$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json) Hash identifier: BSlsLLjrW0VUyXKiRNSq28Jc+dJqMmvk0XbqqHg+NNc= Subject key identifier: CD:C5:5C:36:0E:AA:35:08:11:50:04:CC:18:47:D7:6B:1B:FC:44:3C Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 0B3422937F306C9855B771249F381D2F99C91DBB Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa Signing time: Mon 28 Apr 2025 00:00:01 +0000 ROA not before: Sun 27 Apr 2025 23:55:01 +0000 ROA not after: Mon 27 Apr 2026 00:00:01 +0000 asID: 24021 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 22:08:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:34:22:93:7f:30:6c:98:55:b7:71:24:9f:38:1d:2f:99:c9:1d:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Apr 27 23:55:01 2025 GMT Not After : Apr 27 00:00:01 2026 GMT Subject: CN=CDC55C360EAA3508115004CC1847D76B1BFC443C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:58:e2:40:62:0d:6b:01:f9:80:91:10:70:db: b5:4e:d2:df:ac:5f:a9:21:d3:da:0e:ac:ca:b7:e0: db:e3:12:be:b0:e2:0c:24:b9:55:1b:c5:1d:8b:fc: 94:47:60:09:f0:69:93:b8:13:51:f4:d9:8c:68:f7: 33:40:78:71:49:ff:ae:ae:f3:18:c6:1b:d6:7b:da: 8e:f0:93:ed:e6:7d:e6:c2:54:10:6a:a8:fd:11:1d: b9:1a:31:39:a1:d9:16:bb:4f:08:ab:bf:bf:6d:17: 52:0e:50:c4:fc:5f:f9:e4:5f:1d:d8:70:70:15:16: d7:d4:ec:45:30:6c:a0:fb:7d:62:e5:21:f0:f9:40: 46:6b:59:3b:36:07:52:51:65:4d:a9:1d:8d:ab:3f: a9:8b:3b:06:b1:48:6b:a6:7c:15:e8:36:20:04:e1: a6:98:bf:e5:84:24:9a:d0:4d:c3:5e:79:94:10:e3: 60:5e:c6:9d:64:1e:7f:9b:6a:5e:46:42:ae:89:60: f7:e9:3c:da:4f:3f:c4:3b:51:65:e3:d9:25:aa:f2: e2:d4:f1:a9:49:30:bc:72:76:7d:00:03:cf:33:b0: fd:51:d3:a1:39:96:7b:21:17:9f:e8:df:f8:69:22: c8:05:34:d9:15:fc:b4:28:1f:3f:00:63:d5:3f:1b: f8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C5:5C:36:0E:AA:35:08:11:50:04:CC:18:47:D7:6B:1B:FC:44:3C X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 06:57:cb:80:72:c1:af:50:b7:ee:ca:57:03:20:ef:f9:dd:a2: d7:60:4e:cc:25:b1:6f:7e:8c:de:ae:af:0d:da:4f:30:50:6c: 95:10:f8:56:6e:cc:9f:e2:61:fd:23:22:99:95:54:da:fb:65: 6b:78:3d:15:4f:2d:c7:cb:25:2d:7e:fd:69:10:5b:f4:4c:14: 9c:07:fc:ef:1f:eb:8f:fb:da:00:9d:e6:cf:b4:44:bc:2f:d4: d1:01:61:f9:62:c5:06:bb:ab:79:3e:59:52:2b:23:3d:6e:ea: 7a:b7:5c:71:28:65:62:67:93:1d:b6:b6:62:31:1c:de:5b:fb: 79:67:fb:ed:26:e6:10:3c:6b:c1:3a:d6:2c:16:98:8d:7d:7e: 69:67:6e:38:6b:ad:c6:06:f4:ef:53:5d:0e:71:59:31:97:eb: 31:73:d4:df:76:db:12:11:fa:bc:4c:33:eb:65:18:d7:7e:f2: 38:01:97:cd:69:99:74:10:30:ff:e4:b3:db:e7:de:87:53:fe: 55:cc:c6:5d:a1:c9:98:84:2f:93:a6:ca:06:0b:bf:a6:b8:68: e2:1e:a2:4b:35:5e:64:41:5f:16:bc:67:5f:7d:fc:80:df:ab: a4:70:a4:0d:f3:fb:cf:27:4c:d9:0f:a7:cc:78:3e:8d:80:27: b9:45:3a:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUCzQik38wbJhVt3EknzgdL5nJHbswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MDQyNzIzNTUwMVoX DTI2MDQyNzAwMDAwMVowMzExMC8GA1UEAxMoQ0RDNTVDMzYwRUFBMzUwODExNTAw NENDMTg0N0Q3NkIxQkZDNDQzQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZY4kBiDWsB+YCREHDbtU7S36xfqSHT2g6syrfg2+MSvrDiDCS5VRvFHYv8 lEdgCfBpk7gTUfTZjGj3M0B4cUn/rq7zGMYb1nvajvCT7eZ95sJUEGqo/REduRox OaHZFrtPCKu/v20XUg5QxPxf+eRfHdhwcBUW19TsRTBsoPt9YuUh8PlARmtZOzYH UlFlTakdjas/qYs7BrFIa6Z8Feg2IAThppi/5YQkmtBNw155lBDjYF7GnWQef5tq XkZCrolg9+k82k8/xDtRZePZJary4tTxqUkwvHJ2fQADzzOw/VHToTmWeyEXn+jf +GkiyAU02RX8tCgfPwBj1T8b+IsCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBTNxVw2 Dqo1CBFQBMwYR9drG/xEPDAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEABlfLgHLB r1C37spXAyDv+d2i12BOzCWxb36M3q6vDdpPMFBslRD4Vm7Mn+Jh/SMimZVU2vtl a3g9FU8tx8slLX79aRBb9EwUnAf87x/rj/vaAJ3mz7REvC/U0QFh+WLFBrureT5Z UisjPW7qerdccShlYmeTHba2YjEc3lv7eWf77SbmEDxrwTrWLBaYjX1+aWduOGut xgb071NdDnFZMZfrMXPU33bbEhH6vEwz62UY137yOAGXzWmZdBAw/+Sz2+feh1P+ VczGXaHJmIQvk6bKBgu/prho4h6iSzVeZEFfFrxnX338gN+rpHCkDfP7zydM2Q+n zHg+jYAnuUU6Ng== -----END CERTIFICATE-----Generated at Mon Apr 28 23:08:50 2025 by rpki-client on console.sobornost.net