$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/54E1D22809B111EAB045B31EC4F9AE02.roa File: 54E1D22809B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: QhVe4D8jwCjiPdYFuGyrnSSxgj7flVnioPyQCCYmfaI= Subject key identifier: 86:D4:18:7A:A9:32:04:61:82:71:B6:50:95:33:33:C2:62:A5:E6:3C Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10A0 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/54E1D22809B111EAB045B31EC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:25 +0000 ROA not before: Fri 06 Mar 2026 18:24:25 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397223 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4256 (0x10a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:25 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bd9-aad6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9c:74:7b:2a:18:a7:08:93:b6:71:8a:0e:df: c8:af:3d:71:a2:22:ae:1e:cf:c6:ad:7b:33:c6:8a: c3:fd:cb:62:4a:f8:db:f3:a3:99:df:1e:46:25:6e: b8:86:2f:1e:e4:96:5d:61:9f:3a:3b:99:76:b1:e0: 0c:27:7c:84:48:03:8c:d2:b9:a6:96:bc:79:2d:9a: 66:45:53:6c:8f:48:bf:1b:c3:42:43:92:79:3d:9f: 9e:42:7e:26:d1:d8:0d:af:ac:2a:67:2e:d1:b6:2f: 7e:a8:e7:a6:1e:ba:d8:12:8c:f9:6c:82:82:0e:45: b0:9b:c2:23:1f:5b:ea:ea:d8:24:c7:6d:7a:44:a4: 88:3e:01:5b:fa:4a:74:44:03:ac:79:11:ee:89:d2: b3:5d:dc:83:4d:0d:ee:2d:f4:70:5b:2e:e9:5d:1b: ab:de:db:0f:b8:c0:6c:d2:1c:b3:bd:f3:27:af:94: 90:ee:83:ff:da:f6:d8:1a:a8:bd:bc:07:35:91:50: 64:a9:01:d2:70:80:a5:c4:cc:c3:e1:f7:20:f8:aa: 68:d0:2d:ce:c5:ac:e7:fe:55:6c:1a:d3:49:9e:03: ff:d8:cb:96:74:9a:e3:ae:5a:91:f0:4b:d5:32:cc: 1b:55:cf:4e:2e:33:04:ba:20:41:28:17:f4:de:b3: 9f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D4:18:7A:A9:32:04:61:82:71:B6:50:95:33:33:C2:62:A5:E6:3C X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/54E1D22809B111EAB045B31EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 54:62:ee:41:63:8b:6a:51:f8:9d:82:5d:b8:90:3d:a0:52:b8: 0e:97:cf:c0:84:17:fe:ff:00:74:bb:0f:67:c9:c6:c6:f0:80: 21:71:c8:f9:97:05:c4:e0:44:d3:fa:01:9e:c5:c0:38:cc:05: 3a:46:49:19:ab:4b:11:31:bc:f3:51:e6:b4:82:8b:00:9e:5c: 57:c3:87:34:e1:99:3d:2b:ee:f9:89:8a:85:51:e9:28:29:dd: 0a:aa:2c:60:40:5e:5a:1e:ab:66:5a:9a:1d:8a:ad:4d:c9:2e: 0e:83:a3:99:ce:ec:2e:4a:dc:22:b2:83:9b:8e:79:1b:7f:ad: 0f:61:9e:26:58:cf:b6:62:71:7e:c1:e2:3d:c4:bb:80:92:3a: 31:d5:e5:df:12:8c:33:0c:8e:ff:3d:b3:5d:46:54:3b:b2:11: c3:b3:3e:4e:39:10:c0:59:c9:e0:30:dc:b0:2b:07:4c:f0:3f: aa:44:cd:e8:87:91:b3:73:aa:9b:9f:32:8c:4b:06:b7:b4:ca: 1b:12:2e:51:9c:2c:35:ca:97:e5:45:15:5d:48:79:e9:0d:6b: b3:a3:28:9f:89:e3:67:4d:5f:83:45:72:e1:76:e8:03:56:ec: 80:17:38:a0:4f:88:5e:f0:08:5c:b1:86:08:bc:8e:46:5b:c9: 29:f0:bf:9d -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDI1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJkOS1hYWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZx0eyoYpwiTtnGKDt/Irz1xoiKuHs/GrXszxorD/ctiSvjb86OZ3x5GJW64 hi8e5JZdYZ86O5l2seAMJ3yESAOM0rmmlrx5LZpmRVNsj0i/G8NCQ5J5PZ+eQn4m 0dgNr6wqZy7Rti9+qOemHrrYEoz5bIKCDkWwm8IjH1vq6tgkx216RKSIPgFb+kp0 RAOseRHuidKzXdyDTQ3uLfRwWy7pXRur3tsPuMBs0hyzvfMnr5SQ7oP/2vbYGqi9 vAc1kVBkqQHScIClxMzD4fcg+Kpo0C3Oxazn/lVsGtNJngP/2MuWdJrjrlqR8EvV MswbVc9OLjMEuiBBKBf03rOfmwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFIbUGHqp MgRhgnG2UJUzM8JipeY8MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTRFMUQyMjgw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBUYu5BY4tqUfidgl24 kD2gUrgOl8/AhBf+/wB0uw9nycbG8IAhccj5lwXE4ETT+gGexcA4zAU6RkkZq0sR MbzzUea0gosAnlxXw4c04Zk9K+75iYqFUekoKd0KqixgQF5aHqtmWpodiq1NyS4O g6OZzuwuStwisoObjnkbf60PYZ4mWM+2YnF+weI9xLuAkjox1eXfEowzDI7/PbNd RlQ7shHDsz5OORDAWcngMNywKwdM8D+qRM3oh5Gzc6qbnzKMSwa3tMobEi5RnCw1 ypflRRVdSHnpDWuzoyifieNnTV+DRXLhdugDVuyAFzigT4he8AhcsYYIvI5GW8kp 8L+d -----END CERTIFICATE-----Generated at Fri Mar 13 10:38:53 2026 by rpki-client