$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/30C3D4F81D8A11EA8ECDAA75C4F9AE02.roa File: 30C3D4F81D8A11EA8ECDAA75C4F9AE02.roa (raw, json) Hash identifier: 9f5XGAb7npHah5QNhw1Gl77fcKOudhG1ilY/HYVSLo4= Subject key identifier: 7A:07:D1:39:FB:20:61:93:79:EA:A8:03:74:42:58:05:C7:82:33:86 Certificate issuer: /CN=A9152D08/serialNumber=34DC20129EAD6F41A7CA2D99C9BD3E7E6033CB88 Certificate serial: 0D0C Authority key identifier: 34:DC:20:12:9E:AD:6F:41:A7:CA:2D:99:C9:BD:3E:7E:60:33:CB:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/30C3D4F81D8A11EA8ECDAA75C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:36:24 +0000 ROA not before: Fri 14 Mar 2025 19:19:07 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 206776 IP address blocks: 111.90.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.crl rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Mar 2026 18:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3340 (0xd0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152D08, serialNumber=34DC20129EAD6F41A7CA2D99C9BD3E7E6033CB88 Validity Not Before: Mar 14 19:19:07 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5a068-b407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:73:1e:b5:43:25:25:b2:34:c0:90:d2:3c:be: 66:65:7b:f5:d3:12:21:36:cf:69:94:0d:78:d2:e8: 0c:83:41:d2:79:46:e4:9f:cc:a0:6c:8e:d0:5c:f5: aa:9e:74:b1:1e:2d:f3:ef:1b:38:91:cf:00:3c:9f: bc:0b:96:13:af:86:80:24:50:82:b3:a2:fc:4d:eb: 0c:ea:f2:da:67:21:6b:e0:33:20:04:c1:8b:74:17: d4:59:cf:e4:6a:7d:2c:b5:78:b7:5f:3a:b7:06:f1: 7c:d4:ce:5b:8f:80:fa:f5:3c:44:c1:10:95:d3:f4: 4f:a8:6c:ce:e8:ac:16:cd:eb:df:08:2c:8f:07:82: 90:de:9e:05:02:93:9b:c5:eb:5c:fd:fc:ec:b6:48: eb:e7:a0:69:55:19:ef:c1:91:b4:43:37:32:ac:f0: 27:8f:17:13:86:2a:5d:98:d1:d1:cd:20:f1:f7:02: 20:29:00:25:f2:3a:ce:fa:6a:89:cf:74:91:b7:ec: ec:32:1b:83:4c:a8:7b:cc:c1:55:55:56:3c:88:f5: 8c:91:c4:38:cf:26:68:c2:84:66:f4:41:3f:41:e1: d2:5b:bd:5c:bc:f8:c1:04:46:4f:a1:ae:21:d8:86: bc:1a:02:ef:d0:ec:1e:86:81:12:2f:ff:7b:4b:28: 09:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:07:D1:39:FB:20:61:93:79:EA:A8:03:74:42:58:05:C7:82:33:86 X509v3 Authority Key Identifier: keyid:34:DC:20:12:9E:AD:6F:41:A7:CA:2D:99:C9:BD:3E:7E:60:33:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/30C3D4F81D8A11EA8ECDAA75C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 111.90.156.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:29:1b:08:4b:14:c0:d1:be:02:8b:83:2e:18:09:05:d9:83: 27:cc:cf:03:25:0f:2e:10:dd:d4:da:7f:da:2d:39:b6:03:1e: 3c:2e:4e:7d:1f:83:c0:fe:bb:bf:f3:95:8b:e5:f7:96:5a:5d: 32:d4:45:c4:67:9d:b7:93:9e:c2:af:5a:5d:ad:18:17:af:37: a2:09:c9:93:9a:16:e4:81:92:85:ee:49:f9:83:4b:8a:93:f4: 0d:61:b3:2a:dd:f1:37:6e:26:45:0e:3d:60:ed:20:e0:0d:12: 32:34:8e:13:e3:6c:40:03:94:17:f2:92:91:83:86:9a:07:cb: 2e:58:c3:38:88:a2:71:bc:9f:85:f4:db:db:f4:50:1a:2e:3e: 68:6b:c0:29:08:ee:e7:7e:88:ab:da:ed:58:e7:a5:e0:f6:65: da:f1:d1:9b:97:51:c3:49:ee:f9:3f:c4:be:f0:d7:ae:df:b3: 10:e7:c4:f5:a3:81:26:58:ec:57:37:c4:88:8d:04:48:a5:e2: d7:ab:3c:3b:de:d8:ec:a2:de:8b:91:88:be:89:03:46:a3:0c: 27:03:7f:16:dd:c1:63:e1:42:d0:25:86:36:06:ab:72:d5:9b: 98:14:8e:85:e4:b5:a5:b8:ee:8c:5c:ee:93:f2:27:0f:42:6a: 80:64:7c:96 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJEMDgxMTAvBgNVBAUTKDM0REMyMDEyOUVBRDZGNDFBN0NBMkQ5OUM5QkQzRTdF NjAzM0NCODgwHhcNMjUwMzE0MTkxOTA3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTA2OC1iNDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAinMetUMlJbI0wJDSPL5mZXv10xIhNs9plA140ugMg0HSeUbkn8ygbI7QXPWq nnSxHi3z7xs4kc8APJ+8C5YTr4aAJFCCs6L8TesM6vLaZyFr4DMgBMGLdBfUWc/k an0stXi3Xzq3BvF81M5bj4D69TxEwRCV0/RPqGzO6KwWzevfCCyPB4KQ3p4FApOb xetc/fzstkjr56BpVRnvwZG0QzcyrPAnjxcThipdmNHRzSDx9wIgKQAl8jrO+mqJ z3SRt+zsMhuDTKh7zMFVVVY8iPWMkcQ4zyZowoRm9EE/QeHSW71cvPjBBEZPoa4h 2Ia8GgLv0OwehoESL/97SygJuQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHoH0Tn7 IGGTeeqoA3RCWAXHgjOGMB8GA1UdIwQYMBaAFDTcIBKerW9Bp8otmcm9Pn5gM8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkQwOC9GOUMzMzM5MjFE ODcxMUVBQTlDNUIxNzBDNEY5QUUwMi9OTndnRXA2dGIwR255aTJaeWIwLWZtQXp5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Od2dFcDZ0YjBHbnlpMlp5YjAtZm1Benk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJEMDgvRjlDMzMzOTIxRDg3MTFFQUE5QzVCMTcwQzRGOUFFMDIvMzBDM0Q0Rjgx RDhBMTFFQThFQ0RBQTc1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAb1qcMA0GCSqGSIb3DQEBCwUAA4IBAQBtKRsISxTA0b4Ci4MuGAkF 2YMnzM8DJQ8uEN3U2n/aLTm2Ax48Lk59H4PA/ru/85WL5feWWl0y1EXEZ523k57C r1pdrRgXrzeiCcmTmhbkgZKF7kn5g0uKk/QNYbMq3fE3biZFDj1g7SDgDRIyNI4T 42xAA5QX8pKRg4aaB8suWMM4iKJxvJ+F9Nvb9FAaLj5oa8ApCO7nfoir2u1Y56Xg 9mXa8dGbl1HDSe75P8S+8Neu37MQ58T1o4EmWOxXN8SIjQRIpeLXqzw73tjsot6L kYi+iQNGowwnA38W3cFj4ULQJYY2Bqty1ZuYFI6F5LWluO6MXO6T8icPQmqAZHyW -----END CERTIFICATE-----Generated at Tue Mar 10 11:34:38 2026 by rpki-client