$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa File: BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa (raw, json) Hash identifier: saMe9HqgEFlkQr1sv6V0sUsEY0lWYPJ0Mi2x6rYexCc= Subject key identifier: 37:95:37:34:F5:AA:2B:8A:F2:66:1A:79:3A:BA:57:E1:6C:2F:7C:EC Certificate issuer: /CN=A9144391/serialNumber=96A635027B64A654D808945DB835A9E28C794B01 Certificate serial: 013A Authority key identifier: 96:A6:35:02:7B:64:A6:54:D8:08:94:5D:B8:35:A9:E2:8C:79:4B:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:06:06 +0000 ROA not before: Wed 09 Jul 2025 07:13:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153053 IP address blocks: 160.25.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.crl rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391, serialNumber=96A635027B64A654D808945DB835A9E28C794B01 Validity Not Before: Jul 9 07:13:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a5994e-de88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:18:3c:ab:eb:ba:25:66:aa:8a:4a:65:37:f7: 18:45:ec:b7:98:60:46:6e:b9:3b:aa:8d:80:e0:4c: 63:db:93:53:fa:c5:6d:f7:3a:7f:17:15:21:02:c4: 13:4d:55:3a:08:51:3d:e8:17:5a:d9:3d:ec:79:99: 76:9f:4e:ea:ac:eb:74:79:3f:c1:df:d5:37:b3:6c: 13:44:ce:42:d6:47:9c:8e:73:dd:c3:c0:bf:9c:16: 40:bc:08:ca:ea:41:49:e2:7f:d5:d4:93:de:d1:f0: 19:55:24:c6:9a:8c:c3:26:27:8f:ab:36:80:dd:f3: a8:56:b2:a3:fb:e0:ea:66:fe:79:9d:71:31:b7:81: e0:01:90:65:0f:f9:06:57:2b:91:36:2b:75:75:98: c3:1f:73:f2:33:34:13:05:f4:30:b2:79:3e:cd:12: 36:1f:0e:65:d9:37:e1:2d:2e:7d:41:cc:97:96:c1: f5:db:6e:5d:22:cf:b6:cd:34:1a:48:6a:c9:d8:dd: 49:7d:a5:28:d5:15:07:6d:7d:f2:fe:d3:79:7e:44: ed:65:a4:97:4e:8c:ec:45:7f:ba:8b:9f:2b:32:33: 94:e4:8c:cc:57:56:5f:e0:ac:66:8c:ba:2c:8e:a9: 24:8a:f1:72:db:bd:b6:5b:ec:6b:a4:45:ac:b2:38: 9d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:95:37:34:F5:AA:2B:8A:F2:66:1A:79:3A:BA:57:E1:6C:2F:7C:EC X509v3 Authority Key Identifier: keyid:96:A6:35:02:7B:64:A6:54:D8:08:94:5D:B8:35:A9:E2:8C:79:4B:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.96.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:70:7e:08:f1:23:2e:2c:fa:b5:ba:db:69:ea:7d:9b:43:81: 03:5d:26:12:11:9c:ec:44:89:d9:71:83:4a:d4:a9:40:9c:a7: d6:e9:f2:66:50:04:12:29:8a:57:39:8d:2d:33:65:e1:fc:b3: 34:03:54:86:df:e4:ca:e4:9a:ca:0c:c7:24:48:f7:19:ab:eb: 13:12:78:92:93:21:73:b1:e1:71:89:04:eb:76:f3:e9:7a:94: a3:8c:13:10:25:71:4f:22:1f:eb:17:e2:0c:ad:b7:55:cc:5d: f2:5b:f0:a7:da:b8:f5:9e:52:41:bd:13:d6:3e:57:15:ed:9e: 34:ed:7b:15:fa:00:ce:f0:b7:15:a6:a0:05:6e:da:08:bc:e3: 6e:e5:8c:fe:b9:47:8b:96:1d:92:b1:e5:52:93:34:ce:0a:96: e3:42:ad:e4:2b:88:97:46:b7:17:7f:89:18:cd:31:c5:71:1e: 78:84:1f:cd:0c:da:4d:17:e5:ab:12:1b:0a:1f:85:69:91:04: 33:41:3b:c2:8c:9f:9f:84:8f:4d:b4:78:36:ec:dc:8c:ab:ad: 8e:df:b8:cd:da:4e:22:45:b4:d0:57:6e:99:e4:33:26:6a:14: a4:27:cf:a2:1e:8f:e8:b2:32:c9:ff:94:3f:98:01:e5:7f:b3: 68:1c:ef:15 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzOTExMTAvBgNVBAUTKDk2QTYzNTAyN0I2NEE2NTREODA4OTQ1REI4MzVBOUUy OEM3OTRCMDEwHhcNMjUwNzA5MDcxMzQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTk0ZS1kZTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRg8q+u6JWaqikplN/cYRey3mGBGbrk7qo2A4Exj25NT+sVt9zp/FxUhAsQT TVU6CFE96Bda2T3seZl2n07qrOt0eT/B39U3s2wTRM5C1kecjnPdw8C/nBZAvAjK 6kFJ4n/V1JPe0fAZVSTGmozDJiePqzaA3fOoVrKj++DqZv55nXExt4HgAZBlD/kG VyuRNit1dZjDH3PyMzQTBfQwsnk+zRI2Hw5l2TfhLS59QcyXlsH1225dIs+2zTQa SGrJ2N1JfaUo1RUHbX3y/tN5fkTtZaSXTozsRX+6i58rMjOU5IzMV1Zf4KxmjLos jqkkivFy2722W+xrpEWssjid2wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDeVNzT1 qiuK8mYaeTq6V+FsL3zsMB8GA1UdIwQYMBaAFJamNQJ7ZKZU2AiUXbg1qeKMeUsB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM5MS9GNzIwOUMzMjcw QUQxMUVGQTg0OEIwNjhDNEY5QUUwMi9scVkxQW50a3BsVFlDSlJkdURXcDRveDVT d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xxWTFBbnRrcGxUWUNKUmR1RFdwNG94NVN3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQzOTEvRjcyMDlDMzI3MEFEMTFFRkE4NDhCMDY4QzRGOUFFMDIvQkJBOEY5N0M3 MEFGMTFFRjlDOUIyQzBFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBlgMA0GCSqGSIb3DQEBCwUAA4IBAQBKcH4I8SMuLPq1uttp6n2b Q4EDXSYSEZzsRInZcYNK1KlAnKfW6fJmUAQSKYpXOY0tM2Xh/LM0A1SG3+TK5JrK DMckSPcZq+sTEniSkyFzseFxiQTrdvPpepSjjBMQJXFPIh/rF+IMrbdVzF3yW/Cn 2rj1nlJBvRPWPlcV7Z407XsV+gDO8LcVpqAFbtoIvONu5Yz+uUeLlh2SseVSkzTO CpbjQq3kK4iXRrcXf4kYzTHFcR54hB/NDNpNF+WrEhsKH4VpkQQzQTvCjJ+fhI9N tHg27NyMq62O37jN2k4iRbTQV26Z5DMmahSkJ8+iHo/osjLJ/5Q/mAHlf7NoHO8V -----END CERTIFICATE-----Generated at Thu Mar 26 19:24:21 2026 by rpki-client