$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa File: D36286F2D55C11EAA224E026C4F9AE02.roa (raw, json) Hash identifier: ILtcyDU15URhGSa5Kjj9yOQZtiWVIFSi4W87UvdNp7k= Subject key identifier: 0A:2D:63:7C:1F:6A:BE:21:85:E7:C8:B8:BD:D4:74:FD:82:B3:DC:0E Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F5D Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:16 +0000 ROA not before: Sat 30 Aug 2025 16:35:16 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134419 IP address blocks: 124.227.64.0/20 maxlen: 20 124.227.144.0/22 maxlen: 22 202.103.214.0/23 maxlen: 23 202.103.247.0/24 maxlen: 24 218.21.104.0/21 maxlen: 21 218.21.112.0/21 maxlen: 21 218.65.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8029 (0x1f5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:16 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b32844-933c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c6:53:60:18:95:47:d3:f2:0f:4c:11:e2:ef: f5:9a:09:33:bf:16:cc:67:97:bf:35:91:4d:69:db: dd:40:9f:84:b6:20:51:1e:9c:55:56:79:cb:48:30: c8:5f:4e:19:73:ef:09:75:09:19:d5:c4:b4:32:59: 66:1f:4f:cb:eb:f9:ca:e4:5c:59:4f:1c:f8:c5:77: b8:3b:1d:7b:d7:9c:97:de:c8:43:b9:f8:99:ca:a8: 8c:dc:c1:a6:15:50:a3:58:cb:d2:31:b9:71:b2:2d: ce:17:de:91:9d:a3:01:09:47:23:37:3e:7c:0e:d7: be:b1:85:a0:85:cf:f8:06:a6:74:20:2c:47:f2:92: 92:99:c7:56:aa:3a:7a:3b:75:54:35:aa:d5:a7:a3: da:d3:62:21:d8:5b:1a:5d:dc:18:98:ad:fb:9a:1e: af:04:c0:96:c1:fa:77:e0:49:6a:4c:e7:e6:71:34: dc:40:b6:01:8d:95:a8:c0:48:be:7e:b4:0e:1d:50: 24:e2:48:c5:3e:a5:fc:82:bd:a1:d4:e5:bf:13:2d: ed:cb:5b:68:e3:40:e3:c4:a4:de:45:4a:f5:a9:17: 5e:a5:85:a3:72:61:f0:2d:c1:b9:09:af:80:ae:42: 2a:d0:e0:b5:cb:5f:30:a2:92:34:02:29:07:6a:83: 5f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:2D:63:7C:1F:6A:BE:21:85:E7:C8:B8:BD:D4:74:FD:82:B3:DC:0E X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.227.64.0/20 124.227.144.0/22 202.103.214.0/23 202.103.247.0/24 218.21.104.0-218.21.119.255 218.65.132.0/24 Signature Algorithm: sha256WithRSAEncryption 49:f9:0a:2b:f6:f0:26:07:b4:1f:ed:40:55:5d:a1:51:c9:88: ba:1e:a6:12:ec:3e:50:8e:cd:ae:01:ca:5e:f8:16:3b:d6:5e: 5f:1a:d1:05:ed:8d:ea:0e:8d:0f:45:43:b3:21:16:df:ee:8e: e1:e3:d3:3b:94:5e:87:c8:12:51:9c:ec:2e:97:3c:b8:f7:28: 96:ec:32:00:b2:30:53:d3:d0:62:6e:f5:36:b1:3e:a0:8b:20: 57:7d:f0:8c:6e:e9:81:3b:d9:fd:c9:aa:3a:8b:ab:8a:c6:8b: 9d:45:5d:20:09:2c:e2:f5:2f:f4:61:09:cc:2a:e4:cd:99:8d: cc:1e:c1:19:66:d3:28:50:16:c8:ad:5c:b5:2f:46:62:88:5b: 5a:da:01:5a:83:77:0c:83:cc:6d:e7:2e:1b:57:f5:8a:8c:e5: e3:ee:35:7d:69:1e:2f:f9:7a:bc:fc:38:cc:47:aa:31:04:73: d4:06:43:eb:c7:10:31:89:b7:42:f0:25:64:d4:55:cd:1a:92: f5:a2:5d:1c:d7:7f:dc:ce:dc:3e:8f:59:66:b0:a8:8f:ec:87: 54:87:c8:ea:e5:7d:d2:63:3b:51:db:a2:13:ab:35:55:18:61: cc:64:e6:32:5d:bb:5c:5b:5f:f6:1d:21:ec:b2:86:e5:14:4c: b5:db:51:95 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICH10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTE2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg0NC05MzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscZTYBiVR9PyD0wR4u/1mgkzvxbMZ5e/NZFNadvdQJ+EtiBRHpxVVnnLSDDI X04Zc+8JdQkZ1cS0MllmH0/L6/nK5FxZTxz4xXe4Ox1715yX3shDufiZyqiM3MGm FVCjWMvSMblxsi3OF96RnaMBCUcjNz58Dte+sYWghc/4BqZ0ICxH8pKSmcdWqjp6 O3VUNarVp6Pa02Ih2FsaXdwYmK37mh6vBMCWwfp34ElqTOfmcTTcQLYBjZWowEi+ frQOHVAk4kjFPqX8gr2h1OW/Ey3ty1to40DjxKTeRUr1qRdepYWjcmHwLcG5Ca+A rkIq0OC1y18wopI0AikHaoNfbwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFAotY3wf ar4hhefIuL3UdP2Cs9wOMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRDM2Mjg2RjJE NTVDMTFFQUEyMjRFMDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAR840ADBAJ845ADBAHKZ9YDBADKZ/cwDAMEA9oVaAMEA9oV cAMEANpBhDANBgkqhkiG9w0BAQsFAAOCAQEASfkKK/bwJge0H+1AVV2hUcmIuh6m Euw+UI7NrgHKXvgWO9ZeXxrRBe2N6g6ND0VDsyEW3+6O4ePTO5Reh8gSUZzsLpc8 uPcoluwyALIwU9PQYm71NrE+oIsgV33wjG7pgTvZ/cmqOourisaLnUVdIAks4vUv 9GEJzCrkzZmNzB7BGWbTKFAWyK1ctS9GYohbWtoBWoN3DIPMbecuG1f1iozl4+41 fWkeL/l6vPw4zEeqMQRz1AZD68cQMYm3QvAlZNRVzRqS9aJdHNd/3M7cPo9ZZrCo j+yHVIfI6uV90mM7UduiE6s1VRhhzGTmMl27XFtf9h0h7LKG5RRMtdtRlQ== -----END CERTIFICATE-----Generated at Sat Sep 6 20:19:07 2025 by rpki-client