$ rpki-client -vvf rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/21EF23B2E16811F0AE4839883A6F56BC.roa File: 21EF23B2E16811F0AE4839883A6F56BC.roa (raw, json) Hash identifier: ZKCQjdago1KprBkMVdzOhlrm6rDSw/wNal8SzmwglEA= Subject key identifier: 64:EA:74:94:CC:31:55:CE:76:D0:4B:9E:92:0E:5F:57:EB:C0:A1:B2 Certificate issuer: /CN=A914BE8E/serialNumber=DB0887E25CC0D0CF7688DB5DDDF4196532CD47A6 Certificate serial: 33 Authority key identifier: DB:08:87:E2:5C:C0:D0:CF:76:88:DB:5D:DD:F4:19:65:32:CD:47:A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2wiH4lzA0M92iNtd3fQZZTLNR6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/21EF23B2E16811F0AE4839883A6F56BC.roa Signing time: Sun 01 Mar 2026 05:57:24 +0000 ROA not before: Thu 25 Dec 2025 08:03:01 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 9484 IP address blocks: 138.252.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/2wiH4lzA0M92iNtd3fQZZTLNR6Y.crl rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/2wiH4lzA0M92iNtd3fQZZTLNR6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2wiH4lzA0M92iNtd3fQZZTLNR6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BE8E, serialNumber=DB0887E25CC0D0CF7688DB5DDDF4196532CD47A6 Validity Not Before: Dec 25 08:03:01 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a3d543-5667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:59:93:ce:07:e8:2c:aa:0b:a7:29:59:37:08: ce:aa:f7:bd:ea:c3:53:c0:66:6b:24:9f:d3:17:b4: f5:87:31:ea:7e:ab:8f:dc:c3:41:1d:c4:fe:70:87: 4d:3f:ec:2f:5e:56:5b:6c:59:3f:55:50:54:bf:65: 36:ae:42:bd:85:3f:0b:66:4f:96:2c:03:c2:32:26: 7a:ac:e6:d2:5c:7d:bf:95:68:e0:79:70:29:06:95: ff:75:ef:d1:d3:8b:44:8b:0a:af:c8:dc:b6:5a:ae: 12:0d:48:e4:26:cd:15:42:13:cc:6f:ce:28:47:90: 93:43:44:d3:b8:45:23:75:3c:95:99:7f:1b:13:c7: 2a:b8:c7:55:26:44:5d:4a:0a:f2:00:5c:6d:48:e2: 18:ce:bc:11:37:69:42:6c:b0:4d:8c:7d:a7:b6:12: 1a:f3:37:bb:03:a4:12:d2:2b:57:90:49:c7:db:e9: cd:56:6f:2b:a9:ae:da:6e:68:34:04:39:69:b8:54: fe:2d:a1:f4:70:66:37:3b:42:92:dd:8d:7d:fc:b3: 40:7e:88:0d:1d:39:77:b7:41:31:9f:b9:33:4d:b4: 4f:92:e6:57:25:26:dc:1a:f3:d1:b9:3b:80:a8:c1: 46:4e:67:3f:d5:11:6c:2e:4b:f5:eb:83:b4:f4:ae: 11:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:EA:74:94:CC:31:55:CE:76:D0:4B:9E:92:0E:5F:57:EB:C0:A1:B2 X509v3 Authority Key Identifier: keyid:DB:08:87:E2:5C:C0:D0:CF:76:88:DB:5D:DD:F4:19:65:32:CD:47:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/2wiH4lzA0M92iNtd3fQZZTLNR6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2wiH4lzA0M92iNtd3fQZZTLNR6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/21EF23B2E16811F0AE4839883A6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 138.252.220.