$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json) Hash identifier: mkYvz+AxqJGere7vb1HLnxmDBc2fGj7KuGEOQ9SemzE= Subject key identifier: A3:9C:91:68:5C:31:B1:E5:53:AA:26:88:E0:1B:70:F0:AF:63:FE:D3 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 7A9F5AAF60F22D5A10A4D7AD61F762D686E81AC8 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa Signing time: Thu 26 Mar 2026 00:00:01 +0000 ROA not before: Wed 25 Mar 2026 23:55:01 +0000 ROA not after: Thu 25 Mar 2027 00:00:01 +0000 asID: 24021 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 02:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:9f:5a:af:60:f2:2d:5a:10:a4:d7:ad:61:f7:62:d6:86:e8:1a:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Mar 25 23:55:01 2026 GMT Not After : Mar 25 00:00:01 2027 GMT Subject: CN=A39C91685C31B1E553AA2688E01B70F0AF63FED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9a:70:9c:fc:2c:d3:ce:f4:37:e1:ab:0d:82: 67:3a:a0:a6:8e:07:c1:05:10:69:8a:31:b1:24:09: bb:36:0e:19:3a:f9:37:0f:e1:73:74:31:03:67:e8: b5:dd:31:e8:47:9d:36:c9:dc:45:30:f4:3e:41:09: 6c:03:81:77:6e:7d:17:50:18:00:eb:2f:9a:4b:55: 35:57:78:86:29:3b:e4:6c:de:30:b2:14:e5:9a:48: 7b:b0:c2:e0:f0:72:72:f0:32:0c:3b:f7:0d:cb:ec: 1f:e7:cc:e8:24:17:06:11:9e:0c:0c:e8:80:38:8e: 27:36:6d:85:0c:bd:42:c8:e1:84:7c:68:1a:56:d5: 5d:e5:64:5a:f2:b5:53:be:6d:bf:6f:eb:50:34:4b: c6:c3:0d:b6:f9:b7:9f:ae:a8:4a:cf:0b:e5:b9:26: 71:91:0d:a5:b3:25:65:e3:49:d4:b2:1c:b8:05:f3: 1a:1e:f2:3f:92:c6:53:3d:f2:b2:e2:c6:89:c9:a6: 7d:ee:a7:2d:73:c6:1f:63:cb:dc:00:59:54:ae:0e: a0:e8:62:8f:e7:fc:51:0e:58:5f:d7:79:5e:96:86: 52:80:c2:a6:a0:6a:0f:07:63:91:2f:d9:9f:b5:5d: 70:c6:ea:3c:2a:08:ca:6d:99:cf:5b:0e:7c:aa:e0: 59:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:9C:91:68:5C:31:B1:E5:53:AA:26:88:E0:1B:70:F0:AF:63:FE:D3 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:1a:fe:8a:dd:a1:c6:4d:bc:c1:08:8c:77:db:03:03:71:ff: 11:33:2d:22:15:96:b1:1d:e9:95:55:ee:93:9d:b8:e5:2e:07: 20:48:a5:92:df:f4:05:3e:61:60:b7:19:a1:b5:bb:66:d1:3f: a8:a3:60:73:1d:31:31:b3:f3:98:c1:8f:e8:58:32:e6:62:eb: b9:11:bd:49:ca:25:36:26:3b:82:c6:ba:de:f5:a1:6e:3d:53: 84:24:9e:29:d6:9c:9b:c9:aa:70:f8:8a:ad:70:d4:c9:7a:2c: 2c:71:b2:29:fa:8e:01:d1:e6:07:4f:12:36:8e:f8:89:67:0d: da:75:7e:d1:03:ab:3e:bd:b9:85:14:9e:a8:23:30:cf:a0:92: 65:fc:db:d6:05:1f:34:53:50:38:4f:1e:0c:61:18:ab:f2:ad: 82:8d:6c:6b:67:01:df:0b:2d:96:8d:03:cc:06:21:d1:56:4f: c6:12:9c:d0:7f:ec:0b:f9:80:7a:b4:c0:23:8f:84:3c:ff:6c: 95:09:e8:38:da:9b:9b:90:64:c2:58:dd:09:4b:78:4c:41:ca: e1:0d:33:09:ec:93:eb:50:4c:87:0f:fb:47:f3:ed:98:7b:d1: 0e:71:17:fb:2b:22:0d:76:b7:8a:75:c5:91:ce:20:de:63:89: 21:b6:9d:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUep9ar2DyLVoQpNetYfdi1oboGsgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI2MDMyNTIzNTUwMVoX DTI3MDMyNTAwMDAwMVowMzExMC8GA1UEAxMoQTM5QzkxNjg1QzMxQjFFNTUzQUEy Njg4RTAxQjcwRjBBRjYzRkVEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMmacJz8LNPO9Dfhqw2CZzqgpo4HwQUQaYoxsSQJuzYOGTr5Nw/hc3QxA2fo td0x6EedNsncRTD0PkEJbAOBd259F1AYAOsvmktVNVd4hik75GzeMLIU5ZpIe7DC 4PBycvAyDDv3DcvsH+fM6CQXBhGeDAzogDiOJzZthQy9QsjhhHxoGlbVXeVkWvK1 U75tv2/rUDRLxsMNtvm3n66oSs8L5bkmcZENpbMlZeNJ1LIcuAXzGh7yP5LGUz3y suLGicmmfe6nLXPGH2PL3ABZVK4OoOhij+f8UQ5YX9d5XpaGUoDCpqBqDwdjkS/Z n7VdcMbqPCoIym2Zz1sOfKrgWaECAwEAAaOCAgkwggIFMB0GA1UdDgQWBBSjnJFo XDGx5VOqJojgG3Dwr2P+0zAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEADxr+it2h xk28wQiMd9sDA3H/ETMtIhWWsR3plVXuk5245S4HIEilkt/0BT5hYLcZobW7ZtE/ qKNgcx0xMbPzmMGP6Fgy5mLruRG9ScolNiY7gsa63vWhbj1ThCSeKdacm8mqcPiK rXDUyXosLHGyKfqOAdHmB08SNo74iWcN2nV+0QOrPr25hRSeqCMwz6CSZfzb1gUf NFNQOE8eDGEYq/Ktgo1sa2cB3wstlo0DzAYh0VZPxhKc0H/sC/mAerTAI4+EPP9s lQnoONqbm5BkwljdCUt4TEHK4Q0zCeyT61BMhw/7R/PtmHvRDnEX+ysiDXa3inXF kc4g3mOJIbadcQ== -----END CERTIFICATE-----Generated at Thu Mar 26 10:06:35 2026 by rpki-client