$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/311C494286CC11F09348D16BC4F9AE02.roa File: 311C494286CC11F09348D16BC4F9AE02.roa (raw, json) Hash identifier: vA0oNVDaWjIawzpioc1/+h5pmU4v3CZ9kNcOCC/rHLI= Subject key identifier: 6D:F0:F9:43:FA:80:36:51:BA:F1:DD:14:F7:96:AC:ED:2C:15:51:A8 Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 0880 Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/311C494286CC11F09348D16BC4F9AE02.roa Signing time: Mon 08 Sep 2025 06:14:59 +0000 ROA not before: Mon 08 Sep 2025 06:14:59 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 152584 IP address blocks: 126.209.15.0/24 maxlen: 24 126.209.85.0/24 maxlen: 24 126.209.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 21:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2176 (0x880) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA, serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Validity Not Before: Sep 8 06:14:59 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68be7463-531e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8d:81:e2:7c:33:6d:c9:9f:fc:b2:28:5b:4e: f7:be:68:e3:aa:b5:e4:ad:05:c1:85:e4:b8:51:77: 90:05:25:bb:98:50:69:b9:5f:e9:40:bc:04:b5:f2: 19:33:17:29:dd:ff:52:3b:74:7d:35:3d:db:66:61: 4b:e4:74:04:2c:31:ca:af:23:4b:a6:fb:39:07:3f: bd:62:3b:f4:74:94:07:33:b3:f6:9c:82:aa:3c:90: 68:cf:f7:4e:b5:0c:18:bd:e0:81:b1:a8:4a:06:3e: aa:cb:11:cd:85:40:c3:69:ae:f1:f4:64:51:58:f9: 2d:d3:3c:fa:a6:f8:fd:35:94:74:e5:a7:2f:c5:fd: bd:fb:87:cf:e4:b3:81:08:fb:1b:32:b5:79:95:4d: 43:1d:36:99:a3:89:08:e2:11:70:00:08:a5:e4:42: 01:0f:e7:3f:d7:d9:51:62:6f:ff:2a:ac:9b:0c:28: fe:91:9b:01:2a:3c:a3:b2:35:6f:e9:2f:41:b0:c2: 94:e7:2e:32:e8:2c:52:9a:87:87:44:f9:76:ac:70: ae:b5:0a:b6:68:df:f0:0a:62:3c:ba:ef:ed:24:1f: 9d:8b:90:10:cd:10:e4:f6:47:73:96:ad:f3:69:83: 98:a4:7e:aa:58:69:f5:4b:50:19:94:ca:48:6e:c4: 03:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F0:F9:43:FA:80:36:51:BA:F1:DD:14:F7:96:AC:ED:2C:15:51:A8 X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/311C494286CC11F09348D16BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 126.209.15.0/24 126.209.85.0-126.209.86.255 Signature Algorithm: sha256WithRSAEncryption 35:e2:79:f8:df:5c:25:e0:ba:c6:f6:fc:05:a9:13:0f:c7:6a: 9a:89:f9:d9:58:31:d5:f3:57:a2:20:72:62:2d:84:85:fc:c8: a4:dd:5a:d3:1b:c3:8b:1c:16:9e:9a:3e:1c:24:3d:1d:f7:f5: a1:13:e6:11:6a:fc:42:37:2e:c4:d1:06:fa:de:34:6c:5b:35: ee:23:5e:7c:5a:e9:d2:5a:a5:b9:49:37:1c:25:1a:34:ea:11: ba:c8:9c:03:e7:02:a9:a7:30:d0:2d:16:d4:3e:af:b9:df:06: dd:ce:10:0e:05:28:e8:5b:76:0a:0f:2a:25:fa:aa:19:a3:69: d3:43:cb:b0:ca:bb:94:85:51:ef:bf:60:70:ed:28:ab:e5:4d: 5c:4d:c4:a5:bc:ad:1e:83:ad:f3:40:5a:30:a6:05:82:49:93: fc:1d:82:b2:07:15:68:66:36:71:1b:1a:92:f5:8b:bf:52:81: ac:28:d6:51:2f:4d:94:60:05:67:54:70:7f:4a:6c:6e:b5:f6: fd:eb:89:c0:74:60:42:55:4b:9c:ce:21:50:cc:0b:eb:f8:ad: 3c:46:53:9a:ff:c5:ed:d9:af:3b:23:dd:a1:e8:91:80:f3:8e: 1f:04:96:0c:31:25:32:c6:f6:e1:36:a5:56:03:1c:98:8e:21: b5:fd:ea:97 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICCIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjUwOTA4MDYxNDU5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJlNzQ2My01MzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApo2B4nwzbcmf/LIoW073vmjjqrXkrQXBheS4UXeQBSW7mFBpuV/pQLwEtfIZ Mxcp3f9SO3R9NT3bZmFL5HQELDHKryNLpvs5Bz+9Yjv0dJQHM7P2nIKqPJBoz/dO tQwYveCBsahKBj6qyxHNhUDDaa7x9GRRWPkt0zz6pvj9NZR05acvxf29+4fP5LOB CPsbMrV5lU1DHTaZo4kI4hFwAAil5EIBD+c/19lRYm//KqybDCj+kZsBKjyjsjVv 6S9BsMKU5y4y6CxSmoeHRPl2rHCutQq2aN/wCmI8uu/tJB+di5AQzRDk9kdzlq3z aYOYpH6qWGn1S1AZlMpIbsQDyQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFG3w+UP6 gDZRuvHdFPeWrO0sFVGoMB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvMzExQzQ5NDI4 NkNDMTFGMDkzNDhEMTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAB+0Q8wDAMEAH7RVQMEAH7RVjANBgkqhkiG9w0BAQsFAAOC AQEANeJ5+N9cJeC6xvb8BakTD8dqmon52Vgx1fNXoiByYi2EhfzIpN1a0xvDixwW npo+HCQ9Hff1oRPmEWr8QjcuxNEG+t40bFs17iNefFrp0lqluUk3HCUaNOoRusic A+cCqacw0C0W1D6vud8G3c4QDgUo6Ft2Cg8qJfqqGaNp00PLsMq7lIVR779gcO0o q+VNXE3EpbytHoOt80BaMKYFgkmT/B2CsgcVaGY2cRsakvWLv1KBrCjWUS9NlGAF Z1Rwf0psbrX2/euJwHRgQlVLnM4hUMwL6/itPEZTmv/F7dmvOyPdoeiRgPOOHwSW DDElMsb24TalVgMcmI4htf3qlw== -----END CERTIFICATE-----Generated at Tue Sep 9 14:34:58 2025 by rpki-client