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:19:e7:43:96:f8:5e:23:ad:11:53:4d:07:8b:5f:c6:aa:4d: f9:03:55:5d:7c:1d:08:83:8c:1d:3a:61:18:b0:1a:1a:43:20: 0e:d8:8a:1b:58:00:36:62:c6:2e:c2:0d:54:f9:02:40:d6:73: 0f:91:4f:5c:4a:9d:4f:fb:f9:d7:7e:5c:e8:2b:ad:b4:29:ba: dd:77:52:50:c8:5f:cd:84:57:1f:1c:e2:89:15:a0:c5:ea:83: e2:48:c9:9b:44:3f:7a:c6:4c:ec:5e:fb:7f:c3:86:56:3e:6e: 6f:e7:c3:45:49:6b:05:e6:e8:1f:58:6a:92:d7:66:66:4f:10: 4d:25:8b:75:20:3c:d4:4a:51:67:42:61:44:32:9c:ba:71:6b: 4b:02:09:09:2c:4b:83:56:38:70:c0:01:7a:f2:1d:6e:74:50: 01:f4:f1:cd:08:ce:b9:9c:4f:58:b5:09:71:dd:45:4b:a4:98: f0:c4:fe:ca:db:79:b9:14:b2:10:bc:d1:c5:21:28:88:03:c9: af:c9:35:0a:83:0d:f9:6b:c0:a6:68:63:77:95:ec:25:2c:f4: 9a:c6:93:48:e1:99:8b:08:15:18:23:86:dc:ed:c1:66:32:51: c7:e2:84:0d:e4:81:77:8e:d1:95:37:0a:da:06:d8:04:17:6e: dd:f5:cc:ba -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QkU4RTExMC8GA1UEBRMoREIwODg3RTI1Q0MwRDBDRjc2ODhEQjVERERGNDE5NjUz MkNENDdBNjAeFw0yNTEyMjUwODAzMDFaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNTQzLTU2NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClWZPOB+gsqgunKVk3CM6q973qw1PAZmskn9MXtPWHMep+q4/cw0EdxP5wh00/ 7C9eVltsWT9VUFS/ZTauQr2FPwtmT5YsA8IyJnqs5tJcfb+VaOB5cCkGlf9179HT i0SLCq/I3LZarhINSOQmzRVCE8xvzihHkJNDRNO4RSN1PJWZfxsTxyq4x1UmRF1K CvIAXG1I4hjOvBE3aUJssE2Mfae2EhrzN7sDpBLSK1eQScfb6c1WbyuprtpuaDQE OWm4VP4tofRwZjc7QpLdjX38s0B+iA0dOXe3QTGfuTNNtE+S5lclJtwa89G5O4Co wUZOZz/VEWwuS/Xrg7T0rhFHAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUZOp0lMwx Vc520Euekg5fV+vAobIwHwYDVR0jBBgwFoAU2wiH4lzA0M92iNtd3fQZZTLNR6Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRCRThFLzQ5Qzc3NDg4RTE0 NjExRjA5MTY0RTBBODcxNkY1NkJDLzJ3aUg0bHpBME05MmlOdGQzZlFaWlRMTlI2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMndpSDRsekEwTTkyaU50ZDNmUVpaVExOUjZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkU4RS80OUM3NzQ4OEUxNDYxMUYwOTE2NEUwQTg3MTZGNTZCQy8yMUVGMjNCMkUx NjgxMUYwQUU0ODM5ODgzQTZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/NwwDQYJKoZIhvcNAQELBQADggEBAGoZ50OW+F4jrRFTTQeLX8aq TfkDVV18HQiDjB06YRiwGhpDIA7YihtYADZixi7CDVT5AkDWcw+RT1xKnU/7+dd+ XOgrrbQput13UlDIX82EVx8c4okVoMXqg+JIyZtEP3rGTOxe+3/DhlY+bm/nw0VJ awXm6B9YapLXZmZPEE0li3UgPNRKUWdCYUQynLpxa0sCCQksS4NWOHDAAXryHW50 UAH08c0IzrmcT1i1CXHdRUukmPDE/srbebkUshC80cUhKIgDya/JNQqDDflrwKZo Y3eV7CUs9JrGk0jhmYsIFRgjhtztwWYyUcfihA3kgXeO0ZU3CtoG2AQXbt31zLo= -----END CERTIFICATE-----Generated at Mon Mar 2 18:35:59 2026 by rpki-client