$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/57D0ACB609B111EAB045B31EC4F9AE02.roa File: 57D0ACB609B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: Fp+j8pdE88i7ME3SdprWlQHZjyMsx3KaiJfa4xejq70= Subject key identifier: 45:5F:74:E8:0C:19:6E:DE:C9:DC:1E:19:6E:CD:D9:13:1F:DB:FE:A1 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1080 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/57D0ACB609B111EAB045B31EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:55 +0000 ROA not before: Fri 28 Feb 2025 19:30:14 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397236 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4224 (0x1080) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:14 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4861b-c3d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3d:15:97:a2:da:5a:92:9e:ba:2b:5a:89:0d: a7:11:23:fa:b2:90:44:d4:9b:ca:6f:33:47:7e:f3: ae:8f:48:52:4e:27:a8:bd:8f:7a:07:f8:49:da:29: 3b:3d:eb:f2:87:89:b1:04:ff:c5:d1:8d:af:f0:25: 2a:38:99:17:4c:f9:d9:e4:1b:7c:4e:30:74:ca:c5: 27:14:73:ef:cd:0b:7c:84:af:0c:47:e1:cc:0f:93: fd:0d:02:40:50:01:48:29:f8:ad:c4:b7:04:7e:0d: 12:bd:12:c7:ef:44:58:ab:1f:fb:82:63:07:e1:c9: 96:80:43:06:69:3f:39:3c:88:a2:5d:f1:58:1b:b0: a7:26:9b:c8:96:0d:cd:3c:f3:b4:73:37:c7:93:64: f1:d3:f3:13:1e:36:5b:99:ae:ee:be:8f:24:3e:c3: 68:75:88:08:cc:6c:b3:90:1e:c3:ee:47:97:ce:7d: ec:e9:3d:5a:bc:19:f3:33:b6:f0:98:22:42:cb:b4: c6:fb:ea:58:c6:ba:65:92:cd:7e:73:ca:1d:e3:04: df:3a:05:3b:d5:52:78:82:d6:95:a6:df:ce:a7:78: 69:29:63:47:68:4b:2e:5a:89:0e:24:7f:a6:e4:aa: b4:71:35:c2:9e:e3:a4:9e:c8:cf:d1:9f:a7:62:9a: 39:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:5F:74:E8:0C:19:6E:DE:C9:DC:1E:19:6E:CD:D9:13:1F:DB:FE:A1 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/57D0ACB609B111EAB045B31EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 13:a4:02:b0:50:80:14:7f:38:5f:25:c7:07:44:bb:1b:3b:5d: 9a:2f:ac:fe:bb:09:18:e4:3d:52:2e:ac:fa:f2:c6:8f:0a:ee: 6e:0d:63:2a:fb:86:91:4b:23:ee:8e:a6:8c:c7:0e:6a:d3:41: 22:07:dc:55:82:fa:b3:2b:12:92:5d:bc:a9:7c:27:c0:78:20: 14:78:3f:5e:63:1a:fc:7a:c9:0c:4c:b3:97:44:4a:5e:33:22: fa:f8:ad:1f:31:51:ad:0b:1c:26:97:37:b1:2b:23:f5:be:09: f6:8b:66:d7:32:e7:dd:c6:48:e4:d4:11:a5:fd:3d:1c:f8:dc: 35:93:ba:ee:fb:54:a5:89:2a:26:fa:f5:3a:6b:80:fe:10:1e: 92:e9:57:4e:4b:ad:4f:36:4b:d2:97:85:04:83:4f:b6:9a:f9: 5e:d3:dc:eb:b3:98:ce:c5:f3:a5:fc:34:27:c3:fc:97:36:d6: a9:4a:22:32:6e:a9:ba:3c:61:ac:9b:68:0b:5a:2d:09:14:b3: f8:d9:b5:6d:1e:ea:15:f0:d1:68:4c:e6:fe:04:48:60:92:70: 50:6b:34:ef:1b:2d:7f:65:48:71:be:4c:1a:d0:65:67:6b:6e: 0c:68:4c:71:f1:c1:52:50:2a:b1:3b:47:54:96:ed:ad:e9:89: 32:b1:64:cb -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDE0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYxYi1jM2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyD0Vl6LaWpKeuitaiQ2nESP6spBE1JvKbzNHfvOuj0hSTieovY96B/hJ2ik7 Pevyh4mxBP/F0Y2v8CUqOJkXTPnZ5Bt8TjB0ysUnFHPvzQt8hK8MR+HMD5P9DQJA UAFIKfitxLcEfg0SvRLH70RYqx/7gmMH4cmWgEMGaT85PIiiXfFYG7CnJpvIlg3N PPO0czfHk2Tx0/MTHjZbma7uvo8kPsNodYgIzGyzkB7D7keXzn3s6T1avBnzM7bw mCJCy7TG++pYxrplks1+c8od4wTfOgU71VJ4gtaVpt/Op3hpKWNHaEsuWokOJH+m 5Kq0cTXCnuOknsjP0Z+nYpo5AwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFEVfdOgM GW7eydweGW7N2RMf2/6hMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTdEMEFDQjYw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQATpAKwUIAUfzhfJccH RLsbO12aL6z+uwkY5D1SLqz68saPCu5uDWMq+4aRSyPujqaMxw5q00EiB9xVgvqz KxKSXbypfCfAeCAUeD9eYxr8eskMTLOXREpeMyL6+K0fMVGtCxwmlzexKyP1vgn2 i2bXMufdxkjk1BGl/T0c+Nw1k7ru+1SliSom+vU6a4D+EB6S6VdOS61PNkvSl4UE g0+2mvle09zrs5jOxfOl/DQnw/yXNtapSiIybqm6PGGsm2gLWi0JFLP42bVtHuoV 8NFoTOb+BEhgknBQazTvGy1/ZUhxvkwa0GVna24MaExx8cFSUCqxO0dUlu2t6Yky sWTL -----END CERTIFICATE-----Generated at Mon Mar 2 14:59:33 2026 by rpki-client