$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/537DDF3A09B111EAB045B31EC4F9AE02.roa File: 537DDF3A09B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: l4mlm0t2jUhFt7C/lk/uEzmLlyRxmUnSKBgUqFv32NQ= Subject key identifier: 17:34:9B:1E:DB:98:FE:40:D0:BA:B8:2B:F0:9E:24:6C:A9:D9:1C:06 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 109A Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/537DDF3A09B111EAB045B31EC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:14 +0000 ROA not before: Fri 06 Mar 2026 18:24:14 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397217 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4250 (0x109a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:14 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bce-6f88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c9:ab:e9:cf:17:b0:68:7a:fb:03:d3:28:ce: 6f:3a:8c:0e:7c:ac:db:b1:34:83:b3:82:23:7e:47: b6:e7:02:89:6a:ca:a9:cf:1d:4a:16:c9:44:70:0b: 8b:73:8c:52:0b:3a:fd:1d:ac:61:08:5a:09:61:a3: 99:f4:ca:37:cb:cc:12:a0:ef:73:df:85:72:a1:5b: a2:de:7f:c5:65:0e:de:7a:b4:01:44:d4:cd:b2:d4: b1:c6:16:e2:3f:4c:6c:ed:0a:51:01:c1:61:a1:0c: 24:54:ca:07:20:0b:bd:66:5c:ca:09:99:77:82:8a: 9e:26:be:69:c5:8e:24:74:4a:d9:36:c8:17:ec:3e: 28:1c:dc:b7:bc:9a:9f:b4:21:dc:f5:84:8e:31:ac: 91:c2:14:22:14:14:24:b1:ab:87:5e:07:68:c8:1f: 62:12:33:c9:44:d1:03:75:f2:b6:38:7c:8a:a6:d9: c6:d3:00:99:36:37:4e:38:95:2b:9f:ef:9e:23:bc: 83:4d:63:1b:84:fe:74:81:67:43:ed:d2:68:3d:b7: 59:b9:24:0e:81:94:26:26:bc:9f:01:a1:be:27:c5: 76:2c:fe:47:14:c4:97:ca:7b:70:1c:c8:96:af:ae: 09:79:8b:86:ab:3b:6c:fc:c2:02:dd:e8:72:90:e0: b8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:34:9B:1E:DB:98:FE:40:D0:BA:B8:2B:F0:9E:24:6C:A9:D9:1C:06 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/537DDF3A09B111EAB045B31EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:5:ffff:ffff:ffff:ffff:ffff 2001:dcd:7::/48 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 8f:5e:4b:df:76:2b:7f:30:57:7d:29:7a:95:a2:5b:ef:3d:e1: ae:0a:af:a0:bd:0a:46:db:32:5d:62:9d:c0:39:6f:26:13:9b: 37:a9:44:58:71:4f:6a:6a:1a:12:47:a1:d1:0b:23:25:8d:6c: 8e:54:3a:eb:a7:79:a1:f1:57:19:61:8e:19:88:a1:12:9d:6a: be:52:0d:96:61:e7:17:c7:df:26:18:13:5f:9a:4d:54:3e:a3: 86:e3:d0:8d:6c:21:f2:7b:17:63:a8:fc:5b:4a:c2:c4:b2:e9: cc:38:22:f4:d6:11:be:7f:5d:02:3f:7e:6d:cd:d1:7d:62:81: 9a:d3:80:4f:27:de:74:13:8b:c2:74:52:ed:53:ff:73:96:63: c9:a6:38:45:24:c3:16:ff:49:50:7f:81:dd:94:1a:42:ed:c3: a3:be:f1:ae:59:a8:fd:9d:76:7f:c0:d8:67:52:6e:02:ea:92: ad:65:05:e3:24:0f:6c:c8:51:ac:39:58:f3:f3:71:36:2c:fe: f1:d2:31:37:15:b9:df:0e:65:20:69:8b:eb:2d:fc:8c:b8:2e: ee:14:07:0a:6c:68:bf:e1:ba:12:bd:b5:40:48:bb:1c:23:c7: e5:ba:64:a4:7f:3c:75:cb:1e:43:f1:d9:60:f7:be:98:f0:3e: 0a:2c:3f:8f -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICEJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDE0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJjZS02Zjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8mr6c8XsGh6+wPTKM5vOowOfKzbsTSDs4Ijfke25wKJasqpzx1KFslEcAuL c4xSCzr9HaxhCFoJYaOZ9Mo3y8wSoO9z34VyoVui3n/FZQ7eerQBRNTNstSxxhbi P0xs7QpRAcFhoQwkVMoHIAu9ZlzKCZl3goqeJr5pxY4kdErZNsgX7D4oHNy3vJqf tCHc9YSOMayRwhQiFBQksauHXgdoyB9iEjPJRNEDdfK2OHyKptnG0wCZNjdOOJUr n++eI7yDTWMbhP50gWdD7dJoPbdZuSQOgZQmJryfAaG+J8V2LP5HFMSXyntwHMiW r64JeYuGqzts/MIC3ehykOC4IwIDAQABo4ICnDCCApgwHQYDVR0OBBYEFBc0mx7b mP5A0Lq4K/CeJGyp2RwGMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTM3RERGM0Ew OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMFsGCCsGAQUFBwEHAQH/BEwwSjAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwLAQCAAIwJjASAwcAIAENzQABAwcB IAENzQAEAwcAIAENzQAHAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQCPXkvf dit/MFd9KXqVolvvPeGuCq+gvQpG2zJdYp3AOW8mE5s3qURYcU9qahoSR6HRCyMl jWyOVDrrp3mh8VcZYY4ZiKESnWq+Ug2WYecXx98mGBNfmk1UPqOG49CNbCHyexdj qPxbSsLEsunMOCL01hG+f10CP35tzdF9YoGa04BPJ950E4vCdFLtU/9zlmPJpjhF JMMW/0lQf4HdlBpC7cOjvvGuWaj9nXZ/wNhnUm4C6pKtZQXjJA9syFGsOVjz83E2 LP7x0jE3FbnfDmUgaYvrLfyMuC7uFAcKbGi/4boSvbVASLscI8flumSkfzx1yx5D 8dlg976Y8D4KLD+P -----END CERTIFICATE-----Generated at Fri Mar 13 10:38:22 2026 by rpki-client