$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa File: B9FBA9CE04D311E9A6452047C4F9AE02.roa (raw, json) Hash identifier: Y0GR1omkNvgCP5d+HhYG9dBt7O06WOizTgzkuT5TM6Y= Subject key identifier: 1C:24:2A:EF:F2:06:3E:5F:BA:D8:8E:2B:3E:52:D8:CB:26:8A:84:7C Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 204B Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:12:49 +0000 ROA not before: Sat 30 Aug 2025 16:35:46 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58461 IP address blocks: 125.124.0.0/16 maxlen: 16 218.0.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8267 (0x204b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:46 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48fb1-da36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:58:71:95:f2:ce:6b:15:c9:4b:bf:07:66:00: 6a:fc:f4:2d:7b:0e:56:70:c3:a2:0b:62:b1:5a:e5: 6c:e9:b1:fc:5a:a7:63:86:d3:16:5d:f6:f0:de:1e: f2:7f:29:49:4e:0c:c6:86:92:31:f5:31:9e:f5:1d: 7b:1c:3c:07:a7:08:8c:1f:bf:cb:5f:3b:88:ef:63: 40:e2:de:04:47:a4:a6:e6:04:d3:a7:8f:d1:0c:08: 72:87:be:98:27:90:3f:ee:b5:a3:57:44:3c:9e:ff: 18:b6:31:83:29:e5:78:12:59:b0:c9:ac:54:9c:42: d4:38:d7:94:7c:ab:c9:ec:b9:45:1a:38:e4:1e:86: 75:d4:4a:fd:a4:c2:3b:32:57:38:59:91:d8:e5:60: 1c:31:f9:ad:f9:ed:12:de:e4:5b:c5:81:6b:56:53: 85:0f:f5:23:30:8b:64:52:af:0c:e2:76:78:c8:12: 9b:87:18:3a:78:2d:30:fc:36:2e:92:40:7e:eb:79: a5:00:d7:e3:b8:83:87:e7:54:6f:3f:b4:0a:08:19: b9:5d:d7:89:95:b1:ce:34:5d:ab:0b:8e:ea:ae:5d: e3:cf:39:de:fb:74:81:67:fc:86:b5:7c:5b:f6:cb: da:7f:60:1c:e1:82:22:41:f9:95:14:fd:4c:ef:45: 73:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:24:2A:EF:F2:06:3E:5F:BA:D8:8E:2B:3E:52:D8:CB:26:8A:84:7C X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 125.124.0.0/16 218.0.48.0/20 Signature Algorithm: sha256WithRSAEncryption 33:d4:d2:26:47:63:ec:7a:cd:85:d7:02:ca:ec:41:67:09:27: 3d:5f:46:7a:a2:54:bd:f4:a4:5a:af:f6:d3:65:5e:7e:a7:18: 3a:98:7a:65:b1:6d:cc:4b:e1:df:dd:3d:2d:98:40:0c:62:12: bf:58:f8:39:39:22:5a:59:27:db:95:c0:18:92:88:00:b1:7e: 9d:40:b9:2c:04:28:b4:52:a8:cd:a6:f3:74:38:d7:66:b4:5e: 5e:bc:52:48:77:ab:6d:1f:f1:77:94:6e:10:6a:30:52:12:46: e3:7a:c8:ca:29:ef:cd:dc:66:bd:1d:be:c3:b9:66:35:d8:27: d9:de:c2:f4:ff:20:13:e5:a5:eb:73:da:44:c9:a0:de:65:99: b9:d2:3b:8c:d2:c3:ec:82:6f:b8:0f:78:00:8b:99:89:88:47: 6d:c1:a5:5c:2e:9d:73:fa:5b:fd:b3:aa:0f:41:74:46:a8:a2: 3c:d1:5d:e1:29:c5:2a:a1:c2:a5:31:72:d1:c2:d4:5e:4a:52: 52:8a:ad:fd:7b:ad:67:bd:b8:38:8b:79:1a:21:d6:cb:1f:3f: ae:24:51:db:99:95:41:9e:43:d7:00:d3:fa:ed:6d:09:0b:06: e1:ec:f9:7b:c5:e3:da:5c:3f:3e:d7:26:f5:a8:d8:bd:7b:e1: 6c:97:19:db -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgICIEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTQ2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGZiMS1kYTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1hxlfLOaxXJS78HZgBq/PQtew5WcMOiC2KxWuVs6bH8WqdjhtMWXfbw3h7y fylJTgzGhpIx9TGe9R17HDwHpwiMH7/LXzuI72NA4t4ER6Sm5gTTp4/RDAhyh76Y J5A/7rWjV0Q8nv8YtjGDKeV4ElmwyaxUnELUONeUfKvJ7LlFGjjkHoZ11Er9pMI7 Mlc4WZHY5WAcMfmt+e0S3uRbxYFrVlOFD/UjMItkUq8M4nZ4yBKbhxg6eC0w/DYu kkB+63mlANfjuIOH51RvP7QKCBm5XdeJlbHONF2rC47qrl3jzzne+3SBZ/yGtXxb 9svaf2Ac4YIiQfmVFP1M70VzGwIDAQABo4ICZTCCAmEwHQYDVR0OBBYEFBwkKu/y Bj5futiOKz5S2MsmioR8MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQjlGQkE5Q0Uw NEQzMTFFOUE2NDUyMDQ3QzRGOUFFMDIucm9hMCQGCCsGAQUFBwEHAQH/BBUwEzAR BAIAATALAwMAfXwDBATaADAwDQYJKoZIhvcNAQELBQADggEBADPU0iZHY+x6zYXX AsrsQWcJJz1fRnqiVL30pFqv9tNlXn6nGDqYemWxbcxL4d/dPS2YQAxiEr9Y+Dk5 IlpZJ9uVwBiSiACxfp1AuSwEKLRSqM2m83Q412a0Xl68Ukh3q20f8XeUbhBqMFIS RuN6yMop783cZr0dvsO5ZjXYJ9newvT/IBPlpetz2kTJoN5lmbnSO4zSw+yCb7gP eACLmYmIR23BpVwunXP6W/2zqg9BdEaoojzRXeEpxSqhwqUxctHC1F5KUlKKrf17 rWe9uDiLeRoh1ssfP64kUduZlUGeQ9cA0/rtbQkLBuHs+XvF49pcPz7XJvWo2L17 4WyXGds= -----END CERTIFICATE-----Generated at Thu Mar 12 22:45:20 2026 by rpki-client