$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F254F0CE099A11EAB5891D5BC4F9AE02.roa File: F254F0CE099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: w8ZntLX1S3/THAu/c0qwhWOTKrQxghdIPf7smP6Bqe0= Subject key identifier: 7B:58:41:35:D8:59:BA:05:54:D9:DB:18:3F:49:6B:E7:27:CC:B3:B1 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10AA Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F254F0CE099A11EAB5891D5BC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:45 +0000 ROA not before: Fri 06 Mar 2026 18:24:45 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397233 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4266 (0x10aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:45 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bed-ce21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:80:40:4d:36:d1:6a:09:59:c3:93:a5:76:05: f0:1c:66:01:25:14:d5:51:ff:5b:f8:01:c1:1f:70: 1f:ca:a7:0f:8f:b5:68:8a:a3:9b:83:9c:58:d4:37: f2:b7:14:2d:da:86:bb:b7:a5:f9:2a:10:c2:95:a6: fd:59:f3:64:dd:aa:b5:33:8a:a5:7d:2f:fb:ac:3b: 86:cd:a1:79:00:4f:cf:45:7c:c0:97:f4:42:60:e5: 07:14:5e:47:3c:ad:96:91:4c:4b:05:4b:84:45:1b: 70:8f:f9:4a:fc:c5:4a:6f:ad:a7:e5:72:0a:f1:e6: 07:db:5c:00:71:ea:03:19:47:b5:ec:71:8a:83:32: 29:52:6e:07:8f:b0:3b:97:a8:51:0d:2e:7e:c7:30: 2f:d0:24:fb:df:43:37:74:db:47:72:81:7c:ff:2c: 3e:6d:a0:c1:5d:b1:b8:99:17:f5:90:e5:37:15:70: 74:25:3f:80:82:d8:5e:ca:03:21:5c:40:c3:f2:f8: f2:ca:29:32:0d:0c:5c:8c:dc:8b:75:07:f2:52:a8: 53:41:2b:1f:85:d5:7e:83:27:0a:24:4b:60:9a:91: 61:bf:93:23:37:9c:9a:b4:e1:9e:fe:83:d5:c9:83: cb:89:87:dd:27:c7:66:d1:46:6a:22:c9:6c:29:af: b2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:58:41:35:D8:59:BA:05:54:D9:DB:18:3F:49:6B:E7:27:CC:B3:B1 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F254F0CE099A11EAB5891D5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 60:e8:29:44:27:fd:67:e3:ec:a9:0e:d6:88:d8:73:62:1b:8e: f9:3d:5f:c5:9a:78:47:b7:51:ad:c5:6e:dd:a3:3c:33:ea:ae: 31:4c:8a:4e:b5:98:fb:b9:88:74:70:6f:07:0c:9f:97:6d:4c: 98:fc:63:e7:d6:f1:28:0a:83:9e:30:73:10:3c:92:25:4c:53: 5f:b0:21:f5:45:d8:f4:58:86:42:d1:fb:46:f8:d8:65:e8:b0: 90:92:1b:a2:aa:71:61:d2:dc:e6:fd:64:81:ae:cd:2b:a9:aa: 46:07:a9:cb:b0:7c:f4:36:ee:e3:c0:fd:6a:6e:1e:a0:4e:a2: dd:9e:0f:03:67:ae:83:f6:4b:85:e4:15:20:95:74:ac:19:51: 81:9c:2f:bd:46:b4:e5:e4:01:69:71:b5:c1:31:e8:c5:33:e3: ab:a4:be:8c:c7:0f:83:23:55:49:0b:75:f2:dd:d7:63:35:7c: 98:0c:b3:fa:18:a4:91:b7:a7:c6:18:63:4a:a2:32:ab:8d:d3: 76:b8:75:f9:d4:b7:7e:4d:c3:c3:c1:16:39:40:9e:df:e6:1a: 85:96:9a:75:af:a9:41:7c:2a:7a:ac:54:9a:57:1f:62:f6:c4: ce:94:a9:41:63:f1:a8:53:2e:d1:dc:ec:90:eb:36:b6:bf:b6: 59:e5:d2:9c -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDQ1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJlZC1jZTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIBATTbRaglZw5OldgXwHGYBJRTVUf9b+AHBH3AfyqcPj7VoiqObg5xY1Dfy txQt2oa7t6X5KhDClab9WfNk3aq1M4qlfS/7rDuGzaF5AE/PRXzAl/RCYOUHFF5H PK2WkUxLBUuERRtwj/lK/MVKb62n5XIK8eYH21wAceoDGUe17HGKgzIpUm4Hj7A7 l6hRDS5+xzAv0CT730M3dNtHcoF8/yw+baDBXbG4mRf1kOU3FXB0JT+AgtheygMh XEDD8vjyyikyDQxcjNyLdQfyUqhTQSsfhdV+gycKJEtgmpFhv5MjN5yatOGe/oPV yYPLiYfdJ8dm0UZqIslsKa+yswIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFHtYQTXY WboFVNnbGD9Ja+cnzLOxMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjI1NEYwQ0Uw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBg6ClEJ/1n4+ypDtaI 2HNiG475PV/FmnhHt1GtxW7dozwz6q4xTIpOtZj7uYh0cG8HDJ+XbUyY/GPn1vEo CoOeMHMQPJIlTFNfsCH1Rdj0WIZC0ftG+Nhl6LCQkhuiqnFh0tzm/WSBrs0rqapG B6nLsHz0Nu7jwP1qbh6gTqLdng8DZ66D9kuF5BUglXSsGVGBnC+9RrTl5AFpcbXB MejFM+OrpL6Mxw+DI1VJC3Xy3ddjNXyYDLP6GKSRt6fGGGNKojKrjdN2uHX51Ld+ TcPDwRY5QJ7f5hqFlpp1r6lBfCp6rFSaVx9i9sTOlKlBY/GoUy7R3OyQ6za2v7ZZ 5dKc -----END CERTIFICATE-----Generated at Fri Mar 13 10:38:50 2026 by rpki-client