$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: wGbjDn5fgoRorYHEYkfCMy/+Vhnctrg2Kj8Jq15KQ6A= Subject key identifier: 3F:27:5C:33:D7:C3:88:A6:1D:55:B1:E9:8E:53:E2:E8:EE:A7:AE:43 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 7662E11BCDC7D3E8303202010C8EF21A5258CD1C Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Sat 23 Aug 2025 12:00:01 +0000 ROA not before: Sat 23 Aug 2025 11:55:01 +0000 ROA not after: Sat 22 Aug 2026 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 14:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:62:e1:1b:cd:c7:d3:e8:30:32:02:01:0c:8e:f2:1a:52:58:cd:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Aug 23 11:55:01 2025 GMT Not After : Aug 22 12:00:01 2026 GMT Subject: CN=3F275C33D7C388A61D55B1E98E53E2E8EEA7AE43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9c:f8:e1:a8:8d:25:5f:fe:ed:cf:94:4d:d1: 06:f8:1f:7e:44:2f:96:1d:63:1e:70:ac:55:7c:08: 3a:ec:e1:f8:9d:f0:82:9e:2d:2b:fe:e1:cf:d0:a5: 4e:f7:1e:e8:c7:3b:43:a9:a3:e5:07:88:96:5b:85: cc:86:93:7f:2d:50:ca:6f:78:21:df:c2:9e:b9:b2: 0c:88:7f:45:54:35:e4:a5:f7:ea:69:b0:e0:75:d1: 6c:8b:32:53:b5:b2:0d:96:37:3e:b2:88:67:d5:5c: 25:ad:fd:d7:ea:ce:91:e3:af:40:f5:55:89:c1:b0: 09:37:0f:e6:0c:67:95:18:db:72:49:d1:a2:98:74: 55:07:37:52:cd:eb:e7:f2:80:53:ab:c9:66:99:6e: 17:bf:73:81:dc:1d:95:86:58:8f:a6:80:4f:75:07: 27:73:ce:14:9d:11:5d:4a:1d:0c:38:ba:1c:da:91: be:15:0a:d4:cc:4e:2b:c0:95:33:50:3e:b7:54:0f: 81:bb:c8:e0:6d:10:80:b0:00:3a:8a:14:e3:b5:d0: a5:17:88:15:54:5e:2c:a0:34:f3:26:c4:09:04:12: f3:fc:5f:5c:63:82:84:7f:2b:4b:b3:fc:8b:e7:b8: b6:01:5f:aa:6f:56:28:87:c3:30:7a:53:d0:eb:63: a6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:27:5C:33:D7:C3:88:A6:1D:55:B1:E9:8E:53:E2:E8:EE:A7:AE:43 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 92:f5:ef:a1:fc:ea:bf:10:18:fa:6d:be:b0:d0:16:75:fc:8f: f9:d2:0c:14:ae:91:0b:5f:68:14:80:e4:a7:ee:46:ac:4a:a9: 92:74:7b:e2:7b:1c:72:22:84:4d:d4:89:08:4f:78:04:88:55: 03:79:bc:65:6f:14:17:3f:cf:64:9a:b4:b5:ab:16:7e:4a:4a: dd:5d:30:5f:c8:e7:4d:97:ec:28:70:f9:25:d8:d0:e5:88:08: ec:cb:d8:cd:52:4a:47:e9:dd:39:d3:f6:b6:cd:b3:17:bc:8b: 4a:69:01:61:7b:fe:58:50:39:c2:9a:28:d3:64:25:30:83:59: 13:fc:b3:98:81:8b:95:7c:09:c3:b7:d7:bb:c1:f0:3e:5f:6a: 05:f1:55:60:fd:a6:11:3f:96:59:88:59:70:4c:db:b9:1d:1f: 34:01:e0:38:ae:d2:f8:63:95:5e:cd:38:5b:f1:9b:04:ca:40: 02:40:1b:e8:62:ac:d9:ab:b0:f4:4a:df:1a:40:a4:b4:fa:12: 8a:27:b2:7a:79:b3:18:1a:8e:33:32:50:c8:f8:39:ff:05:0a: 85:a8:b5:d1:69:c3:1d:cc:03:ea:92:56:84:aa:48:8c:d6:ec: 6e:4d:d2:bb:95:37:f3:9c:86:2e:cb:61:a2:62:f5:39:90:46: 04:08:f1:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUdmLhG83H0+gwMgIBDI7yGlJYzRwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDgyMzExNTUwMVoX DTI2MDgyMjEyMDAwMVowMzExMC8GA1UEAxMoM0YyNzVDMzNEN0MzODhBNjFENTVC MUU5OEU1M0UyRThFRUE3QUU0MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMec+OGojSVf/u3PlE3RBvgffkQvlh1jHnCsVXwIOuzh+J3wgp4tK/7hz9Cl Tvce6Mc7Q6mj5QeIlluFzIaTfy1Qym94Id/CnrmyDIh/RVQ15KX36mmw4HXRbIsy U7WyDZY3PrKIZ9VcJa391+rOkeOvQPVVicGwCTcP5gxnlRjbcknRoph0VQc3Us3r 5/KAU6vJZpluF79zgdwdlYZYj6aAT3UHJ3POFJ0RXUodDDi6HNqRvhUK1MxOK8CV M1A+t1QPgbvI4G0QgLAAOooU47XQpReIFVReLKA08ybECQQS8/xfXGOChH8rS7P8 i+e4tgFfqm9WKIfDMHpT0OtjpkMCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBQ/J1wz 18OIph1VsemOU+Lo7qeuQzAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAkvXvofzq vxAY+m2+sNAWdfyP+dIMFK6RC19oFIDkp+5GrEqpknR74nscciKETdSJCE94BIhV A3m8ZW8UFz/PZJq0tasWfkpK3V0wX8jnTZfsKHD5JdjQ5YgI7MvYzVJKR+ndOdP2 ts2zF7yLSmkBYXv+WFA5wpoo02QlMINZE/yzmIGLlXwJw7fXu8HwPl9qBfFVYP2m ET+WWYhZcEzbuR0fNAHgOK7S+GOVXs04W/GbBMpAAkAb6GKs2auw9ErfGkCktPoS iieyenmzGBqOMzJQyPg5/wUKhai10WnDHcwD6pJWhKpIjNbsbk3Su5U385yGLsth omL1OZBGBAjx7Q== -----END CERTIFICATE-----Generated at Sun Aug 24 01:27:41 2025 by rpki-client