$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/311C494286CC11F09348D16BC4F9AE02.roa File: 311C494286CC11F09348D16BC4F9AE02.roa (raw, json) Hash identifier: flTVo7K226bog1Y8dVWo1/2xVgRqz4F3RPcgIxDvRO8= Subject key identifier: A4:DF:AC:FF:26:12:D7:87:2B:B4:9B:8F:D5:6C:BC:3C:FF:17:A6:6B Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 08D9 Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/311C494286CC11F09348D16BC4F9AE02.roa Signing time: Mon 13 Oct 2025 01:31:00 +0000 ROA not before: Mon 13 Oct 2025 01:31:00 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 152584 IP address blocks: 126.209.15.0/24 maxlen: 24 126.209.33.0/24 maxlen: 24 126.209.37.0/24 maxlen: 24 126.209.51.0/24 maxlen: 24 126.209.63.0/24 maxlen: 24 126.209.80.0/24 maxlen: 24 126.209.81.0/24 maxlen: 24 126.209.85.0/24 maxlen: 24 126.209.86.0/24 maxlen: 24 126.209.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2265 (0x8d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA, serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Validity Not Before: Oct 13 01:31:00 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68ec5654-4091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:07:87:c6:ba:70:cc:13:00:0c:2c:0d:d1:ec: c3:df:cb:97:d4:c6:f9:ca:23:7a:3f:ee:db:e7:60: f2:eb:49:4d:15:36:3a:f9:78:44:42:f8:2d:b5:f1: f6:9c:36:4a:bd:ab:42:ca:f2:31:b8:6c:a9:83:af: f7:0d:60:a0:ad:ac:ad:b0:fd:c6:f0:86:1e:27:8f: de:d0:8a:b9:bc:bb:05:8b:93:12:30:0c:42:dc:71: 9d:b4:21:df:58:8c:1c:9c:83:95:7e:75:2f:23:71: e8:5a:3d:6a:9c:9a:7f:23:f8:5b:f2:3b:0f:eb:63: 16:02:ae:c9:d0:b7:03:6e:9d:cf:99:bb:db:7f:04: 6c:bb:24:7b:7f:f1:95:7b:a0:1d:72:fc:07:eb:30: 2f:78:02:ca:f7:fd:85:21:48:71:19:44:4c:04:76: 6e:d6:14:92:7e:a6:c7:b8:6f:bd:b8:8a:4e:5e:c0: fb:98:68:57:70:71:e8:ff:1c:52:c7:ba:df:e3:9f: 66:9c:06:a8:29:f3:30:64:a0:7d:82:19:02:3c:52: b4:8a:ae:5a:cb:65:1d:bb:4c:7f:6a:a3:a4:e8:00: a7:6c:b2:d2:92:da:fe:f7:f7:e3:d4:a7:7a:29:5f: 95:6b:49:7e:6f:82:e4:94:38:8c:45:ff:5e:f7:66: 29:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:DF:AC:FF:26:12:D7:87:2B:B4:9B:8F:D5:6C:BC:3C:FF:17:A6:6B X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/311C494286CC11F09348D16BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 126.209.15.0/24 126.209.33.0/24 126.209.37.0/24 126.209.51.0/24 126.209.63.0/24 126.209.80.0/23 126.209.85.0-126.209.86.255 126.209.96.0/21 Signature Algorithm: sha256WithRSAEncryption a1:d8:fe:91:5d:4d:a2:b1:9c:5b:89:92:b3:93:0c:57:94:9e: 4b:0c:08:e4:4e:e4:0f:ef:35:f9:b0:b0:63:64:e0:ef:6a:52: 00:e3:f5:57:46:08:27:27:60:84:51:62:10:26:c7:95:87:df: 6a:8d:92:79:e0:31:cc:18:b7:09:79:cd:79:ab:65:05:93:08: a3:f5:c4:32:d2:91:41:bc:80:13:8f:f3:13:72:e8:08:b0:6e: 2c:61:2b:20:27:ae:ac:59:11:f5:0c:ca:2e:a6:51:84:73:20: a5:5f:83:b8:42:97:52:e3:59:29:cb:70:53:05:19:c6:8c:7b: 3b:f3:c2:03:9c:f0:6e:67:74:96:9d:dc:63:88:b2:98:8c:6f: c4:69:53:ca:26:23:39:22:bc:4a:66:c0:91:ae:4d:4f:f2:68: 0f:e1:13:2a:1b:42:65:8b:58:e3:0b:7a:83:44:4f:0a:24:81: 0f:85:9e:9d:b1:41:a2:f3:8c:a3:a9:c0:f6:c8:93:a3:9f:a9: 4a:ef:54:6f:0b:2e:bd:21:8d:b7:3a:62:b0:41:25:31:1e:70: f3:4f:75:7a:7b:5b:11:3a:ed:02:3d:69:10:0b:a6:27:29:96: b6:71:1c:79:e4:e1:2b:a2:5c:7c:a3:77:6c:27:4c:22:79:8b: 56:24:68:6b -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICCNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjUxMDEzMDEzMTAwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVjNTY1NC00MDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AeHxrpwzBMADCwN0ezD38uX1Mb5yiN6P+7b52Dy60lNFTY6+XhEQvgttfH2 nDZKvatCyvIxuGypg6/3DWCgraytsP3G8IYeJ4/e0Iq5vLsFi5MSMAxC3HGdtCHf WIwcnIOVfnUvI3HoWj1qnJp/I/hb8jsP62MWAq7J0LcDbp3PmbvbfwRsuyR7f/GV e6AdcvwH6zAveALK9/2FIUhxGURMBHZu1hSSfqbHuG+9uIpOXsD7mGhXcHHo/xxS x7rf459mnAaoKfMwZKB9ghkCPFK0iq5ay2Udu0x/aqOk6ACnbLLSktr+9/fj1Kd6 KV+Va0l+b4LklDiMRf9e92YpFQIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFKTfrP8m EteHK7Sbj9VsvDz/F6ZrMB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvMzExQzQ5NDI4 NkNDMTFGMDkzNDhEMTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMD4EAgABMDgDBAB+0Q8DBAB+0SEDBAB+0SUDBAB+0TMDBAB+0T8DBAF+0VAw DAMEAH7RVQMEAH7RVgMEA37RYDANBgkqhkiG9w0BAQsFAAOCAQEAodj+kV1NorGc W4mSs5MMV5SeSwwI5E7kD+81+bCwY2Tg72pSAOP1V0YIJydghFFiECbHlYffao2S eeAxzBi3CXnNeatlBZMIo/XEMtKRQbyAE4/zE3LoCLBuLGErICeurFkR9QzKLqZR hHMgpV+DuEKXUuNZKctwUwUZxox7O/PCA5zwbmd0lp3cY4iymIxvxGlTyiYjOSK8 SmbAka5NT/JoD+ETKhtCZYtY4wt6g0RPCiSBD4WenbFBovOMo6nA9siTo5+pSu9U bwsuvSGNtzpisEElMR5w8091entbETrtAj1pEAumJymWtnEceeThK6JcfKN3bCdM InmLViRoaw== -----END CERTIFICATE-----Generated at Mon Oct 20 08:18:17 2025 by rpki-client