$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/92C1DA72F96911EA96156C10C4F9AE02.roa File: 92C1DA72F96911EA96156C10C4F9AE02.roa (raw, json) Hash identifier: XcEC4UamhbeEfBfXjP2DV9c14PXzHZR3UbVLMLv2Wa0= Subject key identifier: 1E:4B:38:7F:21:4A:46:18:FD:52:0F:FB:57:98:4D:00:CD:B5:70:3A Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1087 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/92C1DA72F96911EA96156C10C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:32:01 +0000 ROA not before: Fri 28 Feb 2025 19:30:22 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397243 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4231 (0x1087) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:22 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a48621-ca2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ae:3d:8a:be:75:85:dd:1b:0c:c0:31:a4:53: f4:05:51:68:e6:8a:e9:d2:04:11:15:4f:3e:c2:b3: f3:e1:99:f2:0d:b4:2b:44:52:55:55:34:18:07:1c: 4b:cf:90:d7:08:66:b1:2c:51:e3:56:f7:32:39:5f: 06:f7:4c:71:17:fb:29:6b:4f:9d:a0:a0:5a:8a:d9: a0:2c:ba:bc:11:53:b5:4e:7e:ee:e3:4d:43:25:38: 64:5e:8d:bd:4d:f1:c7:1d:61:20:55:ea:d7:7a:df: 4f:a6:22:e7:57:74:17:44:a6:e4:89:4d:06:42:2b: 5b:f4:ca:df:ab:27:bd:46:fb:1b:71:e2:83:00:7d: a4:a2:5d:f4:5e:dc:22:92:0d:71:15:83:76:f5:1a: 65:61:e1:73:d8:f2:aa:e3:c2:76:06:a0:f5:b1:00: 16:67:f7:a1:28:b3:b6:ac:0c:fd:59:4f:4a:59:33: a3:9d:9a:78:bf:f6:4a:af:ac:03:5c:22:99:b9:7e: 8e:f7:2a:1f:ba:28:8c:5e:6b:69:76:cf:7c:55:fc: cd:8a:7c:51:e9:6b:48:68:67:01:93:b3:a4:d3:7b: a7:02:b4:1a:38:27:e4:01:05:6f:61:33:ef:72:3c: 5d:45:2c:4c:54:14:70:9a:b3:dd:1a:03:11:0b:d0: f9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:4B:38:7F:21:4A:46:18:FD:52:0F:FB:57:98:4D:00:CD:B5:70:3A X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/92C1DA72F96911EA96156C10C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 6c:5a:b9:4e:eb:86:29:64:cd:ef:77:66:fd:34:30:17:d8:a6: 6b:bc:95:ca:f6:ef:0f:b2:e7:3d:16:73:cf:23:a9:5d:09:41: 8b:cf:0a:61:2f:13:b6:9d:39:e3:ce:22:33:d6:17:94:02:a2: e9:8d:41:5d:e6:c3:a7:c4:49:67:8b:3e:32:66:b3:2e:03:5e: 14:40:3a:70:ed:3d:8f:c3:de:95:48:d4:f0:a4:d4:44:57:34: 5e:d5:6c:f5:e8:d3:66:0d:ff:f2:cc:d5:74:7e:d4:6d:39:b9: 2c:70:6b:39:87:2f:89:89:a1:06:a4:ea:cf:81:3c:73:97:b4: 8e:a7:51:8c:ed:9b:be:be:14:c7:b2:1b:d8:16:b3:a4:27:58: cc:97:b4:d9:45:92:6e:4c:28:93:6e:7d:fb:a5:6b:57:2d:39: 7b:f6:90:bb:7d:c3:a0:0b:eb:53:d2:75:6e:6a:1a:c9:4f:9b: 51:09:54:81:b1:87:66:ea:10:46:8d:0a:b5:94:f7:71:37:1a: 7a:f1:7c:77:75:eb:98:90:fd:ca:d9:2c:ec:0a:fd:69:ef:1c: 26:56:d5:67:12:33:79:3a:8d:c9:ad:89:fa:29:21:19:ef:46: f6:a2:2b:dc:2a:54:24:73:48:e4:b4:28:a7:14:05:f3:dd:e4: fc:f2:cc:36 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDIyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYyMS1jYTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwq49ir51hd0bDMAxpFP0BVFo5orp0gQRFU8+wrPz4ZnyDbQrRFJVVTQYBxxL z5DXCGaxLFHjVvcyOV8G90xxF/spa0+doKBaitmgLLq8EVO1Tn7u401DJThkXo29 TfHHHWEgVerXet9PpiLnV3QXRKbkiU0GQitb9Mrfqye9RvsbceKDAH2kol30Xtwi kg1xFYN29RplYeFz2PKq48J2BqD1sQAWZ/ehKLO2rAz9WU9KWTOjnZp4v/ZKr6wD XCKZuX6O9yofuiiMXmtpds98VfzNinxR6WtIaGcBk7Ok03unArQaOCfkAQVvYTPv cjxdRSxMVBRwmrPdGgMRC9D53QIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFB5LOH8h SkYY/VIP+1eYTQDNtXA6MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvOTJDMURBNzJG OTY5MTFFQTk2MTU2QzEwQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBsWrlO64YpZM3vd2b9 NDAX2KZrvJXK9u8Psuc9FnPPI6ldCUGLzwphLxO2nTnjziIz1heUAqLpjUFd5sOn xElniz4yZrMuA14UQDpw7T2Pw96VSNTwpNREVzRe1Wz16NNmDf/yzNV0ftRtObks cGs5hy+JiaEGpOrPgTxzl7SOp1GM7Zu+vhTHshvYFrOkJ1jMl7TZRZJuTCiTbn37 pWtXLTl79pC7fcOgC+tT0nVuahrJT5tRCVSBsYdm6hBGjQq1lPdxNxp68Xx3deuY kP3K2SzsCv1p7xwmVtVnEjN5Oo3JrYn6KSEZ70b2oivcKlQkc0jktCinFAXz3eT8 8sw2 -----END CERTIFICATE-----Generated at Mon Mar 2 13:19:27 2026 by rpki-client