$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F2D46CA0099A11EAB5891D5BC4F9AE02.roa File: F2D46CA0099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: tM/8wKwCYKHzTQHhY5c4HLuk8Fofp8Cd0e5x0lp9bMQ= Subject key identifier: 55:26:C6:03:00:12:70:46:8A:99:5B:11:27:CB:B1:66:B3:B2:F6:7A Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1081 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F2D46CA0099A11EAB5891D5BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:56 +0000 ROA not before: Fri 28 Feb 2025 19:30:15 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397237 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4225 (0x1081) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:15 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4861c-05cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:69:34:24:d5:ec:53:4c:46:43:a2:8d:9f:39: b5:10:da:6f:6f:f5:4b:b2:f6:4e:6f:26:f7:9a:8a: 75:58:c0:e9:c7:e4:ac:59:d0:79:a0:2d:34:1e:21: 5c:44:94:1e:2a:06:26:2e:62:34:5b:25:71:20:ae: 83:e7:b3:26:0c:7a:fe:c5:81:8d:cd:5f:f8:c3:44: 66:ba:c3:43:25:f8:d8:5c:7c:9d:e4:f5:f5:b4:72: f7:30:19:40:c7:5e:f0:49:47:ec:5a:dc:50:49:73: 2e:a6:2b:97:48:b8:34:59:39:8a:e3:d0:3b:c5:38: 9e:c0:4b:48:ff:c0:c7:5f:ae:a3:e2:38:c4:4c:96: 94:e1:64:b2:eb:72:e8:2f:38:65:b0:7d:5a:35:02: c5:13:bc:0c:05:1f:7a:9c:48:19:c7:8f:85:70:4f: a4:cd:36:59:24:9a:87:4d:0b:bd:05:ba:f8:a7:3a: df:1e:3d:7f:f0:ea:68:64:76:93:5a:93:6c:82:de: 76:ac:2b:9b:ee:16:ed:4a:23:d1:26:15:86:4d:d8: 2e:83:6c:54:2d:ea:8b:a1:05:07:29:14:b8:cb:b2: 07:61:36:4b:d8:c9:81:7b:70:ee:78:69:94:87:7f: 75:e0:35:75:5e:0f:22:43:a9:f6:aa:fe:28:4d:f2: be:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:26:C6:03:00:12:70:46:8A:99:5B:11:27:CB:B1:66:B3:B2:F6:7A X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F2D46CA0099A11EAB5891D5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 65:df:88:04:5a:22:20:9f:b0:39:13:c2:8c:e2:e6:f8:b5:fc: 95:78:9b:79:52:30:d1:b9:70:f1:44:44:ba:79:01:ec:df:d3: 98:ff:2b:68:a6:1a:08:34:17:ed:8d:d2:66:ef:1c:10:3d:4f: 0d:89:c6:cd:1c:24:66:a3:bd:ba:dd:60:7b:3c:5c:99:e4:74: 3a:36:5b:54:63:50:2f:75:9e:71:4e:f3:64:69:e1:36:58:65: 8e:60:81:c0:b4:5a:34:6d:cd:82:c1:55:fe:0e:bf:a5:78:f5: 02:57:c1:be:25:b3:51:e3:5e:ca:f2:c6:61:a7:1f:4c:88:b5: eb:8f:18:25:b0:70:b0:3d:e4:48:de:04:8d:09:14:f6:5d:38: 5c:67:16:5d:ab:3c:32:67:61:8b:05:92:8d:e3:72:36:4e:b1: 6f:b9:99:4c:d6:1d:9b:d9:93:13:c4:e3:6f:41:4f:72:c3:da: b1:28:45:4a:0b:5b:3e:e1:ca:8a:92:5e:1a:99:90:8c:0e:e9: 0d:4e:0f:f6:3d:35:d9:3e:63:4b:80:ca:09:bc:24:37:ac:f7: 33:e0:db:d8:6f:f8:50:cd:ac:bb:f6:35:c8:61:f2:65:9b:2c: f1:52:41:21:32:df:d0:64:a7:f1:5d:d6:c3:cd:06:17:d1:ea: b2:10:71:af -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDE1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYxYy0wNWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGk0JNXsU0xGQ6KNnzm1ENpvb/VLsvZObyb3mop1WMDpx+SsWdB5oC00HiFc RJQeKgYmLmI0WyVxIK6D57MmDHr+xYGNzV/4w0RmusNDJfjYXHyd5PX1tHL3MBlA x17wSUfsWtxQSXMupiuXSLg0WTmK49A7xTiewEtI/8DHX66j4jjETJaU4WSy63Lo LzhlsH1aNQLFE7wMBR96nEgZx4+FcE+kzTZZJJqHTQu9Bbr4pzrfHj1/8OpoZHaT WpNsgt52rCub7hbtSiPRJhWGTdgug2xULeqLoQUHKRS4y7IHYTZL2MmBe3DueGmU h3914DV1Xg8iQ6n2qv4oTfK+qQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFFUmxgMA EnBGiplbESfLsWazsvZ6MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjJENDZDQTAw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBl34gEWiIgn7A5E8KM 4ub4tfyVeJt5UjDRuXDxRES6eQHs39OY/ytophoINBftjdJm7xwQPU8NicbNHCRm o7263WB7PFyZ5HQ6NltUY1AvdZ5xTvNkaeE2WGWOYIHAtFo0bc2CwVX+Dr+lePUC V8G+JbNR417K8sZhpx9MiLXrjxglsHCwPeRI3gSNCRT2XThcZxZdqzwyZ2GLBZKN 43I2TrFvuZlM1h2b2ZMTxONvQU9yw9qxKEVKC1s+4cqKkl4amZCMDukNTg/2PTXZ PmNLgMoJvCQ3rPcz4NvYb/hQzay79jXIYfJlmyzxUkEhMt/QZKfxXdbDzQYX0eqy EHGv -----END CERTIFICATE-----Generated at Mon Mar 2 14:58:14 2026 by rpki-client