$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: d0WnRtOEYcM/BjmsZXwT1ESXd12VzrkXMDRHrciG52U= Subject key identifier: 13:2F:33:41:12:47:44:DD:EB:7B:72:D1:CA:EE:23:18:42:8A:89:1E Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 51607C0294559515F6A7616E41B5731CD2C36FD0 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Thu 19 Mar 2026 12:00:02 +0000 ROA not before: Thu 19 Mar 2026 11:55:02 +0000 ROA not after: Thu 18 Mar 2027 12:00:02 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 14:11:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:60:7c:02:94:55:95:15:f6:a7:61:6e:41:b5:73:1c:d2:c3:6f:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Mar 19 11:55:02 2026 GMT Not After : Mar 18 12:00:02 2027 GMT Subject: CN=132F3341124744DDEB7B72D1CAEE2318428A891E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f1:87:57:3e:72:87:27:39:6a:7f:f3:99:0b: 9f:2e:f9:fc:aa:d6:98:ae:72:da:a3:d8:f3:ba:58: 58:fb:9e:f4:83:cf:66:a0:b2:6e:6c:72:bb:5c:6b: 80:84:d4:91:b7:25:34:7e:00:dd:84:42:55:3b:8e: d8:01:ba:7d:17:43:3e:b2:23:37:7d:1e:80:b1:3c: 98:d6:3b:57:f3:03:a3:d5:4c:40:eb:f6:4c:69:5e: 37:dd:11:b7:8f:66:89:07:44:d6:e5:49:e7:a7:53: 90:30:9c:df:d8:b0:2d:31:06:9f:68:ee:0c:a6:b0: 47:49:df:9a:4f:7f:c8:db:dd:1d:35:91:6b:a9:3d: cf:ad:60:22:25:3d:3c:0c:2c:09:25:42:18:6e:0f: d3:6e:4b:28:54:f1:a8:8f:8f:49:4e:8f:2a:c9:3b: 34:fc:cf:96:0c:12:ae:79:a1:67:3e:03:34:f1:4f: 74:c6:b5:8c:39:1f:b1:91:9d:0a:23:b4:38:9b:8f: 1b:54:ea:8d:ba:bb:44:f5:36:a3:29:ec:bc:c8:b6: 37:a0:84:d9:41:58:bd:da:20:b9:21:37:a0:0f:9e: e5:6a:4c:d4:dd:af:ba:71:80:55:6c:12:f5:d6:60: 62:35:bc:59:df:00:65:2b:48:f2:46:ce:93:90:0c: db:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2F:33:41:12:47:44:DD:EB:7B:72:D1:CA:EE:23:18:42:8A:89:1E X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:b9:8d:a8:ce:f0:89:69:23:50:0d:f8:e4:97:43:e4:f6:3d: 24:c2:a8:6f:6c:63:b0:91:c3:3f:37:d6:d3:59:e1:89:89:8d: 0e:af:c2:7a:9e:9f:ba:33:f3:03:4f:7c:cd:97:35:34:c3:50: 94:18:2b:31:bf:89:08:cc:0e:7a:14:f6:f7:8f:0a:d7:45:66: 2a:50:ad:ad:45:6c:b8:da:1b:18:b0:95:86:4c:cf:7f:13:f0: 9b:dd:58:5c:4b:f9:8d:96:7c:fb:a2:4a:61:b1:14:d1:52:81: 7f:3f:1c:4a:08:34:cd:b8:9b:7b:ed:09:c6:8e:6d:f8:f0:13: 9d:11:60:18:2e:ac:0c:7c:79:24:af:2d:6c:2e:46:01:d6:19: e8:f5:46:12:97:e3:e6:6c:0c:79:2d:1e:14:d6:f8:5d:c7:b4: 08:9d:53:c4:1a:b7:c1:62:be:56:a6:89:b0:7e:d7:0e:af:b4: 5e:4f:1f:df:0a:0c:26:97:b2:39:20:b5:c4:4c:95:0b:a1:9a: 58:59:f6:79:c1:3a:ff:96:5d:93:74:97:73:d1:a7:5d:fe:ce: 61:bf:53:b5:81:04:4a:34:86:5b:12:bd:f1:13:60:0b:cc:7e: ee:11:88:37:df:4d:e4:6e:7b:37:71:62:90:2b:68:e4:cb:54: b2:51:e5:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUUWB8ApRVlRX2p2FuQbVzHNLDb9AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI2MDMxOTExNTUwMloX DTI3MDMxODEyMDAwMlowMzExMC8GA1UEAxMoMTMyRjMzNDExMjQ3NDREREVCN0I3 MkQxQ0FFRTIzMTg0MjhBODkxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN7xh1c+cocnOWp/85kLny75/KrWmK5y2qPY87pYWPue9IPPZqCybmxyu1xr gITUkbclNH4A3YRCVTuO2AG6fRdDPrIjN30egLE8mNY7V/MDo9VMQOv2TGleN90R t49miQdE1uVJ56dTkDCc39iwLTEGn2juDKawR0nfmk9/yNvdHTWRa6k9z61gIiU9 PAwsCSVCGG4P025LKFTxqI+PSU6PKsk7NPzPlgwSrnmhZz4DNPFPdMa1jDkfsZGd CiO0OJuPG1Tqjbq7RPU2oynsvMi2N6CE2UFYvdoguSE3oA+e5WpM1N2vunGAVWwS 9dZgYjW8Wd8AZStI8kbOk5AM27cCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBQTLzNB EkdE3et7ctHK7iMYQoqJHjAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAe7mNqM7w iWkjUA345JdD5PY9JMKob2xjsJHDPzfW01nhiYmNDq/Cep6fujPzA098zZc1NMNQ lBgrMb+JCMwOehT2948K10VmKlCtrUVsuNobGLCVhkzPfxPwm91YXEv5jZZ8+6JK YbEU0VKBfz8cSgg0zbibe+0Jxo5t+PATnRFgGC6sDHx5JK8tbC5GAdYZ6PVGEpfj 5mwMeS0eFNb4Xce0CJ1TxBq3wWK+VqaJsH7XDq+0Xk8f3woMJpeyOSC1xEyVC6Ga WFn2ecE6/5Zdk3SXc9GnXf7OYb9TtYEESjSGWxK98RNgC8x+7hGIN99N5G57N3Fi kCto5MtUslHlIQ== -----END CERTIFICATE-----Generated at Thu Mar 19 23:38:50 2026 by rpki-client