$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F10FEA5C099A11EAB5891D5BC4F9AE02.roa File: F10FEA5C099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: PSdPTNkRcoV2onqV7Vh0f3+OshhkEYull2yFoYZUgks= Subject key identifier: 78:D5:6A:E6:AB:D5:2D:69:BA:81:33:D5:D6:47:12:96:5D:61:BD:34 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 109D Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F10FEA5C099A11EAB5891D5BC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:19 +0000 ROA not before: Fri 06 Mar 2026 18:24:19 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397220 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4253 (0x109d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:19 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bd3-fd08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b1:62:b6:6d:d9:31:e8:67:01:07:64:12:11: 96:31:ab:6e:8a:43:13:2d:70:d5:ea:0d:59:63:07: ea:d4:81:8d:9c:39:75:14:fc:b7:d9:04:f5:c3:bc: f6:0a:bf:2e:de:40:fe:23:a0:49:15:83:83:f2:6c: 34:b1:47:c7:93:3b:f4:c0:94:5f:c8:d4:f1:2d:b1: 41:9e:a1:24:8a:aa:5b:ed:5a:95:31:fe:c0:cb:b1: b8:c7:3f:1f:3d:92:a6:d6:72:1d:d5:ff:7c:3f:ab: 42:95:2b:7d:c6:55:4e:e5:6f:c0:83:7a:0c:94:19: 01:48:b1:50:a6:37:5a:0e:9d:f6:bb:d6:e3:6d:5e: 00:1a:c6:7d:8e:43:1e:21:a1:35:21:c8:62:a1:e4: 4a:71:5a:b1:2d:5a:46:e6:47:23:08:f2:ac:29:77: d1:10:96:60:23:16:4f:73:e7:32:dd:38:94:96:9b: 58:ae:54:fc:ce:8d:da:78:cc:74:88:b4:19:05:12: 87:0f:14:5f:ff:c4:2d:81:66:8e:84:94:10:c1:17: db:e8:68:e7:ba:5a:86:ad:d4:be:15:41:5c:6b:e7: 19:b3:3e:c4:bb:80:59:43:d3:a7:3e:3d:29:48:f7: 41:4c:85:f4:fb:bd:82:90:77:2d:53:1d:f9:1d:85: d6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D5:6A:E6:AB:D5:2D:69:BA:81:33:D5:D6:47:12:96:5D:61:BD:34 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F10FEA5C099A11EAB5891D5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 3a:07:46:5d:ed:d2:a0:69:c6:b1:09:f2:d9:8f:b8:d8:0c:a3: f0:17:60:d9:14:81:67:7e:bf:c3:6c:50:3e:9c:59:73:86:ec: 91:c6:52:5d:00:2e:4a:9d:5e:b6:50:d7:b5:60:c9:da:be:44: 8e:59:d1:4b:c9:d2:79:fe:85:42:01:5d:ca:b6:52:3b:89:21: 78:58:7c:4f:1c:04:d9:f1:6b:02:d0:9c:a4:05:be:71:31:5d: 72:05:c3:1c:4c:fa:26:63:40:a9:6b:06:60:37:99:a7:50:b6: d4:d8:fe:b7:a8:fb:08:c9:99:eb:a7:68:2b:6b:e0:11:15:f6: 1c:91:39:18:7b:60:dc:2b:8b:6c:4c:18:2e:0e:00:02:58:06: 8f:44:24:fe:8b:5f:c0:9d:23:ac:03:63:41:1b:24:54:72:28: a3:f1:ff:22:62:22:1c:15:20:b7:f5:67:eb:c7:4d:01:87:e0: 77:72:ab:d5:11:c5:4a:14:3a:6e:53:b4:58:ed:2c:75:5b:d6: 67:76:21:4e:18:9d:b3:40:97:5b:14:18:71:41:e8:f9:ef:0a: 54:bc:c0:fc:59:21:45:ca:50:23:76:c4:2e:ec:52:b8:19:ec: 8b:55:9b:96:c3:91:36:4e:a5:0c:c8:bc:60:42:2b:a7:c4:85: c5:ff:0b:ac -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDE5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJkMy1mZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7Fitm3ZMehnAQdkEhGWMatuikMTLXDV6g1ZYwfq1IGNnDl1FPy32QT1w7z2 Cr8u3kD+I6BJFYOD8mw0sUfHkzv0wJRfyNTxLbFBnqEkiqpb7VqVMf7Ay7G4xz8f PZKm1nId1f98P6tClSt9xlVO5W/Ag3oMlBkBSLFQpjdaDp32u9bjbV4AGsZ9jkMe IaE1IchioeRKcVqxLVpG5kcjCPKsKXfREJZgIxZPc+cy3TiUlptYrlT8zo3aeMx0 iLQZBRKHDxRf/8QtgWaOhJQQwRfb6GjnulqGrdS+FUFca+cZsz7Eu4BZQ9OnPj0p SPdBTIX0+72CkHctUx35HYXWVwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFHjVauar 1S1puoEz1dZHEpZdYb00MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjEwRkVBNUMw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQA6B0Zd7dKgacaxCfLZ j7jYDKPwF2DZFIFnfr/DbFA+nFlzhuyRxlJdAC5KnV62UNe1YMnavkSOWdFLydJ5 /oVCAV3KtlI7iSF4WHxPHATZ8WsC0JykBb5xMV1yBcMcTPomY0CpawZgN5mnULbU 2P63qPsIyZnrp2gra+ARFfYckTkYe2DcK4tsTBguDgACWAaPRCT+i1/AnSOsA2NB GyRUciij8f8iYiIcFSC39Wfrx00Bh+B3cqvVEcVKFDpuU7RY7Sx1W9ZndiFOGJ2z QJdbFBhxQej57wpUvMD8WSFFylAjdsQu7FK4GeyLVZuWw5E2TqUMyLxgQiunxIXF /wus -----END CERTIFICATE-----Generated at Fri Mar 13 10:38:48 2026 by rpki-client