$ rpki-client -vvf rpki.apnic.net/member_repository/A911FC14/12530BC4947B11F094B09A77C4F9AE02/9FA4EC40947B11F0A24B7978C4F9AE02.roa File: 9FA4EC40947B11F0A24B7978C4F9AE02.roa (raw, json) Hash identifier: StwZYUxAMeb4HFjgpW0zz1ecu5Euv9+R/+fWRbC6L+g= Subject key identifier: 70:3F:A5:92:C3:58:EA:2F:1F:E2:CF:83:A2:CC:0C:63:F5:C1:A9:F7 Certificate issuer: /CN=A911FC14/serialNumber=BCA8DEFB62AF7403407707C7E7F57A2BC8E84004 Certificate serial: 55 Authority key identifier: BC:A8:DE:FB:62:AF:74:03:40:77:07:C7:E7:F5:7A:2B:C8:E8:40:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vKje-2KvdANAdwfH5_V6K8joQAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FC14/12530BC4947B11F094B09A77C4F9AE02/9FA4EC40947B11F0A24B7978C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:18:41 +0000 ROA not before: Thu 18 Sep 2025 10:38:33 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136141 IP address blocks: 121.200.220.0/24 maxlen: 24 121.200.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FC14/12530BC4947B11F094B09A77C4F9AE02/vKje-2KvdANAdwfH5_V6K8joQAQ.crl rsync://rpki.apnic.net/member_repository/A911FC14/12530BC4947B11F094B09A77C4F9AE02/vKje-2KvdANAdwfH5_V6K8joQAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vKje-2KvdANAdwfH5_V6K8joQAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FC14, serialNumber=BCA8DEFB62AF7403407707C7E7F57A2BC8E84004 Validity Not Before: Sep 18 10:38:33 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3da41-3250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:67:ce:af:e8:ab:e1:1f:35:a7:c7:ba:59:61: 86:9f:78:df:bf:05:9c:0a:be:36:d0:a6:33:7d:90: 6e:fe:94:a5:df:26:e5:3a:70:be:d6:3a:31:4f:19: 86:26:46:1b:3f:8f:c1:80:81:8e:ba:fa:af:e3:b1: 1a:f9:74:ae:a4:42:79:0c:88:7c:11:ef:65:21:db: 79:89:25:92:b7:fc:db:e7:f3:76:07:88:4c:e5:c6: 6c:45:9c:c4:46:d6:98:4a:cb:1f:06:0c:17:a5:34: 75:04:61:3d:1a:14:ac:c7:27:2f:00:4f:d6:7d:41: 4e:f7:79:97:99:19:41:0d:c3:f5:97:03:3f:a9:04: e5:e0:ea:3f:49:5b:1c:b4:45:c2:f5:e3:ba:f7:f8: 48:f3:fc:59:f9:1b:dc:99:7f:10:f0:84:7d:36:b9: 5d:11:21:3f:bf:66:d1:8c:db:6e:3e:1c:6a:08:35: 79:b7:ee:20:f4:5a:58:51:7c:a8:97:22:1b:db:34: 2c:bc:67:d8:e0:02:92:af:84:a9:29:de:bc:8c:2b: bb:79:c2:fc:90:6f:f7:65:d8:fc:59:1d:bb:83:48: 12:80:9c:0b:44:4a:59:b3:1d:17:8a:db:46:56:c7: 47:0b:31:88:be:c7:3e:69:a4:9f:ba:84:c3:da:5f: 14:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:3F:A5:92:C3:58:EA:2F:1F:E2:CF:83:A2:CC:0C:63:F5:C1:A9:F7 X509v3 Authority Key Identifier: