$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/0DD6A56C073011EAAD272760C4F9AE02.roa File: 0DD6A56C073011EAAD272760C4F9AE02.roa (raw, json) Hash identifier: x1y8IhHTINLmdGO/5A43IJFB0Jw2B8lfEijqgwzVqWY= Subject key identifier: FA:1F:5A:1F:2E:BA:B0:BA:F9:FF:D3:E1:A0:BE:47:3F:F8:21:C8:D2 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10A5 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/0DD6A56C073011EAAD272760C4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:35 +0000 ROA not before: Fri 06 Mar 2026 18:24:35 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397228 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4261 (0x10a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:35 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1be3-d551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:db:42:d6:4f:8d:d4:c6:98:c4:40:8b:65:c2: 93:0b:64:69:53:9a:6c:37:5e:8c:cf:7d:60:72:28: f1:fd:af:c0:fb:bd:2c:74:f5:fe:da:0e:9e:5b:72: e7:41:d2:89:b8:0e:c7:d0:64:28:36:68:5d:ba:a7: 27:da:a4:de:98:12:1c:41:10:ac:5a:86:91:d4:3c: 35:ee:92:02:b0:01:b7:f6:51:9a:9c:75:73:f6:e1: 33:db:0a:f2:e8:58:41:ea:18:95:4b:67:45:a0:68: cc:08:12:15:18:28:ff:59:5d:0f:79:a6:b0:06:14: dd:b9:37:36:2e:72:17:0f:f0:a3:1b:14:40:a8:a1: 90:ef:11:dc:f8:bd:fe:99:2f:b2:21:98:30:51:d1: b8:59:78:0f:cb:c6:3c:13:ba:ee:20:d7:0f:90:a7: 20:0b:b4:1a:cc:52:89:96:bc:da:5e:a0:c8:e3:15: cf:f8:a2:c1:21:d3:e2:ae:10:cd:ae:a2:74:7e:1c: 95:4a:91:df:bb:12:4a:f3:d2:37:ef:68:69:4d:39: 09:01:de:0f:d7:11:d6:81:8a:07:15:1a:9c:c0:0b: a5:4e:3e:71:0b:66:df:96:ea:f6:16:2d:0c:e2:82: af:a3:63:b3:6d:7b:1b:c6:14:7b:59:86:94:2d:65: ad:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:1F:5A:1F:2E:BA:B0:BA:F9:FF:D3:E1:A0:BE:47:3F:F8:21:C8:D2 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/0DD6A56C073011EAAD272760C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 2f:61:59:25:d6:1b:59:a9:b6:37:57:af:e3:43:9a:8a:3a:77: ea:a5:7c:9e:26:a1:e2:e5:3e:b2:5f:00:35:91:40:c1:03:7f: e7:77:a2:c2:ed:22:94:5d:22:ef:d1:54:a9:21:7f:29:60:c6: d6:f1:d7:2f:05:87:eb:53:be:ac:3a:b1:ea:bc:0b:08:69:d2: 1e:fc:74:34:19:b4:3d:1b:73:c9:9f:97:20:f3:80:36:4c:b4: 9b:6b:f5:70:3d:64:b1:b2:2c:81:63:f5:53:46:cd:7c:f6:ae: 4a:b2:d6:23:4e:b0:48:ef:7d:ff:6c:98:33:7e:a9:3c:40:c8: 4e:51:73:43:6c:89:ab:28:b8:f5:34:f0:56:c8:15:23:64:2d: e4:1d:ce:98:57:1e:1b:6e:a2:6a:bf:82:4a:4c:f0:ca:fa:62: cc:52:bf:90:d7:d0:11:7a:62:8c:d3:10:c7:c5:80:1b:7e:71: 90:df:3f:7e:de:cd:5a:af:c6:ea:c7:9b:a1:d2:50:2b:f6:21: 54:8e:a8:43:da:60:01:1d:5f:25:82:22:90:6a:a2:5c:e6:74: 8c:45:86:0c:2a:08:43:f8:c4:bf:17:b6:e8:83:75:0a:b9:10: e6:2f:5c:5a:ff:38:37:de:73:32:f5:92:8a:73:ed:ec:4f:ef: 39:af:0e:ca -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDM1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJlMy1kNTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9tC1k+N1MaYxECLZcKTC2RpU5psN16Mz31gcijx/a/A+70sdPX+2g6eW3Ln QdKJuA7H0GQoNmhduqcn2qTemBIcQRCsWoaR1Dw17pICsAG39lGanHVz9uEz2wry 6FhB6hiVS2dFoGjMCBIVGCj/WV0PeaawBhTduTc2LnIXD/CjGxRAqKGQ7xHc+L3+ mS+yIZgwUdG4WXgPy8Y8E7ruINcPkKcgC7QazFKJlrzaXqDI4xXP+KLBIdPirhDN rqJ0fhyVSpHfuxJK89I372hpTTkJAd4P1xHWgYoHFRqcwAulTj5xC2bflur2Fi0M 4oKvo2OzbXsbxhR7WYaULWWtlQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFPofWh8u urC6+f/T4aC+Rz/4IcjSMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvMERENkE1NkMw NzMwMTFFQUFEMjcyNzYwQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQAvYVkl1htZqbY3V6/j Q5qKOnfqpXyeJqHi5T6yXwA1kUDBA3/nd6LC7SKUXSLv0VSpIX8pYMbW8dcvBYfr U76sOrHqvAsIadIe/HQ0GbQ9G3PJn5cg84A2TLSba/VwPWSxsiyBY/VTRs189q5K stYjTrBI733/bJgzfqk8QMhOUXNDbImrKLj1NPBWyBUjZC3kHc6YVx4bbqJqv4JK TPDK+mLMUr+Q19ARemKM0xDHxYAbfnGQ3z9+3s1ar8bqx5uh0lAr9iFUjqhD2mAB HV8lgiKQaqJc5nSMRYYMKghD+MS/F7bog3UKuRDmL1xa/zg33nMy9ZKKc+3sT+85 rw7K -----END CERTIFICATE-----Generated at Fri Mar 13 10:39:59 2026 by rpki-client