$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7AA2CD46073111EA993EC663C4F9AE02.roa File: 7AA2CD46073111EA993EC663C4F9AE02.roa (raw, json) Hash identifier: DMLqq9JW88ePME04XwnTHx1EecLs43LgnvbdRDjClmM= Subject key identifier: 7F:63:5F:9B:18:D2:34:31:D2:A4:8B:DE:2B:1E:B4:8B:9B:1D:83:F0 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10A9 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7AA2CD46073111EA993EC663C4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:42 +0000 ROA not before: Fri 06 Mar 2026 18:24:42 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397232 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4265 (0x10a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:42 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bea-8f98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:55:dc:37:82:39:23:42:eb:c6:6f:7f:5e:77: 9a:70:4b:4a:3a:aa:62:3e:08:2b:ac:4c:fb:a1:0d: 39:e2:f4:d8:73:d6:72:62:52:3c:36:88:00:84:75: 76:c5:58:7e:60:0b:bd:16:5b:6d:c2:fc:68:9d:13: 35:68:70:43:fa:8e:d8:82:4b:12:8d:14:e7:0d:1d: 45:f7:92:d3:7f:5b:65:2c:c0:89:50:e5:5a:ff:81: 9a:57:8e:09:a0:f9:aa:a8:cc:b3:62:bd:b1:9c:7c: 13:67:d5:d1:5a:ba:f6:13:af:1f:c5:9e:78:f3:87: 1f:27:15:56:71:ee:b3:c0:a5:13:c5:2b:5c:fc:3b: 3c:55:f5:f3:9f:82:b8:8c:61:60:dc:8b:5e:d3:c0: ba:d4:ab:77:12:e2:f9:e5:40:00:c8:5a:2c:06:f1: 1b:c8:67:73:65:cc:de:0b:16:3d:5c:d9:c9:db:fd: ef:f2:30:b5:81:b8:ca:6e:90:6a:e5:b5:f6:d6:3d: 43:d7:6b:d6:dd:01:2d:88:3f:fa:7f:14:2e:30:50: 5d:01:49:dc:2c:ce:99:99:7b:87:de:9b:2f:8c:7d: 03:bd:12:3a:5d:dd:6d:31:cb:a1:f9:e0:c5:e5:a1: 20:2e:79:ee:36:ae:3a:1a:73:bd:4e:c5:01:ed:85: 8a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:63:5F:9B:18:D2:34:31:D2:A4:8B:DE:2B:1E:B4:8B:9B:1D:83:F0 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7AA2CD46073111EA993EC663C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 6f:44:5a:b8:3d:3d:48:31:60:1d:2d:25:56:68:be:65:e8:ff: 16:44:50:70:7b:fc:0c:2b:e6:62:a3:9e:38:8f:13:e9:f7:d5: 74:b4:be:35:e6:83:23:9d:cf:b2:90:8a:fe:1a:c2:1f:cb:ac: 81:d4:39:d5:d3:38:8d:a0:0b:c4:87:63:16:d0:18:ae:3e:2a: a6:f9:f7:2b:77:1b:3f:58:77:93:7a:dd:59:cd:b4:dd:10:b3: 43:41:20:fa:80:2a:e9:09:99:2e:5e:71:21:07:45:db:3b:01: 66:c7:62:7d:e4:1a:98:eb:e8:c7:81:94:4c:4e:e6:c5:77:4d: 7c:88:c3:b9:ca:23:f5:23:35:74:65:d5:78:19:24:30:e7:44: 74:84:36:5c:55:c4:5e:e3:02:9a:c0:4a:f5:b5:84:a9:f7:6a: 59:87:87:15:4a:13:77:bf:37:bf:82:57:28:a1:fc:04:14:6a: a8:ae:6e:b5:9a:39:62:23:46:f1:9d:eb:6c:91:bb:34:4d:70: 21:5d:b4:81:26:6d:58:35:53:ed:2e:bf:84:b0:3f:33:93:a8: aa:47:8d:f3:3a:87:1c:80:7f:66:da:d5:1e:c0:0c:67:f3:c5: 21:7e:0f:51:17:fe:a2:78:3e:a8:51:ea:d5:5d:2d:75:fe:79: ec:ed:86:d0 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDQyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJlYS04Zjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlXcN4I5I0Lrxm9/XneacEtKOqpiPggrrEz7oQ054vTYc9ZyYlI8NogAhHV2 xVh+YAu9FlttwvxonRM1aHBD+o7YgksSjRTnDR1F95LTf1tlLMCJUOVa/4GaV44J oPmqqMyzYr2xnHwTZ9XRWrr2E68fxZ5484cfJxVWce6zwKUTxStc/Ds8VfXzn4K4 jGFg3Ite08C61Kt3EuL55UAAyFosBvEbyGdzZczeCxY9XNnJ2/3v8jC1gbjKbpBq 5bX21j1D12vW3QEtiD/6fxQuMFBdAUncLM6ZmXuH3psvjH0DvRI6Xd1tMcuh+eDF 5aEgLnnuNq46GnO9TsUB7YWK7QIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFH9jX5sY 0jQx0qSL3isetIubHYPwMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvN0FBMkNENDYw NzMxMTFFQTk5M0VDNjYzQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBvRFq4PT1IMWAdLSVW aL5l6P8WRFBwe/wMK+Zio544jxPp99V0tL415oMjnc+ykIr+GsIfy6yB1DnV0ziN oAvEh2MW0BiuPiqm+fcrdxs/WHeTet1ZzbTdELNDQSD6gCrpCZkuXnEhB0XbOwFm x2J95BqY6+jHgZRMTubFd018iMO5yiP1IzV0ZdV4GSQw50R0hDZcVcRe4wKawEr1 tYSp92pZh4cVShN3vze/glcoofwEFGqorm61mjliI0bxnetskbs0TXAhXbSBJm1Y NVPtLr+EsD8zk6iqR43zOoccgH9m2tUewAxn88Uhfg9RF/6ieD6oUerVXS11/nns 7YbQ -----END CERTIFICATE-----Generated at Fri Mar 13 12:01:25 2026 by rpki-client