$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130392e302f32342d3234203d3e203234303231.roa File: 3230332e3134372e3130392e302f32342d3234203d3e203234303231.roa (raw, json) Hash identifier: i3k7btMAhGgYuFeM+1u1fTFRv0VjkseVCLvNPnabQB0= Subject key identifier: 4E:A9:82:03:01:08:28:52:AA:48:73:59:88:C1:5A:97:83:37:32:4A Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 6072F0F6822C65BB2BC54DEE60C3E5299CF44545 Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130392e302f32342d3234203d3e203234303231.roa Signing time: Tue 12 Aug 2025 17:23:13 +0000 ROA not before: Tue 12 Aug 2025 17:18:13 +0000 ROA not after: Tue 11 Aug 2026 17:23:13 +0000 asID: 24021 IP address blocks: 203.147.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 14:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:72:f0:f6:82:2c:65:bb:2b:c5:4d:ee:60:c3:e5:29:9c:f4:45:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Aug 12 17:18:13 2025 GMT Not After : Aug 11 17:23:13 2026 GMT Subject: CN=4EA9820301082852AA48735988C15A978337324A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f6:a3:f9:0b:13:81:a8:1e:99:ed:03:cf:cb: 61:ce:f4:93:0f:86:36:e7:f6:d3:75:28:a1:90:02: 9e:05:9f:b7:13:3e:43:8c:46:80:12:e2:75:d7:f0: 8a:2d:fb:28:0d:4c:72:91:83:da:1b:f0:bc:ce:b8: fc:73:f4:bf:55:f7:a2:2f:bd:ba:a1:17:e5:9e:4c: c9:40:6f:fd:e2:8e:8e:0a:24:a7:40:f4:79:35:76: 24:7c:7f:f1:ac:ac:fc:86:6b:4d:1d:51:35:51:7a: ba:f3:61:8a:f8:de:43:8f:e7:2d:22:b6:ee:be:80: 35:ee:cb:da:ff:5f:64:a2:19:2f:58:c0:13:c6:64: 92:b9:8e:f7:b0:0a:be:3a:0f:07:ce:38:b7:fd:37: 4e:01:95:e9:56:bc:e0:51:1c:6c:9a:29:75:4c:c6: b7:18:22:90:d7:7a:cf:78:52:36:32:76:df:65:6c: 90:dd:21:62:99:3a:fb:56:5c:f3:0d:b8:52:9f:e3: f6:7d:ec:5b:84:8e:db:31:15:34:72:2c:67:bc:9b: f0:c3:43:19:fd:99:d3:10:70:55:60:39:f8:d5:9d: 57:e6:7d:67:19:1e:cd:c8:16:84:bf:b7:90:28:9d: 2d:3f:4d:85:af:53:68:12:e6:e5:1e:f7:fb:76:7f: 71:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:A9:82:03:01:08:28:52:AA:48:73:59:88:C1:5A:97:83:37:32:4A X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130392e302f32342d3234203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.109.0/24 Signature Algorithm: sha256WithRSAEncryption 27:37:40:ed:30:41:5d:cd:68:82:ce:44:e5:d7:76:25:2d:fd: 88:1c:1f:9a:97:78:cf:5c:ee:a7:89:7b:e9:0d:a6:74:e3:1f: df:ac:1a:f0:6e:7f:2d:68:69:11:37:85:65:d5:be:0b:24:c1: 10:59:55:07:68:34:b6:81:9e:7c:f1:23:3e:bf:92:d2:2e:f7: 32:13:c1:d9:99:d6:1f:42:41:7a:67:58:8f:93:7e:10:4e:8d: 3f:18:cd:06:cd:c3:e6:11:3b:70:6e:88:52:f3:6b:4e:56:9d: 06:28:0c:ba:e5:a0:e5:90:6a:92:4b:cd:db:aa:a1:bc:52:43: b1:11:bb:ea:ff:66:b1:e9:1a:23:fe:42:b1:73:85:ba:23:96: b5:b5:50:a8:41:4a:97:d9:3f:5d:a1:aa:71:44:64:d6:82:f4: b5:fc:66:ae:fe:05:0c:51:74:75:a9:41:bd:47:c1:58:a3:c2: ba:09:8a:7f:41:c3:b9:05:c6:7c:9a:63:0c:da:de:de:48:06: 48:93:41:2c:45:c2:b7:d5:52:0d:af:4e:8b:8f:78:a9:b1:32: 23:c7:13:d2:22:61:46:c9:ff:27:2f:38:62:73:0f:02:09:2a: ec:44:98:f7:1a:ee:0e:77:9b:6d:0d:ed:68:4b:12:aa:55:95: cc:5f:c3:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUYHLw9oIsZbsrxU3uYMPlKZz0RUUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDgxMjE3MTgxM1oX DTI2MDgxMTE3MjMxM1owMzExMC8GA1UEAxMoNEVBOTgyMDMwMTA4Mjg1MkFBNDg3 MzU5ODhDMTVBOTc4MzM3MzI0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAML2o/kLE4GoHpntA8/LYc70kw+GNuf203UooZACngWftxM+Q4xGgBLiddfw ii37KA1McpGD2hvwvM64/HP0v1X3oi+9uqEX5Z5MyUBv/eKOjgokp0D0eTV2JHx/ 8ays/IZrTR1RNVF6uvNhivjeQ4/nLSK27r6ANe7L2v9fZKIZL1jAE8ZkkrmO97AK vjoPB844t/03TgGV6Va84FEcbJopdUzGtxgikNd6z3hSNjJ232VskN0hYpk6+1Zc 8w24Up/j9n3sW4SO2zEVNHIsZ7yb8MNDGf2Z0xBwVWA5+NWdV+Z9ZxkezcgWhL+3 kCidLT9Nha9TaBLm5R73+3Z/ca0CAwEAAaOCAgkwggIFMB0GA1UdDgQWBBROqYID AQgoUqpIc1mIwVqXgzcySjAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAMuTbTANBgkqhkiG9w0BAQsFAAOCAQEAJzdA7TBB Xc1ogs5E5dd2JS39iBwfmpd4z1zup4l76Q2mdOMf36wa8G5/LWhpETeFZdW+CyTB EFlVB2g0toGefPEjPr+S0i73MhPB2ZnWH0JBemdYj5N+EE6NPxjNBs3D5hE7cG6I UvNrTladBigMuuWg5ZBqkkvN26qhvFJDsRG76v9msekaI/5CsXOFuiOWtbVQqEFK l9k/XaGqcURk1oL0tfxmrv4FDFF0dalBvUfBWKPCugmKf0HDuQXGfJpjDNre3kgG SJNBLEXCt9VSDa9Oi494qbEyI8cT0iJhRsn/Jy84YnMPAgkq7ESY9xruDnebbQ3t aEsSqlWVzF/DqQ== -----END CERTIFICATE-----Generated at Sun Aug 24 01:26:22 2025 by rpki-client