$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: OlFCVoWHFZiA0vBa/Bcwtmi7GHrsUzlqjKB+TanI1dQ= Subject key identifier: 07:3A:AF:E5:A1:35:BA:E0:C4:D3:DA:4F:F9:0A:68:F4:21:8E:E5:5C Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 11EC4F16AD55B8982F8AB13ACF358172F9B2EC5A Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Tue 03 Jun 2025 12:00:01 +0000 ROA not before: Tue 03 Jun 2025 11:55:01 +0000 ROA not after: Tue 02 Jun 2026 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 15:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ec:4f:16:ad:55:b8:98:2f:8a:b1:3a:cf:35:81:72:f9:b2:ec:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Jun 3 11:55:01 2025 GMT Not After : Jun 2 12:00:01 2026 GMT Subject: CN=073AAFE5A135BAE0C4D3DA4FF90A68F4218EE55C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6e:ad:fa:b0:78:ae:69:02:71:19:fc:d3:16: 24:92:57:f6:1f:82:90:e5:73:71:b2:1c:ae:cf:60: 3a:e5:a7:69:c5:73:15:e2:88:0b:a6:8e:c4:92:af: af:11:dd:72:9f:9e:ce:8f:9f:fb:2a:50:99:a0:54: a7:2f:41:9b:6b:b9:dd:77:3c:2d:24:2b:2e:23:f1: e9:c0:fa:ba:e5:fa:09:4a:f3:6c:5f:00:53:bb:9c: 6c:15:24:15:b0:79:17:8f:5d:b2:b0:36:c8:58:ee: c7:11:66:ce:b6:ff:e2:71:19:e8:6b:c6:1f:0e:12: 02:4f:4f:1c:cc:15:21:90:04:2b:7d:14:bc:c1:57: f5:90:04:b2:05:70:93:db:24:e9:ad:ae:1c:24:de: a5:a7:01:2b:bb:e8:58:57:a3:94:b0:6c:a2:f5:50: af:1c:96:b1:4d:b1:21:bb:32:ac:5c:13:f7:98:a8: 42:71:cf:1a:56:22:71:0c:e9:d2:d5:98:51:74:d2: 8d:44:3c:bd:87:90:ef:4a:96:0c:93:d0:82:ec:53: a5:ef:7f:4f:e8:1f:97:37:2a:57:e1:c5:1a:e0:6a: a2:8c:9c:66:a8:93:02:41:a6:e8:37:ca:39:08:2a: c4:25:07:89:59:b9:7e:64:c3:ee:2f:0e:d5:d3:22: fc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:3A:AF:E5:A1:35:BA:E0:C4:D3:DA:4F:F9:0A:68:F4:21:8E:E5:5C X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:cd:3f:10:7e:f7:98:75:14:90:93:26:40:4f:53:84:08:26: 20:0b:58:f7:d2:74:4e:41:75:da:cf:99:d5:9a:67:c8:a9:d8: 2d:f2:fa:9f:a0:9b:89:91:02:a4:aa:2c:33:9e:64:7b:12:f8: 1e:e0:01:8c:bc:ea:87:eb:c6:64:55:72:87:ff:b8:aa:53:98: 31:ed:f7:e2:15:73:78:97:fc:cd:de:bc:46:f2:9a:56:33:06: 97:ff:60:b1:22:57:85:f7:82:f5:a4:70:d6:90:17:22:df:e7: 66:87:d8:1d:aa:cd:95:55:27:08:ab:65:8f:f8:4a:e1:a8:fd: 01:00:64:05:32:ff:c3:49:f7:13:7b:2b:97:1a:9d:bb:39:aa: 1b:6d:e8:b9:39:66:f1:c8:2c:5e:d1:1e:a2:08:dd:38:a5:8d: 0a:5e:10:6f:6f:8e:dc:e2:4c:75:75:3f:f0:7f:da:69:82:e9: 75:2b:23:ad:96:e7:0e:10:e2:cd:88:de:a6:eb:59:bf:b8:1e: dd:6e:86:25:4f:3e:8c:4c:0d:d6:d9:c6:18:f6:c4:df:2f:19: 70:dd:ea:55:bc:2a:da:1e:41:66:3c:e7:a7:a7:56:cf:cc:e2: c2:11:8a:a3:12:de:1c:76:14:e5:d8:d0:8b:b4:fa:97:d0:25: a0:62:ef:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUEexPFq1VuJgvirE6zzWBcvmy7FowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDYwMzExNTUwMVoX DTI2MDYwMjEyMDAwMVowMzExMC8GA1UEAxMoMDczQUFGRTVBMTM1QkFFMEM0RDNE QTRGRjkwQTY4RjQyMThFRTU1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMxurfqweK5pAnEZ/NMWJJJX9h+CkOVzcbIcrs9gOuWnacVzFeKIC6aOxJKv rxHdcp+ezo+f+ypQmaBUpy9Bm2u53Xc8LSQrLiPx6cD6uuX6CUrzbF8AU7ucbBUk FbB5F49dsrA2yFjuxxFmzrb/4nEZ6GvGHw4SAk9PHMwVIZAEK30UvMFX9ZAEsgVw k9sk6a2uHCTepacBK7voWFejlLBsovVQrxyWsU2xIbsyrFwT95ioQnHPGlYicQzp 0tWYUXTSjUQ8vYeQ70qWDJPQguxTpe9/T+gflzcqV+HFGuBqooycZqiTAkGm6DfK OQgqxCUHiVm5fmTD7i8O1dMi/EkCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBQHOq/l oTW64MTT2k/5Cmj0IY7lXDAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAfs0/EH73 mHUUkJMmQE9ThAgmIAtY99J0TkF12s+Z1ZpnyKnYLfL6n6CbiZECpKosM55kexL4 HuABjLzqh+vGZFVyh/+4qlOYMe334hVzeJf8zd68RvKaVjMGl/9gsSJXhfeC9aRw 1pAXIt/nZofYHarNlVUnCKtlj/hK4aj9AQBkBTL/w0n3E3srlxqduzmqG23ouTlm 8cgsXtEeogjdOKWNCl4Qb2+O3OJMdXU/8H/aaYLpdSsjrZbnDhDizYjeputZv7ge 3W6GJU8+jEwN1tnGGPbE3y8ZcN3qVbwq2h5BZjznp6dWz8ziwhGKoxLeHHYU5djQ i7T6l9AloGLv1g== -----END CERTIFICATE-----Generated at Tue Jun 3 23:57:22 2025 by rpki-client