$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/5731ACF609B111EAB045B31EC4F9AE02.roa File: 5731ACF609B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: 9MbGgKrsxaBVgC5gX54gzlaKZmr0cvZzBZ0lkX+4zKo= Subject key identifier: C6:60:F7:93:62:51:B8:17:A2:9C:29:53:61:9F:0D:9A:47:32:FB:C6 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10AB Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/5731ACF609B111EAB045B31EC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:47 +0000 ROA not before: Fri 06 Mar 2026 18:24:46 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397234 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4267 (0x10ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:46 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bee-4382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5c:ea:a3:42:ec:bb:d8:2b:d3:39:68:96:ee: 68:01:e0:ba:36:e4:42:c9:95:fc:9f:2c:fc:39:ff: 2a:85:76:49:78:4f:cc:11:20:96:5e:f6:a9:ae:e4: be:98:6f:68:55:11:6b:e0:d1:32:90:88:fb:d8:41: d4:ea:03:8c:4a:3d:d2:fe:f0:c1:1e:2e:0e:ba:99: b3:0f:d9:f8:e4:b2:97:11:46:a7:3c:5d:d4:4e:9c: 8d:77:55:67:1d:09:fa:db:03:70:cd:f0:26:c7:d4: da:75:85:a2:b5:24:5c:8f:0d:dd:59:83:83:f7:d9: cc:7a:fe:0d:ed:d8:fd:01:83:f2:e5:69:57:e1:b2: 25:a6:4b:69:05:2d:cd:2f:97:19:f4:c8:a6:80:d8: 53:6b:1b:c3:37:45:ec:4d:a4:85:78:16:a3:28:65: 01:da:fd:64:df:65:74:31:a3:3d:8a:bd:2f:f0:bb: 9c:55:b5:56:06:e9:97:be:62:e5:b5:a0:3b:e3:c8: 52:fe:df:74:c0:11:6c:8c:14:fd:24:70:e1:80:5d: 02:41:91:f3:87:65:cc:00:9b:00:2a:04:5c:37:53: ba:1f:f9:05:81:db:b5:dc:2b:9a:59:16:48:09:73: 99:16:89:c2:0a:7d:a9:1d:38:8b:9d:15:5b:1a:ed: 4b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:60:F7:93:62:51:B8:17:A2:9C:29:53:61:9F:0D:9A:47:32:FB:C6 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/5731ACF609B111EAB045B31EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 5a:3a:16:dc:ad:2e:35:f8:25:39:2f:01:7b:63:6c:98:39:9c: 6e:cb:f4:e3:bf:53:fe:86:32:fc:19:0a:c0:27:0d:58:d6:c4: e4:bf:a0:67:9c:3d:05:16:b8:f2:58:37:79:94:ef:41:23:06: f8:2d:9e:8a:0e:f2:5c:94:89:a5:e6:1b:5a:c5:2d:4b:46:fe: 86:1d:3a:0b:b2:24:e1:a4:b5:e5:99:99:c1:8a:09:ed:3b:f6: 8c:b3:11:04:66:66:ea:24:ed:89:c1:b2:51:db:d1:14:c1:21: dc:ae:ea:44:7b:8a:40:dd:ea:ae:73:2c:e2:5f:cb:12:0c:ca: b3:3e:3d:89:bf:5a:39:44:19:e4:e4:c9:70:1b:dd:04:22:3f: cc:4c:ee:26:7a:c0:f4:57:de:5b:e4:9d:2d:70:89:0d:ac:09: 0d:2f:1f:0d:ba:50:07:ba:ce:52:35:8e:4c:9c:86:a3:86:e1: 34:5b:5f:29:05:dc:19:5e:7f:78:6e:fa:92:90:12:5f:f2:59: 64:7f:a6:f1:07:8e:98:8c:d7:17:6b:10:c9:42:e1:9a:a8:35: 77:2f:eb:24:14:d0:f8:72:c3:8c:cd:8a:71:d9:ab:f5:85:75: 27:36:c5:8b:1f:07:cd:53:63:36:ad:e5:40:96:06:c7:f9:ba: 99:db:7c:d5 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDQ2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJlZS00MzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylzqo0Lsu9gr0zlolu5oAeC6NuRCyZX8nyz8Of8qhXZJeE/MESCWXvapruS+ mG9oVRFr4NEykIj72EHU6gOMSj3S/vDBHi4OupmzD9n45LKXEUanPF3UTpyNd1Vn HQn62wNwzfAmx9TadYWitSRcjw3dWYOD99nMev4N7dj9AYPy5WlX4bIlpktpBS3N L5cZ9MimgNhTaxvDN0XsTaSFeBajKGUB2v1k32V0MaM9ir0v8LucVbVWBumXvmLl taA748hS/t90wBFsjBT9JHDhgF0CQZHzh2XMAJsAKgRcN1O6H/kFgdu13CuaWRZI CXOZFonCCn2pHTiLnRVbGu1LYQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFMZg95Ni UbgXopwpU2GfDZpHMvvGMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTczMUFDRjYw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBaOhbcrS41+CU5LwF7 Y2yYOZxuy/Tjv1P+hjL8GQrAJw1Y1sTkv6BnnD0FFrjyWDd5lO9BIwb4LZ6KDvJc lIml5htaxS1LRv6GHToLsiThpLXlmZnBigntO/aMsxEEZmbqJO2JwbJR29EUwSHc rupEe4pA3equcyziX8sSDMqzPj2Jv1o5RBnk5MlwG90EIj/MTO4mesD0V95b5J0t cIkNrAkNLx8NulAHus5SNY5MnIajhuE0W18pBdwZXn94bvqSkBJf8llkf6bxB46Y jNcXaxDJQuGaqDV3L+skFND4csOMzYpx2av1hXUnNsWLHwfNU2M2reVAlgbH+bqZ 23zV -----END CERTIFICATE-----Generated at Fri Mar 13 12:01:24 2026 by rpki-client