$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F3DDF814099A11EAB5891D5BC4F9AE02.roa File: F3DDF814099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: 1Y+dICoSBsU30TfoMZlrt80KRJBIeoOyKXknb8iiWJM= Subject key identifier: 55:FE:06:9C:7F:6B:DB:5B:54:A3:E5:73:05:6D:DD:FD:A7:73:CD:9B Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10B0 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F3DDF814099A11EAB5891D5BC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:56 +0000 ROA not before: Fri 06 Mar 2026 18:24:56 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397239 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4272 (0x10b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:56 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bf8-4042 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:3d:72:4d:1f:75:92:95:cb:e6:bb:47:db:b5: 63:4d:06:16:ef:e5:e0:c7:5e:ac:9d:8f:e1:49:30: e2:88:66:54:89:ae:3a:38:1d:7f:eb:23:23:78:e1: b0:c6:32:68:f0:f5:5d:87:93:95:a5:57:a4:e9:7f: b4:cc:47:69:da:31:d7:f2:8c:ca:b0:77:e6:d5:cf: f2:6d:11:5f:40:20:87:da:c5:fe:39:62:f8:3c:06: 58:d4:ea:b5:e7:f0:12:62:3a:44:9a:47:9c:f3:3f: f6:b9:27:ff:b6:61:76:8b:4e:8a:3b:b4:3f:16:38: ff:30:f4:aa:75:10:6f:3d:6a:ee:10:04:e7:16:af: 7f:ef:33:72:d5:f0:28:dd:b9:27:38:59:33:3a:97: f0:80:21:ce:63:6a:d6:74:7e:85:c7:65:dd:dd:b4: b7:83:fa:2e:93:72:f8:35:a1:6a:62:24:67:38:c8: c6:38:be:70:bc:8c:02:b6:cc:de:27:7e:5d:76:6c: 38:7e:6e:b0:c8:57:06:0d:b9:c3:0d:f9:fe:fc:65: 01:b7:fd:72:90:77:99:a2:79:23:95:33:e8:de:e0: 45:fe:5c:66:44:b5:0e:bd:5a:13:2d:a3:43:7c:f9: 2f:43:e7:f0:ea:3a:e4:1c:63:67:6f:84:c4:47:9a: e2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:FE:06:9C:7F:6B:DB:5B:54:A3:E5:73:05:6D:DD:FD:A7:73:CD:9B X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F3DDF814099A11EAB5891D5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 88:ed:b4:47:96:ec:27:2c:30:55:21:a9:17:60:1c:c5:c8:23: a0:24:f0:8f:9a:0c:2e:d1:72:b5:df:33:e6:35:4c:25:46:aa: a6:f2:99:2c:4d:d7:63:06:6e:84:85:8b:b3:d7:c6:36:c1:80: 01:b6:47:fe:29:4c:e6:e2:98:1e:4b:6c:5a:33:09:59:24:2c: 94:aa:27:61:cd:6c:ed:a0:cd:67:63:5e:04:16:8f:7b:d1:98: 8b:e9:8c:4b:5d:a1:c8:72:4b:38:d1:2d:7e:13:9e:53:b5:cd: 97:e5:da:0a:c8:c5:af:f3:14:84:6a:12:ff:b2:33:de:40:a0: 5b:83:d7:76:87:ef:a4:30:8e:4c:33:cd:48:a7:2d:86:a9:7b: 15:f8:d5:b6:b7:1b:1b:29:d9:ec:1a:57:ee:66:20:ae:da:28: 65:99:f6:e9:24:8d:66:f8:e7:97:7a:9f:33:dc:00:55:1d:c0: c8:d3:b8:d4:97:77:e8:4a:95:44:b2:26:54:51:17:87:6c:8f: 0a:98:34:ec:35:3b:82:85:6a:9a:2d:5e:cf:fd:28:c5:94:78: 6b:7c:19:71:d8:0c:eb:b2:bc:25:e8:28:74:60:dc:6f:f7:a5: ac:3a:63:c1:ea:33:6c:63:7d:98:98:87:70:65:00:04:eb:6d: 64:6a:2b:49 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICELAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDU2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJmOC00MDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4T1yTR91kpXL5rtH27VjTQYW7+Xgx16snY/hSTDiiGZUia46OB1/6yMjeOGw xjJo8PVdh5OVpVek6X+0zEdp2jHX8ozKsHfm1c/ybRFfQCCH2sX+OWL4PAZY1Oq1 5/ASYjpEmkec8z/2uSf/tmF2i06KO7Q/Fjj/MPSqdRBvPWruEATnFq9/7zNy1fAo 3bknOFkzOpfwgCHOY2rWdH6Fx2Xd3bS3g/ouk3L4NaFqYiRnOMjGOL5wvIwCtsze J35ddmw4fm6wyFcGDbnDDfn+/GUBt/1ykHeZonkjlTPo3uBF/lxmRLUOvVoTLaND fPkvQ+fw6jrkHGNnb4TER5ri5QIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFFX+Bpx/ a9tbVKPlcwVt3f2nc82bMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjNEREY4MTQw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQCI7bRHluwnLDBVIakX YBzFyCOgJPCPmgwu0XK13zPmNUwlRqqm8pksTddjBm6EhYuz18Y2wYABtkf+KUzm 4pgeS2xaMwlZJCyUqidhzWztoM1nY14EFo970ZiL6YxLXaHIcks40S1+E55Ttc2X 5doKyMWv8xSEahL/sjPeQKBbg9d2h++kMI5MM81Ipy2GqXsV+NW2txsbKdnsGlfu ZiCu2ihlmfbpJI1m+OeXep8z3ABVHcDI07jUl3foSpVEsiZUUReHbI8KmDTsNTuC hWqaLV7P/SjFlHhrfBlx2Azrsrwl6Ch0YNxv96WsOmPB6jNsY32YmIdwZQAE621k aitJ -----END CERTIFICATE-----Generated at Fri Mar 13 10:38:53 2026 by rpki-client