$ rpki-client -vvf rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/FBD80F88F92111EAABA5882BC4F9AE02.roa File: FBD80F88F92111EAABA5882BC4F9AE02.roa (raw, json) Hash identifier: ZGTkEaop0Njy1O1CMAVof6Q9yXcRtZbEuTTl/ZxOWKs= Subject key identifier: 4B:0B:D0:AB:69:A3:EE:BD:4B:F7:36:A1:13:73:73:0D:1B:A6:8E:DD Certificate issuer: /CN=A914CE75/serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85 Certificate serial: 3317 Authority key identifier: 49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/FBD80F88F92111EAABA5882BC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:10:54 +0000 ROA not before: Wed 30 Apr 2025 15:52:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 40009 IP address blocks: 121.244.74.0/23 maxlen: 23 121.244.136.0/24 maxlen: 24 121.244.137.0/24 maxlen: 24 121.244.172.0/24 maxlen: 24 121.244.173.0/24 maxlen: 24 121.244.190.0/23 maxlen: 23 121.244.204.0/24 maxlen: 24 121.244.205.0/24 maxlen: 24 203.200.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:39:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13079 (0x3317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CE75, serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85 Validity Not Before: Apr 30 15:52:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48f3e-69f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:fb:6c:69:ad:d8:7b:2f:a8:cf:02:b3:6e:05: 23:3b:f8:2a:30:24:7b:42:bf:5f:95:cf:f7:2d:f7: c4:08:7a:9f:82:ad:c5:f0:42:7a:70:4f:68:8e:8c: 67:9d:85:d2:38:3a:02:21:cb:a3:2a:74:65:a7:00: d3:ce:4f:fb:d6:be:1b:6f:d6:ae:83:dd:bf:3d:4e: c6:3f:6b:48:4e:d1:e7:35:63:5e:71:98:df:ea:01: d6:95:78:d7:83:6d:e2:ab:d6:14:41:6f:44:31:42: 7d:00:bb:44:f2:96:04:2a:ac:be:4d:38:da:ca:46: 33:54:a0:6d:1c:58:c8:e8:ea:87:2c:b5:17:a4:17: 1d:15:7e:47:89:84:5c:2c:70:10:9c:2b:8f:40:bf: 1b:6c:be:c6:d5:dc:b7:f1:73:2a:18:ad:2e:da:ca: 68:32:c3:ff:4d:d6:38:f2:8a:8c:78:aa:4b:98:86: f7:bd:54:2c:f7:b0:10:d1:dc:d6:ea:e8:46:92:6e: 40:2c:e2:af:98:9f:30:8e:c7:27:ea:cd:5f:a6:42: 05:8e:6a:29:ca:35:ec:ab:88:c6:1e:5d:f2:46:64: 87:98:29:e5:b2:55:fb:84:f2:90:6a:04:42:af:8f: 0d:5f:af:58:61:4d:a2:7e:00:ce:30:ee:63:6a:29: 6c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0B:D0:AB:69:A3:EE:BD:4B:F7:36:A1:13:73:73:0D:1B:A6:8E:DD X509v3 Authority Key Identifier: keyid:49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/FBD80F88F92111EAABA5882BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.244.74.0/23 121.244.136.0/23 121.244.172.0/23 121.244.190.0/23 121.244.204.0/23 203.200.108.