$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20383334.roa File: 34332e3235352e38312e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: UBX7pQhUkqVlB0o1+fxCEqYurXO8Pm4LyMR/YcHzNIs= Subject key identifier: 56:84:80:F5:9B:88:9E:B2:AB:42:15:8B:20:27:61:09:A6:0A:F1:3A Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 2482A08876432FF7EB9285311EC6DB56F176FA17 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20383334.roa Signing time: Tue 02 Sep 2025 00:28:43 +0000 ROA not before: Tue 02 Sep 2025 00:23:43 +0000 ROA not after: Tue 01 Sep 2026 00:28:43 +0000 asID: 834 IP address blocks: 43.255.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 14:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:82:a0:88:76:43:2f:f7:eb:92:85:31:1e:c6:db:56:f1:76:fa:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: Sep 2 00:23:43 2025 GMT Not After : Sep 1 00:28:43 2026 GMT Subject: CN=568480F59B889EB2AB42158B20276109A60AF13A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:51:72:2c:59:4b:d4:36:88:bc:2b:a4:4c:37: 55:29:66:cc:58:a1:24:ef:f8:de:5e:aa:81:c8:42: a9:5c:69:f6:75:6a:31:9c:2e:6b:d8:39:68:37:c3: f0:e3:f3:24:10:71:64:85:32:5a:27:0d:86:32:89: ed:e4:ce:21:e1:89:35:ba:cd:bc:59:86:5f:2e:45: 70:07:46:0f:02:01:b3:77:15:d6:ab:e7:a4:03:84: 19:db:57:37:4e:cf:e5:82:c0:a0:c0:52:7e:1a:87: f0:0f:6b:ff:82:7f:a1:fc:d1:0a:ec:22:15:bd:f7: 6f:63:73:6e:78:bb:d3:49:df:6d:5c:ca:24:41:ed: dd:ee:2b:d2:da:c3:da:c7:be:2a:a1:6a:70:3f:d0: 83:1f:0f:13:ce:9c:63:85:c9:21:29:fb:a6:2e:24: 9d:d2:e4:ff:12:ca:fb:c4:7a:04:67:42:fb:7f:8e: 03:af:6a:38:a4:8a:15:c7:5a:78:d1:91:76:44:e2: 4c:81:ac:b1:a5:e0:88:5f:b0:20:8a:7e:35:4d:8e: c3:7a:5a:b0:af:14:2a:09:2b:74:0b:d5:39:af:c2: 57:1a:a6:4b:62:54:6e:dc:9c:c1:f3:86:59:73:cc: ca:38:35:71:43:b3:3b:e2:be:d9:57:e8:04:94:5f: ec:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:84:80:F5:9B:88:9E:B2:AB:42:15:8B:20:27:61:09:A6:0A:F1:3A X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/34332e3235352e38312e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.81.0/24 Signature Algorithm: sha256WithRSAEncryption a4:39:3e:e3:15:02:38:4b:61:42:6a:7a:b2:5f:6b:41:90:d8: 56:6a:bd:90:bf:ac:b0:a9:b3:77:65:ab:3e:69:f4:d5:76:0a: 65:7b:f1:03:06:db:58:0b:cd:29:43:f5:24:db:85:d4:2a:a5: 4a:09:c3:91:70:22:9f:41:91:8c:c9:12:25:0e:90:5f:62:29: 78:ac:dc:eb:2f:ba:d1:4c:bd:02:e9:e0:07:44:84:b5:7b:73: 92:bf:16:85:0c:7d:a4:78:9c:d1:e9:8d:99:97:a1:77:06:2a: 28:dc:9b:21:36:b8:31:ba:70:46:c9:51:df:7c:c4:f1:f6:c2: 7e:0e:f0:b4:fe:e1:d4:32:14:70:2c:9f:a3:d9:2f:d5:7b:ff: be:89:10:39:cf:e9:b1:0f:0e:5a:1e:79:ee:c5:59:6f:bc:45: e4:60:b0:66:23:66:88:4b:10:cc:bf:17:1d:d3:33:d5:b2:ae: 8f:e9:eb:d5:51:f7:f9:31:bc:3f:e8:69:84:6b:05:76:99:44: 53:ba:91:60:f8:c2:46:03:47:7e:76:f2:b6:d9:07:c6:d1:36: b8:75:ae:1c:9d:b8:fa:43:b4:ff:8f:a0:b3:f2:d4:81:c0:2a: 9c:94:3c:b5:6c:45:87:0f:15:e6:9d:a4:5d:68:43:7a:af:c5: 1c:c6:ec:69 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUJIKgiHZDL/frkoUxHsbbVvF2+hcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MDkwMjAwMjM0M1oX DTI2MDkwMTAwMjg0M1owMzExMC8GA1UEAxMoNTY4NDgwRjU5Qjg4OUVCMkFCNDIx NThCMjAyNzYxMDlBNjBBRjEzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALFRcixZS9Q2iLwrpEw3VSlmzFihJO/43l6qgchCqVxp9nVqMZwua9g5aDfD 8OPzJBBxZIUyWicNhjKJ7eTOIeGJNbrNvFmGXy5FcAdGDwIBs3cV1qvnpAOEGdtX N07P5YLAoMBSfhqH8A9r/4J/ofzRCuwiFb33b2Nzbni700nfbVzKJEHt3e4r0trD 2se+KqFqcD/Qgx8PE86cY4XJISn7pi4kndLk/xLK+8R6BGdC+3+OA69qOKSKFcda eNGRdkTiTIGssaXgiF+wIIp+NU2Ow3pasK8UKgkrdAvVOa/CVxqmS2JUbtycwfOG WXPMyjg1cUOzO+K+2VfoBJRf7OcCAwEAAaOCAgswggIHMB0GA1UdDgQWBBRWhID1 m4iesqtCFYsgJ2EJpgrxOjAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGFBggrBgEFBQcBCwR5MHcwdQYIKwYBBQUH MAuGaXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxQTYx MzEwMDAwLzAvMzQzMzJlMzIzNTM1MmUzODMxMmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAK/9RMA0GCSqGSIb3DQEBCwUAA4IBAQCkOT7j FQI4S2FCanqyX2tBkNhWar2Qv6ywqbN3Zas+afTVdgple/EDBttYC80pQ/Uk24XU KqVKCcORcCKfQZGMyRIlDpBfYil4rNzrL7rRTL0C6eAHRIS1e3OSvxaFDH2keJzR 6Y2Zl6F3Bioo3JshNrgxunBGyVHffMTx9sJ+DvC0/uHUMhRwLJ+j2S/Ve/++iRA5 z+mxDw5aHnnuxVlvvEXkYLBmI2aISxDMvxcd0zPVsq6P6evVUff5Mbw/6GmEawV2 mURTupFg+MJGA0d+dvK22QfG0Ta4da4cnbj6Q7T/j6Cz8tSBwCqclDy1bEWHDxXm naRdaEN6r8Ucxuxp -----END CERTIFICATE-----Generated at Sat Sep 6 14:25:09 2025 by rpki-client