$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/31554CBC1D8A11EA8ECDAA75C4F9AE02.roa File: 31554CBC1D8A11EA8ECDAA75C4F9AE02.roa (raw, json) Hash identifier: VoajrZr9XoIP/DZVh5lUYcb6S5Xwe4fZEZ0B0TI/qz0= Subject key identifier: C0:72:FD:93:98:F3:54:79:E8:05:E7:85:04:03:C6:8D:C3:F1:02:BC Certificate issuer: /CN=A9152D08/serialNumber=34DC20129EAD6F41A7CA2D99C9BD3E7E6033CB88 Certificate serial: 0D22 Authority key identifier: 34:DC:20:12:9E:AD:6F:41:A7:CA:2D:99:C9:BD:3E:7E:60:33:CB:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/31554CBC1D8A11EA8ECDAA75C4F9AE02.roa Signing time: Fri 20 Mar 2026 19:24:02 +0000 ROA not before: Fri 20 Mar 2026 19:24:02 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 55639 IP address blocks: 111.90.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.crl rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3362 (0xd22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152D08, serialNumber=34DC20129EAD6F41A7CA2D99C9BD3E7E6033CB88 Validity Not Before: Mar 20 19:24:02 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69bd9ed2-f991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:17:45:e9:1d:a7:ec:af:e7:86:d1:d2:e6:c5: 1e:6e:a6:80:31:ef:50:f9:03:d6:64:fe:df:a7:42: ac:42:63:cb:17:16:f1:52:58:b8:95:6f:fd:93:3e: 54:10:a4:28:a7:21:8f:ab:a0:ea:4d:68:d7:b7:2b: 9b:43:dd:36:18:48:ed:23:80:c7:54:ba:4a:62:87: 3b:25:b0:29:96:ae:8f:6e:cd:fd:d1:a5:36:8b:56: 1e:e9:b1:23:46:44:83:7c:50:8c:89:a7:08:41:4b: bf:5a:d6:0a:2c:99:54:31:4a:c2:72:d2:85:06:56: d6:ff:2f:0d:b1:22:43:c2:ac:4a:af:4f:b8:f5:00: 25:77:fe:19:17:f6:e9:42:b0:d8:09:11:5e:ca:10: 48:7c:ce:b3:0e:5e:0c:c3:47:b9:9f:6a:fb:96:02: 29:34:b3:7a:87:a9:a2:6e:73:93:20:f8:c6:4c:8d: 79:eb:ce:0a:98:62:8b:1a:ce:6e:3a:00:ce:84:a6: cc:21:30:3b:b4:c8:36:35:3d:26:f3:93:b9:7e:1f: 7a:ce:bb:b3:ac:25:a9:70:78:16:79:73:ca:58:02: 84:f3:32:b8:9d:ca:9b:bf:85:d2:e8:dd:70:ee:d3: b0:c0:ad:3b:64:16:bb:b2:50:ab:9d:eb:9c:74:de: 11:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:72:FD:93:98:F3:54:79:E8:05:E7:85:04:03:C6:8D:C3:F1:02:BC X509v3 Authority Key Identifier: keyid:34:DC:20:12:9E:AD:6F:41:A7:CA:2D:99:C9:BD:3E:7E:60:33:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/31554CBC1D8A11EA8ECDAA75C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 111.90.157.0/24 Signature Algorithm: sha256WithRSAEncryption 43:dd:f2:e3:12:84:d5:5c:46:06:54:fa:1c:53:15:6e:fe:3c: 