$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json) Hash identifier: WCcFB0BZaZbRGoY2UIZEJiyPZEk0NPGHxN9DRNCCh44= Subject key identifier: 67:E9:2A:2D:DE:D2:24:33:32:D6:83:66:E0:C7:B9:46:D5:61:66:82 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 48A7AB2D6A15BD6C61E15E5308AF4A53DA12B2D2 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa Signing time: Fri 17 Apr 2026 00:00:01 +0000 ROA not before: Thu 16 Apr 2026 23:55:01 +0000 ROA not after: Fri 16 Apr 2027 00:00:01 +0000 asID: 24021 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 02:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:a7:ab:2d:6a:15:bd:6c:61:e1:5e:53:08:af:4a:53:da:12:b2:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Apr 16 23:55:01 2026 GMT Not After : Apr 16 00:00:01 2027 GMT Subject: CN=67E92A2DDED2243332D68366E0C7B946D5616682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ef:c7:13:d6:54:68:f2:df:d8:d9:1f:17:59: 57:95:46:e6:74:73:e7:ff:28:b9:48:a2:29:01:f3: 7f:64:63:22:c9:61:d5:4e:de:92:16:3c:af:f6:9e: 20:49:67:e2:99:48:c1:1d:cb:45:8c:17:ac:95:de: 63:bf:e9:a2:8d:21:b4:06:d8:eb:d5:57:a4:d9:e7: 9b:c8:cf:d0:94:e2:26:54:da:37:e7:d9:eb:5f:a9: 76:a7:25:5b:e5:da:56:cb:b2:96:a2:25:bd:0f:80: 64:dc:c2:14:cc:23:e3:fa:71:17:65:d9:e5:74:95: b7:f8:96:81:9a:43:df:4b:cd:d4:d9:23:0b:0c:80: 52:18:db:57:80:d4:a4:cf:61:a0:3b:4c:a7:fd:e7: cd:57:ed:22:d6:6c:84:58:69:3e:c6:e1:c4:0e:de: 08:a8:a2:d9:b2:c3:8e:cb:b0:cc:e2:79:ef:7f:4e: 33:92:43:d8:4c:c5:ba:c2:89:00:df:09:dd:ec:62: f4:ba:e9:db:d9:ea:17:a5:72:54:53:47:5d:9c:3a: e7:a2:68:83:34:ef:54:e7:b2:5e:a1:65:87:a8:12: e5:f4:75:64:eb:08:8a:db:19:4a:64:b5:4a:34:92: 56:b0:ac:c6:a5:a3:e7:56:92:fb:34:f8:a9:41:5b: 26:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E9:2A:2D:DE:D2:24:33:32:D6:83:66:E0:C7:B9:46:D5:61:66:82 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:13:ad:f1:09:1c:b3:e2:24:e0:02:d9:cf:b2:5c:6e:6e:54: 87:4b:42:e1:85:f3:93:3d:5c:0a:31:96:47:bb:90:8b:6d:11: aa:05:37:e8:da:60:84:32:c2:63:d9:e5:fb:ea:b7:e2:84:5b: 32:41:69:35:ec:31:06:eb:b8:90:e1:06:74:46:d0:60:24:46: 71:b4:10:6a:04:34:0c:19:b8:e4:83:fe:e7:7b:4f:33:e8:44: 92:b9:95:70:16:64:c0:1c:34:f6:09:3a:42:08:1f:6f:ab:a6: f3:c9:3b:0c:52:eb:b3:8c:a9:45:2b:ad:97:0d:ec:6f:1e:bb: b0:a1:58:ac:f1:98:aa:aa:58:cb:e2:a9:85:60:ec:e5:11:fa: 2c:07:30:cc:c0:85:9d:fa:27:fb:3c:6d:d6:7e:8a:ae:06:cf: f7:5d:22:a6:54:67:bc:3e:8d:da:1e:b8:fb:5b:4d:6f:60:e1: 8d:60:b5:0f:c5:80:91:8c:07:84:0a:a9:58:ce:79:c5:e5:72: 1f:3a:c0:1c:80:9c:cd:21:43:82:76:fd:33:66:3f:9b:f9:39: 13:90:b0:0f:2b:d9:22:19:6d:44:e0:91:4a:51:a4:82:46:d7: 62:c5:ec:02:fa:30:ba:44:cd:c2:0c:64:f8:13:ba:97:8f:bb: 68:3d:23:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUSKerLWoVvWxh4V5TCK9KU9oSstIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI2MDQxNjIzNTUwMVoX DTI3MDQxNjAwMDAwMVowMzExMC8GA1UEAxMoNjdFOTJBMkRERUQyMjQzMzMyRDY4 MzY2RTBDN0I5NDZENTYxNjY4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDvxxPWVGjy39jZHxdZV5VG5nRz5/8ouUiiKQHzf2RjIslh1U7ekhY8r/ae IEln4plIwR3LRYwXrJXeY7/poo0htAbY69VXpNnnm8jP0JTiJlTaN+fZ61+pdqcl W+XaVsuylqIlvQ+AZNzCFMwj4/pxF2XZ5XSVt/iWgZpD30vN1NkjCwyAUhjbV4DU pM9hoDtMp/3nzVftItZshFhpPsbhxA7eCKii2bLDjsuwzOJ5739OM5JD2EzFusKJ AN8J3exi9Lrp29nqF6VyVFNHXZw656JogzTvVOeyXqFlh6gS5fR1ZOsIitsZSmS1 SjSSVrCsxqWj51aS+zT4qUFbJp0CAwEAAaOCAgkwggIFMB0GA1UdDgQWBBRn6Sot 3tIkMzLWg2bgx7lG1WFmgjAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAWhOt8Qkc s+Ik4ALZz7Jcbm5Uh0tC4YXzkz1cCjGWR7uQi20RqgU36NpghDLCY9nl++q34oRb MkFpNewxBuu4kOEGdEbQYCRGcbQQagQ0DBm45IP+53tPM+hEkrmVcBZkwBw09gk6 Qggfb6um88k7DFLrs4ypRSutlw3sbx67sKFYrPGYqqpYy+KphWDs5RH6LAcwzMCF nfon+zxt1n6KrgbP910iplRnvD6N2h64+1tNb2DhjWC1D8WAkYwHhAqpWM55xeVy HzrAHICczSFDgnb9M2Y/m/k5E5CwDyvZIhltROCRSlGkgkbXYsXsAvowukTNwgxk +BO6l4+7aD0jFA== -----END CERTIFICATE-----Generated at Fri Apr 17 09:48:31 2026 by rpki-client