$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa File: F49547A8099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: FhN6664+4afF44qIxq6JZ2vC41ZwtCMOO7NPjSQvAAg= Subject key identifier: 07:CB:12:56:15:B8:23:E1:9A:F6:47:AE:15:01:47:86:FC:C8:02:61 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 10B2 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:59 +0000 ROA not before: Fri 06 Mar 2026 18:24:59 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397241 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4274 (0x10b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:59 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bfb-ab3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:64:c9:7b:db:69:a9:62:10:b7:db:e9:45:14: 81:24:bd:90:94:f8:63:08:ec:9b:56:46:d7:ac:63: 7c:b7:b2:c4:5b:5b:1e:0a:38:cf:eb:4d:8c:2d:94: ec:40:9f:19:3c:4b:2e:b4:43:f5:e1:41:d9:69:fa: 6d:ec:ad:6f:ff:16:20:67:f2:97:1d:c6:ca:1c:d1: ce:91:03:fa:94:8d:30:c6:59:35:6f:69:91:d5:13: 2e:43:e8:85:65:56:ec:49:f7:7f:6e:4c:db:8f:6c: a3:57:85:7a:2c:49:a2:4a:1a:ff:e7:e2:f7:66:55: df:4c:2c:a6:34:c5:0a:83:cc:a6:b2:04:c0:ed:bb: e1:aa:6c:54:4a:01:d5:a5:cf:9c:02:2a:9f:70:a3: 30:20:e9:ae:d2:c4:1e:3c:fc:1e:b3:61:b2:a0:ef: f8:a3:dd:e0:fb:d4:47:bf:7e:0a:d0:28:b5:39:bf: d0:de:f9:ba:eb:b1:db:93:3f:33:ca:82:d5:8b:da: 64:d8:56:72:97:23:81:5f:b8:60:ea:1c:ce:9f:97: ca:60:8b:5c:5f:90:e5:2f:97:82:5f:0f:04:bf:96: 82:e2:9d:2a:d2:dd:12:29:45:d6:36:fe:6c:b2:02: 5b:62:20:dd:0b:cc:31:3b:0c:31:7b:77:0a:f0:1f: 8e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:CB:12:56:15:B8:23:E1:9A:F6:47:AE:15:01:47:86:FC:C8:02:61 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 84:7d:a1:df:37:18:12:1e:b5:b6:e1:de:9c:0b:1e:10:c5:b4: 64:c0:df:73:70:27:c0:03:c7:38:79:b5:bd:c4:c3:91:57:60: 81:65:68:64:64:46:cf:22:e8:82:67:d4:0b:77:ad:52:2d:30: 3c:eb:ac:11:98:0e:b0:ce:bb:5d:3a:ea:0e:d5:f6:d2:e7:bc: 46:a3:cd:2e:f0:c7:d8:c2:d7:41:b2:51:65:4c:13:a5:2a:b1: 9d:7d:00:a4:84:3d:7d:4c:ef:cf:2c:a3:5c:29:cd:fd:50:19: 55:d9:0e:b3:bb:2e:91:d8:57:6d:72:82:e3:73:3a:b1:ec:a4: 86:16:d9:67:da:b8:da:9f:a4:47:9b:39:93:80:5c:a9:fe:9a: 8b:03:98:d0:69:77:46:a3:37:16:f3:9c:86:f0:15:8a:7b:fa: a5:bc:02:99:87:8b:f8:2d:12:39:18:3c:d0:b3:f1:19:59:81: 77:e3:26:45:a0:47:15:e2:79:82:80:89:30:28:3e:3d:be:79: 40:54:e9:9a:8a:b6:bf:0f:78:d6:48:24:01:45:f8:46:67:1c: db:17:13:a6:7c:9e:66:66:4a:3e:6f:b2:c3:e2:57:23:11:4a: aa:90:9d:44:12:f0:09:b8:b1:66:29:cc:a1:75:3e:50:4f:ed: 78:11:c0:25 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICELIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDU5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJmYi1hYjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWTJe9tpqWIQt9vpRRSBJL2QlPhjCOybVkbXrGN8t7LEW1seCjjP602MLZTs QJ8ZPEsutEP14UHZafpt7K1v/xYgZ/KXHcbKHNHOkQP6lI0wxlk1b2mR1RMuQ+iF ZVbsSfd/bkzbj2yjV4V6LEmiShr/5+L3ZlXfTCymNMUKg8ymsgTA7bvhqmxUSgHV pc+cAiqfcKMwIOmu0sQePPwes2GyoO/4o93g+9RHv34K0Ci1Ob/Q3vm667Hbkz8z yoLVi9pk2FZylyOBX7hg6hzOn5fKYItcX5DlL5eCXw8Ev5aC4p0q0t0SKUXWNv5s sgJbYiDdC8wxOwwxe3cK8B+ORwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFAfLElYV uCPhmvZHrhUBR4b8yAJhMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjQ5NTQ3QTgw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQCEfaHfNxgSHrW24d6c Cx4QxbRkwN9zcCfAA8c4ebW9xMORV2CBZWhkZEbPIuiCZ9QLd61SLTA866wRmA6w zrtdOuoO1fbS57xGo80u8MfYwtdBslFlTBOlKrGdfQCkhD19TO/PLKNcKc39UBlV 2Q6zuy6R2FdtcoLjczqx7KSGFtln2rjan6RHmzmTgFyp/pqLA5jQaXdGozcW85yG 8BWKe/qlvAKZh4v4LRI5GDzQs/EZWYF34yZFoEcV4nmCgIkwKD49vnlAVOmaira/ D3jWSCQBRfhGZxzbFxOmfJ5mZko+b7LD4lcjEUqqkJ1EEvAJuLFmKcyhdT5QT+14 EcAl -----END CERTIFICATE-----Generated at Fri Mar 13 10:40:00 2026 by rpki-client