$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: W/YWBwHB9nEUr2e6exMFrYvYtIj+XrWI/AZLZ9m17wU= Subject key identifier: 20:50:B8:6F:18:E5:51:DF:30:27:73:91:8C:73:BB:A8:D8:DB:C1:4D Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 1EFCE3249F24DBF5D212F0215E6659B62837AA74 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Tue 09 Sep 2025 12:00:01 +0000 ROA not before: Tue 09 Sep 2025 11:55:01 +0000 ROA not after: Tue 08 Sep 2026 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 12:47:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:fc:e3:24:9f:24:db:f5:d2:12:f0:21:5e:66:59:b6:28:37:aa:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Sep 9 11:55:01 2025 GMT Not After : Sep 8 12:00:01 2026 GMT Subject: CN=2050B86F18E551DF302773918C73BBA8D8DBC14D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0e:73:8d:9d:98:e9:77:7f:95:18:e4:41:1a: 96:da:d7:8d:8f:73:4d:7b:1d:56:1b:25:ad:a3:26: 65:bf:a7:f5:1d:24:79:a6:f9:19:5a:6c:7d:6c:e9: a1:52:6c:ad:6d:b8:c0:f4:76:94:c0:5f:de:cb:d0: 3c:58:d9:9b:4a:2e:08:85:17:ff:36:78:23:5e:21: 82:c0:cf:61:fc:bf:88:4f:46:05:6f:0f:c7:0b:bc: 31:b2:2c:b4:c6:41:eb:e0:16:c7:69:e4:29:72:c9: 92:e7:ec:97:b7:1d:b0:75:e2:e8:af:68:f4:74:75: eb:71:2f:de:56:0f:63:83:84:e1:82:06:eb:df:53: c8:2e:99:91:f6:6b:2a:41:71:fc:45:9f:c6:80:4b: e9:2e:fc:48:5c:a8:42:03:f3:93:d7:ae:ba:8c:5b: 92:d9:05:69:b9:f8:de:5f:93:87:18:33:ea:04:a4: 7c:8b:a1:3a:70:56:cf:59:46:d1:32:93:46:ae:43: 55:8d:14:04:9a:39:f3:6e:ca:fc:80:d5:eb:7c:56: b4:5a:69:8a:65:2a:60:0f:c1:9d:e6:cd:8f:09:a0: 79:49:03:4d:35:fc:bb:cf:44:39:37:07:4f:ed:0f: 10:2f:18:76:93:9a:24:66:b4:2d:44:be:6c:c1:80: 5e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:50:B8:6F:18:E5:51:DF:30:27:73:91:8C:73:BB:A8:D8:DB:C1:4D X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption a0:6a:c0:ee:89:47:a4:54:b0:a7:4a:eb:6a:1e:f1:70:92:56: 08:81:5a:b3:b9:9b:f4:b6:a1:63:10:8f:74:07:9c:7c:29:40: 95:e2:14:58:c4:0e:53:5e:d0:4c:1f:2f:1d:b7:b4:57:41:18: 13:b0:07:b2:2f:32:14:37:1f:6c:7e:f0:d6:fd:88:58:93:ac: 21:bb:50:7a:90:0d:d2:ab:71:bb:fe:2e:16:52:c7:eb:12:83: 12:dd:2d:15:4c:49:28:8f:61:f3:e0:af:2e:58:ef:51:a5:f1: 9f:30:de:59:40:a2:4f:dc:e4:65:8f:85:67:65:58:8e:72:e1: b6:27:ee:82:19:94:70:eb:3d:a0:b6:5e:d9:f7:20:ae:b9:ae: 9f:6e:bf:27:ed:5c:fa:7c:8b:ee:e6:f6:0d:d8:e0:f7:39:d0: 9a:2f:c3:fa:45:ad:cd:9b:4f:9f:27:cc:47:41:41:b1:1c:eb: 6f:31:c9:2e:25:ae:0a:db:d4:03:66:f4:10:81:3a:44:1c:ff: 47:54:94:f8:1f:b8:06:7c:0c:1e:82:72:54:f0:2e:31:dc:ce: 94:e3:08:6d:b0:3c:37:84:bb:0e:f1:ef:93:42:ff:ff:7b:89: b6:35:e7:b9:ac:48:5f:70:46:c0:16:7b:c8:c2:51:bc:a0:7e: c9:e6:6f:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUHvzjJJ8k2/XSEvAhXmZZtig3qnQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDkwOTExNTUwMVoX DTI2MDkwODEyMDAwMVowMzExMC8GA1UEAxMoMjA1MEI4NkYxOEU1NTFERjMwMjc3 MzkxOEM3M0JCQThEOERCQzE0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJsOc42dmOl3f5UY5EEaltrXjY9zTXsdVhslraMmZb+n9R0keab5GVpsfWzp oVJsrW24wPR2lMBf3svQPFjZm0ouCIUX/zZ4I14hgsDPYfy/iE9GBW8Pxwu8MbIs tMZB6+AWx2nkKXLJkufsl7cdsHXi6K9o9HR163Ev3lYPY4OE4YIG699TyC6ZkfZr KkFx/EWfxoBL6S78SFyoQgPzk9euuoxbktkFabn43l+Thxgz6gSkfIuhOnBWz1lG 0TKTRq5DVY0UBJo5827K/IDV63xWtFppimUqYA/BnebNjwmgeUkDTTX8u89EOTcH T+0PEC8YdpOaJGa0LUS+bMGAXocCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBQgULhv GOVR3zAnc5GMc7uo2NvBTTAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAoGrA7olH pFSwp0rrah7xcJJWCIFas7mb9LahYxCPdAecfClAleIUWMQOU17QTB8vHbe0V0EY E7AHsi8yFDcfbH7w1v2IWJOsIbtQepAN0qtxu/4uFlLH6xKDEt0tFUxJKI9h8+Cv LljvUaXxnzDeWUCiT9zkZY+FZ2VYjnLhtifughmUcOs9oLZe2fcgrrmun26/J+1c +nyL7ub2Ddjg9znQmi/D+kWtzZtPnyfMR0FBsRzrbzHJLiWuCtvUA2b0EIE6RBz/ R1SU+B+4BnwMHoJyVPAuMdzOlOMIbbA8N4S7DvHvk0L//3uJtjXnuaxIX3BGwBZ7 yMJRvKB+yeZvEA== -----END CERTIFICATE-----Generated at Wed Sep 10 04:43:21 2025 by rpki-client