$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: 79U4LQioeCFbd5WRLEHrqFmf37k5/kJmnQiLgyec4zM= Subject key identifier: 65:14:0A:4C:24:64:6F:03:7D:04:48:A9:1C:F9:87:72:B5:3E:05:92 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 0BA91B7B9F827FF00147EADBD09819F764121C9B Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Tue 15 Apr 2025 12:00:01 +0000 ROA not before: Tue 15 Apr 2025 11:55:01 +0000 ROA not after: Tue 14 Apr 2026 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 13:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:a9:1b:7b:9f:82:7f:f0:01:47:ea:db:d0:98:19:f7:64:12:1c:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Apr 15 11:55:01 2025 GMT Not After : Apr 14 12:00:01 2026 GMT Subject: CN=65140A4C24646F037D0448A91CF98772B53E0592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:42:1a:e4:3a:a5:f7:98:fa:9e:94:e5:33:60: 9a:83:df:0a:98:7e:b8:61:44:fe:cf:f8:a0:6f:7e: 23:7b:e2:03:7b:7f:b6:47:aa:d7:e3:d6:09:f1:c7: 5f:8d:23:9d:b1:6e:c3:ae:af:b5:ec:83:4f:98:0a: 5e:7a:a1:7d:49:34:0b:e1:80:13:09:49:84:79:ac: 7c:fc:f3:60:8a:c8:76:89:49:52:bd:2b:27:b3:06: a0:42:c4:f0:4d:a6:ef:8f:4d:21:77:09:f8:5c:f3: a1:b4:d8:0e:2e:4f:53:8a:b8:49:e7:9d:e9:14:63: ce:f2:bf:c8:2d:eb:28:bd:91:84:e7:0e:e1:f7:1c: 0a:5c:fa:9b:be:51:66:38:1f:dc:00:7d:70:99:f2: 7e:21:c8:5d:a8:e2:dc:c9:81:df:cc:48:c5:e9:ea: 83:5f:8c:0d:67:7d:9f:3e:d8:02:c2:34:05:9c:aa: 27:00:5a:c1:ee:42:40:a4:66:04:fb:59:57:69:ec: d8:19:80:ec:dc:79:d4:32:cc:c6:ab:5b:b4:00:a9: ab:22:fc:f8:2a:9e:5d:30:32:c8:8f:84:88:17:45: d3:94:65:44:e9:83:c0:f5:ff:9e:07:e0:d9:48:ca: b2:b2:d7:f1:fc:47:cd:72:54:59:2f:78:4e:42:49: f0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:14:0A:4C:24:64:6F:03:7D:04:48:A9:1C:F9:87:72:B5:3E:05:92 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption af:84:dc:f8:89:9d:99:03:8f:6b:ab:e0:8c:3d:4c:11:b8:13: 3d:20:06:a6:ca:d4:65:19:60:6a:f3:db:b0:3c:07:0e:35:e8: 5d:d8:ff:d9:5c:7f:5f:de:4a:67:69:52:d8:23:d6:bc:2e:64: 38:93:f0:d3:d3:22:e0:67:9f:8a:6d:da:86:42:1f:c7:87:b4: 66:ae:4f:c8:cc:aa:53:54:0f:b1:c2:be:42:dd:c9:66:a2:48: 4c:86:9a:b8:54:12:f2:27:a6:66:43:b5:14:ce:4a:a6:5d:c1: 08:e0:f1:c5:ef:cc:ed:ab:c6:83:17:7b:78:34:cb:8b:b3:ac: 7c:49:12:49:af:18:01:bf:75:05:e2:7f:d3:f9:07:7a:86:26: 32:cd:13:e7:51:bb:ef:4f:b8:4d:34:6a:d1:c0:4a:42:9a:aa: ee:f9:17:80:09:fe:e3:88:1e:90:d8:a0:1f:03:12:66:a4:90: a4:a9:dc:9d:1a:cc:e1:1c:fc:93:e3:5d:53:b7:9d:26:3b:94: 1c:04:4d:cb:7f:5c:cd:84:cb:14:f4:fa:39:62:da:30:83:81: a1:f9:ab:8d:bb:3a:e7:df:7d:d6:07:85:4f:f3:b2:99:5b:c4: 1c:c6:28:0e:e9:99:c7:4f:ce:05:4c:1e:28:b4:f8:4e:ef:ee: af:32:f8:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUC6kbe5+Cf/ABR+rb0JgZ92QSHJswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDQxNTExNTUwMVoX DTI2MDQxNDEyMDAwMVowMzExMC8GA1UEAxMoNjUxNDBBNEMyNDY0NkYwMzdEMDQ0 OEE5MUNGOTg3NzJCNTNFMDU5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZCGuQ6pfeY+p6U5TNgmoPfCph+uGFE/s/4oG9+I3viA3t/tkeq1+PWCfHH X40jnbFuw66vteyDT5gKXnqhfUk0C+GAEwlJhHmsfPzzYIrIdolJUr0rJ7MGoELE 8E2m749NIXcJ+FzzobTYDi5PU4q4Seed6RRjzvK/yC3rKL2RhOcO4fccClz6m75R Zjgf3AB9cJnyfiHIXaji3MmB38xIxenqg1+MDWd9nz7YAsI0BZyqJwBawe5CQKRm BPtZV2ns2BmA7Nx51DLMxqtbtACpqyL8+CqeXTAyyI+EiBdF05RlROmDwPX/ngfg 2UjKsrLX8fxHzXJUWS94TkJJ8KECAwEAAaOCAgkwggIFMB0GA1UdDgQWBBRlFApM JGRvA30ESKkc+YdytT4FkjAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAr4Tc+Imd mQOPa6vgjD1MEbgTPSAGpsrUZRlgavPbsDwHDjXoXdj/2Vx/X95KZ2lS2CPWvC5k OJPw09Mi4Gefim3ahkIfx4e0Zq5PyMyqU1QPscK+Qt3JZqJITIaauFQS8iemZkO1 FM5Kpl3BCODxxe/M7avGgxd7eDTLi7OsfEkSSa8YAb91BeJ/0/kHeoYmMs0T51G7 70+4TTRq0cBKQpqq7vkXgAn+44gekNigHwMSZqSQpKncnRrM4Rz8k+NdU7edJjuU HARNy39czYTLFPT6OWLaMIOBofmrjbs659991geFT/OymVvEHMYoDumZx0/OBUwe KLT4Tu/urzL4MA== -----END CERTIFICATE-----Generated at Wed Apr 16 06:50:38 2025 by rpki-client