$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F2D46CA0099A11EAB5891D5BC4F9AE02.roa File: F2D46CA0099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: a/0xClTt7ldcRncUEUaCVfxi9H0922YzEGdC/5hjxC0= Subject key identifier: 2F:6E:B6:1B:AB:7A:32:A3:EF:D7:57:ED:79:F7:3A:05:56:6A:BE:BE Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10AE Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F2D46CA0099A11EAB5891D5BC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:52 +0000 ROA not before: Fri 06 Mar 2026 18:24:52 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397237 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4270 (0x10ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:52 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bf4-38fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:7b:f4:cf:f8:8a:12:a3:e2:0a:08:dd:c3:62: b2:5c:df:87:c7:de:5d:e2:6a:03:3b:9f:4f:e9:a2: a5:13:78:85:95:8d:7f:64:3b:88:bb:8d:77:be:fb: 78:52:8d:36:41:4a:9b:95:66:25:7c:0f:b0:74:2e: 03:b1:29:b9:6e:2c:e3:6a:b6:08:c8:7d:2c:fe:58: 5a:15:9b:ad:1f:79:c3:36:9e:2f:06:32:7d:45:8c: e5:98:59:63:12:3a:7e:9d:35:a2:b0:5e:ae:94:86: a6:3a:42:6f:f4:ac:df:4a:6a:15:4f:fa:42:f5:b2: 83:70:da:e1:e5:b1:6a:e6:c0:4d:98:42:2b:bb:47: 46:2d:0d:4e:a4:f9:60:ca:af:f9:28:3e:cd:ef:24: 14:5f:77:20:11:b7:21:ea:17:34:96:14:f6:94:00: f8:68:b3:a0:9a:a7:06:e9:39:e3:cd:7b:a8:12:ff: 4e:20:70:aa:3e:7b:45:c1:3d:4d:20:ed:cb:19:37: 83:80:a1:30:49:77:74:71:14:04:1f:d4:46:35:c8: 35:80:78:c9:b5:bb:e3:cb:2d:ac:54:08:65:58:00: 3a:2d:17:47:82:da:67:20:0e:84:53:be:97:f1:5b: 16:49:58:4b:b7:45:aa:c6:53:dd:ba:9c:39:1b:87: 5f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:6E:B6:1B:AB:7A:32:A3:EF:D7:57:ED:79:F7:3A:05:56:6A:BE:BE X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F2D46CA0099A11EAB5891D5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 48:ff:1d:06:6d:3e:ef:e1:f0:a6:70:31:42:c9:8b:72:d6:75: 57:44:04:0e:0f:51:46:90:f1:ea:85:e6:5b:21:67:b9:f0:23: 1e:de:7d:19:fc:5b:3f:f5:9c:03:3b:ba:81:0e:ce:87:77:1f: 7f:5e:de:e6:c7:59:39:0f:b4:50:7b:5e:6d:31:de:88:42:20: 60:98:e0:19:35:4d:5f:b4:a5:5a:b9:99:51:bd:43:3e:ba:07: e1:8c:26:5f:80:6d:3d:4d:af:86:0e:88:53:aa:06:9f:11:0c: 82:ca:53:7a:1b:b7:ad:8f:84:5a:66:de:56:3b:c9:b5:82:77: 85:63:f8:74:e6:89:c6:c7:4a:74:59:a4:2a:d6:ec:f8:16:e2: b8:0d:ca:b3:25:18:ac:e3:c4:03:af:c5:db:a4:2b:8c:c8:c0: e1:2e:ff:38:6a:e2:3f:d3:86:43:3e:b3:34:2d:76:5f:cf:b5: 18:39:24:f1:8b:6e:2b:d7:09:11:4c:c8:08:8c:e4:a5:5b:9e: 5f:e9:1b:04:bb:87:19:27:c4:b8:93:37:a8:a3:10:de:ea:6e: de:b0:c1:60:e2:29:f9:d2:88:f2:6f:a6:8d:5e:19:dd:7a:43: 4f:3f:15:1f:02:cf:13:d2:2b:ab:53:5a:33:f6:28:c8:d6:18: 07:de:e6:9a -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDUyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJmNC0zOGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjnv0z/iKEqPiCgjdw2KyXN+Hx95d4moDO59P6aKlE3iFlY1/ZDuIu413vvt4 Uo02QUqblWYlfA+wdC4DsSm5bizjarYIyH0s/lhaFZutH3nDNp4vBjJ9RYzlmFlj Ejp+nTWisF6ulIamOkJv9KzfSmoVT/pC9bKDcNrh5bFq5sBNmEIru0dGLQ1OpPlg yq/5KD7N7yQUX3cgEbch6hc0lhT2lAD4aLOgmqcG6TnjzXuoEv9OIHCqPntFwT1N IO3LGTeDgKEwSXd0cRQEH9RGNcg1gHjJtbvjyy2sVAhlWAA6LRdHgtpnIA6EU76X 8VsWSVhLt0WqxlPdupw5G4dfzQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFC9uthur ejKj79dX7Xn3OgVWar6+MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjJENDZDQTAw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQBI/x0GbT7v4fCmcDFC yYty1nVXRAQOD1FGkPHqheZbIWe58CMe3n0Z/Fs/9ZwDO7qBDs6Hdx9/Xt7mx1k5 D7RQe15tMd6IQiBgmOAZNU1ftKVauZlRvUM+ugfhjCZfgG09Ta+GDohTqgafEQyC ylN6G7etj4RaZt5WO8m1gneFY/h05onGx0p0WaQq1uz4FuK4DcqzJRis48QDr8Xb pCuMyMDhLv84auI/04ZDPrM0LXZfz7UYOSTxi24r1wkRTMgIjOSlW55f6RsEu4cZ J8S4kzeooxDe6m7esMFg4in50ojyb6aNXhndekNPPxUfAs8T0iurU1oz9ijI1hgH 3uaa -----END CERTIFICATE-----Generated at Fri Mar 13 11:57:27 2026 by rpki-client