$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json) Hash identifier: H1Z5NWoJdHagxM+gDV6xHZhlk9AeV5ufGgieXdiGths= Subject key identifier: 4E:FF:95:0B:2F:F8:B4:04:CF:48:C7:AD:DB:BE:B4:B2:74:25:22:39 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 1BF0CD305ADF46C806003D8DEFCE1175BDC27818 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa Signing time: Mon 27 Oct 2025 00:00:01 +0000 ROA not before: Sun 26 Oct 2025 23:55:01 +0000 ROA not after: Mon 26 Oct 2026 00:00:01 +0000 asID: 24021 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 03:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:f0:cd:30:5a:df:46:c8:06:00:3d:8d:ef:ce:11:75:bd:c2:78:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Oct 26 23:55:01 2025 GMT Not After : Oct 26 00:00:01 2026 GMT Subject: CN=4EFF950B2FF8B404CF48C7ADDBBEB4B274252239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:59:64:7c:70:58:62:f1:2e:17:69:ca:6b:35: a9:48:08:53:f3:a5:df:3c:40:9f:60:58:aa:21:d0: be:9a:01:b3:b9:01:ee:5c:6b:ce:50:9a:51:1c:cb: 9f:22:ec:62:33:cd:54:5d:5b:53:66:b7:67:dd:7f: c5:a8:a6:f8:32:42:07:7f:20:9a:a2:d6:c0:61:68: 80:3d:8e:1e:1d:1f:8e:88:2f:d6:7e:d2:27:15:47: db:ef:9d:4b:ea:8a:8c:7b:c5:1e:ee:40:87:54:ed: 6a:a2:15:24:bd:6d:0f:ce:c0:eb:fc:e5:67:8a:8f: eb:f3:26:01:d7:dd:a5:20:f0:5e:2d:c0:2a:3b:b3: da:be:60:db:5e:b1:30:5a:71:70:76:c8:03:73:a2: 40:df:59:37:5c:c3:b6:88:e0:3b:44:55:70:28:09: c5:14:67:ab:1a:de:5c:f1:9b:64:5b:46:c0:5f:75: ad:4e:0f:62:d4:6f:d4:7c:02:41:8d:1e:21:99:af: d7:e7:e2:44:04:59:f6:60:d3:3a:68:0e:90:77:dc: e1:a7:f1:c1:4c:54:73:8f:b6:01:21:0d:04:3e:f5: 3f:b1:f0:3e:26:5e:2d:e6:63:98:c6:cf:6e:9a:28: 39:ce:16:5c:80:10:06:c3:7f:f7:54:d1:21:f0:94: 5e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:FF:95:0B:2F:F8:B4:04:CF:48:C7:AD:DB:BE:B4:B2:74:25:22:39 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 20:c3:e9:26:70:60:5c:70:41:2a:36:e7:4e:1b:0b:a0:d9:ea: f5:1c:43:e2:a2:9c:8d:c8:45:17:22:91:a8:1a:23:78:80:b1: 58:57:4a:26:72:5a:42:52:3a:ba:6d:90:78:57:ff:13:ff:89: 89:82:fc:98:80:2f:4e:94:a4:ab:86:c9:71:ac:83:dd:9a:76: 9e:08:65:8f:55:e9:71:d3:96:54:a4:b0:1c:1e:4a:57:76:ba: e2:ee:ef:e1:dc:cd:93:fd:cd:33:71:45:a1:2d:c0:db:b6:f8: 77:4b:69:5d:14:97:40:7a:85:09:eb:45:6e:f3:fb:04:34:d3: 11:59:b4:fb:98:1e:06:f6:0c:06:7c:19:56:7b:51:c9:93:e1: b3:9b:a0:39:42:f6:0f:46:0d:af:f2:a7:1e:61:3c:bb:cf:28: 7d:65:5f:1c:95:b5:a3:90:13:4d:3c:66:28:4d:ed:52:d1:90: 6d:7d:f7:a9:c6:b8:e9:3b:66:f7:63:92:ee:47:c7:c2:59:4b: cc:d1:ae:6b:f8:ac:0d:ce:a5:71:f0:7c:ff:3d:7c:02:ff:f0: 3d:fa:c0:8a:68:aa:e6:7b:9f:b2:da:1d:ca:39:98:91:4f:b4: e4:c9:5a:62:14:5e:cb:50:00:39:c6:1c:c8:0a:f2:e6:d2:be: 62:44:d1:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUG/DNMFrfRsgGAD2N784Rdb3CeBgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MTAyNjIzNTUwMVoX DTI2MTAyNjAwMDAwMVowMzExMC8GA1UEAxMoNEVGRjk1MEIyRkY4QjQwNENGNDhD N0FEREJCRUI0QjI3NDI1MjIzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMBZZHxwWGLxLhdpyms1qUgIU/Ol3zxAn2BYqiHQvpoBs7kB7lxrzlCaURzL nyLsYjPNVF1bU2a3Z91/xaim+DJCB38gmqLWwGFogD2OHh0fjogv1n7SJxVH2++d S+qKjHvFHu5Ah1TtaqIVJL1tD87A6/zlZ4qP6/MmAdfdpSDwXi3AKjuz2r5g216x MFpxcHbIA3OiQN9ZN1zDtojgO0RVcCgJxRRnqxreXPGbZFtGwF91rU4PYtRv1HwC QY0eIZmv1+fiRARZ9mDTOmgOkHfc4afxwUxUc4+2ASENBD71P7HwPiZeLeZjmMbP bpooOc4WXIAQBsN/91TRIfCUXusCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBRO/5UL L/i0BM9Ix63bvrSydCUiOTAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAIMPpJnBg XHBBKjbnThsLoNnq9RxD4qKcjchFFyKRqBojeICxWFdKJnJaQlI6um2QeFf/E/+J iYL8mIAvTpSkq4bJcayD3Zp2nghlj1XpcdOWVKSwHB5KV3a64u7v4dzNk/3NM3FF oS3A27b4d0tpXRSXQHqFCetFbvP7BDTTEVm0+5geBvYMBnwZVntRyZPhs5ugOUL2 D0YNr/KnHmE8u88ofWVfHJW1o5ATTTxmKE3tUtGQbX33qca46Ttm92OS7kfHwllL zNGua/isDc6lcfB8/z18Av/wPfrAimiq5nufstodyjmYkU+05MlaYhRey1AAOcYc yAry5tK+YkTRJg== -----END CERTIFICATE-----Generated at Mon Oct 27 12:00:02 2025 by rpki-client