$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/14BC2D3ACCAA11EA9E95D81BC4F9AE02.roa File: 14BC2D3ACCAA11EA9E95D81BC4F9AE02.roa (raw, json) Hash identifier: +3uZuY7OlFyg2jsDB/Kz4JEWGg0yxvoM0a3nsJBXDX0= Subject key identifier: 39:29:A9:46:7B:A8:32:B6:1A:E8:80:2A:44:41:F3:84:1A:2A:AC:16 Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2621 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/14BC2D3ACCAA11EA9E95D81BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:52:51 +0000 ROA not before: Mon 04 Aug 2025 16:24:17 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 18190 IP address blocks: 120.28.15.0/24 maxlen: 24 120.28.56.0/24 maxlen: 24 124.6.146.0/24 maxlen: 24 222.127.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9761 (0x2621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Aug 4 16:24:17 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48b03-9338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d3:0e:12:44:60:58:e9:63:78:37:79:2f:b8: 07:7b:35:18:a5:01:02:42:9c:ac:49:c6:2f:a7:a9: b3:f3:0b:31:52:2e:65:c6:a0:ca:88:c5:24:c9:6e: f9:45:27:f4:21:68:8f:07:da:b6:97:74:a3:db:b2: 06:3c:fa:6d:a5:31:80:b9:64:08:0f:b9:4c:72:92: 67:cb:e4:85:08:ce:10:da:17:76:92:df:fa:68:56: b4:d6:6d:16:57:59:a1:85:36:24:ed:b2:10:40:41: 79:ca:cb:8c:e4:50:1e:51:a7:2a:54:85:9d:ec:78: c6:7a:9b:9a:28:de:d0:09:f0:f8:6e:f7:82:07:bf: 85:b6:c4:5e:fd:e7:c9:1d:cc:52:4f:80:54:01:c5: 14:8c:19:6f:47:99:3f:28:b3:83:55:3b:5f:38:0d: ec:cb:2f:76:e4:d4:04:63:50:8c:7b:3b:f5:ba:69: 60:fb:2e:70:29:d9:5f:d4:98:f9:0d:a6:bb:3f:d5: d4:11:51:52:da:df:86:30:22:be:3f:e8:e2:1d:33: 12:d6:e2:47:b1:e1:87:df:42:2f:52:94:19:c5:15: 31:64:e5:f1:6c:f4:bd:cc:6c:08:f7:97:0d:dd:7a: 9b:e0:3d:fb:8c:68:16:cd:ad:78:c4:cd:5a:d2:2a: dd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:29:A9:46:7B:A8:32:B6:1A:E8:80:2A:44:41:F3:84:1A:2A:AC:16 X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/14BC2D3ACCAA11EA9E95D81BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.28.15.0/24 120.28.56.0/24 124.6.146.0/24 222.127.129.0/24 Signature Algorithm: sha256WithRSAEncryption b2:c7:0a:0e:63:88:6b:a4:25:5c:c2:4f:f3:14:dd:73:22:35: be:c4:fa:66:d8:9e:41:0e:4d:39:71:e9:b1:73:d5:3f:9d:d0: c6:e5:4d:56:e1:f9:9c:2e:ee:1d:1c:6f:59:39:c7:08:2f:52: 82:1e:e3:f1:b1:fa:20:ea:85:7c:31:e6:3f:1b:3e:53:91:15: 70:ff:ce:8e:e0:45:af:a3:0c:0d:25:02:18:ed:56:f4:93:b3: 16:ce:80:e2:9a:76:9c:66:6e:a6:eb:b1:e6:e1:15:d5:c8:9f: d0:24:97:1f:63:1f:9c:2a:2b:91:e5:92:b7:9b:2f:4f:70:ac: 7d:34:78:4d:13:a3:27:3e:98:34:bc:40:93:de:6c:85:8a:9f: 16:4a:1d:65:58:cb:2b:ca:ec:67:ed:32:fa:a7:e9:26:92:3a: bf:fc:3e:f6:0c:b6:2d:d0:3a:23:e3:8c:0e:94:4b:21:09:d3: b2:ff:1d:bb:20:85:49:c2:ef:f3:50:ae:14:47:27:e2:07:7d: 25:87:fb:3b:0d:d2:5b:6a:10:87:6a:50:6d:eb:a5:5b:e3:dd: ff:30:ba:9c:cf:5b:49:fc:86:98:10:a0:26:c6:d1:8b:a7:5d: 96:25:42:93:c4:8f:80:ab:c0:4b:da:1d:79:f8:ac:0e:27:19: c2:e9:57:e5 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICJiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjUwODA0MTYyNDE3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGIwMy05MzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19MOEkRgWOljeDd5L7gHezUYpQECQpysScYvp6mz8wsxUi5lxqDKiMUkyW75 RSf0IWiPB9q2l3Sj27IGPPptpTGAuWQID7lMcpJny+SFCM4Q2hd2kt/6aFa01m0W V1mhhTYk7bIQQEF5ysuM5FAeUacqVIWd7HjGepuaKN7QCfD4bveCB7+FtsRe/efJ HcxST4BUAcUUjBlvR5k/KLODVTtfOA3syy925NQEY1CMezv1umlg+y5wKdlf1Jj5 Daa7P9XUEVFS2t+GMCK+P+jiHTMS1uJHseGH30IvUpQZxRUxZOXxbPS9zGwI95cN 3Xqb4D37jGgWza14xM1a0irdFwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFDkpqUZ7 qDK2GuiAKkRB84QaKqwWMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvMTRCQzJEM0FD Q0FBMTFFQTlFOTVEODFCQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAeBwPAwQAeBw4AwQAfAaSAwQA3n+BMA0GCSqGSIb3DQEBCwUAA4IB AQCyxwoOY4hrpCVcwk/zFN1zIjW+xPpm2J5BDk05cemxc9U/ndDG5U1W4fmcLu4d HG9ZOccIL1KCHuPxsfog6oV8MeY/Gz5TkRVw/86O4EWvowwNJQIY7Vb0k7MWzoDi mnacZm6m67Hm4RXVyJ/QJJcfYx+cKiuR5ZK3my9PcKx9NHhNE6MnPpg0vECT3myF ip8WSh1lWMsryuxn7TL6p+kmkjq//D72DLYt0Doj44wOlEshCdOy/x27IIVJwu/z UK4URyfiB30lh/s7DdJbahCHalBt66Vb493/MLqcz1tJ/IaYEKAmxtGLp12WJUKT xI+Aq8BL2h15+KwOJxnC6Vfl -----END CERTIFICATE-----Generated at Sun Mar 8 03:31:47 2026 by rpki-client