$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B33C5F9C05FB11EE9D130335C4F9AE02.roa File: B33C5F9C05FB11EE9D130335C4F9AE02.roa (raw, json) Hash identifier: M06oa1jxBA+yPb/S1Ado414kJC2yyjso7sKARKN7+j4= Subject key identifier: 2A:E8:FB:D3:28:DC:AD:05:DD:D6:85:CC:6F:F9:74:A6:80:5F:79:69 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 2040 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B33C5F9C05FB11EE9D130335C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:12:40 +0000 ROA not before: Sat 30 Aug 2025 16:35:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 23650 IP address blocks: 121.227.30.0/23 maxlen: 23 218.30.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8256 (0x2040) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48fa7-cb21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ed:00:6a:12:46:45:22:bd:fb:ee:02:92:95: 14:f1:f1:11:98:00:37:c4:8d:c8:c5:40:8e:21:e1: 36:b5:4a:15:49:ea:6d:60:b8:18:bd:ff:27:f2:9a: a5:12:24:a9:62:4d:4a:9f:40:55:e5:d9:77:cc:71: 6d:92:89:cd:09:95:ca:60:c5:a0:e2:7b:b7:ee:6b: 2f:a8:01:9e:bb:13:76:a4:f2:59:29:fe:53:51:ed: e7:b5:2f:ce:62:cf:1c:b5:b3:79:fe:44:50:92:46: e7:5c:1e:51:66:4b:7d:5b:50:e9:7c:0b:8a:fd:71: 42:8c:bb:68:06:2a:86:94:30:43:b5:cb:f5:3c:04: 20:9e:af:53:f3:23:16:7b:fa:c4:b5:77:3d:b2:51: bf:51:72:4f:fb:5c:4e:23:cf:1c:69:3f:96:23:fc: 8b:8b:61:cc:60:5e:3d:5e:8f:1a:9e:ee:eb:b2:6a: c8:c7:5c:2c:03:38:4b:36:c7:24:3b:2e:7f:c3:ec: 51:85:50:21:a5:5d:eb:e9:bb:b9:2a:a7:7a:43:5b: 68:7f:11:05:c9:9d:11:a6:9c:7e:e0:6a:96:df:09: e2:7f:df:c2:65:02:46:90:e2:f2:88:1a:80:15:40: fd:d7:f1:60:d0:98:3b:ee:94:da:71:0a:1b:9a:dc: ab:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E8:FB:D3:28:DC:AD:05:DD:D6:85:CC:6F:F9:74:A6:80:5F:79:69 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B33C5F9C05FB11EE9D130335C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.227.30.0/23 218.30.129.0/24 Signature Algorithm: sha256WithRSAEncryption 26:b9:6d:46:5f:fa:7c:0e:ed:a9:cd:37:18:0f:15:8c:6a:74: 22:f1:64:ee:c0:e5:e7:4c:0b:77:b4:32:c5:36:72:2d:d9:cb: 6b:bb:46:9c:77:d2:10:ca:17:49:59:84:7f:84:c6:17:dc:2f: 03:4c:8c:dd:d2:bb:5f:ee:a7:02:0e:e3:42:c9:e3:f8:57:a2: 91:28:15:69:bd:8f:b7:9b:bf:48:58:38:15:6c:e5:ff:d2:df: eb:84:fc:d0:e2:d5:1d:2d:71:e8:1d:4e:d9:c4:a4:59:78:de: bb:0c:d2:7f:ff:42:78:91:08:31:14:ef:31:87:27:ce:87:d2: 51:93:3e:b5:fa:f1:09:ad:fd:63:4f:b0:6c:01:32:45:9e:09: c7:85:e9:cc:b1:1f:59:13:d1:7a:e6:c2:18:a3:a1:10:80:97: e9:6d:fa:07:2e:2e:a9:3c:57:ab:74:f5:b6:84:38:01:72:46: 6a:94:e6:ce:b6:cc:ab:89:7e:b9:fc:1c:27:4a:20:2c:a6:ad: 51:55:23:80:0f:c7:4e:24:e8:d0:50:fb:a9:1e:ec:7e:fb:15: d1:3e:87:70:9a:0b:56:d7:9f:2f:b6:35:c6:18:df:83:40:87: 17:96:65:51:37:34:49:df:d4:c8:3e:e7:56:fc:46:17:f4:81: 7c:a7:1d:d4 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICIEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGZhNy1jYjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve0AahJGRSK9++4CkpUU8fERmAA3xI3IxUCOIeE2tUoVSeptYLgYvf8n8pql EiSpYk1Kn0BV5dl3zHFtkonNCZXKYMWg4nu37msvqAGeuxN2pPJZKf5TUe3ntS/O Ys8ctbN5/kRQkkbnXB5RZkt9W1DpfAuK/XFCjLtoBiqGlDBDtcv1PAQgnq9T8yMW e/rEtXc9slG/UXJP+1xOI88caT+WI/yLi2HMYF49Xo8anu7rsmrIx1wsAzhLNsck Oy5/w+xRhVAhpV3r6bu5Kqd6Q1tofxEFyZ0Rppx+4GqW3wnif9/CZQJGkOLyiBqA FUD91/Fg0Jg77pTacQobmtyr+wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCro+9Mo 3K0F3daFzG/5dKaAX3lpMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQjMzQzVGOUMw NUZCMTFFRTlEMTMwMzM1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBeeMeAwQA2h6BMA0GCSqGSIb3DQEBCwUAA4IBAQAmuW1GX/p8Du2p zTcYDxWManQi8WTuwOXnTAt3tDLFNnIt2ctru0acd9IQyhdJWYR/hMYX3C8DTIzd 0rtf7qcCDuNCyeP4V6KRKBVpvY+3m79IWDgVbOX/0t/rhPzQ4tUdLXHoHU7ZxKRZ eN67DNJ//0J4kQgxFO8xhyfOh9JRkz61+vEJrf1jT7BsATJFngnHhenMsR9ZE9F6 5sIYo6EQgJfpbfoHLi6pPFerdPW2hDgBckZqlObOtsyriX65/BwnSiAspq1RVSOA D8dOJOjQUPupHux++xXRPodwmgtW158vtjXGGN+DQIcXlmVRNzRJ39TIPudW/EYX 9IF8px3U -----END CERTIFICATE-----Generated at Thu Mar 12 22:45:19 2026 by rpki-client