$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: yGjcvx2PdC9SXxDl80zumWg3UpEnDQYnNxRxMv7gAvc= Subject key identifier: ED:90:CF:BB:83:A5:1C:E9:3B:D6:F0:39:FE:7E:91:40:2E:FB:CD:A9 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 31CD994CBDFEFA6460B00A95EE6C35205A19E45E Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Tue 04 Nov 2025 12:00:01 +0000 ROA not before: Tue 04 Nov 2025 11:55:01 +0000 ROA not after: Tue 03 Nov 2026 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 07:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:cd:99:4c:bd:fe:fa:64:60:b0:0a:95:ee:6c:35:20:5a:19:e4:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Nov 4 11:55:01 2025 GMT Not After : Nov 3 12:00:01 2026 GMT Subject: CN=ED90CFBB83A51CE93BD6F039FE7E91402EFBCDA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c2:89:ac:d2:2b:8a:bd:50:6d:b9:34:27:99: 33:13:42:e4:8c:5e:6f:3b:8c:34:50:d8:fd:1f:0d: 0f:00:76:26:45:30:98:bd:0d:92:7e:e6:4e:47:73: 05:6c:59:aa:9b:cf:57:b8:64:56:5c:93:ea:dd:7f: 65:66:19:0e:9e:94:a8:70:1c:7d:b6:f0:30:00:18: 15:b2:d5:12:7a:a6:e3:48:31:e0:cc:b5:ad:52:57: c7:33:5d:ba:97:8e:70:71:eb:ce:56:5e:01:58:89: 9b:d5:cc:5e:1c:63:ee:1b:de:59:3f:b1:5d:a7:0c: f4:2f:d3:29:b3:b3:fc:6c:e0:c2:64:ee:66:5f:f4: f6:1b:b7:68:0a:f7:d9:4b:af:c5:6d:b9:35:7d:71: 8a:f2:11:09:bf:92:aa:de:6d:44:4a:52:c3:12:56: 7a:d2:92:cb:17:08:f8:79:5c:86:c5:8a:9c:90:a8: 8d:20:9f:5b:38:f6:7b:da:ae:d4:00:3f:5d:cc:31: 39:45:c3:65:fd:30:b8:54:36:d8:a0:83:3c:05:4f: b3:a7:fd:71:18:66:7b:a1:16:a7:df:00:db:38:33: 20:eb:7e:5e:31:6a:f4:64:ac:a6:bb:ae:39:c1:7c: 7e:9b:89:c7:cd:87:4d:11:86:38:fd:ae:7b:b9:93: 82:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:90:CF:BB:83:A5:1C:E9:3B:D6:F0:39:FE:7E:91:40:2E:FB:CD:A9 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:40:06:b0:bc:6b:c1:6f:c5:a3:7b:77:35:0f:6b:82:15:e8: 23:09:2e:e1:95:b1:25:79:31:ff:16:1d:e1:f6:ec:3e:5b:06: a6:af:be:12:52:00:28:cc:a6:97:61:e4:10:ef:f6:e8:5f:15: 4d:75:1c:d1:97:89:4a:b7:22:ae:0f:8f:32:d8:5b:c7:c6:19: a3:ef:f2:8c:57:80:c6:34:5a:9a:36:2d:78:bb:64:ca:df:88: 52:8a:90:46:a4:64:61:d7:f8:4f:ed:ae:0e:a2:e7:27:ae:60: 17:27:31:a5:b0:37:ed:01:35:09:12:f9:83:f4:ff:79:8f:6f: 1d:d5:6a:84:5e:49:71:81:42:f7:07:51:af:b8:8c:09:e2:1d: 9b:64:61:66:cf:49:49:4c:05:2a:41:87:93:f8:0f:c6:da:d1: 20:ef:29:3c:a7:67:18:7a:a4:27:84:f9:bb:2b:8b:8c:5a:5f: 35:26:9d:1c:29:c3:8d:6d:21:98:8e:05:f5:c8:57:ea:f1:f3: 8c:5c:1c:82:37:70:ef:b3:f1:96:5d:c4:4f:ef:cb:85:a4:8e: c8:51:fd:c6:5c:39:a9:f8:e3:96:85:d0:3b:7a:7a:65:22:09: 4a:02:62:c6:02:aa:dc:38:24:3f:7a:ae:c5:b1:96:28:ff:6c: a1:cf:ea:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUMc2ZTL3++mRgsAqV7mw1IFoZ5F4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MTEwNDExNTUwMVoX DTI2MTEwMzEyMDAwMVowMzExMC8GA1UEAxMoRUQ5MENGQkI4M0E1MUNFOTNCRDZG MDM5RkU3RTkxNDAyRUZCQ0RBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOjCiazSK4q9UG25NCeZMxNC5IxebzuMNFDY/R8NDwB2JkUwmL0Nkn7mTkdz BWxZqpvPV7hkVlyT6t1/ZWYZDp6UqHAcfbbwMAAYFbLVEnqm40gx4My1rVJXxzNd upeOcHHrzlZeAViJm9XMXhxj7hveWT+xXacM9C/TKbOz/GzgwmTuZl/09hu3aAr3 2UuvxW25NX1xivIRCb+Sqt5tREpSwxJWetKSyxcI+HlchsWKnJCojSCfWzj2e9qu 1AA/XcwxOUXDZf0wuFQ22KCDPAVPs6f9cRhme6EWp98A2zgzIOt+XjFq9GSspruu OcF8fpuJx82HTRGGOP2ue7mTgocCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBTtkM+7 g6Uc6TvW8Dn+fpFALvvNqTAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAP0AGsLxr wW/Fo3t3NQ9rghXoIwku4ZWxJXkx/xYd4fbsPlsGpq++ElIAKMyml2HkEO/26F8V TXUc0ZeJSrcirg+PMthbx8YZo+/yjFeAxjRamjYteLtkyt+IUoqQRqRkYdf4T+2u DqLnJ65gFycxpbA37QE1CRL5g/T/eY9vHdVqhF5JcYFC9wdRr7iMCeIdm2RhZs9J SUwFKkGHk/gPxtrRIO8pPKdnGHqkJ4T5uyuLjFpfNSadHCnDjW0hmI4F9chX6vHz jFwcgjdw77Pxll3ET+/LhaSOyFH9xlw5qfjjloXQO3p6ZSIJSgJixgKq3DgkP3qu xbGWKP9soc/qAQ== -----END CERTIFICATE-----Generated at Wed Nov 5 17:57:00 2025 by rpki-client