$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B80AFEB204D311E9A6452047C4F9AE02.roa File: B80AFEB204D311E9A6452047C4F9AE02.roa (raw, json) Hash identifier: t2kpqzE7VDWWaejhdd1MTlp5ahwRRolqwuzaEnQunJY= Subject key identifier: 8D:77:D4:90:AA:01:74:3E:04:6A:43:FA:64:AA:BF:1C:A8:10:69:73 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 2048 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B80AFEB204D311E9A6452047C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:12:46 +0000 ROA not before: Sat 30 Aug 2025 16:35:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4816 IP address blocks: 121.11.96.0/20 maxlen: 20 121.11.112.0/21 maxlen: 21 121.12.80.0/21 maxlen: 21 121.14.72.0/21 maxlen: 21 121.14.80.0/21 maxlen: 21 121.14.88.0/21 maxlen: 21 121.14.96.0/21 maxlen: 21 121.14.104.0/21 maxlen: 21 121.14.112.0/21 maxlen: 21 121.14.120.0/21 maxlen: 21 121.35.254.0/24 maxlen: 24 125.91.16.0/20 maxlen: 20 125.91.32.0/19 maxlen: 19 125.91.64.0/19 maxlen: 19 125.91.104.0/21 maxlen: 21 125.91.112.0/20 maxlen: 20 125.91.128.0/21 maxlen: 21 125.91.136.0/22 maxlen: 22 125.91.140.0/23 maxlen: 23 202.104.128.0/24 maxlen: 24 202.104.139.0/24 maxlen: 24 218.18.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 16:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8264 (0x2048) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48fae-15d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1a:55:19:64:97:57:9b:fa:27:20:62:a5:ed: 61:82:3c:51:5d:45:9c:45:0d:d9:2a:95:a1:bc:11: ab:1b:b9:1d:c1:25:f5:53:6c:b7:3e:fe:08:bc:8f: e2:8f:82:cf:98:99:da:01:6c:f7:4f:ee:2c:67:88: 8f:2b:5c:1a:69:82:b6:0b:26:f1:56:d2:89:c2:ff: 61:51:42:7e:06:72:5b:48:c2:c5:02:8c:d9:4b:0d: a6:ae:f1:ce:10:1a:c4:f4:6f:5d:1f:0b:2f:81:44: 99:5b:a1:9e:67:01:90:0c:e4:82:8c:ca:c9:e3:c6: 6c:a0:b7:39:af:38:9f:e3:59:87:76:e5:3b:1e:43: 9c:47:5e:83:99:2a:31:ab:d2:ac:b5:54:49:57:eb: 6d:8d:20:9f:0e:70:85:d1:ad:8b:27:47:c1:b3:02: 6d:1e:2e:7a:14:94:9d:8e:50:cd:12:06:7b:0b:02: a5:97:b2:f9:f8:d1:09:9e:43:78:b9:b8:f6:34:8c: fb:6f:5e:95:79:f7:17:1f:b7:ab:e7:65:c5:47:91: 25:13:d9:3f:5d:c2:93:10:f4:7c:86:85:95:1a:70: 05:4b:8a:62:42:ca:f3:c1:54:ab:b8:fe:a3:9f:ac: fa:db:3b:0e:5a:81:b4:bf:09:83:78:f9:81:81:1e: 72:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:77:D4:90:AA:01:74:3E:04:6A:43:FA:64:AA:BF:1C:A8:10:69:73 