$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/C75AFE482A1B11F083453D57C4F9AE02.roa File: C75AFE482A1B11F083453D57C4F9AE02.roa (raw, json) Hash identifier: Dg7OIK2O0B1/J4uNMEC+ilWoKschjazE/eLZknlppW0= Subject key identifier: 49:E2:B6:E9:48:F9:15:F9:C4:5F:95:65:A3:D5:C4:DB:FD:34:9C:11 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 108B Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/C75AFE482A1B11F083453D57C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:32:05 +0000 ROA not before: Tue 06 May 2025 03:54:59 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 12008 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4235 (0x108b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: May 6 03:54:59 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a48625-a500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e5:4f:32:05:6a:7f:fd:b8:d3:fd:78:12:2f: 7c:b0:43:bd:c7:9b:6c:97:c9:00:9b:6c:4e:34:e5: a6:11:ce:aa:3b:be:d6:9d:e4:e9:49:05:bb:7d:9f: 03:5b:18:ad:d5:50:f2:14:6b:38:fd:ca:50:96:cf: a8:3c:76:41:47:d0:72:d2:16:e8:f7:d9:22:26:67: 95:d3:c1:30:cb:4e:a0:6e:3b:24:68:39:df:ac:48: 77:d6:34:b5:f1:d1:c0:98:bf:0e:df:78:3f:c6:09: 3a:77:e6:8d:db:1c:38:1d:ee:cc:0c:db:39:2a:81: a7:32:1b:70:00:a1:ff:2b:28:e8:74:ef:46:f8:75: 2a:76:d9:72:e6:f0:2a:f1:57:47:02:e2:6f:ba:97: c5:73:48:a9:78:b7:94:a9:99:43:e7:0d:3a:f8:6b: ae:6e:2c:52:9f:e1:14:ba:2a:b5:a1:de:3b:1e:f5: 8c:82:c0:7e:52:0d:40:d0:5a:dc:6f:db:5b:a5:88: cb:39:df:ad:76:dd:ab:71:7a:01:a9:38:7a:3c:37: 38:16:49:6f:d7:55:c7:ef:be:77:b8:3d:3c:b5:f4: 57:1d:97:3a:6d:f1:a0:f3:03:fa:9f:bf:fa:25:fa: af:2c:52:a9:7e:05:97:d4:e3:d5:21:89:ae:d8:51: dd:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:E2:B6:E9:48:F9:15:F9:C4:5F:95:65:A3:D5:C4:DB:FD:34:9C:11 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/C75AFE482A1B11F083453D57C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 8f:fc:81:14:1b:e8:65:e6:cc:16:3c:6e:bf:e5:9b:db:79:23: d7:60:89:11:e6:1e:f4:7c:51:03:20:5b:cd:06:84:8d:8c:1c: 6d:7a:58:b8:1a:52:6a:18:02:cd:ce:66:d4:e2:e3:00:89:35: 69:a5:fb:93:56:2d:ea:aa:73:e9:f5:1d:b8:0d:9a:27:05:b2: 22:45:f3:82:55:e8:c7:70:43:4b:f2:70:d1:99:63:fc:1c:e3: 84:0a:55:e5:84:93:0e:33:f9:91:bf:f8:2d:38:67:b4:a5:c8: 1b:67:de:1a:f7:19:38:d6:a7:70:e0:e3:f5:88:7f:3b:ea:56: 93:bc:16:90:ca:85:0c:63:20:24:eb:cb:eb:8f:c1:b1:f4:d8: 16:0b:85:6e:0c:09:5d:1f:fb:0c:e3:93:c6:1a:1b:95:f2:73: b1:83:02:38:8a:db:af:24:8b:53:50:6f:bd:32:7b:3e:cf:b6: a6:12:48:4d:52:74:c2:91:4b:8f:75:3f:3f:79:c4:24:4a:a9: 50:a1:07:bc:cd:4c:8a:e7:54:82:22:24:5d:20:30:11:ef:31: c3:97:a1:67:ad:6d:f2:47:9a:0b:c9:f5:9d:8a:a3:c6:2d:32: 0f:ec:da:3c:c7:b3:38:ef:7c:a5:40:58:f4:3a:59:4f:8d:79: 23:26:18:1f -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwNTA2MDM1NDU5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYyNS1hNTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uVPMgVqf/240/14Ei98sEO9x5tsl8kAm2xONOWmEc6qO77WneTpSQW7fZ8D Wxit1VDyFGs4/cpQls+oPHZBR9By0hbo99kiJmeV08Ewy06gbjskaDnfrEh31jS1 8dHAmL8O33g/xgk6d+aN2xw4He7MDNs5KoGnMhtwAKH/KyjodO9G+HUqdtly5vAq 8VdHAuJvupfFc0ipeLeUqZlD5w06+GuubixSn+EUuiq1od47HvWMgsB+Ug1A0Frc b9tbpYjLOd+tdt2rcXoBqTh6PDc4Fklv11XH7753uD08tfRXHZc6bfGg8wP6n7/6 JfqvLFKpfgWX1OPVIYmu2FHdIwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFEnitulI +RX5xF+VZaPVxNv9NJwRMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvQzc1QUZFNDgy QTFCMTFGMDgzNDUzRDU3QzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQCP/IEUG+hl5swWPG6/ 5ZvbeSPXYIkR5h70fFEDIFvNBoSNjBxteli4GlJqGALNzmbU4uMAiTVppfuTVi3q qnPp9R24DZonBbIiRfOCVejHcENL8nDRmWP8HOOEClXlhJMOM/mRv/gtOGe0pcgb Z94a9xk41qdw4OP1iH876laTvBaQyoUMYyAk68vrj8Gx9NgWC4VuDAldH/sM45PG GhuV8nOxgwI4ituvJItTUG+9Mns+z7amEkhNUnTCkUuPdT8/ecQkSqlQoQe8zUyK 51SCIiRdIDAR7zHDl6FnrW3yR5oLyfWdiqPGLTIP7No8x7M473ylQFj0OllPjXkj Jhgf -----END CERTIFICATE-----Generated at Mon Mar 2 09:40:39 2026 by rpki-client