$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json) Hash identifier: nFZaUBwOUfoVPATlNk3ap16Eq0qCE4edWxVeq94Eur8= Subject key identifier: 06:52:D8:37:19:3F:D4:5D:3B:73:E4:42:9A:C2:C5:B3:83:97:72:BC Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 2612AED9C51BE68FA3F2C301523F834572CC22E0 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa Signing time: Mon 02 Mar 2026 00:00:01 +0000 ROA not before: Sun 01 Mar 2026 23:55:01 +0000 ROA not after: Mon 01 Mar 2027 00:00:01 +0000 asID: 24021 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 00:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:12:ae:d9:c5:1b:e6:8f:a3:f2:c3:01:52:3f:83:45:72:cc:22:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Mar 1 23:55:01 2026 GMT Not After : Mar 1 00:00:01 2027 GMT Subject: CN=0652D837193FD45D3B73E4429AC2C5B3839772BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:49:09:21:a3:6e:bc:92:8f:68:83:65:17:93: 9a:18:ed:ad:29:6a:ea:62:8b:ea:b8:d4:b4:08:40: c8:99:61:1e:e7:f5:71:68:39:7b:dd:53:0e:b5:ed: 78:1d:de:6a:5b:1c:11:c4:97:41:bc:04:e1:06:7f: 21:0b:08:af:28:63:4d:8f:47:c5:82:1d:5e:0b:7d: 71:c0:8e:ff:09:fe:4f:65:b9:d2:d4:56:b0:c9:df: ce:02:d7:94:78:81:46:f0:a0:d2:d4:d9:cf:10:62: 55:fd:b3:84:98:9c:b0:d9:82:ce:63:5d:f1:98:ad: 7b:fb:bf:10:59:68:af:69:67:b0:52:88:07:df:84: 55:52:e7:25:dc:10:cb:4c:a9:a1:7c:94:98:e6:f0: 6b:92:45:5b:e4:7d:1e:b3:93:19:20:30:c2:b4:f3: 43:62:10:3e:4d:fa:6b:f0:c8:0b:87:e1:78:8b:c2: f4:30:2a:52:67:53:02:5f:64:99:6e:fd:d9:8f:40: d2:e9:7e:ab:20:cf:7d:21:d9:1b:e7:38:4b:f4:cc: 85:32:5e:13:46:da:0f:e4:93:56:b9:14:24:95:88: 60:3e:47:c7:82:62:ea:69:f9:67:68:03:21:49:f2: 6e:53:8a:29:0a:83:32:d6:f4:2f:87:1c:4e:49:ce: a2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:52:D8:37:19:3F:D4:5D:3B:73:E4:42:9A:C2:C5:B3:83:97:72:BC X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 88:02:ea:d2:c2:1d:17:33:49:8d:29:bd:f6:4d:34:69:4e:df: d6:fa:a7:3c:c4:bd:94:f7:72:f2:8c:6a:43:c5:dd:21:b4:c1: 36:9b:45:21:01:74:93:e7:e8:6b:d3:ea:22:95:50:f4:80:5a: 0d:43:41:95:a4:17:66:32:79:25:97:58:90:ba:97:bc:f1:e1: 35:7b:93:50:d6:1a:70:e1:2d:10:da:5c:3f:98:29:a8:ee:ca: 3f:73:53:55:6b:66:03:e3:b9:58:9a:02:09:b4:30:f5:82:5d: 38:c2:85:77:3c:66:c4:4c:ed:e4:ae:fd:bc:1d:5a:81:b0:a9: d3:65:86:16:4d:f1:de:b0:20:c7:65:bb:0f:75:d1:30:eb:f9: 83:46:fd:07:d4:95:75:24:31:d0:61:5f:a5:41:2d:40:c0:96: 4a:5d:11:95:51:ba:43:ef:a4:76:47:9e:a3:1f:1a:98:25:7d: ec:67:3a:62:bb:6f:51:1d:a5:b4:5b:3e:15:cc:0c:57:6b:13: 05:72:17:11:81:f9:4f:de:c8:57:08:99:1f:6e:c0:12:aa:4d: 60:19:b6:8a:c1:11:b2:4e:8c:19:7b:67:b5:b1:3f:b8:c0:04: 01:4a:1d:ac:29:b6:26:0e:53:ea:34:c1:be:78:b6:26:bf:6a: 40:49:2c:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUJhKu2cUb5o+j8sMBUj+DRXLMIuAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI2MDMwMTIzNTUwMVoX DTI3MDMwMTAwMDAwMVowMzExMC8GA1UEAxMoMDY1MkQ4MzcxOTNGRDQ1RDNCNzNF NDQyOUFDMkM1QjM4Mzk3NzJCQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOFJCSGjbrySj2iDZReTmhjtrSlq6mKL6rjUtAhAyJlhHuf1cWg5e91TDrXt eB3ealscEcSXQbwE4QZ/IQsIryhjTY9HxYIdXgt9ccCO/wn+T2W50tRWsMnfzgLX lHiBRvCg0tTZzxBiVf2zhJicsNmCzmNd8Zite/u/EFlor2lnsFKIB9+EVVLnJdwQ y0ypoXyUmObwa5JFW+R9HrOTGSAwwrTzQ2IQPk36a/DIC4fheIvC9DAqUmdTAl9k mW792Y9A0ul+qyDPfSHZG+c4S/TMhTJeE0baD+STVrkUJJWIYD5Hx4Ji6mn5Z2gD IUnyblOKKQqDMtb0L4ccTknOov8CAwEAAaOCAgkwggIFMB0GA1UdDgQWBBQGUtg3 GT/UXTtz5EKawsWzg5dyvDAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAiALq0sId FzNJjSm99k00aU7f1vqnPMS9lPdy8oxqQ8XdIbTBNptFIQF0k+foa9PqIpVQ9IBa DUNBlaQXZjJ5JZdYkLqXvPHhNXuTUNYacOEtENpcP5gpqO7KP3NTVWtmA+O5WJoC CbQw9YJdOMKFdzxmxEzt5K79vB1agbCp02WGFk3x3rAgx2W7D3XRMOv5g0b9B9SV dSQx0GFfpUEtQMCWSl0RlVG6Q++kdkeeox8amCV97Gc6YrtvUR2ltFs+FcwMV2sT BXIXEYH5T97IVwiZH27AEqpNYBm2isERsk6MGXtntbE/uMAEAUodrCm2Jg5T6jTB vni2Jr9qQEksIA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:45 2026 by rpki-client