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B80AFEB204D311E9A6452047C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.11.96.0-121.11.119.255 121.12.80.0/21 121.14.72.0-121.14.127.255 121.35.254.0/24 125.91.16.0-125.91.95.255 125.91.104.0-125.91.141.255 202.104.128.0/24 202.104.139.0/24 218.18.95.0/24 Signature Algorithm: sha256WithRSAEncryption 11:37:0c:a8:f9:5a:f0:4c:8c:ac:4b:ca:41:1c:0b:07:b3:82: 48:33:8e:0e:31:ff:b1:69:68:4a:c5:eb:5e:09:9d:6e:89:a7: 94:0d:70:13:bd:02:da:f9:ea:09:fa:b2:03:22:9b:b8:fb:50: a5:c0:40:29:7d:ef:ba:c2:a6:bb:b7:c3:70:18:00:20:61:90: 8c:fc:9f:7a:5b:a0:1f:f8:5c:6f:11:57:6c:86:3f:af:0d:94: 5e:2d:fe:52:b9:20:b6:2b:23:f7:11:3b:74:e8:b4:66:1f:4c: cb:f8:9d:1e:cc:42:51:59:80:ac:01:2e:f8:fb:6e:81:ba:91: b7:22:12:b8:2a:44:2f:39:12:a6:26:36:76:14:fb:a8:ad:dc: 41:bf:11:a4:73:06:69:7a:c8:da:04:44:95:28:fd:72:e2:43: 25:5e:80:89:bb:73:8c:60:36:be:a5:c0:77:00:01:67:fd:f6: 15:af:89:42:a7:f5:6a:c7:79:72:ef:70:31:c9:b3:0c:4c:19: 73:00:3e:5e:5a:f2:bf:01:04:a1:0c:6a:03:18:ea:a6:4b:aa: c7:15:6a:a7:d9:3d:de:2a:83:ce:d9:c2:a6:00:95:49:76:87: fd:09:47:92:23:0e:ad:12:09:6f:4c:f3:79:29:39:5f:d9:f6: 0c:82:b8:84 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICIEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGZhZS0xNWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxpVGWSXV5v6JyBipe1hgjxRXUWcRQ3ZKpWhvBGrG7kdwSX1U2y3Pv4IvI/i j4LPmJnaAWz3T+4sZ4iPK1waaYK2CybxVtKJwv9hUUJ+BnJbSMLFAozZSw2mrvHO EBrE9G9dHwsvgUSZW6GeZwGQDOSCjMrJ48ZsoLc5rzif41mHduU7HkOcR16DmSox q9KstVRJV+ttjSCfDnCF0a2LJ0fBswJtHi56FJSdjlDNEgZ7CwKll7L5+NEJnkN4 ubj2NIz7b16VefcXH7er52XFR5ElE9k/XcKTEPR8hoWVGnAFS4piQsrzwVSruP6j n6z62zsOWoG0vwmDePmBgR5y9QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFI131JCq AXQ+BGpD+mSqvxyoEGlzMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQjgwQUZFQjIw NEQzMTFFOUE2NDUyMDQ3QzRGOUFFMDIucm9hMG8GCCsGAQUFBwEHAQH/BGAwXjBc BAIAATBWMAwDBAV5C2ADBAN5C3ADBAN5DFAwDAMEA3kOSAMEB3kOAAMEAHkj/jAM AwQEfVsQAwQFfVtAMAwDBAN9W2gDBAF9W4wDBADKaIADBADKaIsDBADaEl8wDQYJ KoZIhvcNAQELBQADggEBABE3DKj5WvBMjKxLykEcCwezgkgzjg4x/7FpaErF614J nW6Jp5QNcBO9Atr56gn6sgMim7j7UKXAQCl977rCpru3w3AYACBhkIz8n3pboB/4 XG8RV2yGP68NlF4t/lK5ILYrI/cRO3TotGYfTMv4nR7MQlFZgKwBLvj7boG6kbci ErgqRC85EqYmNnYU+6it3EG/EaRzBml6yNoERJUo/XLiQyVegIm7c4xgNr6lwHcA AWf99hWviUKn9WrHeXLvcDHJswxMGXMAPl5a8r8BBKEMagMY6qZLqscVaqfZPd4q g87ZwqYAlUl2h/0JR5IjDq0SCW9M83kpOV/Z9gyCuIQ= -----END CERTIFICATE-----Generated at Fri Mar 6 05:43:42 2026 by rpki-client