$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa File: B201496EF3A311EC8804FE09C4F9AE02.roa (raw, json) Hash identifier: 7WJalEMOZVtxgJni8RlEELTTNzW+y4R0udMJ9qnWJ3I= Subject key identifier: CE:18:0B:C6:F6:DB:7D:02:12:F6:84:FD:DA:17:08:A4:E8:38:F3:9D Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Certificate serial: 1AF3 Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:30:34 +0000 ROA not before: Mon 12 May 2025 10:53:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55408 IP address blocks: 122.201.21.0/24 maxlen: 24 122.201.22.0/24 maxlen: 24 202.70.39.0/24 maxlen: 24 202.70.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6899 (0x1af3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Validity Not Before: May 12 10:53:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4235a-02d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:33:2d:ae:f9:d1:c4:96:11:11:fc:9a:46:69: 99:87:c5:03:20:ed:e7:17:4e:a5:8e:29:86:ec:dd: 9e:34:ff:8a:89:56:53:69:fd:62:7b:ee:62:f9:50: 79:b6:15:57:b1:84:33:b5:92:f8:a7:de:3e:6f:7d: b4:98:cc:64:2c:5d:6e:00:8f:39:40:09:4d:3e:d9: b0:f2:d4:dd:bd:3d:d4:a1:21:98:2f:01:83:9f:3a: 4c:77:cc:a2:03:78:54:8b:5e:ad:53:91:3b:a4:2b: 06:d4:9d:61:c7:d1:76:f7:03:f5:2a:1f:3b:6c:47: ad:c0:cc:92:30:b3:2a:35:b0:c2:01:ec:0f:0f:ff: c6:47:e1:90:17:72:79:15:c0:d4:81:9d:d5:8c:5c: 08:13:9e:bd:06:aa:1b:31:95:d6:b7:5d:27:eb:a8: a3:53:65:dd:75:f4:b1:d1:d2:b4:d9:04:6d:2e:8a: 54:f1:10:01:11:4d:6f:d3:f1:3a:14:13:59:14:e3: 8f:a5:60:54:64:53:de:3f:94:87:db:c1:e2:85:13: df:c4:28:c7:82:e7:93:d1:b4:91:93:ea:cd:04:87: d3:47:84:b1:2c:36:41:e2:d2:22:82:67:63:27:a9: 4a:de:53:b4:7e:54:97:9e:79:36:fd:64:a2:c5:be: 64:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:18:0B:C6:F6:DB:7D:02:12:F6:84:FD:DA:17:08:A4:E8:38:F3:9D X509v3 Authority Key Identifier: keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 122.201.21.0-122.201.22.255 202.70.39.0/24 202.70.46.0/24 Signature Algorithm: sha256WithRSAEncryption a5:ef:70:85:c7:4f:9f:5d:dc:0a:2a:21:9b:35:4a:b0:6b:52: 4d:c5:82:8f:f8:c3:8f:59:51:a6:20:9f:61:73:60:59:0f:ba: 46:f4:14:02:0f:03:d5:c0:81:c9:ac:38:a5:6e:ce:67:1e:61: f8:96:48:bc:19:92:3d:31:7a:de:71:c5:53:8b:b6:10:3b:8d: 1e:93:11:4c:06:4a:39:88:24:23:d5:d7:27:fd:82:80:e1:73: 72:fe:50:e0:cb:89:7a:03:47:1d:b8:d2:52:0b:84:0b:91:c4: 7d:db:f2:6d:c5:d8:04:55:c1:02:3b:3a:14:36:61:e8:19:ad: b7:72:00:4b:7a:07:bb:d5:d0:c8:d3:c6:b6:06:7f:66:47:22: 6f:66:bb:90:5b:2f:fe:d9:7e:90:9c:ab:7f:64:5d:87:82:8d: 59:cb:ba:42:4e:85:fe:b5:93:62:ea:81:cf:8e:2d:1e:6b:f8: cc:40:4e:68:8a:46:1e:f9:89:7b:48:a9:4c:c5:d7:03:ce:b1: 90:69:64:b0:41:d8:91:62:32:d1:cf:33:b2:8b:3e:55:4a:2a: 09:cf:b5:47:73:88:bf:67:b8:9e:13:48:fe:b5:eb:c7:0d:e9: 5d:87:53:4b:a9:83:3a:14:be:69:45:8c:7b:14:29:f2:2d:33: 96:2d:f0:50 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICGvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKDI5OTYyMzI1REUwQkFERTREQzlEREJDNTc2QUUyNzcw MTJCQzM3NTgwHhcNMjUwNTEyMTA1MzUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjM1YS0wMmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDMtrvnRxJYREfyaRmmZh8UDIO3nF06ljimG7N2eNP+KiVZTaf1ie+5i+VB5 thVXsYQztZL4p94+b320mMxkLF1uAI85QAlNPtmw8tTdvT3UoSGYLwGDnzpMd8yi A3hUi16tU5E7pCsG1J1hx9F29wP1Kh87bEetwMySMLMqNbDCAewPD//GR+GQF3J5 FcDUgZ3VjFwIE569BqobMZXWt10n66ijU2XddfSx0dK02QRtLopU8RABEU1v0/E6 FBNZFOOPpWBUZFPeP5SH28HihRPfxCjHgueT0bSRk+rNBIfTR4SxLDZB4tIigmdj J6lK3lO0flSXnnk2/WSixb5khQIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFM4YC8b2 230CEvaE/doXCKToOPOdMB8GA1UdIwQYMBaAFCmWIyXeC63k3J3bxXauJ3ASvDdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC84MzgzNjIwQTUw RDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJlVGNuZHZGZHE0bmNCSzhO MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0taWWpKZDRMcmVUY25kdkZkcTRuY0JLOE4xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERBMkQvODM4MzYyMEE1MEQ1MTFFNzlFQ0U0MDEzQzRGOUFFMDIvQjIwMTQ5NkVG M0EzMTFFQzg4MDRGRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaMAwDBAB6yRUDBAB6yRYDBADKRicDBADKRi4wDQYJKoZIhvcNAQELBQAD ggEBAKXvcIXHT59d3AoqIZs1SrBrUk3Fgo/4w49ZUaYgn2FzYFkPukb0FAIPA9XA gcmsOKVuzmceYfiWSLwZkj0xet5xxVOLthA7jR6TEUwGSjmIJCPV1yf9goDhc3L+ UODLiXoDRx240lILhAuRxH3b8m3F2ARVwQI7OhQ2YegZrbdyAEt6B7vV0MjTxrYG f2ZHIm9mu5BbL/7ZfpCcq39kXYeCjVnLukJOhf61k2Lqgc+OLR5r+MxATmiKRh75 iXtIqUzF1wPOsZBpZLBB2JFiMtHPM7KLPlVKKgnPtUdziL9nuJ4TSP6168cN6V2H U0upgzoUvmlFjHsUKfItM5Yt8FA= -----END CERTIFICATE-----Generated at Thu Mar 26 12:53:55 2026 by rpki-client