$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F10FEA5C099A11EAB5891D5BC4F9AE02.roa File: F10FEA5C099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: s0CQ/C9rxkqTPFvJ1gTMruBUdh0IdPadP/+5M5sDdGM= Subject key identifier: C2:C2:BE:7E:82:7E:1D:45:DE:31:35:3E:39:3B:07:98:A8:05:E3:3F Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1070 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F10FEA5C099A11EAB5891D5BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:41 +0000 ROA not before: Fri 28 Feb 2025 19:29:52 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397220 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4208 (0x1070) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:29:52 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4860d-786c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e8:67:ff:90:c9:a3:b1:24:fc:98:71:42:63: 41:5a:d9:6f:96:3a:6b:8d:83:0f:92:62:94:31:9a: f2:40:36:dc:b0:29:c3:09:e6:f7:df:68:50:b8:19: 06:98:32:b1:f3:43:d1:25:25:e4:a1:8c:b3:f3:14: 99:ac:1c:ac:66:04:ad:ac:01:f3:85:54:69:87:2a: 56:98:c7:76:5e:bc:cc:1e:09:17:9c:0a:ad:67:79: 64:48:a0:68:40:c7:0c:b1:aa:68:47:12:0a:25:ab: 5e:65:be:2d:f6:e1:bb:a9:63:11:98:96:d8:3b:4f: 1d:40:28:a1:37:15:02:5f:f3:e2:65:ca:04:6c:b4: e9:2d:ee:ee:20:eb:ff:42:ca:6d:00:c9:e1:f0:9a: e2:98:ef:bb:3b:43:0c:f9:07:6b:36:5e:ec:8d:6d: 82:4a:2a:bd:12:fa:fb:bb:db:72:c5:63:84:43:9b: 8a:5e:e9:23:0f:1d:ad:a3:8c:a6:9f:6c:9f:cf:9b: 24:69:7e:e5:dc:44:ea:2d:51:ee:84:ef:cf:d9:37: d1:e9:67:a6:1f:31:89:04:f9:c8:b7:43:81:ad:ac: a2:00:6a:af:e2:14:8d:b5:58:8d:3c:a8:30:79:0d: c1:05:f0:b4:67:fa:dd:aa:71:d8:44:b0:68:16:44: a0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:C2:BE:7E:82:7E:1D:45:DE:31:35:3E:39:3B:07:98:A8:05:E3:3F X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F10FEA5C099A11EAB5891D5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 74:0d:1d:9e:ad:e9:38:97:e7:82:d0:cf:f3:5e:28:a1:a1:24: c6:36:5c:3e:c9:35:26:b9:77:35:59:64:eb:e6:56:0f:54:74: 8a:5d:38:df:68:98:a0:d3:b5:bd:70:6b:0a:af:ef:e4:58:56: a3:1c:45:76:8c:0e:b2:36:c5:ee:f8:b6:b3:84:26:a9:3c:c2: d2:c7:e9:7e:65:10:56:a9:ab:5e:63:16:9b:6e:3d:5b:5e:f8: 2c:26:fd:dc:c1:3d:3b:15:85:74:d3:b0:9b:66:75:8f:01:80: a0:f6:4b:1e:33:65:3f:fc:4b:91:b9:4d:3f:04:73:bc:12:59: 7d:6a:7f:3f:7f:e0:37:81:9c:22:34:e5:e8:29:26:10:09:26: e6:47:a6:06:84:6d:68:10:6c:0d:04:a5:fe:71:11:ed:55:58: bb:99:82:12:ea:9b:c1:e6:51:61:7f:d5:e9:50:9e:ee:8e:d5: e1:78:ca:72:36:76:ad:ed:bc:b0:a6:8b:89:83:d1:44:80:19: e0:58:63:75:18:77:89:f6:24:ea:7a:07:a2:e3:25:7e:75:e4: cf:69:74:b6:04:69:83:9c:2a:41:a3:88:5a:b7:48:8a:97:30: 8d:93:f5:92:8e:1f:9d:8c:d3:a0:93:e5:c7:92:3d:dd:fb:9b: 5b:0f:c5:3e -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkyOTUyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYwZC03ODZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxehn/5DJo7Ek/JhxQmNBWtlvljprjYMPkmKUMZryQDbcsCnDCeb332hQuBkG mDKx80PRJSXkoYyz8xSZrBysZgStrAHzhVRphypWmMd2XrzMHgkXnAqtZ3lkSKBo QMcMsapoRxIKJateZb4t9uG7qWMRmJbYO08dQCihNxUCX/PiZcoEbLTpLe7uIOv/ QsptAMnh8JrimO+7O0MM+QdrNl7sjW2CSiq9Evr7u9tyxWOEQ5uKXukjDx2to4ym n2yfz5skaX7l3ETqLVHuhO/P2TfR6WemHzGJBPnIt0OBrayiAGqv4hSNtViNPKgw eQ3BBfC0Z/rdqnHYRLBoFkSgvQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFMLCvn6C fh1F3jE1Pjk7B5ioBeM/MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjEwRkVBNUMw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQB0DR2erek4l+eC0M/z XiihoSTGNlw+yTUmuXc1WWTr5lYPVHSKXTjfaJig07W9cGsKr+/kWFajHEV2jA6y NsXu+LazhCapPMLSx+l+ZRBWqateYxabbj1bXvgsJv3cwT07FYV007CbZnWPAYCg 9kseM2U//EuRuU0/BHO8Ell9an8/f+A3gZwiNOXoKSYQCSbmR6YGhG1oEGwNBKX+ cRHtVVi7mYIS6pvB5lFhf9XpUJ7ujtXheMpyNnat7bywpouJg9FEgBngWGN1GHeJ 9iTqegei4yV+deTPaXS2BGmDnCpBo4hat0iKlzCNk/WSjh+djNOgk+XHkj3d+5tb D8U+ -----END CERTIFICATE-----Generated at Mon Mar 2 13:29:59 2026 by rpki-client