$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json) Hash identifier: 9t53gVcLL3P/FwdSwmunU60yb6BTCbtZLMcu1unw78U= Subject key identifier: 14:07:90:AE:75:83:65:B7:ED:99:CA:7B:F8:E3:43:B8:FF:8A:0D:FF Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 3D1F4D3800509CBB793BC6BAA5D5BFDABBF2AB6C Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa Signing time: Mon 09 Jun 2025 00:00:01 +0000 ROA not before: Sun 08 Jun 2025 23:55:01 +0000 ROA not after: Mon 08 Jun 2026 00:00:01 +0000 asID: 24021 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 16:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:1f:4d:38:00:50:9c:bb:79:3b:c6:ba:a5:d5:bf:da:bb:f2:ab:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Jun 8 23:55:01 2025 GMT Not After : Jun 8 00:00:01 2026 GMT Subject: CN=140790AE758365B7ED99CA7BF8E343B8FF8A0DFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:73:d1:ab:af:c1:98:d3:c7:51:e7:f2:34:80: 88:a8:16:ec:94:b6:ba:0e:12:69:e8:3c:6c:49:7f: fa:17:46:92:48:17:22:22:4c:1f:25:da:b5:4b:db: 22:f8:52:b8:f7:51:69:9b:0c:fb:98:50:d3:04:64: 4d:22:a3:55:7f:2b:8d:76:8e:ce:0b:5c:44:ff:ca: 61:e7:ca:d7:d0:28:75:c4:ee:2a:dd:35:31:4b:39: 8a:a6:ca:97:a9:58:bb:87:1f:41:f9:34:5c:22:1c: bf:92:d8:03:6a:dd:be:27:3a:d6:ff:c4:55:1b:4f: ad:88:7f:ac:dd:d5:b2:ea:4b:85:46:fe:bd:70:01: b8:02:17:03:c7:4d:03:31:b9:e0:fa:66:68:70:15: 29:f5:1c:11:ef:86:0d:6c:be:53:4b:9f:87:cc:a1: 80:0b:d3:d5:70:ef:36:be:50:bb:5f:13:09:33:66: 35:b6:fb:a2:46:78:12:54:48:a1:52:8e:a6:10:9d: e5:c6:0f:81:56:9c:ab:e2:2c:72:7f:90:01:76:44: 0b:5c:ef:ae:b4:e8:b7:58:57:b8:74:08:26:0f:68: 51:21:ec:29:9e:77:2b:d0:e0:95:19:7a:70:bb:62: 90:ff:55:ec:1b:92:3a:65:4d:a0:3f:c1:33:2d:58: 03:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:07:90:AE:75:83:65:B7:ED:99:CA:7B:F8:E3:43:B8:FF:8A:0D:FF X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption bf:8c:fe:b4:64:8f:0a:98:ed:d9:68:0e:af:a3:16:c3:92:d4: 94:ca:8d:a1:29:95:0e:d1:2b:48:c3:e0:80:7e:d7:e6:9a:e7: 9e:d5:70:ef:2b:a2:07:ae:3a:da:1a:30:5b:1e:9e:74:a2:f8: 52:d2:45:ba:4c:32:93:63:a3:b2:75:56:fe:71:d4:f3:0d:af: 54:a2:f8:ab:a0:05:de:32:ce:45:4f:62:9d:87:e2:ef:90:ab: b8:69:84:14:56:ba:e6:3b:b9:5a:8c:0d:f1:d6:e3:ac:0a:14: c3:66:fe:c5:d8:79:37:a3:78:31:bb:c5:d9:5d:9f:33:8c:3d: 77:b6:a8:05:05:30:c5:2f:3d:bd:c1:c7:c0:19:8e:a9:1f:00: 70:20:77:42:ab:27:0e:5b:a2:e3:47:a2:5f:e4:e3:93:3d:7a: 6b:b1:b8:2d:ba:36:74:21:f7:49:ba:9e:58:6d:82:2f:87:8b: eb:c3:cb:eb:bd:10:c7:39:3f:1e:31:70:09:44:40:c4:be:11: c2:6d:1e:65:51:e4:19:8d:03:e0:51:1a:3c:27:a4:c3:4b:5b: 9f:c8:a1:b1:00:7f:7d:40:f5:e5:e9:e1:54:f7:c4:ac:b0:0f: 12:06:0f:ba:ba:28:80:0a:00:da:5d:e7:65:fd:1f:54:90:e4: 8d:7a:eb:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUPR9NOABQnLt5O8a6pdW/2rvyq2wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDYwODIzNTUwMVoX DTI2MDYwODAwMDAwMVowMzExMC8GA1UEAxMoMTQwNzkwQUU3NTgzNjVCN0VEOTlD QTdCRjhFMzQzQjhGRjhBMERGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKBz0auvwZjTx1Hn8jSAiKgW7JS2ug4Saeg8bEl/+hdGkkgXIiJMHyXatUvb IvhSuPdRaZsM+5hQ0wRkTSKjVX8rjXaOzgtcRP/KYefK19AodcTuKt01MUs5iqbK l6lYu4cfQfk0XCIcv5LYA2rdvic61v/EVRtPrYh/rN3VsupLhUb+vXABuAIXA8dN AzG54PpmaHAVKfUcEe+GDWy+U0ufh8yhgAvT1XDvNr5Qu18TCTNmNbb7okZ4ElRI oVKOphCd5cYPgVacq+Iscn+QAXZEC1zvrrTot1hXuHQIJg9oUSHsKZ53K9DglRl6 cLtikP9V7BuSOmVNoD/BMy1YA18CAwEAAaOCAgkwggIFMB0GA1UdDgQWBBQUB5Cu dYNlt+2Zynv440O4/4oN/zAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAv4z+tGSP Cpjt2WgOr6MWw5LUlMqNoSmVDtErSMPggH7X5prnntVw7yuiB6462howWx6edKL4 UtJFukwyk2OjsnVW/nHU8w2vVKL4q6AF3jLORU9inYfi75CruGmEFFa65ju5WowN 8dbjrAoUw2b+xdh5N6N4MbvF2V2fM4w9d7aoBQUwxS89vcHHwBmOqR8AcCB3Qqsn Dlui40eiX+Tjkz16a7G4Lbo2dCH3SbqeWG2CL4eL68PL670Qxzk/HjFwCURAxL4R wm0eZVHkGY0D4FEaPCekw0tbn8ihsQB/fUD15enhVPfErLAPEgYPuroogAoA2l3n Zf0fVJDkjXrrsQ== -----END CERTIFICATE-----Generated at Tue Jun 10 00:17:57 2025 by rpki-client