$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/309BECEE09DA11EBB9839313C4F9AE02.roa File: 309BECEE09DA11EBB9839313C4F9AE02.roa (raw, json) Hash identifier: 3TvgIIQrzHdKEkfomFpL2w7xqxyJsgbpjgTdJxGfg7U= Subject key identifier: FB:F2:40:43:16:39:F8:12:80:7D:E4:A5:2F:C4:CE:CF:7A:92:60:B3 Certificate issuer: /CN=A91DD799/serialNumber=F672D3B6244CA4C8D3FE200826A8A49FAB2C7612 Certificate serial: 352E Authority key identifier: F6:72:D3:B6:24:4C:A4:C8:D3:FE:20:08:26:A8:A4:9F:AB:2C:76:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nLTtiRMpMjT_iAIJqikn6ssdhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/309BECEE09DA11EBB9839313C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:23:42 +0000 ROA not before: Tue 02 Sep 2025 15:01:12 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4749 IP address blocks: 180.235.156.0/24 maxlen: 24 180.235.157.0/24 maxlen: 24 180.235.158.0/24 maxlen: 24 180.235.159.0/24 maxlen: 24 203.62.208.0/24 maxlen: 24 203.62.209.0/24 maxlen: 24 203.62.210.0/24 maxlen: 24 203.62.211.0/24 maxlen: 24 203.62.212.0/24 maxlen: 24 203.62.213.0/24 maxlen: 24 203.62.214.0/24 maxlen: 24 203.62.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/9nLTtiRMpMjT_iAIJqikn6ssdhI.crl rsync://rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/9nLTtiRMpMjT_iAIJqikn6ssdhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nLTtiRMpMjT_iAIJqikn6ssdhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13614 (0x352e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=F672D3B6244CA4C8D3FE200826A8A49FAB2C7612 Validity Not Before: Sep 2 15:01:12 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a421be-3c34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:37:ec:32:21:bc:0f:a3:96:72:56:a9:fb:e0: e2:73:5d:db:55:43:74:a9:49:74:3b:42:db:be:83: 8f:22:5f:ba:ca:89:fd:e9:5c:f5:8e:40:07:eb:ad: c4:bf:de:f2:0c:6e:3d:65:69:3e:18:69:da:28:e9: 78:1b:cb:9e:2f:d1:5b:94:5a:7c:4a:eb:a6:a4:a1: bf:2a:7e:f8:b9:cb:a9:77:c6:5b:d1:90:b6:12:21: 4d:a7:ab:c4:d7:a9:70:5c:8c:56:72:5e:74:81:f4: 49:e8:59:83:41:ac:34:c2:7e:8a:17:88:0f:92:43: 56:49:21:c2:b2:d5:7a:1d:71:30:98:08:fd:6d:8b: cd:b1:96:0c:ff:30:b7:66:b2:52:5a:a4:47:0a:2f: 77:c3:17:01:83:07:62:04:3a:61:c7:ae:18:e4:c4: f3:cb:cb:58:c2:c8:4b:1f:f7:a4:90:8c:bc:be:44: 36:f6:25:fe:7c:b0:af:eb:e7:6e:b9:7a:16:ba:02: 0f:2c:1d:0d:4e:5a:eb:78:bc:de:e7:cb:0d:77:45: 42:cc:ac:01:52:d8:36:b4:0e:9d:71:cf:c8:52:fa: 91:de:82:4e:ed:52:98:26:35:47:5e:18:ff:57:7d: dc:7c:a9:8a:06:bd:e3:a8:1a:bc:ea:6d:41:2a:6a: ab:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F2:40:43:16:39:F8:12:80:7D:E4:A5:2F:C4:CE:CF:7A:92:60:B3 X509v3 Authority Key Identifier: keyid:F6:72:D3:B6:24:4C:A4:C8:D3:FE:20:08:26:A8:A4:9F:AB:2C:76:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/9nLTtiRMpMjT_iAIJqikn6ssdhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nLTtiRMpMjT_iAIJqikn6ssdhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/309BECEE09DA11EBB9839313C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 180.235.156.0/22 203.62.208.0/21 Signature Algorithm: sha256WithRSAEncryption 77:cc:3b:30:01:81:d4:d1:91:6d:d8:23:d0:94:a6:29:c7:b3: 1a:57:03:b5:90:50:c0:3e:91:6e:ea:92:6c:b2:89:8e:27:5f: 72:e8:80:21:ba:3e:02:5e:68:3d:01:ec:e6:c2:f0:77:94:d8: 16:b6:b3:d6:8d:c9:e9:fb:92:64:c7:8a:b6:b1:a4:07:76:51: 23:cc:18:83:49:9d:23:b9:cd:78:94:28:c8:d5:f0:6a:52:c3: 59:b4:78:2d:52:ca:0c:9f:50:78:10:21:66:e4:58:1a:a6:e0: 33:b0:ac:66:c9:ea:4a:70:2f:67:d0:60:a7:2a:7e:b1:e5:f7: 6c:d5:18:36:f1:b3:90:2d:2f:6e:54:89:4a:e6:35:00:ee:ea: ec:e4:d5:54:72:95:0a:7c:ec:2d:6f:a5:13:94:7f:ca:db:f2: fe:30:95:7d:27:44:8e:43:da:70:90:55:e8:3b:ce:3f:f5:07: 2f:76:ed:79:fb:f1:67:62:57:b5:18:13:36:0e:56:0e:9d:72: 26:85:6b:d5:3b:5d:3e:10:d6:65:e2:40:e7:72:7a:5e:4d:45: ca:93:13:52:1e:27:99:8d:63:57:cf:8d:c8:84:56:5a:78:6c: 8f:2b:07:25:2e:6d:27:79:22:60:11:81:c7:f2:9b:78:77:f5: f0:35:d6:6d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICNS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKEY2NzJEM0I2MjQ0Q0E0QzhEM0ZFMjAwODI2QThBNDlG QUIyQzc2MTIwHhcNMjUwOTAyMTUwMTEyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjFiZS0zYzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTfsMiG8D6OWclap++Dic13bVUN0qUl0O0LbvoOPIl+6yon96Vz1jkAH663E v97yDG49ZWk+GGnaKOl4G8ueL9FblFp8SuumpKG/Kn74ucupd8Zb0ZC2EiFNp6vE 16lwXIxWcl50gfRJ6FmDQaw0wn6KF4gPkkNWSSHCstV6HXEwmAj9bYvNsZYM/zC3 ZrJSWqRHCi93wxcBgwdiBDphx64Y5MTzy8tYwshLH/ekkIy8vkQ29iX+fLCv6+du uXoWugIPLB0NTlrreLze58sNd0VCzKwBUtg2tA6dcc/IUvqR3oJO7VKYJjVHXhj/ V33cfKmKBr3jqBq86m1BKmqr0wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPvyQEMW OfgSgH3kpS/Ezs96kmCzMB8GA1UdIwQYMBaAFPZy07YkTKTI0/4gCCaopJ+rLHYS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xNTEzNDk5ODFE OTUxMUUyQkRFQkI5RjkwOEIwMkNEMi85bkxUdGlSTXBNalRfaUFJSnFpa242c3Nk aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzluTFR0aVJNcE1qVF9pQUlKcWlrbjZzc2RoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ3OTkvMTUxMzQ5OTgxRDk1MTFFMkJERUJCOUY5MDhCMDJDRDIvMzA5QkVDRUUw OURBMTFFQkI5ODM5MzEzQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCtOucAwQDyz7QMA0GCSqGSIb3DQEBCwUAA4IBAQB3zDswAYHU0ZFt 2CPQlKYpx7MaVwO1kFDAPpFu6pJssomOJ19y6IAhuj4CXmg9AezmwvB3lNgWtrPW jcnp+5Jkx4q2saQHdlEjzBiDSZ0juc14lCjI1fBqUsNZtHgtUsoMn1B4ECFm5Fga puAzsKxmyepKcC9n0GCnKn6x5fds1Rg28bOQLS9uVIlK5jUA7urs5NVUcpUKfOwt b6UTlH/K2/L+MJV9J0SOQ9pwkFXoO84/9Qcvdu15+/FnYle1GBM2DlYOnXImhWvV O10+ENZl4kDncnpeTUXKkxNSHieZjWNXz43IhFZaeGyPKwclLm0neSJgEYHH8pt4 d/XwNdZt -----END CERTIFICATE-----Generated at Tue Mar 3 04:14:38 2026 by rpki-client