$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa File: B201496EF3A311EC8804FE09C4F9AE02.roa (raw, json) Hash identifier: y1WBN7gHbpcQFgS5AiIM5+b+xvlqJCl6oOkurOSohSs= Subject key identifier: 99:36:E2:7C:16:23:C8:E1:AF:68:A4:90:A5:1D:09:3B:2D:CC:6F:02 Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Certificate serial: 1B17 Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa Signing time: Tue 28 Apr 2026 17:20:59 +0000 ROA not before: Tue 28 Apr 2026 17:20:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55408 IP address blocks: 122.201.21.0/24 maxlen: 24 122.201.22.0/24 maxlen: 24 202.70.39.0/24 maxlen: 24 202.70.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6935 (0x1b17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Validity Not Before: Apr 28 17:20:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f0ec7b-b87d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:52:50:42:1f:f1:95:13:05:60:37:e3:82:e2: a0:d1:1c:d4:c2:2d:85:13:c1:9c:8e:55:04:f7:cd: 86:33:80:8b:1a:d1:c9:ce:af:ef:ec:3f:8c:c1:ec: 8a:f0:60:ca:30:6a:4f:82:14:94:be:38:52:f0:2b: 09:d6:95:06:ba:0f:d8:86:aa:28:cf:a8:1f:7a:42: f0:4e:11:5d:68:7a:92:15:4e:09:bc:02:6f:0c:c1: 03:61:98:4c:af:df:d6:de:ed:7a:63:42:b2:5e:60: 0b:12:0a:d5:d7:57:cb:97:a6:c5:d7:8b:83:3d:ce: 8c:76:b9:11:86:82:bf:79:6a:76:c2:ee:8a:06:5f: 5d:d4:ab:e4:2b:e7:41:91:dd:dc:49:26:10:2c:0e: ec:e1:1f:4e:9a:7d:e7:e8:29:94:04:e0:a4:1a:b2: b4:24:78:fb:87:e2:58:f3:0a:4d:e3:2c:02:75:90: 5f:56:57:ae:82:28:53:7d:1e:3b:af:17:56:e6:3b: 40:62:fb:a4:da:de:f1:e7:60:d9:87:aa:4c:39:3a: ef:d0:a1:ad:e5:91:4b:ca:8f:77:5c:aa:5f:ab:81: 65:c6:51:db:12:90:bb:18:96:ed:a1:45:11:e8:76: 92:64:8b:9e:52:65:df:69:eb:3f:90:22:17:46:db: de:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:36:E2:7C:16:23:C8:E1:AF:68:A4:90:A5:1D:09:3B:2D:CC:6F:02 X509v3 Authority Key Identifier: keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 122.201.21.0-122.201.22.255 202.70.39.0/24 202.70.46.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:44:9b:d2:ff:da:39:4f:b6:1e:96:0b:72:d7:3f:66:09:c3: d7:e4:87:0c:0f:7c:19:33:c5:a8:55:10:7f:29:ca:02:7a:27: ed:b6:7c:5b:7b:99:6f:24:a5:ee:48:92:38:43:87:e5:1d:d2: 18:01:0b:3a:52:2b:ce:09:b3:5b:98:b0:df:8f:c6:5f:d9:ff: 8a:f6:1f:02:1e:f6:d7:7f:39:67:3f:71:a5:34:06:0e:5b:9f: 14:a4:87:23:87:56:e6:10:5f:e6:fa:03:3f:01:af:e9:a7:a2: 84:76:92:c5:c3:80:e5:b5:c1:af:e6:ad:99:23:b8:9c:40:b4: e5:d0:ad:2b:09:eb:4c:c7:0f:26:ac:f9:20:9b:cd:db:0a:54: 39:43:98:4d:15:70:65:43:67:cb:0c:0e:78:bf:82:12:cc:1e: 88:9b:49:df:6b:4c:d5:61:3d:9b:aa:97:47:1d:d8:2b:4d:6d: e8:36:fd:75:16:d3:24:ba:f6:8d:1c:e1:5f:c8:c6:b2:c8:b8: 9c:03:ed:d9:5f:e6:7e:54:fd:08:0f:3e:8a:5a:7e:45:5f:eb: 44:e6:9a:b3:87:7f:b7:30:d3:ad:8d:d5:1d:be:9f:17:38:3a: 4e:5b:ff:ef:37:9a:b9:c3:7d:f0:28:24:74:13:bd:2e:3a:b2: e9:29:a3:dc -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICGxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKDI5OTYyMzI1REUwQkFERTREQzlEREJDNTc2QUUyNzcw MTJCQzM3NTgwHhcNMjYwNDI4MTcyMDU5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYwZWM3Yi1iODdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VJQQh/xlRMFYDfjguKg0RzUwi2FE8GcjlUE982GM4CLGtHJzq/v7D+MweyK 8GDKMGpPghSUvjhS8CsJ1pUGug/Yhqooz6gfekLwThFdaHqSFU4JvAJvDMEDYZhM r9/W3u16Y0KyXmALEgrV11fLl6bF14uDPc6MdrkRhoK/eWp2wu6KBl9d1KvkK+dB kd3cSSYQLA7s4R9Omn3n6CmUBOCkGrK0JHj7h+JY8wpN4ywCdZBfVleugihTfR47 rxdW5jtAYvuk2t7x52DZh6pMOTrv0KGt5ZFLyo93XKpfq4FlxlHbEpC7GJbtoUUR 6HaSZIueUmXfaes/kCIXRtveNwIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFJk24nwW I8jhr2ikkKUdCTstzG8CMB8GA1UdIwQYMBaAFCmWIyXeC63k3J3bxXauJ3ASvDdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC84MzgzNjIwQTUw RDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJlVGNuZHZGZHE0bmNCSzhO MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0taWWpKZDRMcmVUY25kdkZkcTRuY0JLOE4xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERBMkQvODM4MzYyMEE1MEQ1MTFFNzlFQ0U0MDEzQzRGOUFFMDIvQjIwMTQ5NkVG M0EzMTFFQzg4MDRGRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaMAwDBAB6yRUDBAB6yRYDBADKRicDBADKRi4wDQYJKoZIhvcNAQELBQAD ggEBAG9Em9L/2jlPth6WC3LXP2YJw9fkhwwPfBkzxahVEH8pygJ6J+22fFt7mW8k pe5IkjhDh+Ud0hgBCzpSK84Js1uYsN+Pxl/Z/4r2HwIe9td/OWc/caU0Bg5bnxSk hyOHVuYQX+b6Az8Br+mnooR2ksXDgOW1wa/mrZkjuJxAtOXQrSsJ60zHDyas+SCb zdsKVDlDmE0VcGVDZ8sMDni/ghLMHoibSd9rTNVhPZuql0cd2CtNbeg2/XUW0yS6 9o0c4V/IxrLIuJwD7dlf5n5U/QgPPopafkVf60TmmrOHf7cw062N1R2+nxc4Ok5b /+83mrnDffAoJHQTvS46sukpo9w= -----END CERTIFICATE-----Generated at Wed May 13 03:57:14 2026 by rpki-client