$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa File: 55F662DC09B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: /X5TChqDgnnwz76ThM1TmEeXUOxlgZkj9qaJLWnJUzo= Subject key identifier: 00:9B:A3:66:3B:55:42:76:B1:B8:2D:EB:19:32:4D:28:72:B1:B9:24 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1079 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:49 +0000 ROA not before: Fri 28 Feb 2025 19:30:02 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397229 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4217 (0x1079) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:02 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a48615-92c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b6:72:2c:cd:fe:a1:44:e4:c6:a9:f7:22:81: be:82:3d:61:be:0c:2b:b2:a2:62:4d:a0:ac:4a:54: 45:a2:b2:77:c1:b6:c9:49:4e:22:45:1a:b5:b2:73: 75:e4:5c:ff:98:52:57:a9:8e:95:73:31:42:e0:f6: 6f:0b:16:8e:8a:85:07:dc:dc:43:82:b3:2e:1f:f0: 54:00:47:4f:10:ef:90:09:9a:b3:46:4b:8e:fd:06: f9:fe:9a:16:f4:17:d0:c5:df:ea:36:87:5e:0c:ec: e0:fc:c5:23:98:e3:a4:eb:1f:6b:03:18:5b:27:4f: 44:04:24:ec:37:fe:8d:c5:91:a8:a4:05:16:b4:9a: 3b:6c:17:9f:d7:29:e0:c6:0b:c7:3a:6a:bc:d2:53: 75:f7:bc:3d:8c:38:3f:fb:b3:e4:01:90:0d:5c:5c: 79:2b:07:7f:44:93:65:cc:f0:c8:01:67:06:e9:67: 36:96:64:44:e9:65:c9:cd:cf:ef:dc:37:e6:8f:0d: 43:c5:60:d5:c0:1d:17:34:78:28:08:f3:dd:5f:93: c6:df:e4:e8:72:f8:0b:f4:82:bf:d1:d7:99:4a:70: 82:27:03:28:0e:2b:e3:74:96:48:fe:3d:03:80:bd: 71:10:ba:2d:a9:53:1b:e9:fc:00:7c:e9:f5:95:1a: f7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:9B:A3:66:3B:55:42:76:B1:B8:2D:EB:19:32:4D:28:72:B1:B9:24 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 43:7b:2f:26:f6:c8:c4:e2:e2:64:12:33:15:96:24:9b:65:68: dd:d7:34:0a:59:34:d7:29:36:6a:b2:88:d0:9b:66:63:48:3b: 15:25:e5:42:e6:29:79:0f:05:1e:3d:3f:04:7c:95:c2:62:8a: 22:a7:92:72:5f:e1:24:ce:09:be:f3:e0:6e:38:ce:55:90:6c: 07:22:ed:ff:47:10:ac:9a:65:9a:59:3c:d1:d2:70:73:58:94: 36:00:ef:0e:b5:41:d6:8d:f1:80:5a:59:73:0d:e7:0a:c1:08: e3:3b:a5:27:0d:ef:7e:a8:b2:b6:ad:70:18:15:6d:aa:ea:14: 2a:36:67:d8:ce:b2:88:cf:4a:81:ae:cb:ad:b8:11:fd:f2:96: 6a:8a:95:e0:83:6c:5d:4d:46:be:d4:95:aa:54:0a:c9:77:74: 2a:37:e0:4a:6f:04:a4:15:09:aa:8b:8c:f0:51:c0:13:bf:5f: cb:80:73:c5:9e:7c:5d:99:4f:80:c4:4c:1d:68:9e:94:41:8b: d0:df:20:53:fe:80:78:87:1a:76:bf:df:fa:94:e0:27:9e:4e: dc:c6:23:ff:aa:25:b9:d3:db:41:46:ac:03:e4:0a:41:bc:8e: 04:5d:20:5e:3a:95:7f:5a:c9:be:67:55:01:b9:22:36:ac:c9: 45:b7:10:d4 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDAyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYxNS05MmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLZyLM3+oUTkxqn3IoG+gj1hvgwrsqJiTaCsSlRForJ3wbbJSU4iRRq1snN1 5Fz/mFJXqY6VczFC4PZvCxaOioUH3NxDgrMuH/BUAEdPEO+QCZqzRkuO/Qb5/poW 9BfQxd/qNodeDOzg/MUjmOOk6x9rAxhbJ09EBCTsN/6NxZGopAUWtJo7bBef1yng xgvHOmq80lN197w9jDg/+7PkAZANXFx5Kwd/RJNlzPDIAWcG6Wc2lmRE6WXJzc/v 3Dfmjw1DxWDVwB0XNHgoCPPdX5PG3+TocvgL9IK/0deZSnCCJwMoDivjdJZI/j0D gL1xELotqVMb6fwAfOn1lRr3hQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFACbo2Y7 VUJ2sbgt6xkyTShysbkkMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTVGNjYyREMw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBDey8m9sjE4uJkEjMV liSbZWjd1zQKWTTXKTZqsojQm2ZjSDsVJeVC5il5DwUePT8EfJXCYooip5JyX+Ek zgm+8+BuOM5VkGwHIu3/RxCsmmWaWTzR0nBzWJQ2AO8OtUHWjfGAWllzDecKwQjj O6UnDe9+qLK2rXAYFW2q6hQqNmfYzrKIz0qBrsutuBH98pZqipXgg2xdTUa+1JWq VArJd3QqN+BKbwSkFQmqi4zwUcATv1/LgHPFnnxdmU+AxEwdaJ6UQYvQ3yBT/oB4 hxp2v9/6lOAnnk7cxiP/qiW509tBRqwD5ApBvI4EXSBeOpV/Wsm+Z1UBuSI2rMlF txDU -----END CERTIFICATE-----Generated at Mon Mar 2 16:47:16 2026 by rpki-client