9a:ad:f1:57:cb:ee:a2:93:41:ee:5f:ba:c2:4e:66:3b:2b:5c: a2:b8:31:59:79:07:e1:a7:91:e5:d9:06:89:c9:b5:f9:02:09: 59:ec:53:bf:75:fb:37:ca:9d:7d:ae:86:38:0f:62:b4:3a:77: 61:ff:3f:3f:99:71:a4:58:f6:af:50:88:0b:cb:0b:1f:61:d3: d7:2f:92:e7:69:3e:63:fa:d1:1d:00:7a:ac:95:0c:ad:a1:64: af:ee:98:23:d8:cd:16:a9:51:62:f1:51:34:0c:5f:50:70:bd: e5:e0:08:d8:f0:ca:40:94:3d:50:88:3c:4b:71:5f:53:68:55: 95:59:4f:3a:92:b2:63:4a:84:a9:51:d4:71:ba:0c:03:81:fc: 1d:74:88:49:82:7c:ff:d9:6f:82:c2:32:66:ab:5c:f9:8f:d4: fb:38:8d:35:03:42:26:89:a2:35:0b:9d:99:d1:e4:52:7d:de: 99:19:b2:4d:de:fb:c6:31:9a:6f:d6:88:71:7b:e2:74:09:fa: 79:ed:d0:4f:41:c7:ee:cf:c7:28:05:ac:ff:43:8a:17:32:cb: 9c:4f:15:cd:8a:94:1a:8c:8d:13:48:00:02:72:23:00:af:94: 5e:32:6e:00 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJEMDgxMTAvBgNVBAUTKDM0REMyMDEyOUVBRDZGNDFBN0NBMkQ5OUM5QkQzRTdF NjAzM0NCODgwHhcNMjYwMzIwMTkyNDAyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWJkOWVkMi1mOTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxdF6R2n7K/nhtHS5sUebqaAMe9Q+QPWZP7fp0KsQmPLFxbxUli4lW/9kz5U EKQopyGPq6DqTWjXtyubQ902GEjtI4DHVLpKYoc7JbAplq6Pbs390aU2i1Ye6bEj RkSDfFCMiacIQUu/WtYKLJlUMUrCctKFBlbW/y8NsSJDwqxKr0+49QAld/4ZF/bp QrDYCRFeyhBIfM6zDl4Mw0e5n2r7lgIpNLN6h6mibnOTIPjGTI15684KmGKLGs5u OgDOhKbMITA7tMg2NT0m85O5fh96zruzrCWpcHgWeXPKWAKE8zK4ncqbv4XS6N1w 7tOwwK07ZBa7slCrneucdN4RQQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMBy/ZOY 81R56AXnhQQDxo3D8QK8MB8GA1UdIwQYMBaAFDTcIBKerW9Bp8otmcm9Pn5gM8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkQwOC9GOUMzMzM5MjFE ODcxMUVBQTlDNUIxNzBDNEY5QUUwMi9OTndnRXA2dGIwR255aTJaeWIwLWZtQXp5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Od2dFcDZ0YjBHbnlpMlp5YjAtZm1Benk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJEMDgvRjlDMzMzOTIxRDg3MTFFQUE5QzVCMTcwQzRGOUFFMDIvMzE1NTRDQkMx RDhBMTFFQThFQ0RBQTc1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAb1qdMA0GCSqGSIb3DQEBCwUAA4IBAQBD3fLjEoTVXEYGVPocUxVu /jyarfFXy+6ik0HuX7rCTmY7K1yiuDFZeQfhp5Hl2QaJybX5AglZ7FO/dfs3yp19 roY4D2K0Ondh/z8/mXGkWPavUIgLywsfYdPXL5LnaT5j+tEdAHqslQytoWSv7pgj 2M0WqVFi8VE0DF9QcL3l4AjY8MpAlD1QiDxLcV9TaFWVWU86krJjSoSpUdRxugwD gfwddIhJgnz/2W+CwjJmq1z5j9T7OI01A0ImiaI1C52Z0eRSfd6ZGbJN3vvGMZpv 1ohxe+J0Cfp57dBPQcfuz8coBaz/Q4oXMsucTxXNipQajI0TSAACciMAr5ReMm4A -----END CERTIFICATE-----Generated at Thu Mar 26 18:01:12 2026 by rpki-client