$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa File: 55703D7E09B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: xkDY7+S6nBVlsl/qB7ST9Wglbmlp7/BvKdb3wEKqSsw= Subject key identifier: FE:B5:74:F5:70:7F:3A:21:F1:E2:4A:8B:FC:7D:62:2D:48:D0:08:6B Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10A4 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:33 +0000 ROA not before: Fri 06 Mar 2026 18:24:33 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397227 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4260 (0x10a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:33 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1be1-6f39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:20:c1:cd:7a:78:35:2c:fa:55:5f:00:86:fd: f1:7f:9b:21:0d:cd:b1:dc:53:2d:6d:99:7c:3d:ff: 05:bb:52:45:33:b3:1d:b6:e7:f8:ea:41:f7:b7:78: c4:07:36:ff:b9:65:9e:97:33:89:c4:ec:60:35:73: 0f:07:6e:08:fb:2d:0e:bb:ae:01:d2:96:28:3a:cc: 27:0a:1a:1e:a1:72:be:d3:74:2b:f3:18:69:57:85: ec:53:84:bc:2d:e0:89:ea:60:da:65:8f:80:37:bf: d5:1d:61:ca:0f:32:de:e7:3b:30:39:d4:22:a5:fd: 64:5f:ec:11:fa:b7:28:5e:d6:51:54:71:33:96:69: e7:c2:2d:2a:79:e7:65:a9:d4:3e:7f:4d:95:7e:93: 88:75:b6:37:2b:c8:80:9b:79:a0:a7:a9:7b:30:7d: 25:cf:5a:25:07:2a:1f:cd:b1:75:a4:72:7b:6e:03: bb:f5:e3:18:39:ab:a6:b8:09:cb:a5:db:15:91:d5: 89:dc:c5:e1:b9:58:96:14:b8:03:09:75:6f:49:7f: ae:e9:73:e6:7f:52:ae:41:3b:db:1e:92:83:e0:d6: 39:4e:76:b4:9c:1f:d2:11:3e:46:39:c3:55:e0:61: de:3e:a1:95:c8:05:51:0e:1f:d9:d3:19:1e:a2:04: f5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:B5:74:F5:70:7F:3A:21:F1:E2:4A:8B:FC:7D:62:2D:48:D0:08:6B X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 98:9f:38:12:1b:a3:6c:07:91:95:94:a8:11:41:77:28:0f:b8: 9a:58:39:fc:09:e0:6c:c3:1e:fe:33:c5:12:66:27:1f:18:45: 31:d8:ff:aa:f7:53:02:66:1a:87:4c:45:b8:2a:82:ef:96:44: 55:77:77:62:45:af:e9:71:54:95:42:75:0a:b1:70:7d:c9:59: ab:4c:9f:52:cd:a8:dc:31:a6:d0:36:85:ba:c3:69:71:b5:78: 21:e6:6d:e4:6b:8b:59:a3:fd:3c:3a:1c:62:ac:b1:cc:05:9e: eb:df:1a:1d:5b:03:8b:bb:b1:92:f2:86:65:c7:ff:71:71:29: 05:21:bf:96:0c:fb:10:9c:1a:26:bf:71:dd:af:17:39:f2:63: b6:c9:ce:25:80:7a:e9:4e:bb:ad:23:cd:73:8c:16:d9:62:d4: 09:30:1f:c9:61:5c:1c:99:92:6b:1a:80:da:46:bf:9b:6d:ec: 28:af:c7:26:4f:0e:1b:e5:be:ee:1b:9b:f3:9f:92:0e:c1:38: b8:1a:66:a4:4c:0f:b2:2a:6c:20:80:b3:f2:64:ae:0a:91:a3: 38:42:56:04:2e:c3:53:67:af:e6:c3:ad:e5:45:17:0a:9b:3d: 13:bc:4b:51:e5:12:e8:5e:48:bc:13:18:6e:84:0c:3e:02:d0: a1:4b:df:25 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDMzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJlMS02ZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4yDBzXp4NSz6VV8Ahv3xf5shDc2x3FMtbZl8Pf8Fu1JFM7Mdtuf46kH3t3jE Bzb/uWWelzOJxOxgNXMPB24I+y0Ou64B0pYoOswnChoeoXK+03Qr8xhpV4XsU4S8 LeCJ6mDaZY+AN7/VHWHKDzLe5zswOdQipf1kX+wR+rcoXtZRVHEzlmnnwi0qeedl qdQ+f02VfpOIdbY3K8iAm3mgp6l7MH0lz1olByofzbF1pHJ7bgO79eMYOaumuAnL pdsVkdWJ3MXhuViWFLgDCXVvSX+u6XPmf1KuQTvbHpKD4NY5Tna0nB/SET5GOcNV 4GHePqGVyAVRDh/Z0xkeogT1KQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFP61dPVw fzoh8eJKi/x9Yi1I0AhrMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTU3MDNEN0Uw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQCYnzgSG6NsB5GVlKgR QXcoD7iaWDn8CeBswx7+M8USZicfGEUx2P+q91MCZhqHTEW4KoLvlkRVd3diRa/p cVSVQnUKsXB9yVmrTJ9SzajcMabQNoW6w2lxtXgh5m3ka4tZo/08OhxirLHMBZ7r 3xodWwOLu7GS8oZlx/9xcSkFIb+WDPsQnBomv3Hdrxc58mO2yc4lgHrpTrutI81z jBbZYtQJMB/JYVwcmZJrGoDaRr+bbewor8cmTw4b5b7uG5vzn5IOwTi4GmakTA+y KmwggLPyZK4KkaM4QlYELsNTZ6/mw63lRRcKmz0TvEtR5RLoXki8ExhuhAw+AtCh S98l -----END CERTIFICATE-----Generated at Fri Mar 13 10:38:55 2026 by rpki-client