$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/A874B08E072E11EA8A64DC59C4F9AE02.roa File: A874B08E072E11EA8A64DC59C4F9AE02.roa (raw, json) Hash identifier: t8rYm6FWtongWV5WJcVbP9HX3QgrvXOGZehWo4GIqYc= Subject key identifier: F6:95:87:08:41:BE:FB:28:6A:91:5C:BC:16:7B:E8:2E:3E:77:2E:D4 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 106A Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/A874B08E072E11EA8A64DC59C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:35 +0000 ROA not before: Fri 28 Feb 2025 19:29:45 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397213 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4202 (0x106a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:29:45 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a48607-03ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bb:2f:8b:e5:7e:a6:26:aa:8e:80:13:35:5c: 3e:b0:1f:1c:01:c5:15:f1:18:4d:ea:fb:da:ea:37: fb:dd:28:b7:9c:93:b0:0b:9a:cb:f6:ec:19:3c:aa: e1:24:bd:9f:f5:a7:18:82:c4:2a:23:6f:73:63:5a: 55:91:93:18:05:59:9c:e2:6c:30:25:38:1f:05:c2: 7e:d8:62:87:c1:7a:fe:c9:0b:4c:37:22:eb:1f:cf: 5c:22:b8:ab:04:34:39:10:46:37:11:a5:54:8c:58: 62:42:cc:bd:d3:af:4f:63:a7:25:c5:a1:ff:34:e4: f9:ea:f9:80:6e:1a:19:c2:89:df:1b:29:3d:3b:35: 59:c9:c2:47:c4:74:b9:02:1d:98:dc:f0:31:07:53: d5:c8:68:d6:09:85:ad:67:e4:75:0f:33:23:30:e8: 81:e8:af:ff:78:23:0f:85:6a:45:18:bb:45:d9:15: 9b:26:45:3f:91:46:e9:e5:dc:58:1c:8f:02:d3:50: cd:4e:ff:b2:71:65:db:39:66:98:78:cf:88:c8:20: 3b:a7:15:8c:2c:7d:e8:d0:c5:6a:93:30:d1:e9:f3: a0:b1:64:d0:bb:e8:f4:af:af:47:fa:cf:40:21:e4: 31:40:72:0f:c5:5b:97:bd:d9:00:98:da:08:92:98: 63:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:95:87:08:41:BE:FB:28:6A:91:5C:BC:16:7B:E8:2E:3E:77:2E:D4 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/A874B08E072E11EA8A64DC59C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 1e:68:2c:26:4b:1f:c0:a1:19:79:1a:4c:16:eb:d1:07:46:ab: 76:2b:f8:fa:7a:84:d0:50:7f:ed:46:d4:72:9d:e8:b8:65:b2: ec:94:09:14:8b:b8:1a:a8:47:43:c9:e0:51:0c:30:7c:fe:53: 6a:35:35:0d:f3:6f:da:ba:15:76:ae:72:b8:5e:82:0b:fb:95: c6:a0:f1:8c:a1:19:1f:59:67:0e:a1:50:a3:d1:eb:08:28:9a: 10:59:e8:24:4c:77:af:6d:96:03:3a:64:c8:6e:9a:a6:a9:ed: 12:8c:d5:da:63:23:28:f9:62:f5:3c:f5:27:5a:8f:36:25:17: e4:ec:97:35:35:db:7a:af:9d:a0:26:6e:b2:86:fd:66:1b:40: 53:b8:4f:4b:40:c2:10:b0:db:da:55:56:95:11:12:a8:9a:5b: ef:3c:51:f2:57:8e:44:7b:db:8c:f0:7f:8c:43:ed:d8:6a:92: dc:30:f7:be:7a:51:38:65:20:c0:24:ff:25:67:d7:f7:1f:96: e2:f1:35:53:66:d8:39:94:28:e8:e3:03:56:3d:b9:0b:9b:23: d2:9a:b5:82:00:4a:4b:3c:ac:4e:98:4f:8c:62:85:db:4e:ae: 2c:39:c9:c1:e2:3b:8c:54:b7:06:f6:b3:fc:b8:cd:35:a8:d7: 03:a1:dc:1f -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkyOTQ1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYwNy0wM2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLsvi+V+piaqjoATNVw+sB8cAcUV8RhN6vva6jf73Si3nJOwC5rL9uwZPKrh JL2f9acYgsQqI29zY1pVkZMYBVmc4mwwJTgfBcJ+2GKHwXr+yQtMNyLrH89cIrir BDQ5EEY3EaVUjFhiQsy9069PY6clxaH/NOT56vmAbhoZwonfGyk9OzVZycJHxHS5 Ah2Y3PAxB1PVyGjWCYWtZ+R1DzMjMOiB6K//eCMPhWpFGLtF2RWbJkU/kUbp5dxY HI8C01DNTv+ycWXbOWaYeM+IyCA7pxWMLH3o0MVqkzDR6fOgsWTQu+j0r69H+s9A IeQxQHIPxVuXvdkAmNoIkphjOQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFPaVhwhB vvsoapFcvBZ76C4+dy7UMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvQTg3NEIwOEUw NzJFMTFFQThBNjREQzU5QzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQAeaCwmSx/AoRl5GkwW 69EHRqt2K/j6eoTQUH/tRtRynei4ZbLslAkUi7gaqEdDyeBRDDB8/lNqNTUN82/a uhV2rnK4XoIL+5XGoPGMoRkfWWcOoVCj0esIKJoQWegkTHevbZYDOmTIbpqmqe0S jNXaYyMo+WL1PPUnWo82JRfk7Jc1Ndt6r52gJm6yhv1mG0BTuE9LQMIQsNvaVVaV ERKomlvvPFHyV45Ee9uM8H+MQ+3YapLcMPe+elE4ZSDAJP8lZ9f3H5bi8TVTZtg5 lCjo4wNWPbkLmyPSmrWCAEpLPKxOmE+MYoXbTq4sOcnB4juMVLcG9rP8uM01qNcD odwf -----END CERTIFICATE-----Generated at Mon Mar 2 11:38:39 2026 by rpki-client