$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/D2CA53BCAF8E11EAA40B786BC4F9AE02.roa File: D2CA53BCAF8E11EAA40B786BC4F9AE02.roa (raw, json) Hash identifier: jMvHDCPeAyNSbaZieNXePAFpQXZa89qIO9/87dbOQPs= Subject key identifier: 07:60:3A:2D:6E:40:B6:9E:43:B5:AE:7B:71:1B:9F:A2:51:12:22:E8 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1094 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/D2CA53BCAF8E11EAA40B786BC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:02 +0000 ROA not before: Fri 06 Mar 2026 18:24:02 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 16509 IP address blocks: 119.161.49.0/24 maxlen: 24 2001:dcd:22::/48 maxlen: 48 2001:dcd:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4244 (0x1094) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:02 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bc2-3f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3f:18:13:62:07:46:e1:67:ec:fc:39:d9:06: 99:30:eb:69:9e:1d:eb:2c:02:9d:7e:1e:c1:7c:20: 08:b0:01:04:77:7c:df:75:f0:8d:93:ff:ef:45:3b: 50:65:71:e7:10:30:0c:b1:04:6c:2b:72:c1:d5:60: 03:9b:b3:30:77:10:90:c8:93:3a:5c:b1:f4:1d:84: 4d:dc:0f:1e:68:2e:a9:95:b3:99:3c:59:61:8c:cc: ba:20:e7:2c:a6:ef:76:91:dd:b0:67:22:12:c6:ce: d3:de:40:2b:53:03:21:28:a8:9e:39:47:6f:d1:08: 2e:22:b4:81:80:e2:2d:f7:0f:d4:78:e6:3e:5b:4c: 0d:d8:cf:26:71:e2:a2:21:96:9d:ce:47:ab:a3:86: 7d:08:8c:a2:21:9e:4f:77:91:d6:0b:ce:79:7e:25: 40:55:06:5e:8e:56:e4:3b:68:c0:52:0b:e0:60:3a: 16:5a:ec:a7:92:02:6f:8d:c1:65:cc:d1:90:44:93: 89:db:71:a2:ae:99:a2:48:6c:17:a5:32:20:43:32: 05:d7:94:ff:9e:28:89:fb:d4:ae:e4:c6:b0:cf:22: 70:05:fc:16:67:b9:66:9d:5a:c3:35:5c:b6:34:ae: 44:91:d5:13:78:d7:51:9c:46:c6:93:33:bc:5a:c8: 86:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:60:3A:2D:6E:40:B6:9E:43:B5:AE:7B:71:1B:9F:A2:51:12:22:E8 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/D2CA53BCAF8E11EAA40B786BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.161.49.0/24 IPv6: 2001:dcd:22::/47 Signature Algorithm: sha256WithRSAEncryption 6c:15:43:8e:94:8b:0d:bd:1d:71:2e:39:89:d2:28:0e:cf:57: ed:89:a9:57:21:9e:3d:03:b6:d4:53:45:35:31:5d:2e:69:6f: 76:29:d9:ca:04:3b:a0:f1:63:14:05:7f:58:03:d7:d6:22:f7: 91:3e:7d:54:2e:45:87:3f:97:94:36:e2:7c:86:33:e6:bc:44: a8:5c:b0:2e:e5:98:e5:d5:52:c9:2e:ff:d7:09:b3:58:5f:28: 30:b3:98:35:2a:71:95:d7:e4:66:50:91:30:af:36:17:4c:24: 36:77:1c:60:e6:35:89:92:cb:98:71:fe:d1:50:48:75:8c:84: cf:41:9f:84:c5:ee:d2:06:fd:4f:a6:16:ca:63:48:05:21:be: a8:0e:e5:b7:b5:bc:57:c4:f8:48:aa:9e:74:81:ff:24:7e:14: e3:17:07:00:45:58:5a:83:e6:ee:b7:4c:fe:5d:3c:2e:a9:fa: 79:1e:04:10:31:be:96:45:91:e1:6b:ef:18:eb:01:87:7e:f0: 94:68:0c:16:3c:0e:b6:91:61:8b:2e:fb:bd:7b:eb:f0:ba:9c: 03:88:06:2c:0d:48:6b:ff:23:9a:41:41:51:c7:78:ac:42:7e: 22:d6:ed:41:26:1d:32:84:a0:a0:97:3c:c6:9a:f8:5c:a6:17: 2a:3b:c6:d2 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICEJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDAyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJjMi0zZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3j8YE2IHRuFn7Pw52QaZMOtpnh3rLAKdfh7BfCAIsAEEd3zfdfCNk//vRTtQ ZXHnEDAMsQRsK3LB1WADm7MwdxCQyJM6XLH0HYRN3A8eaC6plbOZPFlhjMy6IOcs pu92kd2wZyISxs7T3kArUwMhKKieOUdv0QguIrSBgOIt9w/UeOY+W0wN2M8mceKi IZadzkero4Z9CIyiIZ5Pd5HWC855fiVAVQZejlbkO2jAUgvgYDoWWuynkgJvjcFl zNGQRJOJ23GirpmiSGwXpTIgQzIF15T/niiJ+9Su5MawzyJwBfwWZ7lmnVrDNVy2 NK5EkdUTeNdRnEbGkzO8WsiGzwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAdgOi1u QLaeQ7Wue3Ebn6JREiLoMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRDJDQTUzQkNB RjhFMTFFQUE0MEI3ODZCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAd6ExMA8EAgACMAkDBwEgAQ3NACIwDQYJKoZIhvcNAQELBQADggEB AGwVQ46Uiw29HXEuOYnSKA7PV+2JqVchnj0DttRTRTUxXS5pb3Yp2coEO6DxYxQF f1gD19Yi95E+fVQuRYc/l5Q24nyGM+a8RKhcsC7lmOXVUsku/9cJs1hfKDCzmDUq cZXX5GZQkTCvNhdMJDZ3HGDmNYmSy5hx/tFQSHWMhM9Bn4TF7tIG/U+mFspjSAUh vqgO5be1vFfE+EiqnnSB/yR+FOMXBwBFWFqD5u63TP5dPC6p+nkeBBAxvpZFkeFr 7xjrAYd+8JRoDBY8DraRYYsu+7176/C6nAOIBiwNSGv/I5pBQVHHeKxCfiLW7UEm HTKEoKCXPMaa+FymFyo7xtI= -----END CERTIFICATE-----Generated at Fri Mar 13 11:57:27 2026 by rpki-client