$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/C75AFE482A1B11F083453D57C4F9AE02.roa File: C75AFE482A1B11F083453D57C4F9AE02.roa (raw, json) Hash identifier: 5tvM16xxK8NcUxRO3nzMwZnKZ2ZPHXCMMDrpMMj/vOw= Subject key identifier: 74:0A:31:5C:F0:BF:BA:43:8F:4D:4C:84:B2:F1:B0:02:22:F8:F9:2B Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0FC9 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/C75AFE482A1B11F083453D57C4F9AE02.roa Signing time: Tue 06 May 2025 03:54:59 +0000 ROA not before: Tue 06 May 2025 03:54:59 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 12008 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4041 (0xfc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: May 6 03:54:59 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68198812-c601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d2:ee:e1:bf:eb:52:43:99:ba:f1:df:ce:0e: 4b:df:02:77:b1:3c:b0:34:36:d5:48:78:02:a7:0f: dd:4f:1e:fc:2c:79:b4:04:84:90:86:fc:b9:5f:ea: 62:5e:05:77:4c:99:38:8d:43:4d:2d:b1:ea:6a:3e: 9b:5e:9e:8d:2c:70:73:41:0e:91:d9:0a:bf:73:80: 5d:f4:3c:88:d2:36:56:eb:34:17:1d:c4:0b:eb:44: 22:a5:e9:89:91:67:27:1f:71:6b:a4:ba:4c:1a:6e: 49:13:1f:d6:49:22:39:1b:97:8d:9e:68:46:39:61: d8:61:8b:ae:e1:4f:af:a9:5d:f5:a6:a8:03:41:20: e8:21:b5:bb:0f:e1:5e:da:b3:f2:2c:77:77:7d:d6: 39:65:de:9f:0f:b9:5b:f1:4a:a4:e2:e7:21:c2:04: c9:09:19:bb:cf:84:57:60:12:11:75:e5:c9:95:91: 60:2d:da:47:23:59:54:84:94:aa:60:73:4f:0e:d8: 6e:b2:fc:0e:1b:47:7d:94:59:ec:0f:d2:4f:9b:ad: 20:c6:a7:3c:cb:8a:ee:19:82:79:92:c8:0b:2a:49: 27:e3:5a:a3:52:12:a8:69:8f:1a:80:65:88:4a:ff: ab:6a:ed:8f:76:74:d2:0e:c8:39:84:5a:31:df:1b: 01:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:0A:31:5C:F0:BF:BA:43:8F:4D:4C:84:B2:F1:B0:02:22:F8:F9:2B X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/C75AFE482A1B11F083453D57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 78:ab:83:df:a3:d0:d3:67:21:1b:07:b2:a7:ca:5b:4a:75:27: e4:68:81:19:65:33:5f:45:e2:4f:a0:fb:6b:b8:1e:3d:8e:2f: 4d:41:51:69:ba:0d:64:80:49:74:a2:52:08:3c:a7:04:b0:5c: 57:28:ea:a9:f2:76:46:40:e8:95:7a:89:e5:df:11:81:06:20: f8:e5:37:f7:49:b7:c5:23:af:3d:de:f2:58:fa:b5:5f:ec:64: 98:ab:cf:00:68:df:85:c8:9b:2a:5c:fb:ee:5f:9b:46:fe:32: 80:3a:5d:8f:12:af:25:62:8d:66:51:b8:98:47:51:09:73:f2: 03:8e:ea:fa:fd:77:45:50:dc:dd:18:55:ff:5f:e7:21:2c:0f: 66:b1:ba:c3:86:cf:6f:98:cf:1f:3d:b2:65:ff:c7:6b:71:ee: 71:dc:48:25:b7:c4:fc:66:b3:fd:c6:11:94:f0:84:84:8a:4c: 14:f8:24:ff:9a:78:ef:36:ca:d2:6c:bd:23:7b:1e:54:ef:d7: 36:2b:ba:9f:ae:be:0d:c9:0a:67:fd:1a:90:e7:40:17:d4:c3: 14:57:cd:72:fb:e4:f4:c9:c1:de:87:d6:bb:d4:ba:75:ee:60: 4e:5e:6e:be:3f:f3:9c:20:4e:d8:fe:28:1f:0a:6f:f1:b6:30: cf:87:31:d5 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICD8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwNTA2MDM1NDU5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE5ODgxMi1jNjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NLu4b/rUkOZuvHfzg5L3wJ3sTywNDbVSHgCpw/dTx78LHm0BISQhvy5X+pi XgV3TJk4jUNNLbHqaj6bXp6NLHBzQQ6R2Qq/c4Bd9DyI0jZW6zQXHcQL60QipemJ kWcnH3FrpLpMGm5JEx/WSSI5G5eNnmhGOWHYYYuu4U+vqV31pqgDQSDoIbW7D+Fe 2rPyLHd3fdY5Zd6fD7lb8Uqk4uchwgTJCRm7z4RXYBIRdeXJlZFgLdpHI1lUhJSq YHNPDthusvwOG0d9lFnsD9JPm60gxqc8y4ruGYJ5ksgLKkkn41qjUhKoaY8agGWI Sv+rau2PdnTSDsg5hFox3xsBewIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFHQKMVzw v7pDj01MhLLxsAIi+PkrMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvQzc1QUZFNDgy QTFCMTFGMDgzNDUzRDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAHirg9+j0NNn IRsHsqfKW0p1J+RogRllM19F4k+g+2u4Hj2OL01BUWm6DWSASXSiUgg8pwSwXFco 6qnydkZA6JV6ieXfEYEGIPjlN/dJt8Ujrz3e8lj6tV/sZJirzwBo34XImypc++5f m0b+MoA6XY8SryVijWZRuJhHUQlz8gOO6vr9d0VQ3N0YVf9f5yEsD2axusOGz2+Y zx89smX/x2tx7nHcSCW3xPxms/3GEZTwhISKTBT4JP+aeO82ytJsvSN7HlTv1zYr up+uvg3JCmf9GpDnQBfUwxRXzXL75PTJwd6H1rvUunXuYE5ebr4/85wgTtj+KB8K b/G2MM+HMdU= -----END CERTIFICATE-----Generated at Wed Nov 5 05:11:19 2025 by rpki-client