$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/5731ACF609B111EAB045B31EC4F9AE02.roa File: 5731ACF609B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: 2tCO3IzmBykfeklT65CRRja70MdCE7T687QMnD+fRXs= Subject key identifier: 67:AF:85:B8:A6:21:FB:DD:D4:FD:07:5C:02:07:36:63:94:FD:4B:3F Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 107E Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/5731ACF609B111EAB045B31EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:53 +0000 ROA not before: Fri 28 Feb 2025 19:30:12 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397234 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4222 (0x107e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:12 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a48619-4058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:19:21:6a:85:94:56:39:24:2f:85:92:64:e6: d9:f6:3d:9e:4a:5c:a8:1e:8c:e2:fc:4b:8f:bf:72: 57:73:ad:dc:2f:b7:79:f2:6d:0d:8b:ef:df:29:5a: 3c:c0:2e:46:f3:d6:a8:62:19:00:e4:1a:28:c1:a9: f7:71:66:8c:14:b4:c9:cb:68:1f:c0:4f:ea:23:53: 80:76:b9:f1:95:64:90:48:e3:cb:c3:17:42:f3:b1: 09:7d:0b:a5:f9:e5:4f:c6:79:de:cb:07:3e:93:4c: b6:b9:78:03:60:9c:e4:a6:1d:08:8b:38:b2:ee:3d: 52:3c:33:c7:3a:89:bf:a0:66:d5:01:d4:6c:02:c8: 98:ba:52:a4:a2:a9:30:e8:c9:ff:dc:51:54:71:32: 82:79:30:d9:16:55:83:df:f2:89:84:76:42:3e:0e: b6:f4:69:e4:2a:86:e3:ce:3c:b9:85:2d:23:67:58: 86:a5:4e:76:ff:80:f6:7a:fe:0b:35:27:11:b9:64: 6b:4f:ef:65:1d:c4:73:1e:74:b3:e2:36:7e:88:f0: 6f:ab:e2:5f:26:89:5b:85:8e:0b:b0:6b:bb:79:2b: 13:67:82:04:06:55:9e:46:45:8f:81:1e:fe:dd:44: a4:79:88:f8:5d:ed:89:40:6a:e9:55:5f:1c:d7:74: 95:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AF:85:B8:A6:21:FB:DD:D4:FD:07:5C:02:07:36:63:94:FD:4B:3F X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/5731ACF609B111EAB045B31EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 2b:f2:b1:8f:56:ca:62:17:cc:e3:ea:66:5a:83:e4:64:f7:8c: 01:e9:b3:22:ce:7b:d8:5e:9e:2d:ba:37:ed:0c:92:2b:f4:56: 39:4a:62:be:03:fe:79:3b:b9:ce:18:60:73:4d:02:1c:17:bd: 9b:8d:4a:d0:be:ce:3c:bf:2f:c3:55:1b:1f:94:4a:00:58:a4: b2:f9:90:d0:a4:49:76:6c:65:69:9d:11:b5:2c:35:e7:07:ae: 2e:d8:a1:14:f6:68:e0:d8:b7:df:09:14:a3:54:fe:91:ad:bb: 30:78:5c:3e:f6:05:2d:24:63:41:cc:32:41:a6:11:8a:35:79: 7d:37:78:d8:a5:54:14:07:22:db:28:a6:98:0c:f4:b1:80:6e: df:8b:3f:13:e6:ce:e9:14:a9:9a:0b:c3:08:3d:ee:39:d2:cd: ba:d2:d7:05:bc:47:f0:1a:e3:0b:75:19:58:c0:c2:9b:f6:b5: 5e:79:8c:3f:f9:b6:9b:1d:6a:43:06:07:03:6e:f7:5f:14:48: 68:a3:1a:14:cb:1a:9b:96:81:27:fc:0a:9b:f7:e3:fa:e6:64: eb:1f:11:bb:00:6e:46:f3:50:13:23:74:b0:28:6e:34:d6:cf: 28:eb:78:28:97:c8:23:82:9e:1a:29:d2:8a:4e:9f:3e:ed:8f: c9:0e:fc:3d -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDEyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYxOS00MDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3RkhaoWUVjkkL4WSZObZ9j2eSlyoHozi/EuPv3JXc63cL7d58m0Ni+/fKVo8 wC5G89aoYhkA5Boowan3cWaMFLTJy2gfwE/qI1OAdrnxlWSQSOPLwxdC87EJfQul +eVPxnneywc+k0y2uXgDYJzkph0Iiziy7j1SPDPHOom/oGbVAdRsAsiYulKkoqkw 6Mn/3FFUcTKCeTDZFlWD3/KJhHZCPg629GnkKobjzjy5hS0jZ1iGpU52/4D2ev4L NScRuWRrT+9lHcRzHnSz4jZ+iPBvq+JfJolbhY4LsGu7eSsTZ4IEBlWeRkWPgR7+ 3USkeYj4Xe2JQGrpVV8c13SV5wIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFGevhbim Ifvd1P0HXAIHNmOU/Us/MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTczMUFDRjYw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQAr8rGPVspiF8zj6mZa g+Rk94wB6bMiznvYXp4tujftDJIr9FY5SmK+A/55O7nOGGBzTQIcF72bjUrQvs48 vy/DVRsflEoAWKSy+ZDQpEl2bGVpnRG1LDXnB64u2KEU9mjg2LffCRSjVP6Rrbsw eFw+9gUtJGNBzDJBphGKNXl9N3jYpVQUByLbKKaYDPSxgG7fiz8T5s7pFKmaC8MI Pe450s260tcFvEfwGuMLdRlYwMKb9rVeeYw/+babHWpDBgcDbvdfFEhooxoUyxqb loEn/Aqb9+P65mTrHxG7AG5G81ATI3SwKG401s8o63gol8gjgp4aKdKKTp8+7Y/J Dvw9 -----END CERTIFICATE-----Generated at Mon Mar 2 16:47:02 2026 by rpki-client