$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/214232EC4FD311EF90027A63C4F9AE02.roa File: 214232EC4FD311EF90027A63C4F9AE02.roa (raw, json) Hash identifier: yMhZC4asbcFKaEcwYCiNsgA1feOljvXgQMxhyDbkjXs= Subject key identifier: EC:04:18:30:22:A5:59:E6:62:C2:BF:BF:FC:65:16:71:E6:17:AE:47 Certificate issuer: /CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Certificate serial: 09BA Authority key identifier: A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/214232EC4FD311EF90027A63C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:06:31 +0000 ROA not before: Fri 30 May 2025 20:57:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 63526 IP address blocks: 114.129.14.0/23 maxlen: 23 114.129.14.0/24 maxlen: 24 114.129.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2490 (0x9ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BDE, serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Validity Not Before: May 30 20:57:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48e37-06bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:73:4c:e3:d3:b1:8c:ed:9a:45:e3:96:8f:c3: 73:0e:99:24:0a:86:0a:d5:15:84:96:98:eb:fb:67: eb:3d:87:e1:e6:0f:97:86:fa:d4:95:33:db:36:94: 10:b8:0b:19:be:cc:8d:ae:ce:6a:92:c9:90:56:6a: e3:bd:80:03:51:e1:e3:73:9a:6a:47:53:4b:94:f0: 09:ac:8c:c7:05:71:74:55:83:f6:e7:c1:21:57:5e: 11:2a:5c:29:ac:a4:e1:71:c0:d6:41:97:5d:17:e0: 74:72:a3:01:e6:83:bf:73:ed:51:3f:e3:b1:57:a6: 9d:0d:f7:ed:21:92:52:3e:a9:f3:6d:bc:fd:f4:ca: 34:22:00:8f:ee:fa:44:fe:30:c6:d4:e4:a0:0f:a1: 06:94:9a:36:a7:02:b5:fb:5b:20:c3:7d:1b:5d:e6: 78:14:fc:28:03:be:30:25:04:58:87:ad:c4:bd:1d: e5:43:4b:e7:f0:fa:43:f9:c8:b1:33:33:64:19:62: 5c:90:0c:96:71:cb:11:fc:99:de:3a:0c:87:35:52: 46:63:85:c8:3e:f5:ed:36:51:ca:c8:2b:47:e4:75: fb:43:26:9e:40:22:98:6c:08:df:22:14:d2:d0:da: 8b:80:64:cb:8d:da:bb:21:9a:0d:9e:59:9b:09:b3: 9c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:04:18:30:22:A5:59:E6:62:C2:BF:BF:FC:65:16:71:E6:17:AE:47 X509v3 Authority Key Identifier: keyid:A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/214232EC4FD311EF90027A63C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 114.129.14.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:3c:2a:51:9d:68:26:94:e1:0d:51:6a:f0:d8:7e:e6:08:6a: da:aa:88:94:bb:39:d9:50:18:c7:ff:1d:45:52:92:15:28:6e: 8c:f3:0d:9f:96:ea:9c:54:f5:e1:e8:d1:78:be:2f:92:9f:d6: ed:c1:9c:3b:af:14:49:a1:d5:5e:f4:c0:12:22:1f:4c:8a:d0: 9a:cb:b7:7b:5e:b2:f4:7e:41:36:45:29:53:c9:0c:ff:25:73: 78:3d:54:b3:db:ac:7d:46:48:9c:99:d9:22:a3:97:8f:1f:c1: 66:f1:4b:f3:66:6a:08:f7:ef:cd:3b:35:e0:56:d8:f6:65:74: 7c:71:8c:14:5e:ea:c0:63:1c:67:35:ed:f2:c4:cf:e6:6c:62: f1:c1:75:6f:a4:d1:71:f8:b3:bc:f5:e2:3a:38:50:f7:89:6c: 83:e6:60:02:60:c7:ba:ae:b1:c7:fd:9f:5b:ed:b8:84:6f:aa: 91:4e:48:dc:0c:bf:d3:ea:5b:77:c7:dc:88:a8:c2:e0:6a:ca: c6:fe:67:0f:44:b4:31:ae:93:42:87:5b:c3:1c:d7:45:db:8f: 55:6e:89:8c:13:5c:0d:96:d2:f8:01:c6:b5:58:58:1c:21:12: 92:96:e7:4b:9d:f0:69:15:53:dd:5b:6c:1e:aa:8c:67:3c:9f: fb:b0:18:95 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCREUxMTAvBgNVBAUTKEE0QjUwQkVDRDhCQkEyODU1ODcxMjhENTkxOTI4M0RC RTE2OTA5MTgwHhcNMjUwNTMwMjA1NzExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGUzNy0wNmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3NM49OxjO2aReOWj8NzDpkkCoYK1RWElpjr+2frPYfh5g+XhvrUlTPbNpQQ uAsZvsyNrs5qksmQVmrjvYADUeHjc5pqR1NLlPAJrIzHBXF0VYP258EhV14RKlwp rKThccDWQZddF+B0cqMB5oO/c+1RP+OxV6adDfftIZJSPqnzbbz99Mo0IgCP7vpE /jDG1OSgD6EGlJo2pwK1+1sgw30bXeZ4FPwoA74wJQRYh63EvR3lQ0vn8PpD+cix MzNkGWJckAyWccsR/JneOgyHNVJGY4XIPvXtNlHKyCtH5HX7QyaeQCKYbAjfIhTS 0NqLgGTLjdq7IZoNnlmbCbOcCwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOwEGDAi pVnmYsK/v/xlFnHmF65HMB8GA1UdIwQYMBaAFKS1C+zYu6KFWHEo1ZGSg9vhaQkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJERS83RTVBQzNFMDg5 NzExMUVBOTI0MDJBMEFDNEY5QUUwMi9wTFVMN05pN29vVlljU2pWa1pLRDItRnBD UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BMVUw3Tmk3b29WWWNTalZrWktEMi1GcENSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBCREUvN0U1QUMzRTA4OTcxMTFFQTkyNDAyQTBBQzRGOUFFMDIvMjE0MjMyRUM0 RkQzMTFFRjkwMDI3QTYzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBcoEOMA0GCSqGSIb3DQEBCwUAA4IBAQCPPCpRnWgmlOENUWrw2H7m CGraqoiUuznZUBjH/x1FUpIVKG6M8w2fluqcVPXh6NF4vi+Sn9btwZw7rxRJodVe 9MASIh9MitCay7d7XrL0fkE2RSlTyQz/JXN4PVSz26x9Rkicmdkio5ePH8Fm8Uvz ZmoI9+/NOzXgVtj2ZXR8cYwUXurAYxxnNe3yxM/mbGLxwXVvpNFx+LO89eI6OFD3 iWyD5mACYMe6rrHH/Z9b7biEb6qRTkjcDL/T6lt3x9yIqMLgasrG/mcPRLQxrpNC h1vDHNdF249VbomME1wNltL4Aca1WFgcIRKSludLnfBpFVPdW2weqoxnPJ/7sBiV -----END CERTIFICATE-----Generated at Mon Mar 2 06:32:35 2026 by rpki-client