$ rpki-client -vvf rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/BAFF9DF8D13311EEB88A8D85C4F9AE02.roa File: BAFF9DF8D13311EEB88A8D85C4F9AE02.roa (raw, json) Hash identifier: OT0428JvC1+upD3r1Q6wreYkovP29Wg2j9MuCZqS4DU= Subject key identifier: 0A:0B:55:70:75:8D:F1:3E:DE:7F:93:E2:F0:DA:D1:5B:00:7F:1F:08 Certificate issuer: /CN=A913150F/serialNumber=663F4D5FC8270A4420FE1E61F91ADFA837FF1EE4 Certificate serial: 0187 Authority key identifier: 66:3F:4D:5F:C8:27:0A:44:20:FE:1E:61:F9:1A:DF:A8:37:FF:1E:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/BAFF9DF8D13311EEB88A8D85C4F9AE02.roa Signing time: Mon 02 Mar 2026 11:28:45 +0000 ROA not before: Fri 09 Jan 2026 03:24:15 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 131164 IP address blocks: 112.78.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.crl rsync://rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913150F, serialNumber=663F4D5FC8270A4420FE1E61F91ADFA837FF1EE4 Validity Not Before: Jan 9 03:24:15 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a5746d-f509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f9:e4:48:00:df:83:ca:a8:89:1b:a5:6c:6b: 54:77:4f:27:b8:50:f0:01:a6:53:c8:a9:4c:f5:e1: c7:5c:98:15:7d:33:b0:d4:12:76:be:8e:64:13:24: b6:38:93:95:c8:bc:f6:12:e6:d5:50:9a:ea:a2:19: e0:be:79:13:44:05:cb:e0:0c:1f:19:c8:27:ac:ba: 7c:0f:3e:69:67:b3:f4:fc:24:49:79:d4:2b:5b:f0: 8e:00:f9:3b:f5:2f:d9:c8:2a:a5:b4:99:3f:d2:a4: d8:cc:b2:48:04:cd:42:fb:2f:7a:aa:0f:ff:0d:f0: 23:81:b1:4b:a5:2c:4d:3b:b1:55:33:5c:b5:0d:21: 2c:b6:b4:3d:24:58:39:fd:e6:e2:33:04:30:34:81: 02:fe:f8:e9:2e:f7:59:7c:ee:06:95:ea:7c:32:74: d7:fe:37:5a:14:b6:26:02:b4:e5:5d:0a:f6:28:32: 25:41:b6:4a:a0:16:6d:28:ff:20:b1:3c:7b:ef:86: a6:d9:d2:a8:fc:97:f1:ee:a1:dc:5e:c3:32:d5:ff: a6:bb:94:11:bc:0a:70:5e:e1:c4:5e:0b:cf:33:27: 49:cd:73:07:71:df:68:d3:04:9a:86:f1:24:18:e4: 31:66:c7:16:7e:8c:48:55:61:bf:39:93:eb:ca:03: 79:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:0B:55:70:75:8D:F1:3E:DE:7F:93:E2:F0:DA:D1:5B:00:7F:1F:08 X509v3 Authority Key Identifier: keyid:66:3F:4D:5F:C8:27:0A:44:20:FE:1E:61:F9:1A:DF:A8:37:FF:1E:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/BAFF9DF8D13311EEB88A8D85C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 112.78.52.0/22 Signature Algorithm: sha256WithRSAEncryption 96:2a:38:c4:ea:2b:e1:1a:25:ce:93:72:bb:30:3d:d7:6d:a2: 