$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa File: D36286F2D55C11EAA224E026C4F9AE02.roa (raw, json) Hash identifier: brZKY9xV0u7DuNgZW+H5YTLYJkJCq3Toq7rS+Pdg5Lc= Subject key identifier: AC:9B:10:4D:E1:3F:ED:46:C5:37:4E:53:93:79:5E:B1:A7:89:A9:6E Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 202E Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:12:24 +0000 ROA not before: Sat 30 Aug 2025 16:35:16 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134419 IP address blocks: 124.227.64.0/20 maxlen: 20 124.227.144.0/22 maxlen: 22 202.103.214.0/23 maxlen: 23 202.103.247.0/24 maxlen: 24 218.21.104.0/21 maxlen: 21 218.21.112.0/21 maxlen: 21 218.65.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8238 (0x202e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:16 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48f98-739d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d8:56:89:a3:70:90:b2:4f:ca:91:4e:5d:c2: d4:40:90:ec:72:e3:ab:a5:99:9f:8b:3e:92:ea:c5: 80:7b:db:5f:6a:c6:ac:85:67:79:59:35:2f:ba:2a: 8b:12:f8:fe:4b:f0:c3:6b:9d:1c:d8:64:29:32:52: 4f:d5:8d:3e:53:fb:4b:b2:fe:a1:0e:e7:11:18:5f: 7a:7c:38:ec:aa:9b:e8:0c:b5:57:85:60:c2:ab:c9: 6b:ad:e2:f4:d8:74:fd:5d:5d:73:c4:c2:1a:a0:44: 2b:f7:79:e0:c3:7b:c2:71:ab:0e:6e:fa:5a:75:f5: 37:b8:28:b0:d0:10:27:b7:47:7d:4f:57:fc:03:3e: f6:01:eb:ce:22:84:0c:5d:e7:21:8e:18:63:8d:fc: af:58:c5:f4:24:e2:58:e9:03:e0:a6:c0:10:c0:70: 26:65:8e:19:43:8e:4a:f1:c1:ba:3a:9c:9a:bb:2a: 3a:26:46:99:6c:b2:4b:69:a8:76:fe:f5:7a:b6:4c: e4:1f:ef:f3:11:1b:ec:1c:87:0d:70:36:c5:03:b8: a1:46:63:eb:f5:03:4a:78:3f:66:d3:35:d9:00:12: 8c:94:69:2f:5f:3e:2a:cf:c6:b9:a8:45:da:e8:eb: ec:f0:56:92:ea:4f:ff:ae:a6:c1:e5:94:12:90:4d: 17:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:9B:10:4D:E1:3F:ED:46:C5:37:4E:53:93:79:5E:B1:A7:89:A9:6E X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 124.227.64.0/20 124.227.144.0/22 202.103.214.0/23 202.103.247.0/24 218.21.104.0-218.21.119.255 218.65.132.0/24 Signature Algorithm: sha256WithRSAEncryption 75:15:54:41:c1:da:1c:4c:1c:87:1b:84:fb:56:33:47:b2:6c: e5:c3:95:e4:65:b9:8b:f9:ff:45:d5:bc:19:56:ba:d2:82:0e: 9d:be:c3:cd:61:df:26:22:3a:d6:5e:1b:8d:2a:10:1f:a4:66: 6f:1c:6f:95:cd:b5:82:ef:82:09:44:b8:05:ed:74:a6:7e:0b: 8e:be:90:e0:4f:75:f2:57:20:dd:44:9f:26:15:3b:a6:7c:cb: 0d:79:45:62:34:f7:ef:65:ff:cb:a0:96:eb:08:bd:3a:af:57: ca:62:17:3d:a2:ec:98:ed:d6:b0:82:d0:fb:d9:c1:7c:4a:19: 5a:54:bd:1a:e2:e3:b7:97:df:6b:ea:5d:54:97:4e:1e:4d:3e: dc:07:a3:37:be:3b:d0:6b:a1:f6:56:8b:8b:b8:35:6a:d0:ba: d3:e0:f7:90:bf:47:27:46:eb:76:20:d4:42:de:0e:8b:f7:5e: 15:76:31:55:90:c2:1b:6b:67:3b:db:73:d7:f2:0d:42:42:22: 6d:5a:fa:96:a9:d7:7e:ce:18:a7:f1:18:bf:a6:0d:a0:c6:28: 2a:a6:93:77:c1:a4:15:cc:6f:ba:e3:d5:fd:8a:29:da:24:0e: fc:24:db:fc:35:7d:01:3f:96:eb:83:c1:5a:ec:f0:b6:cf:66: 8a:ae:e0:c7 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICIC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTE2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGY5OC03MzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NhWiaNwkLJPypFOXcLUQJDscuOrpZmfiz6S6sWAe9tfasashWd5WTUvuiqL Evj+S/DDa50c2GQpMlJP1Y0+U/tLsv6hDucRGF96fDjsqpvoDLVXhWDCq8lrreL0 2HT9XV1zxMIaoEQr93ngw3vCcasObvpadfU3uCiw0BAnt0d9T1f8Az72AevOIoQM XechjhhjjfyvWMX0JOJY6QPgpsAQwHAmZY4ZQ45K8cG6Opyauyo6JkaZbLJLaah2 /vV6tkzkH+/zERvsHIcNcDbFA7ihRmPr9QNKeD9m0zXZABKMlGkvXz4qz8a5qEXa 6Ovs8FaS6k//rqbB5ZQSkE0XhwIDAQABo4IChjCCAoIwHQYDVR0OBBYEFKybEE3h P+1GxTdOU5N5XrGnialuMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRDM2Mjg2RjJE NTVDMTFFQUEyMjRFMDI2QzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAy BAIAATAsAwQEfONAAwQCfOOQAwQBymfWAwQAymf3MAwDBAPaFWgDBAPaFXADBADa QYQwDQYJKoZIhvcNAQELBQADggEBAHUVVEHB2hxMHIcbhPtWM0eybOXDleRluYv5 /0XVvBlWutKCDp2+w81h3yYiOtZeG40qEB+kZm8cb5XNtYLvgglEuAXtdKZ+C46+ kOBPdfJXIN1EnyYVO6Z8yw15RWI09+9l/8uglusIvTqvV8piFz2i7Jjt1rCC0PvZ wXxKGVpUvRri47eX32vqXVSXTh5NPtwHoze+O9BrofZWi4u4NWrQutPg95C/RydG 63Yg1ELeDov3XhV2MVWQwhtrZzvbc9fyDUJCIm1a+pap137OGKfxGL+mDaDGKCqm k3fBpBXMb7rj1f2KKdokDvwk2/w1fQE/luuDwVrs8LbPZoqu4Mc= -----END CERTIFICATE-----Generated at Thu Mar 12 22:45:19 2026 by rpki-client