$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa File: BAF4AD0418B211EB8C78F510C4F9AE02.roa (raw, json) Hash identifier: 3lmppNiDsHnSfSJOflRpF8327lXpm2/DhWduNOC8Sjg= Subject key identifier: 64:F3:93:36:42:9E:4C:2B:41:24:32:41:A7:13:74:E0:3E:C4:88:09 Certificate issuer: /CN=A9121D26/serialNumber=E95EFFC29416584BF37C0C8F9EB73B920F9A41AD Certificate serial: 0827 Authority key identifier: E9:5E:FF:C2:94:16:58:4B:F3:7C:0C:8F:9E:B7:3B:92:0F:9A:41:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:03:42 +0000 ROA not before: Wed 22 Oct 2025 22:10:57 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141197 IP address blocks: 202.0.159.0/24 maxlen: 24 2407:1240:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.crl rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2087 (0x827) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121D26, serialNumber=E95EFFC29416584BF37C0C8F9EB73B920F9A41AD Validity Not Before: Oct 22 22:10:57 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4635d-21f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fb:d6:09:e7:09:42:33:d6:f7:96:0d:ab:25: a6:06:11:0e:98:0d:ff:50:9e:b9:fe:a0:9c:02:15: 1d:b6:bb:94:29:42:93:0f:5a:cd:11:1b:95:0f:6e: b2:1d:7d:70:9b:85:9e:b6:fb:53:78:ee:33:95:55: d4:7f:27:41:c9:b6:7a:97:6c:1e:98:12:a2:e9:5b: 83:fd:f2:71:59:c0:f7:4c:4c:be:5f:eb:6f:44:31: ae:b3:d0:68:cb:a4:24:0e:dc:e8:87:ec:17:1d:67: de:69:5c:c6:25:fe:13:6f:16:d8:79:ea:3c:19:16: 85:71:f8:23:ea:f4:27:c9:df:8d:62:29:33:e6:1a: ce:f0:8e:da:67:2f:18:29:59:25:68:50:93:8d:aa: cc:09:62:d2:f5:0a:1f:04:70:3b:b1:2e:66:1b:4d: 40:31:4a:34:8e:69:0c:3a:0a:90:42:f4:5d:ac:e2: 31:30:db:a6:d3:fa:3d:b0:1e:5d:93:d6:dd:42:91: 74:75:cf:bc:a1:a2:76:21:42:b5:b6:1a:58:ba:5c: cd:fd:10:28:27:15:d9:be:26:1b:1e:fe:c8:0d:11: e5:03:30:2c:15:f9:45:88:a3:99:b0:8e:ff:83:5c: 73:cb:ab:03:e5:23:81:c5:70:9a:d7:6d:de:6d:87: 05:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F3:93:36:42:9E:4C:2B:41:24:32:41:A7:13:74:E0:3E:C4:88:09 X509v3 Authority Key Identifier: keyid:E9:5E:FF:C2:94:16:58:4B:F3:7C:0C:8F:9E:B7:3B:92:0F:9A:41:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.0.159.0/24 IPv6: 2407:1240:1::/48 Signature Algorithm: sha256WithRSAEncryption 5f:9c:f8:de:29:85:2a:d2:b2:ff:ed:eb:f6:81:ae:bb:b6:7e: 04:07:68:a7:02:af:4b:37:b4:0a:62:57:e4:c4:fd:02:c4:ce: 0d:e0:b1:86:ed:bb:8e:1d:4b:07:a5:11:12:4f:b6:8e:42:56: 8c:11:46:10:37:a1:32:02:72:64:32:42:d5:06:cd:68:a2:e1: ea:08:94:ae:33:40:bc:d1:77:f0:49:9e:bf:99:d0:3b:50:10: a7:5b:e1:28:5c:8c:9a:ad:d2:f2:9f:cc:3d:4c:8b:54:7c:b0: 3d:4b:73:50:7b:d4:f0:83:13:53:c6:0e:77:cd:b1:4e:a3:b6: be:aa:b6:bc:7c:3d:be:c9:b7:90:bb:ce:6c:94:1a:60:c5:bf: 2f:8a:fb:9d:54:21:30:3c:93:56:80:d9:e8:c6:5c:9f:17:c8: 21:35:6a:ec:66:06:76:d6:5b:a6:ce:d6:31:10:8e:61:53:82: 23:cd:61:ba:81:77:1a:3c:86:32:a1:7d:41:1f:68:9c:af:27: 4f:ad:34:14:76:ee:d1:c7:5d:59:d2:6f:fd:2c:a9:37:26:2a: 79:1c:67:c0:8d:64:ec:4a:3f:6f:1b:2d:3c:68:c1:c7:56:b6: bf:e6:25:2f:7e:0d:51:f9:82:8f:57:66:0c:4f:68:24:86:f5: a4:e5:ab:e8 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFEMjYxMTAvBgNVBAUTKEU5NUVGRkMyOTQxNjU4NEJGMzdDMEM4RjlFQjczQjky MEY5QTQxQUQwHhcNMjUxMDIyMjIxMDU3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjM1ZC0yMWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPvWCecJQjPW95YNqyWmBhEOmA3/UJ65/qCcAhUdtruUKUKTD1rNERuVD26y HX1wm4WetvtTeO4zlVXUfydBybZ6l2wemBKi6VuD/fJxWcD3TEy+X+tvRDGus9Bo y6QkDtzoh+wXHWfeaVzGJf4TbxbYeeo8GRaFcfgj6vQnyd+NYikz5hrO8I7aZy8Y KVklaFCTjarMCWLS9QofBHA7sS5mG01AMUo0jmkMOgqQQvRdrOIxMNum0/o9sB5d k9bdQpF0dc+8oaJ2IUK1thpYulzN/RAoJxXZviYbHv7IDRHlAzAsFflFiKOZsI7/ g1xzy6sD5SOBxXCa123ebYcFawIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGTzkzZC nkwrQSQyQacTdOA+xIgJMB8GA1UdIwQYMBaAFOle/8KUFlhL83wMj563O5IPmkGt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUQyNi8wN0YwODQ4MDE4 QUQxMUVCOUVFMzM0ODVDNEY5QUUwMi82Vjdfd3BRV1dFdnpmQXlQbnJjN2tnLWFR YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZWN193cFFXV0V2emZBeVBucmM3a2ctYVFhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjFEMjYvMDdGMDg0ODAxOEFEMTFFQjlFRTMzNDg1QzRGOUFFMDIvQkFGNEFEMDQx OEIyMTFFQjhDNzhGNTEwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAygCfMA8EAgACMAkDBwAkBxJAAAEwDQYJKoZIhvcNAQELBQADggEB AF+c+N4phSrSsv/t6/aBrru2fgQHaKcCr0s3tApiV+TE/QLEzg3gsYbtu44dSwel ERJPto5CVowRRhA3oTICcmQyQtUGzWii4eoIlK4zQLzRd/BJnr+Z0DtQEKdb4Shc jJqt0vKfzD1Mi1R8sD1Lc1B71PCDE1PGDnfNsU6jtr6qtrx8Pb7Jt5C7zmyUGmDF vy+K+51UITA8k1aA2ejGXJ8XyCE1auxmBnbWW6bO1jEQjmFTgiPNYbqBdxo8hjKh fUEfaJyvJ0+tNBR27tHHXVnSb/0sqTcmKnkcZ8CNZOxKP28bLTxowcdWtr/mJS9+ DVH5go9XZgxPaCSG9aTlq+g= -----END CERTIFICATE-----Generated at Sat Mar 28 12:08:54 2026 by rpki-client