85:95:51:97:ab:ab:cc:44:18:f3:1d:04:53:d8:cf:5d:a2:4f: 29:9a:bf:2b:6a:64:21:a0:07:41:d8:bb:87:54:52:49:c8:6b: fe:21:5c:f6:b3:1c:c9:f0:e5:a6:89:df:65:46:24:2a:a1:24: 6f:7d:d5:f2:d4:b6:a3:ea:ca:47:f7:fe:a8:1b:7d:3c:8a:f4: ab:99:b7:2b:0f:73:3d:00:d7:29:b5:13:18:18:0a:91:89:2b: 73:76:ae:be:5c:2e:5c:f6:d2:3f:cd:91:2c:80:b7:8e:74:53: 7c:96:ec:e3:5e:94:8f:46:08:c4:0c:24:0e:d5:f6:9b:27:df: 2d:cd:81:f1:b3:35:6f:58:b8:92:66:4f:66:98:b5:34:dc:85: b7:8f:2a:77:24:92:cf:9b:0c:60:8f:e6:51:24:d9:02:d7:d6: 44:30:70:2a:5c:61:8a:a9:d0:d5:f7:52:49:f0:37:73:8e:c7: f2:9c:1b:70:e9:05:da:c5:3d:0d:90:e5:e6:c5:29:ea:ee:84: bc:77:8b:31:b5:f9:ae:2b:cf:0e:a9:08:ea:3b:5c:49:93:2c: dd:60:9d:d8:0a:ec:a3:5f:ae:64:34:0a:02:a4:2a:08:e7:0e: d1:6a:25:69 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1MEYxMTAvBgNVBAUTKDY2M0Y0RDVGQzgyNzBBNDQyMEZFMUU2MUY5MUFERkE4 MzdGRjFFRTQwHhcNMjYwMTA5MDMyNDE1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1NzQ2ZC1mNTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPnkSADfg8qoiRulbGtUd08nuFDwAaZTyKlM9eHHXJgVfTOw1BJ2vo5kEyS2 OJOVyLz2EubVUJrqohngvnkTRAXL4AwfGcgnrLp8Dz5pZ7P0/CRJedQrW/COAPk7 9S/ZyCqltJk/0qTYzLJIBM1C+y96qg//DfAjgbFLpSxNO7FVM1y1DSEstrQ9JFg5 /ebiMwQwNIEC/vjpLvdZfO4Glep8MnTX/jdaFLYmArTlXQr2KDIlQbZKoBZtKP8g sTx774am2dKo/Jfx7qHcXsMy1f+mu5QRvApwXuHEXgvPMydJzXMHcd9o0wSahvEk GOQxZscWfoxIVWG/OZPrygN5zwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAoLVXB1 jfE+3n+T4vDa0VsAfx8IMB8GA1UdIwQYMBaAFGY/TV/IJwpEIP4eYfka36g3/x7k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTUwRi81NzcxOTg1NEQx MzMxMUVFQUEyMERDODRDNEY5QUUwMi9aajlOWDhnbkNrUWdfaDVoLVJyZnFEZl9I dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pqOU5YOGduQ2tRZ19oNWgtUnJmcURmX0h1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE1MEYvNTc3MTk4NTREMTMzMTFFRUFBMjBEQzg0QzRGOUFFMDIvQkFGRjlERjhE MTMzMTFFRUI4OEE4RDg1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCcE40MA0GCSqGSIb3DQEBCwUAA4IBAQCWKjjE6ivhGiXOk3K7MD3X baKFlVGXq6vMRBjzHQRT2M9dok8pmr8ramQhoAdB2LuHVFJJyGv+IVz2sxzJ8OWm id9lRiQqoSRvfdXy1Laj6spH9/6oG308ivSrmbcrD3M9ANcptRMYGAqRiStzdq6+ XC5c9tI/zZEsgLeOdFN8luzjXpSPRgjEDCQO1fabJ98tzYHxszVvWLiSZk9mmLU0 3IW3jyp3JJLPmwxgj+ZRJNkC19ZEMHAqXGGKqdDV91JJ8DdzjsfynBtw6QXaxT0N kOXmxSnq7oS8d4sxtfmuK88OqQjqO1xJkyzdYJ3YCuyjX65kNAoCpCoI5w7RaiVp -----END CERTIFICATE-----Generated at Thu Mar 26 20:22:49 2026 by rpki-client