$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: IHSTR0jZvusCGZR7r19+5wygsryODBC2p7lc+4svmOA= Subject key identifier: E1:96:2D:B6:17:56:93:FD:8E:91:21:AE:17:3A:AD:9F:EA:04:B0:CF Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 54E7457A458FA7F76FDFFF86BEB2ED279A190977 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Sat 09 Aug 2025 12:00:01 +0000 ROA not before: Sat 09 Aug 2025 11:55:01 +0000 ROA not after: Sat 08 Aug 2026 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 09:05:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e7:45:7a:45:8f:a7:f7:6f:df:ff:86:be:b2:ed:27:9a:19:09:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Aug 9 11:55:01 2025 GMT Not After : Aug 8 12:00:01 2026 GMT Subject: CN=E1962DB6175693FD8E9121AE173AAD9FEA04B0CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:81:c9:fa:65:3b:14:c9:d2:b8:74:1a:be:de: a9:ea:c0:75:ca:5e:78:52:da:12:1b:22:33:58:ab: 41:98:35:bd:97:55:c7:0c:72:ae:aa:a6:a9:f9:a9: 4b:15:dd:e3:36:6f:f1:9c:87:e7:ef:b0:53:60:ad: ec:3f:11:76:d8:e7:2b:c1:c6:55:9f:0f:17:c5:a4: 34:68:4e:80:11:4f:7d:f7:12:ae:4f:83:8a:b5:a3: d8:1a:fe:40:d2:17:38:53:7a:3e:cc:ee:14:55:b0: 0b:93:a1:41:9d:91:e8:9f:fa:ca:6f:a3:7e:43:d5: 7d:f7:dd:4a:27:3a:73:61:c9:a8:c9:89:24:4f:63: e9:86:39:f1:6e:a7:23:66:b6:63:96:b0:e2:ab:e4: da:97:a1:25:6e:95:54:df:4f:f7:b7:17:7c:0c:5b: 35:cb:19:96:98:58:f7:d1:d1:86:0a:93:fc:16:23: da:38:8f:e4:50:67:0e:60:fd:52:92:43:15:8d:07: eb:68:bf:4b:a1:ae:48:29:51:14:73:0e:93:5d:cc: 9f:29:86:00:10:16:3f:f2:55:d9:bb:c0:be:98:88: 24:8e:ae:89:0d:13:52:bd:65:a3:c8:e9:78:98:4f: 3f:24:dd:f8:ef:fe:79:f0:f3:f3:95:b6:ce:f8:49: 5e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:96:2D:B6:17:56:93:FD:8E:91:21:AE:17:3A:AD:9F:EA:04:B0:CF X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption b9:69:3f:32:02:a3:26:c2:ca:6c:f6:c0:9b:04:80:ee:36:be: b6:f5:f7:0c:04:4c:8c:fa:1c:14:28:d7:3e:ab:db:ad:1b:22: ea:61:90:dd:a3:42:77:1d:05:16:a0:1b:3c:8a:8c:f4:72:3b: 1a:64:f9:5f:15:ef:e8:f4:08:51:89:72:03:56:6f:eb:f8:b8: 8a:8a:81:86:69:0d:dc:1d:26:47:b0:0b:45:74:0d:f5:ee:1d: 53:e8:7a:b5:03:48:6a:6a:a7:b0:39:dd:71:ee:e9:62:27:2c: 7c:ee:2d:54:c1:f5:7e:3b:6e:ae:48:b8:9f:12:1f:7c:f4:dc: d2:70:9a:af:61:16:cc:30:10:9e:b1:a2:0a:43:93:b0:54:a3: d4:13:52:bc:d8:f7:a6:89:16:b5:7a:6e:6e:46:fc:6f:3b:9a: 68:cb:6b:76:51:76:d4:7a:81:fa:cf:fb:49:b7:e7:3c:ae:e6: ce:62:2b:33:6e:27:95:bb:c5:1f:46:b1:4e:2a:fa:47:31:84: 35:2d:3e:13:3b:8e:38:46:fc:13:7b:9a:20:31:f2:11:9e:ee: 97:85:70:91:5d:f3:88:a0:cd:47:aa:0a:77:52:0e:34:e6:cb: 02:43:4f:79:65:88:2e:8d:43:f7:81:2f:ae:84:a4:57:05:56: fa:d3:b5:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUVOdFekWPp/dv3/+GvrLtJ5oZCXcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDgwOTExNTUwMVoX DTI2MDgwODEyMDAwMVowMzExMC8GA1UEAxMoRTE5NjJEQjYxNzU2OTNGRDhFOTEy MUFFMTczQUFEOUZFQTA0QjBDRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALaByfplOxTJ0rh0Gr7eqerAdcpeeFLaEhsiM1irQZg1vZdVxwxyrqqmqfmp SxXd4zZv8ZyH5++wU2Ct7D8RdtjnK8HGVZ8PF8WkNGhOgBFPffcSrk+DirWj2Br+ QNIXOFN6PszuFFWwC5OhQZ2R6J/6ym+jfkPVfffdSic6c2HJqMmJJE9j6YY58W6n I2a2Y5aw4qvk2pehJW6VVN9P97cXfAxbNcsZlphY99HRhgqT/BYj2jiP5FBnDmD9 UpJDFY0H62i/S6GuSClRFHMOk13MnymGABAWP/JV2bvAvpiIJI6uiQ0TUr1lo8jp eJhPPyTd+O/+efDz85W2zvhJXicCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBThli22 F1aT/Y6RIa4XOq2f6gSwzzAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAuWk/MgKj JsLKbPbAmwSA7ja+tvX3DARMjPocFCjXPqvbrRsi6mGQ3aNCdx0FFqAbPIqM9HI7 GmT5XxXv6PQIUYlyA1Zv6/i4ioqBhmkN3B0mR7ALRXQN9e4dU+h6tQNIamqnsDnd ce7pYicsfO4tVMH1fjturki4nxIffPTc0nCar2EWzDAQnrGiCkOTsFSj1BNSvNj3 pokWtXpubkb8bzuaaMtrdlF21HqB+s/7SbfnPK7mzmIrM24nlbvFH0axTir6RzGE NS0+EzuOOEb8E3uaIDHyEZ7ul4VwkV3ziKDNR6oKd1IONObLAkNPeWWILo1D94Ev roSkVwVW+tO1EQ== -----END CERTIFICATE-----Generated at Sun Aug 10 18:12:47 2025 by rpki-client