$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json) Hash identifier: WwDPRQFhCUBttM25LUQx++KJLw4DEH/RkF7P0pDVW6o= Subject key identifier: 42:5B:18:F2:3A:C7:D2:CF:92:A9:18:C9:C5:96:20:A2:D2:46:1C:87 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 393E5876617C8A3AC0E42A823B4F65FE41A24FE9 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa Signing time: Fri 25 Apr 2025 00:00:01 +0000 ROA not before: Thu 24 Apr 2025 23:55:01 +0000 ROA not after: Fri 24 Apr 2026 00:00:01 +0000 asID: 24021 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 19:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:3e:58:76:61:7c:8a:3a:c0:e4:2a:82:3b:4f:65:fe:41:a2:4f:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Apr 24 23:55:01 2025 GMT Not After : Apr 24 00:00:01 2026 GMT Subject: CN=425B18F23AC7D2CF92A918C9C59620A2D2461C87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ee:26:00:de:d0:e4:e9:52:74:62:ea:db:19: 56:68:80:12:12:1b:42:cd:4f:80:98:8b:68:0c:3d: d3:f4:6c:20:19:87:c1:57:c5:db:82:1c:2a:ca:3d: 33:eb:4b:87:78:60:7d:3e:39:5e:61:32:06:fd:6a: 82:f4:34:97:a7:a5:2f:aa:03:36:ab:2b:1c:27:d8: a8:68:f9:f6:7c:af:56:eb:a1:50:e9:99:e1:17:72: 06:55:82:ae:e2:7d:ce:09:f2:93:eb:7b:1f:78:72: 8c:f0:a0:7f:54:87:fc:58:bf:19:7b:6e:6c:09:6c: 54:fa:f7:b8:3d:5d:95:90:3c:28:3d:dd:f2:58:50: a0:bd:46:11:30:8f:f1:78:29:8f:76:cc:2c:ba:16: 8e:f3:76:d6:0e:15:77:f9:80:dc:c2:c6:b6:8b:19: a6:a9:5d:b3:04:c5:3b:8d:06:3a:aa:01:e4:d1:38: a1:ff:ae:79:bc:38:e5:9e:fe:a9:d0:ac:81:92:1d: ab:1c:d9:49:65:0f:fc:35:98:a4:8c:49:36:d4:5f: df:4d:b8:5f:28:12:71:f7:5f:e2:1f:8c:9b:34:d0: 6e:b5:30:44:13:e0:96:10:e8:cd:5b:b5:ec:5b:17: 1a:fd:41:d1:f2:83:7b:cf:3a:78:8b:1f:c3:59:0b: b6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:5B:18:F2:3A:C7:D2:CF:92:A9:18:C9:C5:96:20:A2:D2:46:1C:87 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:5f:1b:a2:7c:42:3f:40:50:cf:b5:4c:48:34:76:5a:89:af: b6:01:b6:08:67:35:3e:67:68:96:e0:90:a0:9c:ca:c4:32:e7: c8:63:a8:2d:56:5b:21:6b:57:56:93:6b:48:5e:a9:3e:d2:4d: 27:71:97:7e:aa:48:d8:75:04:3d:c9:08:57:d0:0a:54:54:1e: be:0b:dc:e7:53:12:06:06:ae:75:63:2f:1d:39:a3:54:df:47: 55:54:0b:64:85:3e:89:93:c5:2f:91:92:71:eb:96:21:ad:7f: d7:41:da:64:5f:44:b0:47:35:8c:55:fb:4a:d3:4e:0c:17:a2: 01:3b:27:37:3c:bb:7b:80:2e:03:a4:bd:e0:9c:84:2e:19:ec: a4:13:80:0c:bd:a6:92:5c:7f:30:09:23:5d:e5:37:0a:07:87: 7b:5e:e4:77:39:f5:40:21:a3:45:6a:30:c6:23:a4:da:70:8f: 58:1f:b3:e5:2e:ee:4a:36:3a:8b:36:85:54:a0:96:65:4f:f4: 90:1e:1f:9a:1d:ad:4e:14:b2:d4:dd:a7:3c:8e:95:a1:2f:6e: 00:08:31:30:cc:1a:a6:61:f0:63:07:bc:25:00:49:05:63:ef: ae:39:b5:3d:e2:6b:03:0f:d7:34:8b:07:96:42:5f:96:42:73: 3b:1f:64:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUOT5YdmF8ijrA5CqCO09l/kGiT+kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDQyNDIzNTUwMVoX DTI2MDQyNDAwMDAwMVowMzExMC8GA1UEAxMoNDI1QjE4RjIzQUM3RDJDRjkyQTkx OEM5QzU5NjIwQTJEMjQ2MUM4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTuJgDe0OTpUnRi6tsZVmiAEhIbQs1PgJiLaAw90/RsIBmHwVfF24IcKso9 M+tLh3hgfT45XmEyBv1qgvQ0l6elL6oDNqsrHCfYqGj59nyvVuuhUOmZ4RdyBlWC ruJ9zgnyk+t7H3hyjPCgf1SH/Fi/GXtubAlsVPr3uD1dlZA8KD3d8lhQoL1GETCP 8Xgpj3bMLLoWjvN21g4Vd/mA3MLGtosZpqldswTFO40GOqoB5NE4of+uebw45Z7+ qdCsgZIdqxzZSWUP/DWYpIxJNtRf3024XygScfdf4h+MmzTQbrUwRBPglhDozVu1 7FsXGv1B0fKDe886eIsfw1kLticCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBRCWxjy OsfSz5KpGMnFliCi0kYchzAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAfF8bonxC P0BQz7VMSDR2WomvtgG2CGc1PmdoluCQoJzKxDLnyGOoLVZbIWtXVpNrSF6pPtJN J3GXfqpI2HUEPckIV9AKVFQevgvc51MSBgaudWMvHTmjVN9HVVQLZIU+iZPFL5GS ceuWIa1/10HaZF9EsEc1jFX7StNODBeiATsnNzy7e4AuA6S94JyELhnspBOADL2m klx/MAkjXeU3CgeHe17kdzn1QCGjRWowxiOk2nCPWB+z5S7uSjY6izaFVKCWZU/0 kB4fmh2tThSy1N2nPI6VoS9uAAgxMMwapmHwYwe8JQBJBWPvrjm1PeJrAw/XNIsH lkJflkJzOx9kBw== -----END CERTIFICATE-----Generated at Sat Apr 26 09:19:46 2025 by rpki-client