$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/50550748066011EEA5F59657C4F9AE02.roa File: 50550748066011EEA5F59657C4F9AE02.roa (raw, json) Hash identifier: 85uNE5EA4RwePX68ecsox54cbRTW2BiV90sMJiT4zJc= Subject key identifier: 68:82:80:0A:51:4D:7E:15:20:76:E1:81:B9:C9:97:D5:09:0D:EF:CC Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F7E Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/50550748066011EEA5F59657C4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:46 +0000 ROA not before: Sat 30 Aug 2025 16:35:46 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58466 IP address blocks: 121.14.0.0/19 maxlen: 19 121.14.32.0/22 maxlen: 22 121.14.36.0/22 maxlen: 22 121.14.40.0/21 maxlen: 21 121.14.48.0/20 maxlen: 20 121.14.64.0/21 maxlen: 21 121.14.192.0/20 maxlen: 20 125.88.31.0/24 maxlen: 24 125.88.64.0/23 maxlen: 23 125.88.168.0/21 maxlen: 21 125.94.32.0/19 maxlen: 19 125.94.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8062 (0x1f7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:46 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b32862-4f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:93:71:68:86:40:ed:ab:cc:0d:f5:bd:e1:f9: 1b:56:7a:6c:93:21:cc:7d:0f:56:58:1c:cc:57:36: 43:88:5a:1d:4d:f3:3a:a1:c7:ee:e2:78:6d:cb:a8: 5b:48:15:a4:45:aa:8d:6d:0e:36:16:29:1c:dc:9d: 11:1e:00:1d:85:2d:2b:2b:fd:16:17:a6:55:35:2d: 44:5f:79:05:ed:db:29:d5:18:ad:3c:be:df:0c:1d: 2a:64:d6:8a:52:35:b5:4b:3e:6f:a7:bb:d6:18:a2: d6:72:52:e6:85:6c:01:8a:01:12:d4:e5:1c:50:b1: 84:b5:22:ca:e0:4e:e4:b8:ba:79:67:f5:9b:88:b1: db:b1:08:3a:75:18:26:5d:9a:17:32:1a:66:65:36: ca:56:a9:f4:67:23:4c:14:58:19:3f:cb:ff:9e:00: 7d:20:88:d1:7a:2a:70:13:73:27:9b:99:5c:07:7f: db:bc:9f:dd:83:5d:22:70:6b:a5:54:37:fb:73:e6: 9b:76:a0:8d:b1:92:8b:3f:d4:64:e0:e3:4e:56:00: c1:72:57:cc:54:a5:d5:8e:c3:34:b2:7b:54:54:14: e5:04:37:e0:69:dc:2c:e4:7f:8c:16:e4:4d:35:19: e7:57:74:20:f1:9d:a7:e1:92:b0:5e:f5:91:bf:cd: b0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:82:80:0A:51:4D:7E:15:20:76:E1:81:B9:C9:97:D5:09:0D:EF:CC X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/50550748066011EEA5F59657C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.14.0.0-121.14.71.255 121.14.192.0/20 125.88.31.0/24 125.88.64.0/23 125.88.168.0/21 125.94.32.0/19 125.94.212.0/22 Signature Algorithm: sha256WithRSAEncryption 70:b9:94:ff:ca:1c:2d:90:5c:39:da:09:9d:a1:98:e3:98:72: 5e:70:6e:63:42:98:c6:a1:8d:b8:df:98:fc:d0:30:9b:ef:40: 60:14:ef:d5:16:24:b2:61:7d:03:c9:74:06:13:98:bf:36:dc: e2:0d:6c:76:29:dd:74:50:f2:80:46:3f:5a:6b:03:3a:f5:8b: 01:56:2b:cc:8c:46:f4:43:50:7a:eb:96:26:0b:38:b3:0d:67: 1b:10:14:f2:b4:cb:8d:d3:37:e3:81:d1:29:1f:9e:f6:f1:34: ae:8a:af:5f:41:9c:ae:42:9b:de:be:18:fc:eb:4d:a1:e9:97: 2c:bc:ec:af:38:3a:a4:f7:20:1e:e2:4d:78:69:ff:c8:ec:ec: 74:c5:0b:9c:7a:e9:b9:f6:93:02:9a:51:aa:24:ae:12:e8:69: a4:23:98:a3:23:6c:0c:ca:6f:54:fc:e0:35:e0:f2:d5:5f:75: 91:43:f4:2f:ea:1e:8a:5d:68:c9:68:f9:68:2d:49:5c:74:f5: ce:32:c7:a1:d5:26:15:44:de:14:6d:6e:c7:3b:1c:f1:d9:5a: 93:de:80:dc:76:9c:1d:47:9d:5e:f1:54:b4:a5:35:ea:b7:9c: c7:61:4c:8b:f5:20:9f:0c:6e:ed:10:f1:44:4a:33:95:94:c7: 60:35:cc:cb -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICH34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTQ2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg2Mi00ZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpNxaIZA7avMDfW94fkbVnpskyHMfQ9WWBzMVzZDiFodTfM6ocfu4nhty6hb SBWkRaqNbQ42Fikc3J0RHgAdhS0rK/0WF6ZVNS1EX3kF7dsp1RitPL7fDB0qZNaK UjW1Sz5vp7vWGKLWclLmhWwBigES1OUcULGEtSLK4E7kuLp5Z/WbiLHbsQg6dRgm XZoXMhpmZTbKVqn0ZyNMFFgZP8v/ngB9IIjReipwE3Mnm5lcB3/bvJ/dg10icGul VDf7c+abdqCNsZKLP9Rk4ONOVgDBclfMVKXVjsM0sntUVBTlBDfgadws5H+MFuRN NRnnV3Qg8Z2n4ZKwXvWRv82w6QIDAQABo4ICwDCCArwwHQYDVR0OBBYEFGiCgApR TX4VIHbhgbnJl9UJDe/MMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvNTA1NTA3NDgw NjYwMTFFRUE1RjU5NjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSgYIKwYBBQUHAQcBAf8E OzA5MDcEAgABMDEwCwMDAXkOAwQDeQ5AAwQEeQ7AAwQAfVgfAwQBfVhAAwQDfVio AwQFfV4gAwQCfV7UMA0GCSqGSIb3DQEBCwUAA4IBAQBwuZT/yhwtkFw52gmdoZjj mHJecG5jQpjGoY2435j80DCb70BgFO/VFiSyYX0DyXQGE5i/NtziDWx2Kd10UPKA Rj9aawM69YsBVivMjEb0Q1B665YmCzizDWcbEBTytMuN0zfjgdEpH5728TSuiq9f QZyuQpvevhj8602h6ZcsvOyvODqk9yAe4k14af/I7Ox0xQuceum59pMCmlGqJK4S 6GmkI5ijI2wMym9U/OA14PLVX3WRQ/Qv6h6KXWjJaPloLUlcdPXOMseh1SYVRN4U bW7HOxzx2VqT3oDcdpwdR51e8VS0pTXqt5zHYUyL9SCfDG7tEPFESjOVlMdgNczL -----END CERTIFICATE-----Generated at Sat Sep 6 20:23:48 2025 by rpki-client