$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa File: 55F662DC09B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: fkSBpfe43f7xaBHlXat2laGJULhbexdk1KBu8JtEuJ4= Subject key identifier: 89:D9:B0:C1:9D:11:D9:5F:E6:FB:B3:8A:82:63:81:E2:35:98:35:24 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10A6 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:37 +0000 ROA not before: Fri 06 Mar 2026 18:24:37 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397229 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4262 (0x10a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:37 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1be5-559c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5f:5f:21:b4:0a:5e:93:06:51:a6:40:0e:5b: 83:f5:da:67:d7:84:42:a4:c4:be:d1:fc:9a:85:bd: 8f:e5:8e:5b:f8:d3:e7:a7:ea:26:be:e2:8c:36:f8: ff:6f:3e:e9:31:b8:6c:8e:4b:3e:c2:2b:36:1f:4b: 74:bf:bb:df:c0:33:f3:ba:f9:ec:71:48:69:71:82: fe:79:a1:f9:8b:c1:89:da:6e:53:1c:32:37:bd:42: 96:cb:a4:e8:ff:8f:2e:9a:da:8d:f2:f5:ac:a1:cc: 35:6f:05:2c:b7:c6:15:90:d5:e4:e4:ee:8f:83:6e: 0d:83:2b:16:c9:29:0a:ea:ca:51:37:a6:44:84:33: 32:61:2c:09:08:6c:5b:f9:b7:fc:9a:63:3c:58:a2: c1:bb:9e:05:ec:b0:13:cb:fa:18:63:08:13:eb:88: 4e:7f:fc:2b:9c:87:51:7c:2f:e8:38:da:86:b5:01: 6e:0b:a8:6f:1c:8b:03:2e:4e:0a:fc:95:9e:a5:61: b7:c0:aa:e6:df:ba:7f:7f:a8:ab:42:76:f8:91:a3: 9b:a1:00:56:21:fc:c7:e5:c8:95:ef:db:25:24:6d: 7d:d6:9a:48:6b:95:90:9e:6f:68:93:a3:c5:22:0e: c6:46:dd:86:d9:5e:ac:48:a4:3f:44:0b:97:03:d7: 84:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D9:B0:C1:9D:11:D9:5F:E6:FB:B3:8A:82:63:81:E2:35:98:35:24 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 65:a1:38:e3:f3:fe:13:88:93:33:35:95:b8:22:2f:87:59:f7: 53:16:1a:e2:f0:96:54:1c:88:33:c9:63:3e:b2:c5:7a:39:2e: ba:9f:ed:a1:bf:5f:d9:0d:d7:7f:83:1c:d7:aa:7d:20:5f:53: 69:07:b9:8d:2d:d2:b4:fe:54:22:d6:19:cb:88:60:e3:bf:39: 1e:46:86:71:ec:64:70:d7:93:19:3a:e6:d7:62:62:2a:ee:a4: 1e:d3:96:dc:79:ec:1f:86:43:6f:fd:a9:a8:1e:60:6d:59:16: f1:71:3d:2a:ac:87:2c:11:e0:06:74:b2:43:a8:52:d4:2d:65: ee:7e:1b:c9:f8:13:6e:77:25:78:80:89:70:5c:73:9c:32:66: 16:49:2c:6f:c3:9d:27:fa:2b:fc:29:68:19:35:91:58:27:13: 6e:3b:2c:84:0a:74:ca:bb:1e:17:90:d4:46:c4:92:aa:d1:89: 08:88:bf:fe:45:b9:c3:5b:ad:37:fb:c9:fe:3a:c9:bb:34:3a: 17:a6:85:b9:85:f9:76:72:95:17:25:dd:a3:12:08:89:e6:d4: de:aa:1c:8b:36:6f:ab:c0:1c:ea:18:77:08:1f:77:7b:6a:f6: c3:2f:ac:17:a7:42:8d:5a:a1:31:f3:f9:52:aa:5d:52:ff:f8: 41:5c:a1:ed -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDM3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJlNS01NTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2F9fIbQKXpMGUaZADluD9dpn14RCpMS+0fyahb2P5Y5b+NPnp+omvuKMNvj/ bz7pMbhsjks+wis2H0t0v7vfwDPzuvnscUhpcYL+eaH5i8GJ2m5THDI3vUKWy6To /48umtqN8vWsocw1bwUst8YVkNXk5O6Pg24NgysWySkK6spRN6ZEhDMyYSwJCGxb +bf8mmM8WKLBu54F7LATy/oYYwgT64hOf/wrnIdRfC/oONqGtQFuC6hvHIsDLk4K /JWepWG3wKrm37p/f6irQnb4kaOboQBWIfzH5ciV79slJG191ppIa5WQnm9ok6PF Ig7GRt2G2V6sSKQ/RAuXA9eEvQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFInZsMGd Edlf5vuzioJjgeI1mDUkMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTVGNjYyREMw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBloTjj8/4TiJMzNZW4 Ii+HWfdTFhri8JZUHIgzyWM+ssV6OS66n+2hv1/ZDdd/gxzXqn0gX1NpB7mNLdK0 /lQi1hnLiGDjvzkeRoZx7GRw15MZOubXYmIq7qQe05bceewfhkNv/amoHmBtWRbx cT0qrIcsEeAGdLJDqFLULWXufhvJ+BNudyV4gIlwXHOcMmYWSSxvw50n+iv8KWgZ NZFYJxNuOyyECnTKux4XkNRGxJKq0YkIiL/+RbnDW603+8n+Osm7NDoXpoW5hfl2 cpUXJd2jEgiJ5tTeqhyLNm+rwBzqGHcIH3d7avbDL6wXp0KNWqEx8/lSql1S//hB XKHt -----END CERTIFICATE-----Generated at Fri Mar 13 12:00:59 2026 by rpki-client