$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F1D9CD5E099A11EAB5891D5BC4F9AE02.roa File: F1D9CD5E099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: DA7Jf2mkKMXra6557lBMjeEsldrSF6mTFJGbUe1k5Cs= Subject key identifier: F2:A1:73:1F:98:6B:F2:E1:8A:32:4D:27:06:E7:B3:3F:CF:C8:91:88 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10A2 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F1D9CD5E099A11EAB5891D5BC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:30 +0000 ROA not before: Fri 06 Mar 2026 18:24:30 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397225 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4258 (0x10a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:30 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bdd-5551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:1c:63:c6:bc:c6:4d:ae:ed:15:e5:97:ee:1d: c1:e4:20:b6:dc:1d:6b:10:31:a4:50:79:39:ad:f7: e3:3a:d9:5c:52:c9:7b:2c:bb:5c:6e:6d:0f:54:2a: 0f:d9:68:79:5b:9a:2c:64:55:bc:2e:6a:fe:15:1e: 1f:95:bb:35:3f:b7:82:74:e3:43:20:e8:1d:6c:62: 1c:54:9b:4b:a0:96:c4:bd:a3:3d:06:33:cf:ac:37: f1:00:5c:ed:9f:1c:20:d6:ba:27:05:63:82:b9:1d: 06:c4:8a:8f:de:f5:3e:9d:03:05:05:45:13:50:a0: 67:05:bd:7a:16:85:0f:d8:60:8c:df:76:60:e8:5b: 4f:a1:1f:db:2a:85:e3:fc:88:e5:75:2b:40:0b:fb: 7b:61:ad:49:0b:6b:11:85:16:ae:30:cd:1c:08:11: f6:f1:77:1b:45:26:b8:83:18:78:16:9d:b9:66:d6: 6c:55:e5:a5:70:16:84:cc:4a:7d:0a:f6:36:81:cb: fd:e4:2a:a4:06:11:67:f7:78:d9:38:ce:6a:37:31: af:fd:2f:95:c9:ec:99:f1:09:b6:c8:d0:35:74:22: 71:25:db:65:c1:4f:d5:b5:7e:cd:a9:8e:eb:c5:32: 66:0b:28:9e:35:87:c7:2e:7e:6e:c7:a5:35:38:ba: c7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A1:73:1F:98:6B:F2:E1:8A:32:4D:27:06:E7:B3:3F:CF:C8:91:88 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F1D9CD5E099A11EAB5891D5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 38:7e:3e:40:31:2b:a3:0b:d9:0c:b2:83:e8:1d:df:6d:48:62: 1e:ae:9e:a9:48:9a:5d:c6:8c:c8:20:bd:e8:64:cc:ab:3f:b5: 84:a6:bd:c7:fc:b5:9c:98:77:5e:b1:f4:68:82:52:2b:39:96: 5d:71:b8:9d:d2:60:af:75:af:f1:ad:8a:0e:87:5a:be:c2:ef: 55:b1:b3:01:46:53:de:63:c9:3c:ec:db:7f:20:12:a8:eb:d3: 32:e6:d4:de:aa:bb:c3:4a:18:f1:5e:3e:93:5c:39:4c:53:42: a4:1f:15:9f:c2:9a:fd:6a:82:40:ab:d1:80:98:c0:63:a4:d9: 60:a0:9b:16:4e:ed:c1:04:97:c0:c2:2f:10:d8:83:5c:53:77: d5:60:53:d0:92:fb:76:59:85:bb:9b:eb:1d:7c:6a:92:ce:04: 2a:f9:30:34:82:a4:b9:88:18:c9:e5:d2:6d:d4:91:d1:27:82: cf:cd:14:22:d4:d5:f0:b8:cb:fd:87:bb:71:6a:1a:b2:3b:9a: 21:f5:cd:1d:0a:61:06:da:af:81:2f:2d:3d:90:32:29:fa:29: 2e:49:66:f9:5b:85:fd:75:41:a1:02:81:98:38:ca:7e:37:2b: 47:fe:0d:f7:90:e1:5e:8e:d8:67:3e:59:2e:be:9b:0a:95:02: b5:b2:30:b8 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDMwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJkZC01NTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkBxjxrzGTa7tFeWX7h3B5CC23B1rEDGkUHk5rffjOtlcUsl7LLtcbm0PVCoP 2Wh5W5osZFW8Lmr+FR4flbs1P7eCdONDIOgdbGIcVJtLoJbEvaM9BjPPrDfxAFzt nxwg1ronBWOCuR0GxIqP3vU+nQMFBUUTUKBnBb16FoUP2GCM33Zg6FtPoR/bKoXj /IjldStAC/t7Ya1JC2sRhRauMM0cCBH28XcbRSa4gxh4Fp25ZtZsVeWlcBaEzEp9 CvY2gcv95CqkBhFn93jZOM5qNzGv/S+VyeyZ8Qm2yNA1dCJxJdtlwU/VtX7NqY7r xTJmCyieNYfHLn5ux6U1OLrHtwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFPKhcx+Y a/LhijJNJwbnsz/PyJGIMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjFEOUNENUUw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQA4fj5AMSujC9kMsoPo Hd9tSGIerp6pSJpdxozIIL3oZMyrP7WEpr3H/LWcmHdesfRoglIrOZZdcbid0mCv da/xrYoOh1q+wu9VsbMBRlPeY8k87Nt/IBKo69My5tTeqrvDShjxXj6TXDlMU0Kk HxWfwpr9aoJAq9GAmMBjpNlgoJsWTu3BBJfAwi8Q2INcU3fVYFPQkvt2WYW7m+sd fGqSzgQq+TA0gqS5iBjJ5dJt1JHRJ4LPzRQi1NXwuMv9h7txahqyO5oh9c0dCmEG 2q+BLy09kDIp+ikuSWb5W4X9dUGhAoGYOMp+NytH/g33kOFejthnPlkuvpsKlQK1 sjC4 -----END CERTIFICATE-----Generated at Fri Mar 13 11:57:24 2026 by rpki-client