$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/79E6617E073111EA993EC663C4F9AE02.roa File: 79E6617E073111EA993EC663C4F9AE02.roa (raw, json) Hash identifier: 6Vw+2a2sANnbra8NTrgQsRyzVW1ZYyYhDJataWqKbb4= Subject key identifier: C0:D3:B9:D0:41:1B:97:77:9A:8D:76:00:40:1A:50:DC:42:6F:E6:52 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1074 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/79E6617E073111EA993EC663C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:44 +0000 ROA not before: Fri 28 Feb 2025 19:29:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397224 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4212 (0x1074) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:29:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a48610-fef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c2:22:c2:68:25:9a:98:c3:c5:6d:a9:eb:47: cb:4a:77:63:da:e3:b7:5a:c9:87:09:66:73:e4:4d: 6d:99:c6:c1:25:b1:fb:c5:f9:9d:e1:31:9e:f8:09: d5:76:0f:74:88:98:a9:14:a0:3b:93:72:93:ab:67: d5:29:82:64:67:aa:54:75:2b:7f:61:57:c3:26:28: ec:46:d0:dd:6b:09:32:7b:70:b3:9f:a4:05:6e:44: de:de:2a:2b:b2:a2:39:fb:e8:22:84:2b:ff:c1:1e: cb:15:f7:9b:fa:6f:ca:d6:6c:63:eb:8d:67:3e:82: 9b:17:af:42:12:b3:2e:7c:8a:af:8b:ec:80:49:53: a0:24:4c:26:73:88:1e:43:15:27:fd:28:07:e5:fb: 60:45:a3:35:56:e7:07:81:af:7d:01:56:b5:1d:b4: 1b:c2:ef:a9:33:02:5a:e8:fb:d5:19:29:bb:36:09: 72:8f:6e:d1:e9:a1:22:b1:a2:54:2a:e1:1e:da:6d: bb:21:24:23:74:f9:0a:87:70:e7:46:33:77:bb:ba: e5:69:66:28:ea:32:25:da:08:91:c2:af:71:17:4f: 6d:f0:b8:0a:f6:77:f3:b9:86:c5:dc:c8:28:e1:b9: d2:b0:bb:47:46:01:f1:61:c4:4b:99:b8:a1:80:c4: 6b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:D3:B9:D0:41:1B:97:77:9A:8D:76:00:40:1A:50:DC:42:6F:E6:52 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/79E6617E073111EA993EC663C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 3a:f7:7f:f6:3a:7f:be:51:7f:fa:a7:4a:f7:4a:49:2d:21:48: c6:f0:46:f9:6a:7b:53:db:b8:29:ce:56:26:a6:80:b5:51:54: dd:c9:d0:bd:63:6d:5f:f9:5d:ea:44:55:61:96:66:5f:c8:5b: 42:df:53:b3:4b:f1:c3:2e:68:9e:81:9d:f4:30:ac:a0:48:25: d9:90:63:b5:e3:0b:ae:41:7f:9a:57:f2:1d:46:6d:7f:87:d0: 6b:1d:57:e3:e9:cc:ee:fd:92:99:4a:f5:0d:44:a9:0f:2f:79: 23:62:4b:43:43:fa:a1:03:2c:21:36:87:ee:66:f7:0d:8e:c4: 1f:01:bb:03:fa:e0:5e:87:e2:c2:9f:70:4f:da:2b:3f:94:ca: 88:95:39:9f:12:5f:e4:d6:4a:a5:01:b1:f6:67:80:77:81:9d: fc:e5:e5:86:81:37:14:3d:0c:d0:db:06:07:a0:11:87:5f:bf: df:41:5a:63:64:3d:58:52:25:08:07:57:3b:ff:b3:1f:25:49: 01:41:c8:f5:6b:c2:06:2f:61:4c:73:2c:41:2a:dc:54:d0:1f: c8:1a:1e:2a:b4:3e:a2:42:dc:5f:a1:c9:af:83:95:00:15:66: c4:c1:24:39:4e:70:d7:14:c7:65:dd:d0:d9:ce:85:8b:5c:74: b9:37:91:59 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkyOTU2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYxMC1mZWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMIiwmglmpjDxW2p60fLSndj2uO3WsmHCWZz5E1tmcbBJbH7xfmd4TGe+AnV dg90iJipFKA7k3KTq2fVKYJkZ6pUdSt/YVfDJijsRtDdawkye3Czn6QFbkTe3ior sqI5++gihCv/wR7LFfeb+m/K1mxj641nPoKbF69CErMufIqvi+yASVOgJEwmc4ge QxUn/SgH5ftgRaM1VucHga99AVa1HbQbwu+pMwJa6PvVGSm7Nglyj27R6aEisaJU KuEe2m27ISQjdPkKh3DnRjN3u7rlaWYo6jIl2giRwq9xF09t8LgK9nfzuYbF3Mgo 4bnSsLtHRgHxYcRLmbihgMRrrwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFMDTudBB G5d3mo12AEAaUNxCb+ZSMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNzlFNjYxN0Uw NzMxMTFFQTk5M0VDNjYzQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQA693/2On++UX/6p0r3 SkktIUjG8Eb5antT27gpzlYmpoC1UVTdydC9Y21f+V3qRFVhlmZfyFtC31OzS/HD LmiegZ30MKygSCXZkGO14wuuQX+aV/IdRm1/h9BrHVfj6czu/ZKZSvUNRKkPL3kj YktDQ/qhAywhNofuZvcNjsQfAbsD+uBeh+LCn3BP2is/lMqIlTmfEl/k1kqlAbH2 Z4B3gZ385eWGgTcUPQzQ2wYHoBGHX7/fQVpjZD1YUiUIB1c7/7MfJUkBQcj1a8IG L2FMcyxBKtxU0B/IGh4qtD6iQtxfocmvg5UAFWbEwSQ5TnDXFMdl3dDZzoWLXHS5 N5FZ -----END CERTIFICATE-----Generated at Mon Mar 2 17:06:27 2026 by rpki-client