$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/311C494286CC11F09348D16BC4F9AE02.roa File: 311C494286CC11F09348D16BC4F9AE02.roa (raw, json) Hash identifier: hOODJuT+qDz3zKXE7IWNkIpv3MyslDvXZEoZdj7xXAk= Subject key identifier: 73:BD:E8:8F:28:12:9D:9A:F1:F0:03:BD:52:FB:68:B4:3E:40:03:E8 Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 0948 Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/311C494286CC11F09348D16BC4F9AE02.roa Signing time: Thu 12 Mar 2026 05:46:46 +0000 ROA not before: Thu 12 Mar 2026 05:46:46 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 152584 IP address blocks: 126.209.15.0/24 maxlen: 24 126.209.33.0/24 maxlen: 24 126.209.37.0/24 maxlen: 24 126.209.51.0/24 maxlen: 24 126.209.60.0/24 maxlen: 24 126.209.63.0/24 maxlen: 24 126.209.80.0/24 maxlen: 24 126.209.81.0/24 maxlen: 24 126.209.85.0/24 maxlen: 24 126.209.86.0/24 maxlen: 24 126.209.96.0/21 maxlen: 24 126.209.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2376 (0x948) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA, serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Validity Not Before: Mar 12 05:46:46 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69b25346-8107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:dc:69:d8:93:dc:5d:17:f7:b5:b1:b7:00:a1: 6e:19:00:9d:3c:ca:f0:a5:9d:56:e7:43:c7:cc:9a: 46:24:f2:75:62:b8:9b:11:fd:dd:d9:d7:bf:f4:f8: ac:46:08:16:53:05:7c:b7:11:74:be:df:84:a3:f9: 44:80:ab:d5:d7:02:1a:88:f9:30:23:8e:54:be:57: fb:e0:a9:f4:c0:25:a5:03:b9:8d:8e:84:ff:8e:4f: 6d:e8:0d:9e:47:d6:3b:da:48:88:97:05:4a:85:21: 2f:3a:a7:60:a0:b3:4b:92:fb:cf:e8:73:90:8b:5e: 42:04:3b:46:b2:13:24:08:8d:e7:5a:37:5b:79:a8: ba:bc:e6:86:76:4f:c9:25:c2:6a:bd:72:f9:71:d2: aa:9a:f5:89:e6:25:c2:30:95:32:ec:5e:87:f2:1a: 6a:03:de:af:e8:0e:54:6c:bb:5a:fd:9f:22:28:a6: 52:db:5f:b7:8e:12:c4:83:b1:b1:97:ad:4b:86:95: 42:60:07:cc:d1:e6:9e:d4:27:1c:2d:b7:46:ec:65: 36:fa:06:70:c7:30:67:0f:e6:da:9d:c7:d0:7c:89: c3:96:fe:9c:ea:53:93:bc:19:c6:c6:b7:07:a9:54: 44:cf:27:b9:0c:df:38:dd:c0:a5:cf:24:26:05:23: ac:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:BD:E8:8F:28:12:9D:9A:F1:F0:03:BD:52:FB:68:B4:3E:40:03:E8 X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/311C494286CC11F09348D16BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 126.209.15.0/24 126.209.33.0/24 126.209.37.0/24 126.209.51.0/24 126.209.60.0/24 126.209.63.0/24 126.209.80.0/23 126.209.85.0-126.209.86.255 126.209.96.0/21 126.209.116.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:54:60:ec:fa:63:bb:fd:22:06:97:be:6c:96:1e:c7:db:9b: 3d:10:04:15:8f:20:a4:6e:ef:fe:2f:84:31:69:0b:09:17:b6: 16:4a:34:fc:07:ab:c0:d1:b2:88:92:f4:c2:82:42:6a:2e:26: 4c:f9:cb:a5:d0:34:91:00:93:f4:46:2d:5a:3e:f2:f3:36:71: f6:ca:a9:83:ed:f3:34:64:13:7c:5c:bc:43:8e:7f:f1:cd:1e: 1a:43:a5:ff:8d:9a:96:3f:f0:06:f2:6f:d4:83:3f:45:d9:85: 32:c0:0b:24:e4:13:01:a4:69:c2:9f:ca:fb:ed:70:81:e8:5b: b0:22:40:df:40:bc:ef:28:e3:41:b7:98:d9:ff:dc:f1:6a:c6: d3:af:29:f1:c8:b8:2e:51:ad:d5:1f:9d:ca:54:98:d6:94:a3: 56:c6:0d:35:0a:91:f3:47:01:ea:2e:2f:2c:da:85:8f:90:10: 11:03:2b:45:89:f8:fc:0d:f6:c7:39:5f:d9:43:6d:24:85:a3: af:33:77:1d:1a:6c:9d:2e:c7:d0:19:da:92:1c:dd:65:dd:2e: b5:d3:4c:a3:d3:14:f3:ab:eb:95:b2:39:6e:9c:58:c8:b4:52: e1:fd:1c:a6:fd:8d:bf:b2:96:ab:f4:01:8f:e5:9a:6c:12:17: d0:21:d7:28 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgICCUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjYwMzEyMDU0NjQ2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIyNTM0Ni04MTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdxp2JPcXRf3tbG3AKFuGQCdPMrwpZ1W50PHzJpGJPJ1YribEf3d2de/9Pis RggWUwV8txF0vt+Eo/lEgKvV1wIaiPkwI45Uvlf74Kn0wCWlA7mNjoT/jk9t6A2e R9Y72kiIlwVKhSEvOqdgoLNLkvvP6HOQi15CBDtGshMkCI3nWjdbeai6vOaGdk/J JcJqvXL5cdKqmvWJ5iXCMJUy7F6H8hpqA96v6A5UbLta/Z8iKKZS21+3jhLEg7Gx l61LhpVCYAfM0eae1CccLbdG7GU2+gZwxzBnD+bancfQfInDlv6c6lOTvBnGxrcH qVREzye5DN843cClzyQmBSOsGQIDAQABo4ICnjCCApowHQYDVR0OBBYEFHO96I8o Ep2a8fADvVL7aLQ+QAPoMB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvMzExQzQ5NDI4 NkNDMTFGMDkzNDhEMTZCQzRGOUFFMDIucm9hMF0GCCsGAQUFBwEHAQH/BE4wTDBK BAIAATBEAwQAftEPAwQAftEhAwQAftElAwQAftEzAwQAftE8AwQAftE/AwQBftFQ MAwDBAB+0VUDBAB+0VYDBAN+0WADBAJ+0XQwDQYJKoZIhvcNAQELBQADggEBACtU YOz6Y7v9IgaXvmyWHsfbmz0QBBWPIKRu7/4vhDFpCwkXthZKNPwHq8DRsoiS9MKC QmouJkz5y6XQNJEAk/RGLVo+8vM2cfbKqYPt8zRkE3xcvEOOf/HNHhpDpf+NmpY/ 8Abyb9SDP0XZhTLACyTkEwGkacKfyvvtcIHoW7AiQN9AvO8o40G3mNn/3PFqxtOv KfHIuC5RrdUfncpUmNaUo1bGDTUKkfNHAeouLyzahY+QEBEDK0WJ+PwN9sc5X9lD bSSFo68zdx0abJ0ux9AZ2pIc3WXdLrXTTKPTFPOr65WyOW6cWMi0UuH9HKb9jb+y lqv0AY/lmmwSF9Ah1yg= -----END CERTIFICATE-----Generated at Thu Mar 26 07:36:27 2026 by rpki-client