$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/E1E1C946E01611ED8385DA62C4F9AE02.roa File: E1E1C946E01611ED8385DA62C4F9AE02.roa (raw, json) Hash identifier: Q9DraSCfcOE8BUL4w3PuFN9nJGQZdKRwRtFVCN1wTWs= Subject key identifier: 7A:B7:B1:AB:97:F3:7B:29:3C:95:6D:C6:F1:A5:55:E9:30:A5:A9:48 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 2049 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/E1E1C946E01611ED8385DA62C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:12:47 +0000 ROA not before: Sat 30 Aug 2025 16:35:44 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4835 IP address blocks: 124.116.158.0/23 maxlen: 23 125.76.224.0/19 maxlen: 24 218.30.19.0/24 maxlen: 24 218.30.20.0/24 maxlen: 24 218.30.21.0/24 maxlen: 24 218.30.22.0/24 maxlen: 24 218.30.23.0/24 maxlen: 24 218.30.24.0/24 maxlen: 24 218.30.66.0/24 maxlen: 24 218.30.67.0/24 maxlen: 24 218.30.68.0/22 maxlen: 22 218.30.72.0/22 maxlen: 22 218.30.72.0/24 maxlen: 24 218.30.73.0/24 maxlen: 24 218.30.74.0/24 maxlen: 24 218.30.76.0/22 maxlen: 23 218.30.80.0/24 maxlen: 24 218.30.81.0/24 maxlen: 24 218.30.82.0/24 maxlen: 24 218.30.83.0/24 maxlen: 24 218.30.85.0/24 maxlen: 24 218.30.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8265 (0x2049) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:44 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48faf-4209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6b:29:04:4c:87:3d:ff:af:5e:57:39:bc:58: 26:e5:4e:51:5d:f7:3b:6e:a4:fb:d5:8b:c3:96:d0: f0:f4:71:53:55:e5:4b:28:f4:92:51:da:1c:0a:e7: ed:21:c1:31:5e:8b:54:3e:38:82:3b:13:c2:25:39: 21:06:36:6c:8a:77:ad:bb:4a:f2:cd:5d:ee:af:12: 51:b8:cf:fc:d6:2a:01:b7:d1:9d:ab:57:b8:21:c8: 56:f8:eb:3f:b7:5f:2a:50:67:a6:e3:97:98:25:36: 9f:d1:85:4b:f3:c8:9c:eb:3f:f2:8d:70:32:f2:8c: aa:e3:ba:53:4f:94:36:dc:09:f2:0f:f7:3a:b3:90: 24:59:c7:ff:2e:0f:21:15:92:4f:2c:0e:e3:34:37: 0f:ca:73:72:28:3a:09:23:93:38:b3:b9:94:9f:5a: d5:5f:7b:14:8c:51:7d:fa:f8:77:4c:70:13:1a:66: 46:ac:f1:07:d8:b5:62:6e:d5:23:fd:8c:41:5f:49: 5f:e5:6e:7e:45:4d:7c:0c:e4:26:cf:8d:31:3a:e1: 26:c8:93:af:69:ce:0d:64:c6:f7:62:ac:2a:ce:f7: 2a:d8:43:5f:91:93:d8:10:53:03:57:8e:45:e7:2b: 9f:c0:97:c9:04:f2:15:2d:f9:0d:14:8d:ef:a6:65: cb:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B7:B1:AB:97:F3:7B:29:3C:95:6D:C6:F1:A5:55:E9:30:A5:A9:48 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/E1E1C946E01611ED8385DA62C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 124.116.158.0/23 125.76.224.0/19 218.30.19.0-218.30.24.255 218.30.66.0-218.30.83.255 218.30.85.0/24 218.30.88.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:44:18:de:5c:e8:3d:73:6f:30:44:5a:34:57:27:32:29:50: 49:a1:34:df:90:8d:8f:51:9d:45:12:7a:00:6e:b0:40:ec:52: 4c:d9:99:71:5a:22:28:dd:1f:f0:68:04:18:4e:e6:72:7a:1b: e5:0d:37:85:1b:2a:96:4d:56:de:82:3f:e2:c6:f7:28:ed:d2: cf:63:3b:88:93:d6:24:a9:3f:5e:04:27:b0:1e:63:dd:46:2e: b3:8f:25:eb:59:3d:6b:b2:0c:66:83:84:c1:dc:14:71:fc:3b: 80:b1:54:c7:89:17:c8:58:07:06:58:d5:c9:90:26:7c:6d:79: b3:5f:d9:40:83:ac:83:b3:75:a3:39:13:e5:a5:1a:89:06:fb: 27:b6:2a:eb:59:98:ed:6c:fe:29:60:77:fc:8b:db:ec:87:71: 91:8f:af:53:aa:0a:f3:75:eb:83:39:39:0e:fa:f2:4a:18:cc: 4f:47:b2:81:6e:93:65:80:29:f5:1d:0e:a7:cb:d4:4d:1f:6f: 03:8e:49:81:16:7a:8a:72:1f:87:5b:70:cb:11:c2:7e:5e:64: e7:c3:00:b3:06:67:9e:d8:69:60:d2:46:c6:36:2d:5d:9e:d3: 90:81:c9:05:03:0d:b9:45:3e:00:f0:8a:09:be:7a:ab:cd:63: 52:ba:2a:ed -----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgICIEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTQ0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGZhZi00MjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWspBEyHPf+vXlc5vFgm5U5RXfc7bqT71YvDltDw9HFTVeVLKPSSUdocCuft IcExXotUPjiCOxPCJTkhBjZsinetu0ryzV3urxJRuM/81ioBt9Gdq1e4IchW+Os/ t18qUGem45eYJTaf0YVL88ic6z/yjXAy8oyq47pTT5Q23AnyD/c6s5AkWcf/Lg8h FZJPLA7jNDcPynNyKDoJI5M4s7mUn1rVX3sUjFF9+vh3THATGmZGrPEH2LVibtUj /YxBX0lf5W5+RU18DOQmz40xOuEmyJOvac4NZMb3Yqwqzvcq2ENfkZPYEFMDV45F 5yufwJfJBPIVLfkNFI3vpmXLnwIDAQABo4ICjjCCAoowHQYDVR0OBBYEFHq3sauX 83spPJVtxvGlVekwpalIMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRTFFMUM5NDZF MDE2MTFFRDgzODVEQTYyQzRGOUFFMDIucm9hME0GCCsGAQUFBwEHAQH/BD4wPDA6 BAIAATA0AwQBfHSeAwQFfUzgMAwDBADaHhMDBADaHhgwDAMEAdoeQgMEAtoeUAME ANoeVQMEAtoeWDANBgkqhkiG9w0BAQsFAAOCAQEAf0QY3lzoPXNvMERaNFcnMilQ SaE035CNj1GdRRJ6AG6wQOxSTNmZcVoiKN0f8GgEGE7mcnob5Q03hRsqlk1W3oI/ 4sb3KO3Sz2M7iJPWJKk/XgQnsB5j3UYus48l61k9a7IMZoOEwdwUcfw7gLFUx4kX yFgHBljVyZAmfG15s1/ZQIOsg7N1ozkT5aUaiQb7J7Yq61mY7Wz+KWB3/Ivb7Idx kY+vU6oK83Xrgzk5DvryShjMT0eygW6TZYAp9R0Op8vUTR9vA45JgRZ6inIfh1tw yxHCfl5k58MAswZnnthpYNJGxjYtXZ7TkIHJBQMNuUU+APCKCb56q81jUroq7Q== -----END CERTIFICATE-----Generated at Thu Mar 12 22:45:54 2026 by rpki-client