$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: T2oouqLdW8/HEdNDKcpXueGb9WviDiuNbMXQl0utXwM= Subject key identifier: 55:B0:B6:88:86:6B:2C:6A:9E:61:53:CB:DE:AE:31:13:2B:3B:84:56 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 63171623F419C5B79B8ED66DD8636A8F174EF951 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Tue 22 Jul 2025 12:00:01 +0000 ROA not before: Tue 22 Jul 2025 11:55:01 +0000 ROA not after: Tue 21 Jul 2026 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 09:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:17:16:23:f4:19:c5:b7:9b:8e:d6:6d:d8:63:6a:8f:17:4e:f9:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Jul 22 11:55:01 2025 GMT Not After : Jul 21 12:00:01 2026 GMT Subject: CN=55B0B688866B2C6A9E6153CBDEAE31132B3B8456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a9:ee:46:03:33:54:bc:a8:f9:c7:fb:9a:3d: dd:86:32:45:57:b6:d2:b6:68:d9:85:5b:35:80:b9: 82:c8:9c:11:9c:38:a7:99:a6:b0:cc:1b:98:26:d2: 53:63:2a:8e:51:d2:ea:61:ea:68:44:7f:2e:f2:9e: 66:db:4b:72:07:cd:87:79:df:f4:4c:63:45:35:30: 5c:bd:68:07:e5:23:4a:fc:15:b6:a1:14:c0:43:ad: 2b:13:7d:01:f9:90:61:f7:24:d8:6f:b6:e1:ed:7b: 18:16:d0:a9:47:4a:a3:df:65:fe:19:83:88:c9:6c: 0f:7e:95:c0:f1:a1:4c:1d:d1:b2:76:48:5d:bf:03: ed:69:02:cb:48:12:8f:b4:01:d3:7b:34:92:cf:de: ba:e0:a1:41:ec:c7:32:23:25:dd:ff:4e:15:b0:54: 12:f2:b6:0d:04:ab:7e:81:c8:c2:4f:5c:5f:0c:95: a7:87:9b:a6:a6:18:05:f1:70:fd:a3:da:38:79:da: db:ad:8c:37:b0:c4:e6:b8:b3:aa:4e:ee:db:5f:fb: 9c:21:4d:e9:c4:77:7c:df:e7:3b:d1:a4:94:ab:b8: aa:f9:76:6e:27:d4:e1:5a:4a:86:9c:87:1d:98:3f: 4a:94:2a:21:ab:ef:99:fa:44:38:76:0a:64:c8:69: 91:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B0:B6:88:86:6B:2C:6A:9E:61:53:CB:DE:AE:31:13:2B:3B:84:56 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:cd:7f:e9:98:c4:d1:07:a8:7a:a8:17:60:33:72:0f:f7:f2: b6:24:bf:2c:e6:f6:59:73:08:cc:52:fc:70:a8:36:49:be:ab: 5a:75:81:2f:33:16:d3:34:84:ea:02:81:86:3f:f2:91:15:c3: c6:9e:cd:bd:4a:6e:ea:50:2b:8c:da:6c:bb:5d:5b:83:95:43: f3:1d:06:df:c8:78:99:4a:d7:3c:b0:09:29:79:70:c6:b9:9d: 48:e7:16:b0:ec:a6:61:a3:3d:5c:dc:54:05:e0:b4:40:8f:9d: dd:af:fc:0d:56:40:4f:bd:0c:47:81:c3:42:a0:44:ab:67:84: 7e:1c:54:d5:dc:82:25:4f:92:43:5a:86:fa:34:aa:79:9a:dc: 0f:39:83:4c:38:03:7c:87:ec:af:1a:00:d3:4f:b0:57:1b:f5: 69:78:57:53:cb:38:00:ff:17:f9:c0:ef:bc:c4:8b:31:8c:8d: 13:05:a9:b6:d1:5c:64:13:2f:b6:66:9c:96:55:fc:fc:84:1f: 93:d0:7d:77:16:82:cb:18:ae:ba:f2:be:20:c4:4f:00:0c:8d: 90:9b:9e:6a:e9:18:56:f0:b4:5c:dd:43:04:56:ae:81:15:0c: c5:d5:48:2a:cc:58:e9:cb:77:12:d3:11:48:cb:bb:ea:70:48: 74:30:c9:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUYxcWI/QZxbebjtZt2GNqjxdO+VEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDcyMjExNTUwMVoX DTI2MDcyMTEyMDAwMVowMzExMC8GA1UEAxMoNTVCMEI2ODg4NjZCMkM2QTlFNjE1 M0NCREVBRTMxMTMyQjNCODQ1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOWp7kYDM1S8qPnH+5o93YYyRVe20rZo2YVbNYC5gsicEZw4p5mmsMwbmCbS U2MqjlHS6mHqaER/LvKeZttLcgfNh3nf9ExjRTUwXL1oB+UjSvwVtqEUwEOtKxN9 AfmQYfck2G+24e17GBbQqUdKo99l/hmDiMlsD36VwPGhTB3RsnZIXb8D7WkCy0gS j7QB03s0ks/euuChQezHMiMl3f9OFbBUEvK2DQSrfoHIwk9cXwyVp4ebpqYYBfFw /aPaOHna262MN7DE5rizqk7u21/7nCFN6cR3fN/nO9GklKu4qvl2bifU4VpKhpyH HZg/SpQqIavvmfpEOHYKZMhpkaMCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBRVsLaI hmssap5hU8verjETKzuEVjAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAOs1/6ZjE 0QeoeqgXYDNyD/fytiS/LOb2WXMIzFL8cKg2Sb6rWnWBLzMW0zSE6gKBhj/ykRXD xp7NvUpu6lArjNpsu11bg5VD8x0G38h4mUrXPLAJKXlwxrmdSOcWsOymYaM9XNxU BeC0QI+d3a/8DVZAT70MR4HDQqBEq2eEfhxU1dyCJU+SQ1qG+jSqeZrcDzmDTDgD fIfsrxoA00+wVxv1aXhXU8s4AP8X+cDvvMSLMYyNEwWpttFcZBMvtmacllX8/IQf k9B9dxaCyxiuuvK+IMRPAAyNkJueaukYVvC0XN1DBFaugRUMxdVIKsxY6ct3EtMR SMu76nBIdDDJ1A== -----END CERTIFICATE-----Generated at Wed Jul 23 19:38:05 2025 by rpki-client