$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/6136E33A07B511EBBBA2521CC4F9AE02.roa File: 6136E33A07B511EBBBA2521CC4F9AE02.roa (raw, json) Hash identifier: 77WOeU1SvbkyzDxL6FtXjkGFW1oGk0vOC0MoHrM/IaY= Subject key identifier: 1E:57:62:45:81:CA:77:43:EC:F2:BC:A2:49:33:5D:7C:4C:E5:E2:0F Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 2042 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/6136E33A07B511EBBBA2521CC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:12:41 +0000 ROA not before: Sat 30 Aug 2025 16:35:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 36678 IP address blocks: 203.14.184.0/22 maxlen: 22 203.14.188.0/24 maxlen: 24 203.14.189.0/24 maxlen: 24 203.19.32.0/22 maxlen: 22 203.19.37.0/24 maxlen: 24 203.19.38.0/24 maxlen: 24 203.25.50.0/24 maxlen: 24 203.25.53.0/24 maxlen: 24 203.25.54.0/24 maxlen: 24 203.33.8.0/22 maxlen: 24 203.34.196.0/24 maxlen: 24 203.56.48.0/23 maxlen: 23 203.80.136.0/23 maxlen: 24 203.80.138.0/23 maxlen: 24 203.128.224.0/24 maxlen: 24 218.30.32.0/24 maxlen: 24 218.30.35.0/24 maxlen: 24 218.30.41.0/24 maxlen: 24 218.30.43.0/24 maxlen: 24 218.30.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8258 (0x2042) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48fa9-42dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:78:8c:33:e0:3d:1e:ee:0b:c7:fd:84:89:8e: c4:86:1f:e5:16:3d:a6:9d:e2:bb:46:50:75:49:60: af:06:f4:32:9b:d3:81:76:a6:6a:63:18:af:9a:a5: 55:e2:b5:66:03:84:be:0e:30:1a:55:f2:3f:b3:42: d3:66:41:6a:5c:0e:75:ef:39:0b:7a:e2:91:e2:fa: 39:25:27:e0:bd:64:1a:93:79:cb:bb:c8:65:69:7f: 49:37:f4:ec:dc:00:ce:a9:5d:c1:c7:94:dc:a2:bb: c6:18:cc:03:68:99:4b:bd:20:db:a0:83:31:39:c6: b5:68:ea:2a:ed:8a:01:12:3c:b3:4c:e3:d4:b1:7e: 41:a1:69:85:29:3b:aa:d9:0a:3d:f9:64:a0:12:90: 1b:94:1c:17:b3:6d:ba:02:5e:9a:aa:3e:36:30:be: 6e:bb:90:0c:d6:d3:fb:28:00:e6:ab:33:5d:5e:98: be:27:d7:3d:95:3b:14:1c:07:9a:00:21:a9:9e:15: 05:e3:c6:b3:03:31:17:95:50:85:17:04:1e:91:67: e4:51:3f:b3:51:2b:17:d0:73:62:39:a9:3e:21:2f: 3c:d4:0b:9f:e7:3e:d5:e2:63:bb:f7:a5:26:97:59: 8c:68:85:9d:7c:21:1c:93:14:55:45:1e:2c:fb:b4: 64:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:57:62:45:81:CA:77:43:EC:F2:BC:A2:49:33:5D:7C:4C:E5:E2:0F X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/6136E33A07B511EBBBA2521CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.14.184.0-203.14.189.255 203.19.32.0/22 