$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa File: 55703D7E09B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: CQ9/lZAba2EyvJYfZZ78mtTjNRBKZPzIuPorFG6iHag= Subject key identifier: DF:5D:D4:6C:34:AB:65:0E:3F:46:3B:AD:EA:C0:CD:89:CE:46:96:C6 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1077 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:47 +0000 ROA not before: Fri 28 Feb 2025 19:30:00 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397227 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4215 (0x1077) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:00 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a48613-47f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2f:60:bd:b0:55:c6:af:f0:6b:c2:b8:23:f9: 04:1e:3f:53:a4:d9:91:1a:67:63:1e:4f:ab:9e:8c: 91:92:15:4c:75:fd:e0:02:6c:04:1b:c5:e6:21:6a: 4c:f9:42:55:a0:ea:86:76:82:83:b0:21:a6:21:0c: ee:8d:c7:b3:19:03:6d:b9:92:4a:50:97:e9:82:3b: d1:f1:a2:9f:30:9b:e8:e4:14:b8:15:17:be:40:c5: 96:0e:e4:1c:27:95:1a:5e:7e:5b:9c:dc:cd:96:07: f7:27:6c:d8:7c:55:9b:56:1d:f4:e6:b2:a4:15:a8: 91:e8:8e:a7:a0:dd:01:59:22:cf:6c:9f:fd:d2:5e: 32:eb:57:b6:e4:08:cc:04:af:eb:8d:4c:b4:0b:1e: 60:52:a8:98:28:69:20:53:2f:0a:94:cd:e4:3c:f7: 4d:fe:f0:fb:b5:f8:68:35:28:37:30:38:67:17:20: aa:1c:f1:cc:59:7f:43:4e:20:4f:69:3f:17:97:51: bc:73:01:f3:3b:44:a8:23:7b:cb:19:30:9d:fc:2a: e0:5f:bd:53:17:d1:23:f8:e7:1a:aa:84:51:ba:ea: 56:7b:ae:46:d8:98:2e:ac:76:9f:af:c4:55:02:3f: 6b:41:29:b6:f7:43:ea:0f:a2:3a:90:7b:28:ae:7b: f2:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:5D:D4:6C:34:AB:65:0E:3F:46:3B:AD:EA:C0:CD:89:CE:46:96:C6 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 54:65:9d:26:db:33:30:48:ca:fa:5f:b2:d5:dc:1c:bd:6d:ec: 62:af:a8:b7:db:a8:fa:6a:da:2e:38:9a:31:51:d1:1d:5f:67: 84:86:c2:05:71:4a:05:55:e6:81:59:96:91:92:0c:0b:52:bc: e2:96:29:f9:cd:70:29:de:62:0b:a7:9e:4b:e0:4c:60:c9:25: 45:10:15:2c:a9:d6:fb:7a:54:3f:d6:44:b7:bc:c9:24:58:85: 3e:5f:3a:a0:f0:88:85:cb:d6:3f:39:8e:02:cb:49:e9:8c:f1: 2a:91:18:a4:0b:53:40:5a:90:7f:4f:40:47:30:f6:a6:b5:92: 71:f0:89:f0:1a:13:fb:d0:a1:bf:37:71:52:d4:e1:a6:52:66: af:3e:df:41:db:2b:be:61:f6:9e:a6:7b:b1:cd:79:ee:5f:7d: 43:29:e0:ad:27:97:d0:0d:d6:01:8b:12:51:66:26:54:5c:00: 1f:a0:63:29:91:98:1a:2e:4a:15:8c:6b:6c:f1:50:91:aa:7a: 3b:fb:c2:06:57:29:df:e4:82:21:c0:fd:7d:e6:88:70:3c:51: 0e:43:b2:cd:27:7c:72:10:e2:3f:9c:32:f4:79:db:6d:85:d6: 35:13:de:73:dc:07:57:33:af:de:4a:ac:b4:49:ae:ce:18:93: c8:a9:91:56 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDAwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYxMy00N2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAny9gvbBVxq/wa8K4I/kEHj9TpNmRGmdjHk+rnoyRkhVMdf3gAmwEG8XmIWpM +UJVoOqGdoKDsCGmIQzujcezGQNtuZJKUJfpgjvR8aKfMJvo5BS4FRe+QMWWDuQc J5UaXn5bnNzNlgf3J2zYfFWbVh305rKkFaiR6I6noN0BWSLPbJ/90l4y61e25AjM BK/rjUy0Cx5gUqiYKGkgUy8KlM3kPPdN/vD7tfhoNSg3MDhnFyCqHPHMWX9DTiBP aT8Xl1G8cwHzO0SoI3vLGTCd/CrgX71TF9Ej+OcaqoRRuupWe65G2JgurHafr8RV Aj9rQSm290PqD6I6kHsornvyqQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFN9d1Gw0 q2UOP0Y7rerAzYnORpbGMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTU3MDNEN0Uw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBUZZ0m2zMwSMr6X7LV 3By9bexir6i326j6atouOJoxUdEdX2eEhsIFcUoFVeaBWZaRkgwLUrzilin5zXAp 3mILp55L4ExgySVFEBUsqdb7elQ/1kS3vMkkWIU+Xzqg8IiFy9Y/OY4Cy0npjPEq kRikC1NAWpB/T0BHMPamtZJx8InwGhP70KG/N3FS1OGmUmavPt9B2yu+Yfaepnux zXnuX31DKeCtJ5fQDdYBixJRZiZUXAAfoGMpkZgaLkoVjGts8VCRqno7+8IGVynf 5IIhwP195ohwPFEOQ7LNJ3xyEOI/nDL0edtthdY1E95z3AdXM6/eSqy0Sa7OGJPI qZFW -----END CERTIFICATE-----Generated at Mon Mar 2 14:59:18 2026 by rpki-client