$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: Mu+obgyTpZwMk//FUYLiINU7rCf61zYnEgQZnLaTiCo= Subject key identifier: 2E:04:23:94:61:91:D2:0B:A3:4D:94:BC:6B:0B:07:01:C0:61:C6:54 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 40BDDEC05FE58203621192B903B13A08C34D0A96 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Sat 14 Jun 2025 12:00:01 +0000 ROA not before: Sat 14 Jun 2025 11:55:01 +0000 ROA not after: Sat 13 Jun 2026 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 07:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:bd:de:c0:5f:e5:82:03:62:11:92:b9:03:b1:3a:08:c3:4d:0a:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Jun 14 11:55:01 2025 GMT Not After : Jun 13 12:00:01 2026 GMT Subject: CN=2E0423946191D20BA34D94BC6B0B0701C061C654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6f:0c:3b:6c:8e:25:4f:e2:14:c1:79:5e:17: 3c:06:34:07:27:3a:47:bd:81:16:ca:d8:e3:4e:e8: 95:43:93:ea:03:da:79:f3:04:7f:c5:eb:34:a7:27: 16:61:30:0b:21:73:0e:2b:c7:1a:bb:a1:f9:a3:0c: 05:61:af:05:dd:ee:a0:14:a9:e0:ee:79:b9:d0:9b: fa:ea:2f:22:d9:32:07:9c:f4:d8:cc:62:4b:11:3d: 59:56:9d:c1:97:db:45:ed:f4:18:12:d0:89:17:e5: 1e:82:84:13:f1:59:57:c2:b2:92:ae:f2:fb:01:e5: 69:0c:99:b2:df:02:30:95:a9:56:81:3c:d1:af:a8: c4:6f:88:be:a8:48:84:88:f3:be:fd:30:16:43:84: 55:96:6e:73:b3:f7:a8:ec:14:52:bd:9d:d5:33:f7: d9:e9:0c:60:e5:7f:37:8a:c7:43:8d:31:8c:11:db: 3d:09:d6:55:86:00:03:b0:c2:d9:31:57:b6:b4:e4: c1:dc:e8:c3:68:b6:a1:ee:8f:ea:a5:e2:2a:a3:c6: a1:86:9b:67:6b:c3:7c:97:84:3c:a3:f0:a0:cb:89: b1:32:b2:4f:b3:68:91:9e:db:c8:ad:a3:63:ad:1b: b7:52:3e:b6:49:5f:71:61:df:3e:e7:83:99:eb:9c: 80:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:04:23:94:61:91:D2:0B:A3:4D:94:BC:6B:0B:07:01:C0:61:C6:54 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 85:17:9c:f5:5d:49:00:b4:80:dc:e8:8d:e2:84:96:ba:5b:d2: d2:b3:2e:10:13:d9:91:3a:d6:b6:55:72:8b:2c:a4:0d:ed:de: e2:3a:4a:3b:98:c3:5d:38:49:bf:74:ea:44:c2:37:43:bf:d0: 2d:c9:6b:05:e8:83:e1:c5:c2:9c:e5:06:ed:76:ae:15:a0:12: 6d:a5:7f:6b:b6:f8:35:95:e3:d4:a7:46:ea:31:1b:37:35:7f: a6:70:a7:bf:71:6d:ea:d6:e7:33:c1:4a:b6:09:5e:17:ef:b3: e8:f0:b3:62:2e:0d:93:35:fa:f6:37:f0:72:cb:db:ff:ec:43: 19:8c:a4:96:cb:77:fb:5a:21:85:ce:79:f5:ec:12:40:45:6c: 43:36:5f:5a:56:aa:54:38:4a:bc:7f:f0:3e:b8:67:11:b8:c3: 95:21:2c:b5:2c:6c:d1:38:a8:94:5c:48:e8:4c:4d:09:f7:e4: 06:f1:e8:56:80:87:cf:fb:ff:a7:8b:cc:74:e7:76:d8:4d:64: 72:1a:99:9f:ab:bc:9e:39:e8:35:cd:83:51:d1:58:ef:db:97: d6:09:14:4c:7b:c4:12:79:aa:5c:82:6a:4e:e7:4b:3d:59:06: d5:4c:97:c5:c0:74:64:8e:a7:9d:68:a1:5e:da:74:8b:33:66: fb:e9:b6:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUQL3ewF/lggNiEZK5A7E6CMNNCpYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDYxNDExNTUwMVoX DTI2MDYxMzEyMDAwMVowMzExMC8GA1UEAxMoMkUwNDIzOTQ2MTkxRDIwQkEzNEQ5 NEJDNkIwQjA3MDFDMDYxQzY1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZvDDtsjiVP4hTBeV4XPAY0Byc6R72BFsrY407olUOT6gPaefMEf8XrNKcn FmEwCyFzDivHGruh+aMMBWGvBd3uoBSp4O55udCb+uovItkyB5z02MxiSxE9WVad wZfbRe30GBLQiRflHoKEE/FZV8Kykq7y+wHlaQyZst8CMJWpVoE80a+oxG+IvqhI hIjzvv0wFkOEVZZuc7P3qOwUUr2d1TP32ekMYOV/N4rHQ40xjBHbPQnWVYYAA7DC 2TFXtrTkwdzow2i2oe6P6qXiKqPGoYabZ2vDfJeEPKPwoMuJsTKyT7NokZ7byK2j Y60bt1I+tklfcWHfPueDmeucgD8CAwEAAaOCAgkwggIFMB0GA1UdDgQWBBQuBCOU YZHSC6NNlLxrCwcBwGHGVDAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAhRec9V1J ALSA3OiN4oSWulvS0rMuEBPZkTrWtlVyiyykDe3e4jpKO5jDXThJv3TqRMI3Q7/Q LclrBeiD4cXCnOUG7XauFaASbaV/a7b4NZXj1KdG6jEbNzV/pnCnv3Ft6tbnM8FK tgleF++z6PCzYi4NkzX69jfwcsvb/+xDGYyklst3+1ohhc559ewSQEVsQzZfWlaq VDhKvH/wPrhnEbjDlSEstSxs0TiolFxI6ExNCffkBvHoVoCHz/v/p4vMdOd22E1k chqZn6u8njnoNc2DUdFY79uX1gkUTHvEEnmqXIJqTudLPVkG1UyXxcB0ZI6nnWih Xtp0izNm++m2Zw== -----END CERTIFICATE-----Generated at Sun Jun 15 08:31:03 2025 by rpki-client