203.19.37.0-203.19.38.255 203.25.50.0/24 203.25.53.0-203.25.54.255 203.33.8.0/22 203.34.196.0/24 203.56.48.0/23 203.80.136.0/22 203.128.224.0/24 218.30.32.0/24 218.30.35.0/24 218.30.41.0/24 218.30.43.0-218.30.44.255 Signature Algorithm: sha256WithRSAEncryption 39:17:83:93:85:e0:8d:71:bb:9b:42:4b:b8:77:55:f1:55:de: 2e:0f:8a:73:15:b4:5d:9b:9c:3b:91:43:b5:c7:87:25:97:c0: 4e:a5:f0:66:16:97:d0:96:35:10:15:4f:70:6f:13:8a:d5:c6: b0:b7:c5:60:1b:b6:99:30:f2:b5:70:d4:9b:6c:26:13:4c:5f: d9:f8:5f:1b:fa:11:af:f7:d9:2a:6c:93:1a:b9:34:bb:62:ec: f0:c8:c8:fa:da:ea:80:1e:2f:fd:16:ce:2e:01:d7:8d:11:cf: 42:07:55:4a:d0:0a:f4:20:01:31:20:06:1d:4d:ac:65:b7:c8: 09:31:cc:2a:f9:8d:1c:e8:31:0a:8d:c9:8b:b8:39:a2:c8:22: 72:69:eb:e8:29:84:04:9c:1f:24:1b:46:a1:68:ef:33:90:f2: 44:e3:cd:65:11:56:0e:64:6c:17:6d:57:94:35:28:5d:be:5e: 9b:06:fa:bc:ad:c8:2e:2a:f8:b6:f2:fb:21:8d:90:b1:06:4a: c6:b4:6a:bf:5b:06:76:65:75:bf:0d:38:e7:b8:1f:81:22:5b: d5:d5:d8:f5:a4:ad:77:5a:47:9c:34:79:9e:b9:0e:a9:21:05: 45:a7:93:51:e3:c2:f5:58:7c:d5:f0:8d:af:57:09:71:51:d8: 3a:1e:7d:1b -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgICIEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGZhOS00MmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXiMM+A9Hu4Lx/2EiY7Ehh/lFj2mneK7RlB1SWCvBvQym9OBdqZqYxivmqVV 4rVmA4S+DjAaVfI/s0LTZkFqXA517zkLeuKR4vo5JSfgvWQak3nLu8hlaX9JN/Ts 3ADOqV3Bx5TcorvGGMwDaJlLvSDboIMxOca1aOoq7YoBEjyzTOPUsX5BoWmFKTuq 2Qo9+WSgEpAblBwXs226Al6aqj42ML5uu5AM1tP7KADmqzNdXpi+J9c9lTsUHAea ACGpnhUF48azAzEXlVCFFwQekWfkUT+zUSsX0HNiOak+IS881Auf5z7V4mO796Um l1mMaIWdfCEckxRVRR4s+7RkbQIDAQABo4ICzzCCAsswHQYDVR0OBBYEFB5XYkWB yndD7PK8okkzXXxM5eIPMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvNjEzNkUzM0Ew N0I1MTFFQkJCQTI1MjFDQzRGOUFFMDIucm9hMIGNBggrBgEFBQcBBwEB/wR+MHww egQCAAEwdDAMAwQDyw64AwQByw68AwQCyxMgMAwDBADLEyUDBADLEyYDBADLGTIw DAMEAMsZNQMEAMsZNgMEAsshCAMEAMsixAMEAcs4MAMEAstQiAMEAMuA4AMEANoe IAMEANoeIwMEANoeKTAMAwQA2h4rAwQA2h4sMA0GCSqGSIb3DQEBCwUAA4IBAQA5 F4OTheCNcbubQku4d1XxVd4uD4pzFbRdm5w7kUO1x4cll8BOpfBmFpfQljUQFU9w bxOK1cawt8VgG7aZMPK1cNSbbCYTTF/Z+F8b+hGv99kqbJMauTS7YuzwyMj62uqA Hi/9Fs4uAdeNEc9CB1VK0Ar0IAExIAYdTaxlt8gJMcwq+Y0c6DEKjcmLuDmiyCJy aevoKYQEnB8kG0ahaO8zkPJE481lEVYOZGwXbVeUNShdvl6bBvq8rcguKvi28vsh jZCxBkrGtGq/WwZ2ZXW/DTjnuB+BIlvV1dj1pK13WkecNHmeuQ6pIQVFp5NR48L1 WHzV8I2vVwlxUdg6Hn0b -----END CERTIFICATE-----Generated at Thu Mar 12 22:45:54 2026 by rpki-client