$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/52BF1CA809B111EAB045B31EC4F9AE02.roa File: 52BF1CA809B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: joF0pOdGQu5aT/lubZNSQgpPUODhrLIq/g06h0leOjo= Subject key identifier: B4:75:11:7D:FB:EC:44:AE:10:2D:6F:68:99:7B:D9:1F:8C:A5:31:40 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1099 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/52BF1CA809B111EAB045B31EC4F9AE02.roa Signing time: Fri 06 Mar 2026 18:24:12 +0000 ROA not before: Fri 06 Mar 2026 18:24:12 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 397216 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:05:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4249 (0x1099) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Mar 6 18:24:12 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab1bcc-776d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:52:b3:d8:29:ff:c1:65:84:fd:42:36:0e:e2: 86:4f:5f:ca:e9:da:af:c7:9f:61:83:0a:ee:e7:d5: 4d:76:d7:e4:0e:61:4d:c1:72:cf:75:07:10:e6:09: 61:1e:7b:27:d6:c1:00:1e:1d:c8:84:9b:af:b1:9e: 69:30:3a:a4:56:52:8b:ec:4a:e7:21:da:2f:87:fc: dc:12:c9:7e:0c:b8:4c:c4:39:81:9e:97:c0:06:ca: c3:f0:9c:3b:81:63:18:90:9e:4c:31:87:d9:40:f8: 69:12:17:65:58:75:93:c5:75:ed:45:be:81:36:bd: c7:67:e8:27:bd:a4:10:42:42:48:99:20:5e:73:a9: bf:07:a9:bb:bf:19:23:61:21:b9:e0:c9:88:05:de: da:8b:4c:c2:29:87:9c:b7:1f:5d:6b:38:12:2a:92: f7:d9:9e:40:4b:a1:05:e0:99:5f:fc:f6:89:f2:57: 02:db:95:7e:5b:73:64:d2:c7:e1:c0:b0:cb:23:fe: 43:9c:56:7f:99:3e:a6:7a:f3:f6:b5:83:24:ff:b8: ab:ad:33:52:bc:35:f4:9f:ea:0e:5a:20:6b:0d:d0: 00:00:88:1f:d8:27:01:78:bf:5d:4c:e5:54:60:b1: 50:2b:06:b1:6f:70:73:1a:94:e9:27:66:3f:a0:af: 78:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:75:11:7D:FB:EC:44:AE:10:2D:6F:68:99:7B:D9:1F:8C:A5:31:40 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/52BF1CA809B111EAB045B31EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 1d:9d:2d:31:6c:42:dd:2b:b8:c9:35:6d:3c:45:45:e8:90:92: 2c:0f:c3:7a:3e:f6:7d:c1:13:06:a6:34:6d:a7:e0:b5:2b:36: 6e:9a:b5:33:23:0e:13:bb:58:e2:09:9f:f9:5d:a7:16:50:28: 93:4b:db:f5:66:d5:43:76:1c:09:6f:b2:56:aa:cf:59:d6:2e: 6f:02:fe:3b:0b:57:3d:2c:7a:f1:45:d8:23:95:c2:08:00:9f: 7c:6b:6c:47:a1:a5:a6:b2:a4:08:ba:ec:20:65:96:3a:4b:ac: 56:e4:59:a1:74:01:09:83:93:d0:93:fa:37:a9:df:17:f7:a3: 63:ce:f2:74:01:04:05:cb:56:ef:9a:ec:af:94:2e:f9:5f:a5: f8:b2:e4:75:58:65:45:d2:93:bf:4f:f4:68:e2:35:83:9a:2d: d5:f9:af:04:38:e5:1c:c3:92:95:85:5d:39:74:1f:13:9d:78: cc:2c:a1:63:62:72:9a:68:96:ca:4a:42:71:99:04:c6:f1:10: f1:0b:17:1f:22:6b:d6:20:d2:32:a3:19:25:81:3d:b5:2c:d1: 33:a5:f3:17:19:80:23:46:e1:18:8e:3b:f6:27:d7:bb:31:66: 8f:a0:f7:0b:6c:0b:83:e0:da:8a:09:f1:29:09:15:1c:09:15: e3:3c:da:89 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICEJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjYwMzA2MTgyNDEyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMWJjYy03NzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1Kz2Cn/wWWE/UI2DuKGT1/K6dqvx59hgwru59VNdtfkDmFNwXLPdQcQ5glh Hnsn1sEAHh3IhJuvsZ5pMDqkVlKL7ErnIdovh/zcEsl+DLhMxDmBnpfABsrD8Jw7 gWMYkJ5MMYfZQPhpEhdlWHWTxXXtRb6BNr3HZ+gnvaQQQkJImSBec6m/B6m7vxkj YSG54MmIBd7ai0zCKYectx9dazgSKpL32Z5AS6EF4Jlf/PaJ8lcC25V+W3Nk0sfh wLDLI/5DnFZ/mT6mevP2tYMk/7irrTNSvDX0n+oOWiBrDdAAAIgf2CcBeL9dTOVU YLFQKwaxb3BzGpTpJ2Y/oK94XwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFLR1EX37 7ESuEC1vaJl72R+MpTFAMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTJCRjFDQTgw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAa BAIAATAUMAwDBAJ4HfwDBAB4Hf4DBADLEUgwIwQCAAIwHTASAwcAIAENzQABAwcD IAENzQAAAwcAIAENzd0FMA0GCSqGSIb3DQEBCwUAA4IBAQAdnS0xbELdK7jJNW08 RUXokJIsD8N6PvZ9wRMGpjRtp+C1KzZumrUzIw4Tu1jiCZ/5XacWUCiTS9v1ZtVD dhwJb7JWqs9Z1i5vAv47C1c9LHrxRdgjlcIIAJ98a2xHoaWmsqQIuuwgZZY6S6xW 5FmhdAEJg5PQk/o3qd8X96NjzvJ0AQQFy1bvmuyvlC75X6X4suR1WGVF0pO/T/Ro 4jWDmi3V+a8EOOUcw5KVhV05dB8TnXjMLKFjYnKaaJbKSkJxmQTG8RDxCxcfImvW INIyoxklgT21LNEzpfMXGYAjRuEYjjv2J9e7MWaPoPcLbAuD4NqKCfEpCRUcCRXj PNqJ -----END CERTIFICATE-----Generated at Thu Mar 26 11:28:34 2026 by rpki-client