$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/48366FBA072D11EAAE8E1D56C4F9AE02.roa File: 48366FBA072D11EAAE8E1D56C4F9AE02.roa (raw, json) Hash identifier: 9y1zYxxYoZLrK7sQW4B+AwqcLsRYjRByP5rStGwcIr4= Subject key identifier: 36:A4:67:90:F5:D7:CB:02:40:E3:5A:24:F7:BC:9D:2C:8C:DF:3D:2F Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1076 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/48366FBA072D11EAAE8E1D56C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:46 +0000 ROA not before: Fri 28 Feb 2025 19:29:58 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397226 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4214 (0x1076) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:29:58 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a48612-474e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9b:1e:e8:6b:b0:79:41:2e:cc:96:86:f2:ad: 54:8b:eb:35:97:66:b6:c5:c8:1b:bc:9f:94:ac:ae: fb:c7:c4:31:1c:14:5b:7e:bd:b6:6b:5d:39:ae:3e: 19:f4:35:50:45:c6:28:6e:4c:4d:77:19:ec:18:35: 8b:78:3f:c4:c5:ef:b0:38:ad:de:25:84:a6:b8:d3: 98:ae:13:59:fe:2c:c2:59:95:cd:2e:bd:ef:be:ab: c0:5d:1e:ed:2f:be:f5:f0:53:32:78:b6:6a:09:db: f3:6e:23:26:ee:58:7c:c8:04:08:13:5d:47:3a:4c: 08:bc:d7:8f:de:42:07:2b:73:db:68:85:39:6b:92: fd:e8:16:17:4c:0a:e1:7d:81:73:f1:89:46:c5:a8: ff:91:32:cf:71:cf:07:fd:77:78:a0:62:4e:ef:91: 31:7d:8c:7c:7e:52:c3:03:6f:da:da:bf:2f:2c:c5: 48:0e:ce:6a:fa:04:67:ef:a1:29:85:a9:dd:7e:6d: 3c:19:3d:89:90:a2:25:20:7c:69:fb:5f:02:53:b9: 38:35:25:10:1a:97:3b:91:54:8b:83:52:dc:e5:2e: 98:6e:0e:b0:a2:aa:dc:e4:de:70:15:c4:dc:3f:b4: 74:f0:00:4b:3b:de:b9:98:b3:c2:24:90:21:61:bf: f5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A4:67:90:F5:D7:CB:02:40:E3:5A:24:F7:BC:9D:2C:8C:DF:3D:2F X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/48366FBA072D11EAAE8E1D56C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 4b:87:b1:0d:0a:f2:49:37:9a:9d:a0:8c:b8:60:a6:a7:2c:56: 07:f3:f7:41:37:9f:9b:48:4b:f4:2a:5a:9d:44:b8:d1:e4:81: a6:14:bb:53:c2:c7:a3:03:4c:bb:4c:c3:4c:3c:0d:54:24:5a: 72:c6:b2:07:f9:a5:1f:db:8b:23:c8:5c:27:21:45:b7:0b:f0: 9a:6f:4f:0d:e8:d1:03:94:6e:e0:c8:11:88:b2:57:29:ef:4e: 9b:2e:86:d2:97:67:75:80:5b:bf:22:a5:b8:92:54:3d:f1:c0: 56:77:4b:97:53:2a:b9:49:73:38:a5:28:81:90:5d:c4:11:57: 80:39:42:c9:7d:49:00:27:2d:ef:a5:73:ef:95:d8:c4:61:6a: 61:6f:83:c6:f3:1d:fc:3f:46:a6:a4:2a:ef:1f:4e:c8:40:ac: 5e:f1:a5:7f:eb:bf:45:b1:e7:a7:7e:73:0e:33:aa:e5:8a:94: e1:79:38:15:0e:61:b9:1c:88:b0:5b:0f:bc:01:85:a2:e8:fa: 27:ba:21:8d:a7:20:c3:bd:80:fd:fc:16:03:2d:ca:8e:e3:7c: de:3f:ff:bb:2c:25:94:bb:57:60:aa:c2:cf:34:d1:e9:89:13: db:c4:5c:f4:13:f9:3f:e4:c7:42:c2:7f:e5:06:04:71:e9:c8: 23:7c:ef:22 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkyOTU4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYxMi00NzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJse6GuweUEuzJaG8q1Ui+s1l2a2xcgbvJ+UrK77x8QxHBRbfr22a105rj4Z 9DVQRcYobkxNdxnsGDWLeD/Exe+wOK3eJYSmuNOYrhNZ/izCWZXNLr3vvqvAXR7t L7718FMyeLZqCdvzbiMm7lh8yAQIE11HOkwIvNeP3kIHK3PbaIU5a5L96BYXTArh fYFz8YlGxaj/kTLPcc8H/Xd4oGJO75ExfYx8flLDA2/a2r8vLMVIDs5q+gRn76Ep handfm08GT2JkKIlIHxp+18CU7k4NSUQGpc7kVSLg1Lc5S6Ybg6woqrc5N5wFcTc P7R08ABLO965mLPCJJAhYb/17QIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFDakZ5D1 18sCQONaJPe8nSyM3z0vMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNDgzNjZGQkEw NzJEMTFFQUFFOEUxRDU2QzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBLh7ENCvJJN5qdoIy4 YKanLFYH8/dBN5+bSEv0KlqdRLjR5IGmFLtTwsejA0y7TMNMPA1UJFpyxrIH+aUf 24sjyFwnIUW3C/Cab08N6NEDlG7gyBGIslcp706bLobSl2d1gFu/IqW4klQ98cBW d0uXUyq5SXM4pSiBkF3EEVeAOULJfUkAJy3vpXPvldjEYWphb4PG8x38P0ampCrv H07IQKxe8aV/679FseenfnMOM6rlipTheTgVDmG5HIiwWw+8AYWi6PonuiGNpyDD vYD9/BYDLcqO43zeP/+7LCWUu1dgqsLPNNHpiRPbxFz0E/k/5MdCwn/lBgRx6cgj fO8i -----END CERTIFICATE-----Generated at Mon Mar 2 14:58:37 2026 by rpki-client