$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7AA2CD46073111EA993EC663C4F9AE02.roa File: 7AA2CD46073111EA993EC663C4F9AE02.roa (raw, json) Hash identifier: tCTs5ncqmUJ3VhPQ2BCL2n6jkjNzWwibi+jAtFI06RI= Subject key identifier: 45:B2:95:3A:C0:8D:B1:AE:38:5C:6E:8C:A4:9D:55:B0:A5:07:CF:00 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 107C Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7AA2CD46073111EA993EC663C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:52 +0000 ROA not before: Fri 28 Feb 2025 19:30:09 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397232 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4220 (0x107c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:09 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a48617-5ffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:1b:67:3d:ef:4f:59:99:c3:ee:76:df:47:b8: 74:02:60:15:9b:ce:be:76:da:60:6e:98:54:d3:a1: 9b:b2:31:6a:25:e0:fd:74:20:44:35:e2:8a:09:40: 07:fe:85:50:28:b7:fb:23:56:72:18:e6:9c:a2:94: 02:b7:e4:56:7c:be:71:90:d4:85:23:78:f9:9c:53: 0f:f3:54:11:9c:23:64:0f:a8:f7:c6:53:13:ef:52: 3c:bc:68:5e:6f:7e:13:fa:4d:3a:3e:d1:40:3e:85: 86:e7:78:5c:7d:55:8f:fe:09:bb:52:32:b8:d2:79: 43:e8:82:6e:1b:17:03:c7:0e:22:8d:e4:44:52:ed: 34:69:33:d3:e1:25:72:51:f0:14:a0:50:7d:fb:e1: b6:e1:fd:4b:7c:ea:4b:33:9d:a1:4c:b6:df:0e:b1: 60:b5:4c:20:87:45:37:85:c7:9e:7f:f6:a8:3a:4b: 95:04:80:32:ca:d5:6a:4c:3a:fe:cc:0e:bf:2c:8b: 8f:99:81:6c:d7:cc:01:16:56:99:18:8e:69:1d:41: f7:fa:b9:b0:99:10:c6:be:ac:33:e1:0a:b6:5f:30: b5:c3:81:80:69:b4:28:16:e1:20:6c:0c:a1:11:e9: a8:b1:d6:16:9c:11:6c:45:dc:63:7b:1e:a4:01:7f: a9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B2:95:3A:C0:8D:B1:AE:38:5C:6E:8C:A4:9D:55:B0:A5:07:CF:00 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7AA2CD46073111EA993EC663C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 61:a3:d6:10:3e:ef:f3:4a:8d:6f:06:f6:f5:e6:2a:64:4e:a9: c0:24:60:23:ad:e9:59:0a:84:71:e3:21:41:30:86:bf:93:df: b3:80:de:2d:08:98:ad:63:cc:46:3a:4c:0a:7b:7c:bd:84:fd: e9:c1:cc:d9:d1:36:4c:6f:9c:59:29:cc:d3:d0:3c:db:45:e3: 55:9b:35:b8:90:21:85:23:69:b6:fa:25:f4:3a:ec:a6:cb:ef: 4c:a3:94:37:96:f1:03:39:f8:0c:f5:e4:fe:76:c8:08:32:14: e9:f3:61:b2:a5:08:88:9b:38:56:c5:77:c4:b5:95:1a:2c:a9: ab:e0:0f:14:1d:af:8a:40:64:0a:7d:6e:39:a6:6f:1b:5a:36: b5:a3:1a:06:33:f9:f3:01:78:0d:0d:00:0c:8d:1d:b3:95:03: 1c:fe:1e:9e:c3:28:f7:d8:07:d4:28:ce:98:92:cd:ad:20:6f: 8e:b6:3b:a3:31:28:5a:7a:25:67:d0:ac:33:89:e8:33:77:65: 00:7d:88:82:27:e4:fb:3a:dd:4a:76:ec:50:65:ae:53:0f:56: 5d:ab:be:8e:73:86:b0:68:63:cf:d3:53:4a:c4:05:a5:c7:49: fd:37:5f:8e:f0:9f:87:58:42:44:d7:b3:c8:6d:ac:df:d0:96: 65:7d:5b:52 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDA5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYxNy01ZmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhhtnPe9PWZnD7nbfR7h0AmAVm86+dtpgbphU06GbsjFqJeD9dCBENeKKCUAH /oVQKLf7I1ZyGOacopQCt+RWfL5xkNSFI3j5nFMP81QRnCNkD6j3xlMT71I8vGhe b34T+k06PtFAPoWG53hcfVWP/gm7UjK40nlD6IJuGxcDxw4ijeREUu00aTPT4SVy UfAUoFB9++G24f1LfOpLM52hTLbfDrFgtUwgh0U3hceef/aoOkuVBIAyytVqTDr+ zA6/LIuPmYFs18wBFlaZGI5pHUH3+rmwmRDGvqwz4Qq2XzC1w4GAabQoFuEgbAyh EemosdYWnBFsRdxjex6kAX+pYwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFEWylTrA jbGuOFxujKSdVbClB88AMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvN0FBMkNENDYw NzMxMTFFQTk5M0VDNjYzQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBho9YQPu/zSo1vBvb1 5ipkTqnAJGAjrelZCoRx4yFBMIa/k9+zgN4tCJitY8xGOkwKe3y9hP3pwczZ0TZM b5xZKczT0DzbReNVmzW4kCGFI2m2+iX0Ouymy+9Mo5Q3lvEDOfgM9eT+dsgIMhTp 82GypQiImzhWxXfEtZUaLKmr4A8UHa+KQGQKfW45pm8bWja1oxoGM/nzAXgNDQAM jR2zlQMc/h6ewyj32AfUKM6Yks2tIG+OtjujMShaeiVn0Kwziegzd2UAfYiCJ+T7 Ot1KduxQZa5TD1Zdq76Oc4awaGPP01NKxAWlx0n9N1+O8J+HWEJE17PIbazf0JZl fVtS -----END CERTIFICATE-----Generated at Mon Mar 2 16:47:03 2026 by rpki-client