$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32342d3234203d3e203234303231.roa File: 3230332e3134372e3130382e302f32342d3234203d3e203234303231.roa (raw, json) Hash identifier: 5imQlduqeaq1QvJMmjo0ae6fSl4CkZx6HlLkioO4Cbc= Subject key identifier: 8D:D7:CF:73:72:8E:2B:FE:CB:A3:7A:19:17:D5:6D:F3:FC:BC:CD:65 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 5ED34D67C3320ADAE4C7948E094DA32AFA7F02D2 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32342d3234203d3e203234303231.roa Signing time: Tue 12 Aug 2025 17:23:13 +0000 ROA not before: Tue 12 Aug 2025 17:18:13 +0000 ROA not after: Tue 11 Aug 2026 17:23:13 +0000 asID: 24021 IP address blocks: 203.147.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 14:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:d3:4d:67:c3:32:0a:da:e4:c7:94:8e:09:4d:a3:2a:fa:7f:02:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Aug 12 17:18:13 2025 GMT Not After : Aug 11 17:23:13 2026 GMT Subject: CN=8DD7CF73728E2BFECBA37A1917D56DF3FCBCCD65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2d:e3:ec:82:69:83:be:13:a0:db:08:f6:e4: b3:61:5e:be:9c:bf:d1:5f:2a:34:87:98:6a:b8:79: 09:21:0d:e5:47:06:ac:fb:32:6c:5f:d4:b1:e7:3a: dc:c4:f9:44:16:b5:1b:4c:35:71:2e:fd:66:0e:6a: 7a:4f:5e:9b:ac:ea:76:96:73:83:6a:c1:44:99:11: 26:dc:a7:27:e5:a3:b7:17:87:3a:94:0e:5f:e5:6a: 79:0b:50:92:14:c4:de:60:6c:c0:22:1c:09:86:80: 85:82:d3:61:c1:73:c9:f3:2f:94:60:40:2a:a4:7f: fc:ba:10:98:27:cf:54:20:14:da:26:d9:f4:84:c5: e1:45:4c:64:bd:0b:6a:97:70:20:6b:85:74:1a:2c: 76:29:40:ea:9a:b6:c0:fb:83:80:62:9c:67:fd:08: 7f:83:d0:34:21:9f:62:7e:69:03:9d:35:4d:e1:ed: 0c:b5:97:0b:6b:42:eb:66:52:d5:56:d9:ef:54:8f: c4:b4:96:70:69:8f:d5:36:e0:95:95:ff:e5:cf:f8: 52:62:5e:6a:1e:12:ec:fc:cd:73:35:fd:f8:95:5d: 69:9b:b3:4d:3e:63:70:f3:0e:eb:f1:48:70:f0:ff: 2a:0d:68:91:ee:74:1b:ed:ae:e3:9a:e6:cd:da:4e: 9b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D7:CF:73:72:8E:2B:FE:CB:A3:7A:19:17:D5:6D:F3:FC:BC:CD:65 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32342d3234203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/24 Signature Algorithm: sha256WithRSAEncryption 73:0d:18:cf:a9:92:43:61:b5:d8:44:9f:99:0d:a7:23:41:40: 37:6b:72:67:6a:7e:0c:33:4e:1d:0e:49:2c:1b:6e:8a:57:9a: 1b:bd:d5:a5:89:82:cb:9b:51:d8:b3:e8:c6:6a:99:fb:ca:d6: 62:61:b1:08:d3:18:9c:d9:c6:ab:43:1a:5d:e5:a2:df:c6:25: 8e:7a:a1:f6:28:ac:e5:17:e4:d5:03:73:78:d0:14:e9:99:a5: ae:c1:34:88:bf:59:73:7d:e3:24:be:a9:c9:f6:ac:7e:2a:5e: f9:b9:d9:2b:03:33:e7:27:c7:3d:9a:b8:ef:9c:68:0b:0d:c6: 7a:4d:e5:4e:1c:da:3e:5b:c8:ab:73:e2:cc:20:53:8f:1f:0c: e7:2e:71:12:1d:dc:9c:3f:cf:af:87:66:38:6c:43:9b:35:7f: e0:d5:d4:ed:3c:78:f2:1c:74:a1:e1:c8:98:7f:8d:c2:dd:be: df:71:78:d1:ab:9f:7d:ae:b8:69:4b:4c:16:49:99:8b:d2:eb: 4e:63:fe:c3:bc:a7:22:5a:b0:cd:64:ee:56:a8:dd:5b:dc:66: df:5b:be:54:b3:2a:a8:6c:82:f8:af:0d:54:d6:69:9f:99:67: ec:8d:47:a6:d3:ee:cf:08:f9:f3:6f:e5:a3:b9:79:ba:22:57: 63:5c:44:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUXtNNZ8MyCtrkx5SOCU2jKvp/AtIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDgxMjE3MTgxM1oX DTI2MDgxMTE3MjMxM1owMzExMC8GA1UEAxMoOEREN0NGNzM3MjhFMkJGRUNCQTM3 QTE5MTdENTZERjNGQ0JDQ0Q2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOMt4+yCaYO+E6DbCPbks2Fevpy/0V8qNIeYarh5CSEN5UcGrPsybF/Usec6 3MT5RBa1G0w1cS79Zg5qek9em6zqdpZzg2rBRJkRJtynJ+WjtxeHOpQOX+VqeQtQ khTE3mBswCIcCYaAhYLTYcFzyfMvlGBAKqR//LoQmCfPVCAU2ibZ9ITF4UVMZL0L apdwIGuFdBosdilA6pq2wPuDgGKcZ/0If4PQNCGfYn5pA501TeHtDLWXC2tC62ZS 1VbZ71SPxLSWcGmP1TbglZX/5c/4UmJeah4S7PzNczX9+JVdaZuzTT5jcPMO6/FI cPD/Kg1oke50G+2u45rmzdpOmz8CAwEAAaOCAgkwggIFMB0GA1UdDgQWBBSN189z co4r/sujehkX1W3z/LzNZTAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAMuTbDANBgkqhkiG9w0BAQsFAAOCAQEAcw0Yz6mS Q2G12ESfmQ2nI0FAN2tyZ2p+DDNOHQ5JLBtuileaG73VpYmCy5tR2LPoxmqZ+8rW YmGxCNMYnNnGq0MaXeWi38Yljnqh9iis5Rfk1QNzeNAU6ZmlrsE0iL9Zc33jJL6p yfasfipe+bnZKwMz5yfHPZq475xoCw3Gek3lThzaPlvIq3PizCBTjx8M5y5xEh3c nD/Pr4dmOGxDmzV/4NXU7Tx48hx0oeHImH+Nwt2+33F40auffa64aUtMFkmZi9Lr TmP+w7ynIlqwzWTuVqjdW9xm31u+VLMqqGyC+K8NVNZpn5ln7I1HptPuzwj582/l o7l5uiJXY1xEtg== -----END CERTIFICATE-----Generated at Sun Aug 24 01:26:11 2025 by rpki-client