$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/48366FBA072D11EAAE8E1D56C4F9AE02.roa File: 48366FBA072D11EAAE8E1D56C4F9AE02.roa (raw, json) Hash identifier: 0N9snoJ8dMhTvb5y78LaJrQTzweO4NJkZItcEukfG4A= Subject key identifier: D4:94:F5:5D:8F:66:45:73:3C:45:79:E4:16:95:23:C7:23:C9:3C:BE Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10A3 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/48366FBA072D11EAAE8E1D56C4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:31 +0000 ROA not before: Fri 06 Mar 2026 18:24:31 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397226 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4259 (0x10a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:31 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bdf-4b82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:dd:49:60:83:f3:6c:ed:b4:df:a0:9b:17:7d: da:bd:d9:df:9a:9a:ea:5e:9d:cc:1f:84:95:29:eb: 9d:2f:05:2a:5e:94:b3:1e:bb:dc:ea:b7:83:a4:69: 56:c5:1c:02:bd:2e:09:08:6e:b1:82:98:71:e6:11: d5:08:52:48:e9:8e:67:b3:90:e2:07:87:50:b7:ac: cd:ee:df:69:1e:21:4c:03:25:8d:35:52:48:ee:b1: f8:bc:1d:bf:d4:47:bc:07:f9:84:d0:85:1d:0a:f5: c8:a3:6d:e9:bb:d7:b2:bd:1b:a4:e9:4f:b3:12:42: cf:d8:94:20:7a:5f:6c:02:63:46:3e:26:2b:3f:17: 51:7d:29:33:53:d8:e7:00:58:e7:db:b2:47:6e:04: a3:36:76:1b:2e:2a:59:31:41:98:78:c2:86:62:e3: 7c:c8:4d:7b:a8:07:4b:21:2d:9c:3e:8d:fb:83:81: 6d:70:25:49:82:b6:97:38:09:b7:31:52:27:e8:74: 4f:2f:93:d8:d7:c2:f4:80:9e:75:45:e0:95:96:4f: a7:17:3e:f7:2a:83:61:32:9a:2c:e7:ea:7f:24:7a: fa:cd:60:78:85:5a:10:97:d1:80:a7:07:ce:d7:e3: 5a:d2:db:b0:70:ec:db:be:0c:18:29:53:70:27:10: cd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:94:F5:5D:8F:66:45:73:3C:45:79:E4:16:95:23:C7:23:C9:3C:BE X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/48366FBA072D11EAAE8E1D56C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 0b:21:5b:59:53:32:43:b4:e8:90:3b:a0:f6:f8:bf:de:9e:ed: a4:f7:e5:5a:3f:be:93:d9:2a:e3:41:8a:ec:0f:86:78:8a:4e: d4:16:20:f8:98:08:31:dd:60:6a:e6:5a:0b:e7:23:a7:b6:c7: 20:64:a9:7b:cc:fc:c6:c8:81:08:96:e0:89:d1:39:7e:fc:53: 97:fd:7c:73:19:6a:5b:ce:64:22:83:28:5e:93:29:3d:6f:85: 19:c8:d4:df:2d:98:d3:4d:d9:fd:25:9d:40:a3:5b:99:93:bf: ee:15:e3:1a:50:18:b5:f9:44:f6:8a:41:8b:fb:ca:57:77:95: 7d:50:0a:88:61:b7:8b:20:cd:76:34:49:2e:db:3b:59:0d:95: c1:1a:4c:49:7c:2c:49:b3:25:a9:d9:56:0f:ca:7f:31:22:c8: 18:70:d3:c7:a2:3e:af:cc:a5:2d:a4:9e:6e:46:8f:46:07:30: 44:f7:80:ce:61:15:9b:e6:4b:26:dd:fd:9a:2a:dd:64:6d:70: b2:8a:8e:c0:f0:af:61:4a:95:a0:12:0b:3d:c2:f4:83:00:af: 09:eb:d2:c3:8f:97:24:36:69:6a:a3:2b:12:8b:c9:48:27:38: 1d:f9:67:b1:58:d2:f7:c5:a6:fd:6d:12:da:4b:e4:6a:46:fc: 4e:3d:4e:9a -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDMxWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJkZi00YjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs91JYIPzbO2036CbF33avdnfmprqXp3MH4SVKeudLwUqXpSzHrvc6reDpGlW xRwCvS4JCG6xgphx5hHVCFJI6Y5ns5DiB4dQt6zN7t9pHiFMAyWNNVJI7rH4vB2/ 1Ee8B/mE0IUdCvXIo23pu9eyvRuk6U+zEkLP2JQgel9sAmNGPiYrPxdRfSkzU9jn AFjn27JHbgSjNnYbLipZMUGYeMKGYuN8yE17qAdLIS2cPo37g4FtcCVJgraXOAm3 MVIn6HRPL5PY18L0gJ51ReCVlk+nFz73KoNhMpos5+p/JHr6zWB4hVoQl9GApwfO 1+Na0tuwcOzbvgwYKVNwJxDNDwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFNSU9V2P ZkVzPEV55BaVI8cjyTy+MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNDgzNjZGQkEw NzJEMTFFQUFFOEUxRDU2QzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQALIVtZUzJDtOiQO6D2 +L/enu2k9+VaP76T2SrjQYrsD4Z4ik7UFiD4mAgx3WBq5loL5yOntscgZKl7zPzG yIEIluCJ0Tl+/FOX/XxzGWpbzmQigyhekyk9b4UZyNTfLZjTTdn9JZ1Ao1uZk7/u FeMaUBi1+UT2ikGL+8pXd5V9UAqIYbeLIM12NEku2ztZDZXBGkxJfCxJsyWp2VYP yn8xIsgYcNPHoj6vzKUtpJ5uRo9GBzBE94DOYRWb5ksm3f2aKt1kbXCyio7A8K9h SpWgEgs9wvSDAK8J69LDj5ckNmlqoysSi8lIJzgd+WexWNL3xab9bRLaS+RqRvxO PU6a -----END CERTIFICATE-----Generated at Fri Mar 13 10:38:50 2026 by rpki-client