$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/795DEE70073111EA993EC663C4F9AE02.roa File: 795DEE70073111EA993EC663C4F9AE02.roa (raw, json) Hash identifier: C3vRiJAoHVjzmc261815XhqOToZimQDuuldUnLWkizM= Subject key identifier: AB:F2:1B:51:34:C8:06:E2:E1:24:8E:4E:C2:75:69:C0:B8:A0:9E:A3 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 106E Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/795DEE70073111EA993EC663C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:39 +0000 ROA not before: Fri 28 Feb 2025 19:29:50 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397218 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4206 (0x106e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:29:50 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4860b-c001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c0:ba:0e:a3:10:40:89:f3:4d:21:6a:d8:37: 75:8c:56:41:76:89:57:f9:61:e7:1a:ce:28:01:4c: 95:79:e2:eb:2b:d6:b5:d9:2a:25:59:70:8a:9c:fb: 26:32:44:aa:d5:af:78:d5:0e:5d:72:2a:e4:35:5d: 62:6f:9e:e0:f2:f1:f1:48:70:2b:7d:6d:12:fa:37: a0:ab:e3:05:62:58:81:75:5d:34:bc:50:ee:d9:71: 24:c0:3c:1a:ff:63:2f:af:5a:ad:e5:27:96:39:08: de:2f:e7:a7:de:3b:bd:35:22:55:d0:2a:6b:9b:e5: a5:48:a2:3a:33:81:65:40:45:cf:46:bf:23:c9:ae: 8b:95:66:ae:f5:b0:fe:0f:62:94:04:33:cd:ba:38: b9:2e:d3:d6:73:bc:1c:07:5d:4e:8c:f4:61:ab:53: c9:38:1d:3a:c6:45:bd:f1:9f:68:e6:50:b2:82:ce: a2:76:97:ad:9a:a0:f9:3f:0a:06:d4:b6:b7:80:ff: 36:b4:38:de:ee:d7:0d:e7:96:4d:2a:7f:98:8f:8d: 7d:a1:e5:51:80:ef:0c:60:4a:fc:0c:46:2f:c8:c6: e0:54:f2:bc:55:6a:04:37:f9:72:f2:4c:ba:af:d7: 22:36:7d:d4:9e:00:30:06:e9:9a:26:9c:f4:1a:6f: 6f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:F2:1B:51:34:C8:06:E2:E1:24:8E:4E:C2:75:69:C0:B8:A0:9E:A3 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/795DEE70073111EA993EC663C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 30:dd:19:f6:05:28:13:2b:ab:92:43:12:c1:f1:d3:4d:6a:75: bc:18:30:6c:44:a0:d5:64:46:cd:28:cf:2a:ab:8e:05:01:32: 62:f3:7d:93:ab:ef:7e:44:cf:e0:02:79:a1:32:c6:66:05:16: 77:5a:57:b5:64:0e:35:76:19:e5:92:67:ca:f4:d3:09:5a:fa: 7e:28:ee:6c:b4:cd:1e:ec:69:bb:68:36:78:86:26:fc:57:29: bb:11:de:e9:e4:3a:ec:38:2c:08:1e:07:45:3b:91:b7:ec:5e: bc:50:78:ab:b0:0e:75:45:ff:8c:f0:0e:fb:62:e3:78:49:ff: 8d:60:d2:d5:39:1b:d8:3f:66:2d:4d:a6:31:b9:f6:a5:f0:ea: 7d:bd:c3:c2:54:ed:e0:6c:e5:bf:6f:33:e5:32:bc:7e:d4:14: 46:75:a4:79:24:5a:3c:ed:8a:d0:d1:ec:f0:70:dd:21:bf:e6: 97:02:cd:fb:e5:88:fb:35:e7:ae:33:ae:8b:df:4b:2e:74:13: 84:da:f1:00:bd:1f:a4:ef:f6:2d:2a:31:5d:71:c0:7e:4f:63: cd:84:ad:89:42:8d:6f:91:ec:5a:38:59:08:14:16:e1:a9:a7: f2:06:dc:34:1b:c6:5a:86:97:34:f8:5f:54:36:5d:0e:90:0f: e1:fa:ab:6e -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkyOTUwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYwYi1jMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMC6DqMQQInzTSFq2Dd1jFZBdolX+WHnGs4oAUyVeeLrK9a12SolWXCKnPsm MkSq1a941Q5dcirkNV1ib57g8vHxSHArfW0S+jegq+MFYliBdV00vFDu2XEkwDwa /2Mvr1qt5SeWOQjeL+en3ju9NSJV0Cprm+WlSKI6M4FlQEXPRr8jya6LlWau9bD+ D2KUBDPNuji5LtPWc7wcB11OjPRhq1PJOB06xkW98Z9o5lCygs6idpetmqD5PwoG 1La3gP82tDje7tcN55ZNKn+Yj419oeVRgO8MYEr8DEYvyMbgVPK8VWoEN/ly8ky6 r9ciNn3UngAwBumaJpz0Gm9vpQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFKvyG1E0 yAbi4SSOTsJ1acC4oJ6jMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNzk1REVFNzAw NzMxMTFFQTk5M0VDNjYzQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQAw3Rn2BSgTK6uSQxLB 8dNNanW8GDBsRKDVZEbNKM8qq44FATJi832Tq+9+RM/gAnmhMsZmBRZ3Wle1ZA41 dhnlkmfK9NMJWvp+KO5stM0e7Gm7aDZ4hib8Vym7Ed7p5DrsOCwIHgdFO5G37F68 UHirsA51Rf+M8A77YuN4Sf+NYNLVORvYP2YtTaYxufal8Op9vcPCVO3gbOW/bzPl Mrx+1BRGdaR5JFo87YrQ0ezwcN0hv+aXAs375Yj7NeeuM66L30sudBOE2vEAvR+k 7/YtKjFdccB+T2PNhK2JQo1vkexaOFkIFBbhqafyBtw0G8Zahpc0+F9UNl0OkA/h +qtu -----END CERTIFICATE-----Generated at Mon Mar 2 14:59:16 2026 by rpki-client