keyid:BC:A8:DE:FB:62:AF:74:03:40:77:07:C7:E7:F5:7A:2B:C8:E8:40:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FC14/12530BC4947B11F094B09A77C4F9AE02/vKje-2KvdANAdwfH5_V6K8joQAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vKje-2KvdANAdwfH5_V6K8joQAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FC14/12530BC4947B11F094B09A77C4F9AE02/9FA4EC40947B11F0A24B7978C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.200.220.0/23 Signature Algorithm: sha256WithRSAEncryption 26:75:28:51:68:a2:b9:f9:87:6f:4f:27:a5:ca:4d:74:78:42: 55:47:25:53:07:02:cf:89:ba:d0:d1:ed:4a:38:40:7f:f9:c7: cd:15:e6:e2:9c:4a:e1:41:98:50:40:b7:f5:77:fc:40:79:a4: ee:43:ec:2e:1b:82:1e:d7:8d:9e:c5:02:b8:e6:34:dd:87:a5: 2b:b5:3c:e2:3b:45:97:31:77:99:f1:ef:f5:eb:d3:e1:05:12: 5f:ce:7e:a4:21:ba:23:63:00:b9:41:29:ec:2f:f5:b0:95:a1: bd:c9:d4:22:8d:24:ac:8a:f0:21:8d:c7:f9:9b:e9:18:c0:ec: e9:27:32:74:dc:bf:6a:87:ee:83:4a:2a:d0:32:fa:89:04:1e: 25:af:88:d0:94:77:0f:a9:c0:cf:68:cb:0d:89:a2:e3:c1:89: 7b:15:10:83:9a:80:24:1b:dd:82:3d:2d:13:5a:e7:8a:08:b6: 55:ef:3f:0b:7a:36:9c:5e:47:0d:2b:40:bd:8c:38:e3:f4:ec: da:94:3f:7b:84:fa:a0:38:2e:29:a7:2f:c9:81:5e:19:be:0f: 74:8e:e5:be:92:23:fc:2d:f1:21:bb:aa:cf:f5:f6:4d:55:26: 80:56:d4:84:61:90:79:2f:ce:fe:c9:10:01:6f:59:69:ab:39: 32:17:54:b1 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RkMxNDExMC8GA1UEBRMoQkNBOERFRkI2MkFGNzQwMzQwNzcwN0M3RTdGNTdBMkJD OEU4NDAwNDAeFw0yNTA5MTgxMDM4MzNaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkYTQxLTMyNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvZ86v6KvhHzWnx7pZYYafeN+/BZwKvjbQpjN9kG7+lKXfJuU6cL7WOjFPGYYm Rhs/j8GAgY66+q/jsRr5dK6kQnkMiHwR72Uh23mJJZK3/Nvn83YHiEzlxmxFnMRG 1phKyx8GDBelNHUEYT0aFKzHJy8AT9Z9QU73eZeZGUENw/WXAz+pBOXg6j9JWxy0 RcL147r3+Ejz/Fn5G9yZfxDwhH02uV0RIT+/ZtGM224+HGoINXm37iD0WlhRfKiX IhvbNCy8Z9jgApKvhKkp3ryMK7t5wvyQb/dl2PxZHbuDSBKAnAtESlmzHReK20ZW x0cLMYi+xz5ppJ+6hMPaXxRxAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUcD+lksNY 6i8f4s+DoswMY/XBqfcwHwYDVR0jBBgwFoAUvKje+2KvdANAdwfH5/V6K8joQAQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGQzE0LzEyNTMwQkM0OTQ3 QjExRjA5NEIwOUE3N0M0RjlBRTAyL3ZLamUtMkt2ZEFOQWR3Zkg1X1Y2Szhqb1FB US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdktqZS0yS3ZkQU5BZHdmSDVfVjZLOGpvUUFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkMxNC8xMjUzMEJDNDk0N0IxMUYwOTRCMDlBNzdDNEY5QUUwMi85RkE0RUM0MDk0 N0IxMUYwQTI0Qjc5NzhDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAF5yNwwDQYJKoZIhvcNAQELBQADggEBACZ1KFFoorn5h29PJ6XKTXR4 QlVHJVMHAs+JutDR7Uo4QH/5x80V5uKcSuFBmFBAt/V3/EB5pO5D7C4bgh7XjZ7F ArjmNN2HpSu1POI7RZcxd5nx7/Xr0+EFEl/OfqQhuiNjALlBKewv9bCVob3J1CKN JKyK8CGNx/mb6RjA7OknMnTcv2qH7oNKKtAy+okEHiWviNCUdw+pwM9oyw2JouPB iXsVEIOagCQb3YI9LRNa54oItlXvPwt6NpxeRw0rQL2MOOP07NqUP3uE+qA4Limn L8mBXhm+D3SO5b6SI/wt8SG7qs/19k1VJoBW1IRhkHkvzv7JEAFvWWmrOTIXVLE= -----END CERTIFICATE-----Generated at Mon Mar 2 06:49:06 2026 by rpki-client