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:68:43:a8:ef:66:6d:95:18:0a:24:b6:1c:18:f6:a9:9a:c6: 71:9d:b8:22:f5:92:90:5e:16:84:34:31:b6:99:2e:38:87:26: 2b:f5:b7:7b:fa:df:2d:10:23:a4:96:87:e1:82:db:bc:35:53: 67:36:10:69:8d:e9:5d:94:00:5d:da:6c:ac:92:a7:e0:f5:f1: 17:52:86:67:14:e1:ae:4f:33:79:db:52:3f:18:79:ed:10:45: c7:5e:e3:aa:a9:cd:44:d8:b8:ec:5e:74:0c:bf:42:ef:9f:ee: 9d:44:1f:34:10:dd:04:2d:f9:42:d2:af:a9:29:18:05:7d:95: 6d:24:84:5e:18:09:38:2d:63:cf:34:ab:ab:9a:c8:2f:c7:7e: 46:a3:37:d6:67:66:7c:e6:ee:90:74:0b:88:5a:42:d2:70:4f: 7d:2a:be:5e:f7:3e:41:0d:bd:bc:33:66:c6:fd:37:27:13:a5: c0:70:50:9f:07:91:48:e0:e7:9c:bd:5b:28:af:f8:76:76:b5: 7d:d7:48:98:6b:ed:d3:f4:27:cd:eb:7c:b6:90:be:dc:fe:8c: 6a:9a:23:3f:c2:46:10:7d:9c:52:45:a8:05:3d:29:83:83:0c: 1b:4f:f2:0f:50:4a:07:aa:a4:4d:1c:8f:f4:fa:11:81:8c:9e: ce:9e:d6:70 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICMxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENFNzUxMTAvBgNVBAUTKDQ5ODkyNTM3RDhCMkMwMzI1QjdCRTA4MUZEOTI4NkM3 OUJFQTZBODUwHhcNMjUwNDMwMTU1MjI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGYzZS02OWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ftsaa3Yey+ozwKzbgUjO/gqMCR7Qr9flc/3LffECHqfgq3F8EJ6cE9ojoxn nYXSODoCIcujKnRlpwDTzk/71r4bb9aug92/PU7GP2tITtHnNWNecZjf6gHWlXjX g23iq9YUQW9EMUJ9ALtE8pYEKqy+TTjaykYzVKBtHFjI6OqHLLUXpBcdFX5HiYRc LHAQnCuPQL8bbL7G1dy38XMqGK0u2spoMsP/TdY48oqMeKpLmIb3vVQs97AQ0dzW 6uhGkm5ALOKvmJ8wjscn6s1fpkIFjmopyjXsq4jGHl3yRmSHmCnlslX7hPKQagRC r48NX69YYU2ifgDOMO5jailswQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFEsL0Ktp o+69S/c2oRNzcw0bpo7dMB8GA1UdIwQYMBaAFEmJJTfYssAyW3vggf2Shseb6mqF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0U3NS9EMjJFRjNENkZG NEIxMUUyODFCRTA2NjI1OTExRUEzMi9TWWtsTjlpeXdESmJlLUNCX1pLR3g1dnFh b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NZa2xOOWl5d0RKYmUtQ0JfWktHeDV2cWFvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENFNzUvRDIyRUYzRDZGRjRCMTFFMjgxQkUwNjYyNTkxMUVBMzIvRkJEODBGODhG OTIxMTFFQUFCQTU4ODJCQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQBefRKAwQBefSIAwQBefSsAwQBefS+AwQBefTMAwQAy8hsMA0GCSqG SIb3DQEBCwUAA4IBAQBvaEOo72ZtlRgKJLYcGPapmsZxnbgi9ZKQXhaENDG2mS44 hyYr9bd7+t8tECOklofhgtu8NVNnNhBpjeldlABd2myskqfg9fEXUoZnFOGuTzN5 21I/GHntEEXHXuOqqc1E2LjsXnQMv0Lvn+6dRB80EN0ELflC0q+pKRgFfZVtJIRe GAk4LWPPNKurmsgvx35GozfWZ2Z85u6QdAuIWkLScE99Kr5e9z5BDb28M2bG/Tcn E6XAcFCfB5FI4OecvVsor/h2drV910iYa+3T9CfN63y2kL7c/oxqmiM/wkYQfZxS RagFPSmDgwwbT/IPUEoHqqRNHI/0+hGBjJ7OntZw -----END CERTIFICATE-----Generated at Mon Mar 2 10:00:51 2026 by rpki-client