$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json) Hash identifier: CZOJ685dwDqI1e22RRr2a6BP4RtNABHYh9tpOpePvgs= Subject key identifier: 68:05:2A:36:FF:EE:B4:A0:41:FB:F9:15:A7:C6:AE:7B:56:7A:F1:B4 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 049B8765A46F42DCA2C7048F6B3AC9DB21607F22 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa Signing time: Mon 20 Oct 2025 00:00:01 +0000 ROA not before: Sun 19 Oct 2025 23:55:01 +0000 ROA not after: Mon 19 Oct 2026 00:00:01 +0000 asID: 24021 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:9b:87:65:a4:6f:42:dc:a2:c7:04:8f:6b:3a:c9:db:21:60:7f:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Oct 19 23:55:01 2025 GMT Not After : Oct 19 00:00:01 2026 GMT Subject: CN=68052A36FFEEB4A041FBF915A7C6AE7B567AF1B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:50:ea:2d:1a:f2:b0:d0:7a:6b:f2:4c:51:51: 7d:7c:4c:1f:17:d7:a0:de:ab:91:43:76:5d:a4:b3: 68:b1:7b:b0:96:c3:fb:db:4f:75:39:db:43:f1:e4: b8:52:f4:91:9b:f0:61:98:f5:6b:bd:02:c2:5e:4e: 2e:52:f9:e3:18:d0:42:53:f1:06:25:85:a2:c9:57: 93:f3:ac:09:84:d9:77:99:a9:08:f8:95:68:91:45: dd:26:99:5c:1d:dc:13:ef:fa:70:9e:de:ac:a0:b5: 5c:4b:21:61:bc:22:a5:06:a2:68:5b:05:b6:81:12: ab:26:1f:30:de:06:4a:2c:aa:d0:ce:27:f6:d6:db: 43:82:e6:47:3f:62:b3:43:6d:4a:7a:a8:f8:fe:48: 99:07:88:dd:cd:6a:53:7f:28:4a:34:e8:f5:86:87: ae:79:7e:0e:c3:fb:5c:2f:bb:98:b2:f5:ff:bf:57: 1a:b5:d7:58:b3:73:53:ea:0a:4d:c1:4b:65:df:63: da:5f:06:e5:df:a9:d3:ed:a4:e7:c1:1d:66:53:35: 73:e2:9e:16:ef:47:c2:50:a6:65:82:90:7c:38:d6: ed:88:90:4e:56:1c:dd:df:aa:35:0a:2c:2f:66:52: 76:24:36:84:93:ab:d2:26:61:b5:b6:69:05:3f:ca: b5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:05:2A:36:FF:EE:B4:A0:41:FB:F9:15:A7:C6:AE:7B:56:7A:F1:B4 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption a8:27:65:26:68:8a:10:74:81:fa:80:ee:a4:77:f0:26:39:f6: 87:cc:a8:38:75:6b:f6:a3:5a:fa:88:8f:2b:65:2b:1e:d8:9a: 3b:78:55:ac:68:ce:3a:62:38:ba:e2:78:c6:9c:67:f4:42:89: 1f:ac:12:8d:07:18:54:24:2b:62:fb:75:b8:2e:bf:67:eb:9c: 7e:11:a7:37:4a:9b:59:07:43:57:19:19:ab:70:5a:84:b4:be: 69:bb:e5:db:1d:c5:6a:31:61:14:15:95:df:7c:ef:41:60:5a: f7:71:9b:a6:0c:0d:7c:13:7a:b6:f7:d3:a4:7c:ee:2f:0e:24: f7:54:85:0c:ce:0c:bc:24:5e:00:a8:2d:0d:84:9b:4e:6f:59: 04:dd:13:55:19:69:0e:7c:54:6b:eb:c7:da:8c:3a:c4:24:07: c6:78:c5:49:af:99:ff:14:03:c6:f0:aa:c6:5a:53:62:1b:25: 70:46:ad:e0:57:64:d1:a5:f7:35:39:b8:f1:8b:e7:b1:5e:53: 05:d8:ce:24:e5:0b:55:19:55:99:94:a3:07:b6:01:05:d7:85: aa:22:a7:21:5b:8b:8e:f9:92:59:32:ef:67:54:e8:96:28:36: 87:d4:ce:d8:3e:dc:3f:e8:cc:00:cc:2a:ca:66:21:38:e5:8a: 81:bb:d8:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUBJuHZaRvQtyixwSPazrJ2yFgfyIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MTAxOTIzNTUwMVoX DTI2MTAxOTAwMDAwMVowMzExMC8GA1UEAxMoNjgwNTJBMzZGRkVFQjRBMDQxRkJG OTE1QTdDNkFFN0I1NjdBRjFCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOBQ6i0a8rDQemvyTFFRfXxMHxfXoN6rkUN2XaSzaLF7sJbD+9tPdTnbQ/Hk uFL0kZvwYZj1a70Cwl5OLlL54xjQQlPxBiWFoslXk/OsCYTZd5mpCPiVaJFF3SaZ XB3cE+/6cJ7erKC1XEshYbwipQaiaFsFtoESqyYfMN4GSiyq0M4n9tbbQ4LmRz9i s0NtSnqo+P5ImQeI3c1qU38oSjTo9YaHrnl+DsP7XC+7mLL1/79XGrXXWLNzU+oK TcFLZd9j2l8G5d+p0+2k58EdZlM1c+KeFu9HwlCmZYKQfDjW7YiQTlYc3d+qNQos L2ZSdiQ2hJOr0iZhtbZpBT/KtZ0CAwEAAaOCAgkwggIFMB0GA1UdDgQWBBRoBSo2 /+60oEH7+RWnxq57VnrxtDAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAqCdlJmiK EHSB+oDupHfwJjn2h8yoOHVr9qNa+oiPK2UrHtiaO3hVrGjOOmI4uuJ4xpxn9EKJ H6wSjQcYVCQrYvt1uC6/Z+ucfhGnN0qbWQdDVxkZq3BahLS+abvl2x3FajFhFBWV 33zvQWBa93GbpgwNfBN6tvfTpHzuLw4k91SFDM4MvCReAKgtDYSbTm9ZBN0TVRlp DnxUa+vH2ow6xCQHxnjFSa+Z/xQDxvCqxlpTYhslcEat4Fdk0aX3NTm48YvnsV5T BdjOJOULVRlVmZSjB7YBBdeFqiKnIVuLjvmSWTLvZ1Tolig2h9TO2D7cP+jMAMwq ymYhOOWKgbvYGQ== -----END CERTIFICATE-----Generated at Mon Oct 20 11:27:58 2025 by rpki-client