$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: 4vaH7TrRAJBiZxZcwhmKcjyIv8SQYsNEawaa+MZtmtU= Subject key identifier: BC:39:F7:6D:55:4D:40:6F:11:CB:19:97:09:51:C6:7C:94:0A:EC:BC Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 0F3894B9976B89BDF058E09BB5AA88A1AD410832 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Tue 01 Jul 2025 12:00:01 +0000 ROA not before: Tue 01 Jul 2025 11:55:01 +0000 ROA not after: Tue 30 Jun 2026 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 23:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:38:94:b9:97:6b:89:bd:f0:58:e0:9b:b5:aa:88:a1:ad:41:08:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Jul 1 11:55:01 2025 GMT Not After : Jun 30 12:00:01 2026 GMT Subject: CN=BC39F76D554D406F11CB19970951C67C940AECBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ef:95:3f:e7:f7:8b:69:ec:75:8c:75:bc:00: 11:1d:d5:de:09:ae:a4:fa:c2:cc:5a:b5:26:7c:72: ee:af:0a:78:6a:e5:fd:77:b9:a1:6a:65:3f:0c:10: 43:25:ba:25:52:76:2e:81:93:19:a2:c2:5d:a5:82: 75:0f:93:7f:96:4d:1a:94:1c:47:6d:fb:95:32:9a: 58:71:42:1e:cf:f7:d0:8b:d3:ca:68:92:a0:5e:40: 43:dc:97:68:66:0a:58:7b:b3:b4:00:f3:f7:15:87: 38:2f:e4:ea:45:94:6f:a5:8d:0b:d7:9b:c2:df:0c: f5:ea:5a:d8:31:b8:93:db:67:b8:f5:c2:7d:da:b8: af:88:49:0f:7f:a9:cf:10:af:3c:a3:b9:14:3c:2a: 6b:72:04:ec:b6:95:94:01:54:4c:bb:65:76:e5:12: bd:bf:47:d2:2e:44:4c:3b:24:d1:11:13:33:32:aa: ac:91:b2:22:27:69:57:de:50:91:81:cc:d9:60:ee: e2:cd:32:92:1f:71:08:4e:66:68:50:50:33:69:e5: 47:fa:d7:52:80:dc:d8:23:0a:bf:09:47:3c:e2:1b: a6:f9:a5:74:93:db:ab:78:3e:4c:d1:1c:80:e2:70: 2a:45:3b:32:53:3e:9e:97:25:3c:5c:f8:e1:58:a9: 9a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:39:F7:6D:55:4D:40:6F:11:CB:19:97:09:51:C6:7C:94:0A:EC:BC X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 85:5d:52:b1:2e:c4:9a:44:a1:42:f5:64:9d:66:da:fc:0f:e9: d7:c8:bd:b6:cc:58:67:3f:4a:64:09:80:63:13:1a:ba:7a:4b: 23:30:b2:d2:29:dd:7d:26:57:b4:05:96:e8:05:2d:82:dc:f6: 62:c1:ef:29:62:9a:f8:97:16:10:b4:68:aa:d7:67:f3:35:6e: cc:59:8a:66:52:bf:8a:8e:42:58:7f:6d:a9:98:d1:5f:70:fb: f4:8a:6b:ce:99:49:28:56:90:d1:4d:a1:fa:45:32:f5:a7:46: 42:0f:ca:21:23:a0:4c:46:69:21:8d:f1:23:ff:fa:97:b8:e3: f8:67:99:2e:75:e8:70:f5:bb:fa:36:bc:b5:a6:d4:f6:26:87: fb:5e:1d:08:d6:4b:e6:05:49:9a:94:68:9c:c3:09:80:b7:7f: 30:03:d8:7f:e6:6b:00:c6:9d:45:fd:24:8b:18:b1:88:f5:5b: a7:5d:60:d3:b8:f3:b9:34:45:6e:11:ff:78:61:09:0e:25:62: 57:2d:ea:d9:50:c3:d0:48:4f:62:8c:67:93:45:47:d2:d2:76: fa:ce:79:a5:b5:8a:38:f0:f9:94:31:bf:fc:c8:43:92:fd:77: 25:61:02:d0:73:66:3c:44:8c:e6:b6:5e:a6:43:b3:6f:aa:7d: 3a:de:68:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUDziUuZdrib3wWOCbtaqIoa1BCDIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDcwMTExNTUwMVoX DTI2MDYzMDEyMDAwMVowMzExMC8GA1UEAxMoQkMzOUY3NkQ1NTRENDA2RjExQ0Ix OTk3MDk1MUM2N0M5NDBBRUNCQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK3vlT/n94tp7HWMdbwAER3V3gmupPrCzFq1Jnxy7q8KeGrl/Xe5oWplPwwQ QyW6JVJ2LoGTGaLCXaWCdQ+Tf5ZNGpQcR237lTKaWHFCHs/30IvTymiSoF5AQ9yX aGYKWHuztADz9xWHOC/k6kWUb6WNC9ebwt8M9epa2DG4k9tnuPXCfdq4r4hJD3+p zxCvPKO5FDwqa3IE7LaVlAFUTLtlduUSvb9H0i5ETDsk0RETMzKqrJGyIidpV95Q kYHM2WDu4s0ykh9xCE5maFBQM2nlR/rXUoDc2CMKvwlHPOIbpvmldJPbq3g+TNEc gOJwKkU7MlM+npclPFz44VipmmMCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBS8Ofdt VU1AbxHLGZcJUcZ8lArsvDAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAhV1SsS7E mkShQvVknWba/A/p18i9tsxYZz9KZAmAYxMaunpLIzCy0indfSZXtAWW6AUtgtz2 YsHvKWKa+JcWELRoqtdn8zVuzFmKZlK/io5CWH9tqZjRX3D79IprzplJKFaQ0U2h +kUy9adGQg/KISOgTEZpIY3xI//6l7jj+GeZLnXocPW7+ja8tabU9iaH+14dCNZL 5gVJmpRonMMJgLd/MAPYf+ZrAMadRf0kixixiPVbp11g07jzuTRFbhH/eGEJDiVi Vy3q2VDD0EhPYoxnk0VH0tJ2+s55pbWKOPD5lDG//MhDkv13JWEC0HNmPESM5rZe pkOzb6p9Ot5oVA== -----END CERTIFICATE-----Generated at Thu Jul 3 01:09:08 2025 by rpki-client