$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: AmQIEFpGArP68uLuVqTrSzT8+Y68l+3tbmXrUIn7Wz8= Subject key identifier: EC:77:DC:1F:78:6A:EB:F7:B0:70:98:CF:21:A7:A1:69:44:9A:EC:33 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 30EB31D6DE5CE88D8FF48DB2B2E767FD3E2843A9 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Thu 26 Mar 2026 12:00:01 +0000 ROA not before: Thu 26 Mar 2026 11:55:01 +0000 ROA not after: Thu 25 Mar 2027 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 14:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:eb:31:d6:de:5c:e8:8d:8f:f4:8d:b2:b2:e7:67:fd:3e:28:43:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Mar 26 11:55:01 2026 GMT Not After : Mar 25 12:00:01 2027 GMT Subject: CN=EC77DC1F786AEBF7B07098CF21A7A169449AEC33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3c:66:68:44:73:95:35:a7:ef:0c:94:e5:10: 28:03:ea:5c:d3:a5:84:e6:67:8f:be:4f:e3:20:74: b5:33:96:64:2b:13:88:54:04:d3:8c:1e:0a:8c:19: 59:c3:2c:68:ea:9b:74:60:ed:32:64:0c:9d:00:3f: 41:e7:b1:b0:63:fe:1c:41:66:37:69:34:fe:ea:c0: 13:3b:08:25:ba:11:4b:d4:0f:e0:2f:18:ec:e8:ac: bb:7b:41:ce:b9:1f:ab:85:7c:ae:e8:4d:a3:74:c1: 0c:ed:09:ea:40:6e:f9:e7:df:05:1f:a0:10:33:21: dd:2e:b7:a5:5e:b2:7d:e6:ec:8b:b2:c4:99:11:79: ed:99:ad:32:99:0c:3a:a1:be:10:6b:49:25:8e:81: ab:a8:7b:89:98:1c:73:42:e9:af:23:6d:6b:43:fe: 27:c2:ba:5c:86:cc:61:f1:eb:56:09:2b:6a:ec:e1: 4c:e9:c0:ed:6a:2e:01:21:20:2c:bf:d0:0d:6c:d9: 18:a7:e3:02:de:f0:47:8c:d0:d2:75:6c:5a:ee:5c: ff:56:b5:40:ee:99:d2:10:a8:a8:ef:af:0d:87:3f: e2:0a:c4:1a:17:df:94:fb:17:c7:3f:b0:47:28:61: 71:c8:20:54:3b:c6:9c:af:c9:6e:22:ea:af:fa:16: 7b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:77:DC:1F:78:6A:EB:F7:B0:70:98:CF:21:A7:A1:69:44:9A:EC:33 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption a0:5e:bf:cb:8e:7a:0a:2d:0d:44:65:c5:20:a2:3d:3c:5b:c2: 56:eb:f5:7b:37:d0:9d:c4:da:57:78:83:ec:be:3d:ca:c5:72: 0a:a5:00:19:38:d5:7c:95:05:74:61:9c:c2:d4:65:80:ad:e4: 55:44:85:f1:c3:df:e9:a7:50:a0:c3:62:28:98:34:6b:21:5d: 9b:56:e7:e9:13:ba:81:80:7e:4e:82:e9:6e:10:da:04:c1:d1: 80:7f:a0:eb:c8:11:0c:94:e3:96:d9:95:96:94:92:2a:16:3a: 6d:e8:8f:47:ec:1c:6f:7b:6e:e0:6a:54:dd:b0:43:8f:80:04: 21:b7:26:2e:83:e8:cc:b1:36:91:12:f2:a5:6a:58:94:fc:b1: c0:69:d9:45:31:1c:0e:76:65:70:bc:92:3c:62:03:fe:d7:e1: a6:35:51:cf:c2:89:18:76:74:cb:d1:29:b4:30:70:c2:ab:d3: 50:be:de:43:5b:72:77:90:97:24:96:09:82:db:2e:05:f8:f1: 3b:d8:91:e7:6e:a9:a0:24:de:57:4a:2a:5e:f8:32:ea:76:65: a8:00:65:11:a3:f4:bb:57:a4:91:b3:cd:48:6d:6a:23:7d:c2: 9e:5c:25:71:7c:3d:1d:6d:95:4a:f7:7e:93:4f:50:c9:5f:96: 11:97:8b:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUMOsx1t5c6I2P9I2ysudn/T4oQ6kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI2MDMyNjExNTUwMVoX DTI3MDMyNTEyMDAwMVowMzExMC8GA1UEAxMoRUM3N0RDMUY3ODZBRUJGN0IwNzA5 OENGMjFBN0ExNjk0NDlBRUMzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMc8ZmhEc5U1p+8MlOUQKAPqXNOlhOZnj75P4yB0tTOWZCsTiFQE04weCowZ WcMsaOqbdGDtMmQMnQA/QeexsGP+HEFmN2k0/urAEzsIJboRS9QP4C8Y7Oisu3tB zrkfq4V8ruhNo3TBDO0J6kBu+effBR+gEDMh3S63pV6yfebsi7LEmRF57ZmtMpkM OqG+EGtJJY6Bq6h7iZgcc0LpryNta0P+J8K6XIbMYfHrVgkrauzhTOnA7WouASEg LL/QDWzZGKfjAt7wR4zQ0nVsWu5c/1a1QO6Z0hCoqO+vDYc/4grEGhfflPsXxz+w RyhhccggVDvGnK/JbiLqr/oWe+MCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBTsd9wf eGrr97BwmM8hp6FpRJrsMzAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAoF6/y456 Ci0NRGXFIKI9PFvCVuv1ezfQncTaV3iD7L49ysVyCqUAGTjVfJUFdGGcwtRlgK3k VUSF8cPf6adQoMNiKJg0ayFdm1bn6RO6gYB+ToLpbhDaBMHRgH+g68gRDJTjltmV lpSSKhY6beiPR+wcb3tu4GpU3bBDj4AEIbcmLoPozLE2kRLypWpYlPyxwGnZRTEc DnZlcLySPGID/tfhpjVRz8KJGHZ0y9EptDBwwqvTUL7eQ1tyd5CXJJYJgtsuBfjx O9iR526poCTeV0oqXvgy6nZlqABlEaP0u1ekkbPNSG1qI33CnlwlcXw9HW2VSvd+ k09QyV+WEZeLpA== -----END CERTIFICATE-----Generated at Thu Mar 26 20:24:02 2026 by rpki-client