c9:b5:14:c6:2a:00:46:fc:2f:66:de:e8:a6:b0:b0:ba: 08:69:b3:fd:5b:2d:4e:38:0c:15:f9:ed:ad:5e:07:66:49:02: 1f:6b:8f:20 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUBCAQnxwnxdgQSqCLwZXbP+nD+bowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MTAxNzE0Mjg0MFoX DTI2MTAxNjE0MzM0MFowMzExMC8GA1UEAxMoOTVBRDYxRDY1MkIzMjQ4MUNGNUI3 M0U1QjY5RDE0QTg2Qzk1MzVGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKLoRS0v6FHdGRjxNqNqF5PlVxV/ua7IwsYXDAMKHuJ/G4VpIxIzTEc44jzX W2OqAIaA6dtSKz8lXHwO5WltWEXNtWdvX7DXUBtFvP8YjLQZjSU0knj0jLFWfiGp yVKGT73iG1OtMbjmCRo+syjYnHO4PC+O67wtCF/h4g8B1dYJM3VDnU134rXA/eor NJrPQAJJD1EVm9XGOlPrDmzogSfSZnXlCYcvqauaznE4Ew8G6d3u5PelBojqhgWG qXsiCfqpi83ORIGQ5iwJDiZVFsCZ+YyTHXwJtdKzhIcOit29mu/452lrlPBvA3s4 AiEughAzF2HoXdQYkXsmUagtCAsCAwEAAaOCAhEwggINMB0GA1UdDgQWBBSVrWHW UrMkgc9bc+W2nRSobJU18TAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxQTYx MzEwMDAwLzAvMzEzMDMzMmUzMjMzMzgyZTMxMzMzMTJlMzAyZjMyMzQyZDMyMzQy MDNkM2UyMDM5MzMzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+6DMA0GCSqGSIb3DQEBCwUAA4IB AQAeNzhrdUFNHoC/At9lCdt3ddZeMZHcCOA9l3LjUevDkLkbHK+Tgqlv7OokeqCm i2xa0D+XQbANH69kpbl8b30iNxthEt0u9ZH4IfL195Q0G+vTtDVOxBAnIJZYdrFS JLR06sDENiXaV+Pgs6LmU0YYcYqt3cGH5FZ3dCbShYOaGjvBV6XZC4KMmkktcvCQ R30kJXEDzlA49Yy6l3v67szW1CL+Lq1l9W9xTv9SRBKiQKd+ItWGeULu2SVi9gX6 KWKlJ6d4vZN5jHnpw1p3Bexy0qIdPUl/pJ5eFsm1FMYqAEb8L2be6KawsLoIabP9 Wy1OOAwV+e2tXgdmSQIfa48g -----END CERTIFICATE-----Generated at Sun Oct 19 18:34:21 2025 by rpki-client