$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa File: F49547A8099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: FwkCmp2beowPe6caHQOxk4i7wdy0xiqBzaLxV9ho/Es= Subject key identifier: CD:82:40:DB:B3:8F:2A:9A:B0:73:97:99:B9:53:EF:47:02:BD:AB:C1 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1085 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:59 +0000 ROA not before: Fri 28 Feb 2025 19:30:20 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397241 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4229 (0x1085) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:20 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4861f-c6cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:84:25:4d:78:50:21:4f:95:99:6f:bf:1d:d6: 08:fd:a8:d3:4a:2d:bf:11:ef:79:ae:b9:70:87:e6: 0d:5b:64:e9:9e:59:eb:2a:6a:bc:74:28:9d:88:68: e3:54:c6:38:fb:92:84:16:f9:54:ff:1c:83:68:e4: 03:ed:f5:8a:d1:24:9d:9b:b5:3d:21:96:1e:16:99: 15:be:4b:e1:9a:5f:2d:40:3a:27:bb:72:b5:fd:17: 47:81:da:a4:c2:fd:8f:64:a5:3d:40:20:0c:e7:15: 19:80:eb:5b:3e:a2:0b:37:03:e9:d5:fd:fd:d2:0d: 30:2d:af:36:3f:7e:10:98:9b:78:97:d5:d6:41:8e: 74:a0:10:45:f6:ec:9b:e2:ee:9a:8c:78:b8:19:ab: fe:93:98:a9:7d:7d:c9:2e:62:54:3e:38:be:56:5c: db:6a:c5:69:08:1b:34:ce:ec:39:6c:e0:4f:94:53: 08:99:5e:0f:0f:7e:91:c4:bb:ce:50:5c:38:b6:06: 21:2f:60:86:6e:d9:be:43:b4:47:1c:9b:d4:4f:e5: 2a:11:39:20:8a:d0:b7:7a:da:17:83:65:ae:88:85: 90:94:86:74:80:7c:b3:a7:fd:91:1f:a7:a0:2b:00: f0:8b:12:af:0e:8f:6a:47:03:44:66:79:18:ac:b4: 8a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:82:40:DB:B3:8F:2A:9A:B0:73:97:99:B9:53:EF:47:02:BD:AB:C1 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 4f:17:a8:f9:49:47:aa:01:4f:9a:b1:a2:f4:94:9c:62:ff:50: 87:73:a7:1e:d7:e9:d0:74:31:2b:e7:f1:88:0e:c7:9e:2a:5b: 0b:66:3f:30:ab:45:5d:dc:80:d2:37:e5:30:52:e9:ba:d8:14: b3:d7:84:ac:58:1e:8d:d0:ba:ee:dd:40:c9:f0:90:8b:87:da: e9:3c:16:2d:a6:64:e0:c3:99:85:b0:d2:b1:35:03:68:d0:2a: 3a:d5:48:a6:3a:35:81:ca:0b:ee:8c:c2:09:d8:53:be:2b:c2: 9e:f8:55:e9:87:80:31:f5:74:1d:f4:90:e2:e9:e1:b0:35:5e: 84:da:d7:24:47:08:36:e5:8e:62:85:9d:f8:67:31:66:99:7b: e3:9c:c5:37:10:a8:83:95:b4:2f:09:6a:60:8b:3a:cb:46:bb: 0e:52:12:29:7a:f4:ef:cc:40:82:ef:b2:9d:ad:d4:99:f7:63: 1f:79:5e:44:d7:d7:ea:e7:0e:db:52:ab:c1:82:ba:c6:67:06: 34:d3:5c:34:72:0f:95:62:6c:ac:7e:8d:53:e5:5e:fd:56:78: fd:5d:1f:b9:43:1c:ea:56:a9:af:33:e6:68:35:a1:8c:74:a5: 31:d1:86:12:b9:d8:7f:5f:6d:b7:58:95:2b:c9:11:36:5a:11: 6e:53:7f:44 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDIwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYxZi1jNmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYQlTXhQIU+VmW+/HdYI/ajTSi2/Ee95rrlwh+YNW2TpnlnrKmq8dCidiGjj VMY4+5KEFvlU/xyDaOQD7fWK0SSdm7U9IZYeFpkVvkvhml8tQDonu3K1/RdHgdqk wv2PZKU9QCAM5xUZgOtbPqILNwPp1f390g0wLa82P34QmJt4l9XWQY50oBBF9uyb 4u6ajHi4Gav+k5ipfX3JLmJUPji+VlzbasVpCBs0zuw5bOBPlFMImV4PD36RxLvO UFw4tgYhL2CGbtm+Q7RHHJvUT+UqETkgitC3etoXg2WuiIWQlIZ0gHyzp/2RH6eg KwDwixKvDo9qRwNEZnkYrLSKLwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFM2CQNuz jyqasHOXmblT70cCvavBMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjQ5NTQ3QTgw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBPF6j5SUeqAU+asaL0 lJxi/1CHc6ce1+nQdDEr5/GIDseeKlsLZj8wq0Vd3IDSN+UwUum62BSz14SsWB6N 0Lru3UDJ8JCLh9rpPBYtpmTgw5mFsNKxNQNo0Co61UimOjWBygvujMIJ2FO+K8Ke +FXph4Ax9XQd9JDi6eGwNV6E2tckRwg25Y5ihZ34ZzFmmXvjnMU3EKiDlbQvCWpg izrLRrsOUhIpevTvzECC77KdrdSZ92MfeV5E19fq5w7bUqvBgrrGZwY001w0cg+V Ymysfo1T5V79Vnj9XR+5QxzqVqmvM+ZoNaGMdKUx0YYSudh/X223WJUryRE2WhFu U39E -----END CERTIFICATE-----Generated at Mon Mar 2 23:39:27 2026 by rpki-client