$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/54E1D22809B111EAB045B31EC4F9AE02.roa File: 54E1D22809B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: 7pM+5xIMQmH/3L2v9CCdYRJTVeR2gJte3FbaVjmMNIk= Subject key identifier: F5:88:89:16:89:3C:6B:1B:EC:0E:57:32:BA:E3:C8:84:88:EE:B1:61 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1073 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/54E1D22809B111EAB045B31EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:43 +0000 ROA not before: Fri 28 Feb 2025 19:29:55 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397223 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4211 (0x1073) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:29:55 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4860f-fce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:92:ad:53:b5:fe:39:11:52:06:49:c6:55:4c: de:d0:83:e9:47:51:58:07:4e:17:02:bf:02:9f:ce: 43:18:13:a2:07:87:3b:e2:34:d9:6d:05:11:f4:ee: 1a:4c:a0:22:8b:86:e9:65:2f:7d:6b:d8:e8:2d:d2: 7e:ca:1b:9a:e1:d4:ba:66:16:9e:46:d6:dd:fa:78: a7:5d:03:c5:1b:8a:ab:b8:1d:1c:66:df:ba:ff:2f: d5:e2:ee:01:df:01:c4:5f:a8:9d:8d:d2:2a:a9:bb: 8b:78:28:a9:5b:26:f4:1d:af:71:f4:f5:3e:e3:00: 95:28:eb:29:7a:ef:92:4b:6d:3e:68:1e:8a:76:8e: f1:0a:ef:67:24:2c:dc:40:87:ef:f3:57:1c:43:53: c7:6b:be:54:21:b7:55:6b:26:20:87:9c:ba:01:18: bf:e7:85:d8:fa:04:b0:7c:cb:be:45:89:9c:e7:84: ea:43:b3:5b:4a:44:e4:a2:5f:c4:b7:01:79:ee:f3: c6:32:ff:3b:b6:3a:ca:d7:e7:68:1b:cc:a6:aa:9c: c8:fa:92:f7:7a:39:b9:6e:10:75:5c:6f:9e:a9:44: 4d:2c:93:5b:d6:b2:25:40:47:1b:89:ca:0d:08:d3: 52:3b:2f:17:8c:53:3d:2c:13:98:f7:25:d0:b3:f4: 04:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:88:89:16:89:3C:6B:1B:EC:0E:57:32:BA:E3:C8:84:88:EE:B1:61 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/54E1D22809B111EAB045B31EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 92:d5:ec:58:d7:6a:95:dc:1d:7e:31:32:15:f6:fb:60:a9:05: 3e:90:54:9d:ac:ee:09:0f:47:0b:18:4b:3f:bc:7f:73:c6:16: 90:cc:c3:c9:9e:0c:b7:67:95:71:42:f4:6b:a9:a8:a8:a3:a7: 9a:72:58:40:67:4e:d9:fe:52:a6:21:04:4d:16:3c:82:f3:b1: 31:91:ce:ad:09:8c:0b:09:9e:24:db:9e:82:10:c9:91:0e:31: b9:a3:7f:00:ac:1c:da:26:ca:7e:ab:b7:03:b5:b2:a5:40:a9: 71:fc:7b:9d:71:be:35:bb:a9:0d:a1:07:02:c9:cc:37:83:99: c0:7d:da:25:41:56:c1:7b:2d:d6:f9:26:6b:c6:b7:08:3c:cc: ad:28:10:bb:c6:08:88:a9:5f:31:db:cd:7d:a8:b3:07:64:c6: 9a:15:f3:d3:fc:f3:55:a5:df:23:53:20:34:c3:a3:23:b4:79: dd:4b:48:59:7b:3c:92:88:c4:d1:8a:8f:5c:e1:e9:b8:df:aa: 77:5b:3e:a4:61:70:1d:45:97:5f:c2:fb:ab:7e:28:4c:a7:cd: b9:f9:9b:6a:04:3b:64:31:4a:66:81:6b:41:e0:c7:4f:d7:c4: 37:42:ef:ca:fc:60:7c:8b:95:5a:2d:df:29:09:d8:12:a6:7d: 5e:fe:89:ec -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkyOTU1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYwZi1mY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupKtU7X+ORFSBknGVUze0IPpR1FYB04XAr8Cn85DGBOiB4c74jTZbQUR9O4a TKAii4bpZS99a9joLdJ+yhua4dS6ZhaeRtbd+ninXQPFG4qruB0cZt+6/y/V4u4B 3wHEX6idjdIqqbuLeCipWyb0Ha9x9PU+4wCVKOspeu+SS20+aB6Kdo7xCu9nJCzc QIfv81ccQ1PHa75UIbdVayYgh5y6ARi/54XY+gSwfMu+RYmc54TqQ7NbSkTkol/E twF57vPGMv87tjrK1+doG8ymqpzI+pL3ejm5bhB1XG+eqURNLJNb1rIlQEcbicoN CNNSOy8XjFM9LBOY9yXQs/QEGwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFPWIiRaJ PGsb7A5XMrrjyISI7rFhMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTRFMUQyMjgw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQCS1exY12qV3B1+MTIV 9vtgqQU+kFSdrO4JD0cLGEs/vH9zxhaQzMPJngy3Z5VxQvRrqaioo6eaclhAZ07Z /lKmIQRNFjyC87Exkc6tCYwLCZ4k256CEMmRDjG5o38ArBzaJsp+q7cDtbKlQKlx /Hudcb41u6kNoQcCycw3g5nAfdolQVbBey3W+SZrxrcIPMytKBC7xgiIqV8x2819 qLMHZMaaFfPT/PNVpd8jUyA0w6MjtHndS0hZezySiMTRio9c4em436p3Wz6kYXAd RZdfwvurfihMp825+ZtqBDtkMUpmgWtB4MdP18Q3Qu/K/GB8i5VaLd8pCdgSpn1e /ons -----END CERTIFICATE-----Generated at Mon Mar 2 14:59:06 2026 by rpki-client