$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json) Hash identifier: y4m0RKcSfepl3lrHJKNs1gC+mNKjsgSdrWpYlqzjtQA= Subject key identifier: 95:75:21:B2:A1:A9:E6:77:16:2C:5B:28:74:BA:03:F7:DB:01:EB:49 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 675D10F1F85E9FD836322BC45F60E5DBF657E4AC Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa Signing time: Fri 20 Mar 2026 00:00:02 +0000 ROA not before: Thu 19 Mar 2026 23:55:02 +0000 ROA not after: Fri 19 Mar 2027 00:00:02 +0000 asID: 24021 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 02:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:5d:10:f1:f8:5e:9f:d8:36:32:2b:c4:5f:60:e5:db:f6:57:e4:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Mar 19 23:55:02 2026 GMT Not After : Mar 19 00:00:02 2027 GMT Subject: CN=957521B2A1A9E677162C5B2874BA03F7DB01EB49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:62:9b:43:d4:c4:57:91:c5:b3:dc:a9:21:06: 8f:00:7d:a3:8a:e6:1c:30:dc:8b:05:13:64:f8:02: 44:b7:3f:63:ca:9d:85:35:1b:5d:5e:9d:33:d4:a0: ab:2d:54:b9:72:8e:69:07:06:0c:84:48:16:bf:4b: e3:4e:5d:ce:4c:9c:10:a3:6c:13:dc:19:e5:fd:7c: 16:a5:41:32:da:19:4b:46:2f:c1:7d:bb:1d:cc:f3: 92:14:05:15:a5:64:ab:c4:62:da:77:90:95:9f:30: 74:9e:8e:ac:14:50:8c:3e:a6:ac:55:b0:a2:d7:8d: 47:bb:fd:72:4a:c4:71:f3:66:71:5d:01:56:3f:f9: c4:5f:70:fc:dd:21:0f:27:3c:78:4e:90:18:c5:d5: a0:b9:48:7c:5e:76:2b:0b:18:40:01:b0:fe:51:41: 5b:27:9d:a1:64:5e:c4:36:c2:94:52:8e:97:0e:9b: 03:13:78:2a:fb:31:0a:a3:45:68:73:18:a3:e5:83: b0:31:2d:12:f1:9d:4c:66:c5:1b:41:4d:2a:16:b9: 1c:e0:0b:96:6f:4b:36:8e:9e:88:9c:56:04:78:a4: 08:90:2d:3b:de:33:c7:a3:a7:9a:1b:11:78:32:a2: 02:f7:75:fd:85:36:30:ec:92:e0:fb:b7:58:3f:93: 70:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:75:21:B2:A1:A9:E6:77:16:2C:5B:28:74:BA:03:F7:DB:01:EB:49 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 62:24:1d:df:4a:38:2b:46:38:54:30:58:23:08:99:cd:bc:52: 5c:68:18:5b:4c:d5:4e:13:1c:26:f5:a1:32:1f:c7:da:08:76: 4d:cc:3e:6f:db:46:ae:38:5b:94:86:88:e7:c3:44:19:c9:59: 6b:9e:10:0e:a3:90:27:e2:bb:8e:56:e2:cf:a6:65:c1:fa:09: a1:e8:38:e9:a2:bd:0d:f3:59:aa:6f:d8:de:a4:79:7c:eb:f7: 65:71:0d:ef:bf:7b:25:e9:55:b7:24:d9:43:b5:05:6c:20:ef: cd:15:4a:66:a9:a3:f7:26:07:60:93:02:4b:01:03:fe:2b:e4: 48:28:29:3d:41:ad:12:af:06:f8:2a:d1:8e:e1:57:43:1c:19: e6:f6:16:72:1a:88:03:57:48:bf:60:53:f0:5c:66:75:7b:65: 67:1f:0e:e7:25:a3:e5:62:81:a0:32:3c:17:b1:2f:02:df:10: fe:0c:2b:5f:81:a9:91:86:d9:30:c9:bd:b3:b7:00:94:f7:57: 14:1f:01:e4:28:44:6a:1c:23:4c:62:48:e5:fd:9d:19:77:f8: 17:55:49:ed:e2:60:a0:5e:77:60:dc:f2:b8:c4:b6:bf:2b:16: 92:0c:18:4f:4b:96:46:14:e7:a1:b2:56:50:cd:3a:e8:13:86: df:69:2d:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUZ10Q8fhen9g2MivEX2Dl2/ZX5KwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI2MDMxOTIzNTUwMloX DTI3MDMxOTAwMDAwMlowMzExMC8GA1UEAxMoOTU3NTIxQjJBMUE5RTY3NzE2MkM1 QjI4NzRCQTAzRjdEQjAxRUI0OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANRim0PUxFeRxbPcqSEGjwB9o4rmHDDciwUTZPgCRLc/Y8qdhTUbXV6dM9Sg qy1UuXKOaQcGDIRIFr9L405dzkycEKNsE9wZ5f18FqVBMtoZS0YvwX27HczzkhQF FaVkq8Ri2neQlZ8wdJ6OrBRQjD6mrFWwoteNR7v9ckrEcfNmcV0BVj/5xF9w/N0h Dyc8eE6QGMXVoLlIfF52KwsYQAGw/lFBWyedoWRexDbClFKOlw6bAxN4KvsxCqNF aHMYo+WDsDEtEvGdTGbFG0FNKha5HOALlm9LNo6eiJxWBHikCJAtO94zx6OnmhsR eDKiAvd1/YU2MOyS4Pu3WD+TcM8CAwEAAaOCAgkwggIFMB0GA1UdDgQWBBSVdSGy oanmdxYsWyh0ugP32wHrSTAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAYiQd30o4 K0Y4VDBYIwiZzbxSXGgYW0zVThMcJvWhMh/H2gh2Tcw+b9tGrjhblIaI58NEGclZ a54QDqOQJ+K7jlbiz6ZlwfoJoeg46aK9DfNZqm/Y3qR5fOv3ZXEN7797JelVtyTZ Q7UFbCDvzRVKZqmj9yYHYJMCSwED/ivkSCgpPUGtEq8G+CrRjuFXQxwZ5vYWchqI A1dIv2BT8FxmdXtlZx8O5yWj5WKBoDI8F7EvAt8Q/gwrX4GpkYbZMMm9s7cAlPdX FB8B5ChEahwjTGJI5f2dGXf4F1VJ7eJgoF53YNzyuMS2vysWkgwYT0uWRhTnobJW UM066BOG32ktkw== -----END CERTIFICATE-----Generated at Fri Mar 20 05:09:03 2026 by rpki-client