$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/A874B08E072E11EA8A64DC59C4F9AE02.roa File: A874B08E072E11EA8A64DC59C4F9AE02.roa (raw, json) Hash identifier: jGeXGQljARerpkNYBFs6Uovfl1JZ/l/ZMJhUmgA8DPA= Subject key identifier: 8D:32:6B:EF:AF:84:64:70:CD:97:FF:64:EC:8A:A7:3B:C3:77:31:E8 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1097 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/A874B08E072E11EA8A64DC59C4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:09 +0000 ROA not before: Fri 06 Mar 2026 18:24:09 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397213 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4247 (0x1097) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:09 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bc8-06c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c5:d3:2b:f2:83:3e:38:11:dd:af:4e:d1:11: c5:c1:84:23:1d:9f:02:45:62:51:6c:01:7a:59:24: 04:a6:1d:de:6a:59:f2:df:15:a0:3c:c2:41:8a:b8: 38:71:31:61:69:b4:11:bd:79:e2:d5:58:b0:c2:2e: b6:70:e9:41:eb:83:f8:b4:32:18:17:f8:c5:93:a2: 68:b6:4c:82:67:f2:02:88:f5:47:e1:24:66:ee:fb: 66:f0:cb:ec:d3:64:85:52:34:9d:ab:06:b0:4f:b2: 9b:c5:3d:06:a4:56:2f:67:df:2b:7d:2f:5b:b4:2a: ea:e7:f3:b1:00:4b:c5:7b:d6:cf:42:4b:a3:a1:01: 73:69:62:0f:f2:4a:dc:55:6f:6e:30:02:6d:26:e1: 04:3c:04:ed:d9:87:bb:12:7d:da:de:87:57:d8:b2: 29:80:22:bf:8d:62:1b:3d:34:c3:fe:f6:4d:6d:43: ca:f4:17:46:a6:6e:e4:6f:bd:75:00:db:8b:7a:bb: 54:b1:e4:87:e6:4d:86:9c:52:5b:b5:15:16:2b:70: 23:86:5d:01:8e:21:68:89:b2:c4:4d:b5:d1:81:9a: e6:c1:fa:8c:bb:f5:e7:5f:a9:7b:da:70:4f:13:72: 4e:f9:12:57:98:3f:96:73:ca:19:f4:66:36:94:f6: 89:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:32:6B:EF:AF:84:64:70:CD:97:FF:64:EC:8A:A7:3B:C3:77:31:E8 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/A874B08E072E11EA8A64DC59C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 65:ec:0d:54:a8:d5:95:6d:ab:be:8a:c0:0a:88:2a:f0:23:fb: b4:c0:07:85:4f:b2:fd:b4:55:a6:6d:a3:6d:cf:0e:83:8d:9f: 87:b4:48:ae:3d:3b:cf:bf:97:3a:c2:95:1d:b4:4c:b1:a1:c3: 91:6b:10:0b:95:2f:60:85:4d:e2:ed:b1:6f:ec:26:cd:de:5e: 8a:6a:67:15:e8:e5:f8:59:4e:db:e4:6d:2a:5b:ee:76:74:5d: be:93:f5:4e:f2:b0:82:c4:8e:0f:06:08:0d:74:c4:e6:26:2f: 1f:bc:7b:9f:fc:f3:eb:2d:a3:a0:df:55:6d:2b:01:ee:d4:3e: 1b:17:00:ea:b7:53:db:78:f9:a6:b4:82:a8:4d:7b:09:fb:99: fb:84:5f:f1:56:c5:fa:25:ff:9a:09:c1:93:98:26:18:fc:09: e8:72:20:a8:ae:6f:06:8f:b5:51:de:32:b2:59:de:9b:41:37: 3b:e6:23:bb:b7:14:da:67:09:af:f2:04:94:b0:e8:7e:d8:64: 7a:b2:a7:6f:e2:7d:5e:3b:e8:89:1c:f9:fe:b2:9e:84:c2:64: 3a:04:cf:bf:db:19:07:9c:94:db:3f:8d:a7:3f:6a:a7:d9:d3: 74:44:f2:be:8d:3c:a6:a7:f8:2c:3b:99:2d:da:c9:cf:22:94: 39:b4:4e:cc -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDA5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJjOC0wNmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8XTK/KDPjgR3a9O0RHFwYQjHZ8CRWJRbAF6WSQEph3ealny3xWgPMJBirg4 cTFhabQRvXni1Viwwi62cOlB64P4tDIYF/jFk6JotkyCZ/ICiPVH4SRm7vtm8Mvs 02SFUjSdqwawT7KbxT0GpFYvZ98rfS9btCrq5/OxAEvFe9bPQkujoQFzaWIP8krc VW9uMAJtJuEEPATt2Ye7En3a3odX2LIpgCK/jWIbPTTD/vZNbUPK9BdGpm7kb711 ANuLertUseSH5k2GnFJbtRUWK3Ajhl0BjiFoibLETbXRgZrmwfqMu/XnX6l72nBP E3JO+RJXmD+Wc8oZ9GY2lPaJUQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFI0ya++v hGRwzZf/ZOyKpzvDdzHoMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvQTg3NEIwOEUw NzJFMTFFQThBNjREQzU5QzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBl7A1UqNWVbau+isAK iCrwI/u0wAeFT7L9tFWmbaNtzw6DjZ+HtEiuPTvPv5c6wpUdtEyxocORaxALlS9g hU3i7bFv7CbN3l6KamcV6OX4WU7b5G0qW+52dF2+k/VO8rCCxI4PBggNdMTmJi8f vHuf/PPrLaOg31VtKwHu1D4bFwDqt1PbePmmtIKoTXsJ+5n7hF/xVsX6Jf+aCcGT mCYY/AnociCorm8Gj7VR3jKyWd6bQTc75iO7txTaZwmv8gSUsOh+2GR6sqdv4n1e O+iJHPn+sp6EwmQ6BM+/2xkHnJTbP42nP2qn2dN0RPK+jTymp/gsO5kt2snPIpQ5 tE7M -----END CERTIFICATE-----Generated at Fri Mar 13 10:39:53 2026 by rpki-client