$ rpki-client -vvf rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/BF9CF5EE597711F18D905478A6833773.roa File: BF9CF5EE597711F18D905478A6833773.roa (raw, json) Hash identifier: hTeeZo8w2xGBlhPflI/Wkk6p0VKwgyMAy+sSrfqGpmg= Subject key identifier: 2F:7A:79:D9:B3:46:5D:6B:21:C6:52:FA:C0:C4:EB:C6:F4:D0:19:DB Certificate issuer: /CN=A9129C87/serialNumber=E8F92D6B2A2930F0A5BEAF53044C85D8EADE1EBA Certificate serial: 04F7 Authority key identifier: E8:F9:2D:6B:2A:29:30:F0:A5:BE:AF:53:04:4C:85:D8:EA:DE:1E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6PktayopMPClvq9TBEyF2OreHro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/BF9CF5EE597711F18D905478A6833773.roa Signing time: Wed 27 May 2026 02:57:08 +0000 ROA not before: Wed 27 May 2026 02:57:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 23969 IP address blocks: 1.20.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/6PktayopMPClvq9TBEyF2OreHro.crl rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/6PktayopMPClvq9TBEyF2OreHro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6PktayopMPClvq9TBEyF2OreHro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 23:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1271 (0x4f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129C87, serialNumber=E8F92D6B2A2930F0A5BEAF53044C85D8EADE1EBA Validity Not Before: May 27 02:57:08 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6a165d83-ee74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a1:74:21:6d:da:6d:34:a4:26:5e:ae:95:04: 5f:3f:5a:2f:a7:99:ea:1b:1c:ca:ec:cc:b7:47:f7: b2:34:e5:f5:bf:57:92:83:0a:98:fd:fb:d0:77:c4: b1:23:b5:bd:d6:11:d4:f0:dc:8e:f9:80:99:61:4e: 35:df:57:34:8c:0f:c6:6d:6c:90:43:de:86:49:f3: a5:5d:ee:50:89:75:09:59:26:6c:30:87:ad:e8:5c: 7f:71:24:8b:bb:9e:3a:e9:d7:dc:bf:3d:a1:0c:b0: d4:f4:a3:34:5f:f4:ea:fd:d1:f1:62:05:68:4f:35: 65:65:68:5b:77:23:ba:f6:f7:89:be:14:a3:b1:13: 70:e9:89:fa:34:a7:2e:e4:6a:88:03:1e:ec:d4:62: 52:d0:66:27:2e:1c:25:04:f9:04:f9:df:8a:d4:35: a0:51:30:77:f2:56:c9:cf:09:9d:eb:5a:96:7b:7a: bf:42:a4:33:ae:25:8f:d3:fd:26:a4:67:8f:f7:2a: 7c:19:f7:30:bf:9a:f1:2e:f9:a0:2f:f0:f1:8a:be: b9:b2:17:23:82:da:ad:8e:31:55:fd:3d:66:f4:73: 2b:bf:be:08:af:c0:b9:cd:a0:b8:96:2a:06:3d:55: 99:1f:59:8e:0c:1e:c7:03:41:a4:b8:3d:5e:8c:b2: a5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:7A:79:D9:B3:46:5D:6B:21:C6:52:FA:C0:C4:EB:C6:F4:D0:19:DB X509v3 Authority Key Identifier: keyid:E8:F9:2D:6B:2A:29:30:F0:A5:BE:AF:53:04:4C:85:D8:EA:DE:1E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/6PktayopMPClvq9TBEyF2OreHro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6PktayopMPClvq9TBEyF2OreHro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/BF9CF5EE597711F18D905478A6833773.roa sbgp-ipAddrBlock: critical IPv4: 1.20.0.0/24 Signature Algorithm: sha256WithRSAEncryption 90:6e:27:14:e8:6c:87:23:52:27:4b:bb:94:54:a8:d5:1f:d9: bf:80:98:19:4f:b4:c1:51:d4:8a:a0:2e:cd:c5:5e:48:af:4d: 26:51:19:0b:98:29:d5:f4:d6:18:fd:aa:dc:f8:97:10:75:6b: d7:d9:05:b3:da:78:2a:69:32:93:6d:b7:77:58:69:fe:61:d4: 7b:a1:96:5d:b6:1d:e1:0f:de:dd:c5:78:a4:7e:9e:5b:d3:75: a2:6c:0e:b0:94:82:9a:5b:2c:51:b8:c6:62:e0:93:0e:45:73: a1:18:e1:cc:df:1a:1d:75:75:0a:bb:cd:3a:20:d1:df:de:d9: be:19:b4:e3:79:f6:08:be:a8:08:a4:50:1f:0a:79:14:36:57: e7:76:b8:9a:58:64:fd:fb:36:3f:e1:11:b6:ab:7e:ce:35:d9: 56:9e:84:ac:e6:f7:61:fe:14:1e:c7:89:24:6e:e7:0b:6c:d2: 91:e8:7b:25:6a:78:6d:c6:4a:92:d9:54:ae:b6:97:65:a4:31: 8c:46:a1:17:97:e2:a6:b0:aa:ba:bb:cf:5d:4b:fc:68:e3:c8: de:13:6f:69:fb:b6:56:fc:7c:fc:33:c7:25:fd:52:78:e4:9c: 3f:0e:c5:6a:f0:4b:c8:c9:37:a9:23:c1:d7:3b:32:0b:8f:28: 89:64:5e:ae -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlDODcxMTAvBgNVBAUTKEU4RjkyRDZCMkEyOTMwRjBBNUJFQUY1MzA0NEM4NUQ4 RUFERTFFQkEwHhcNMjYwNTI3MDI1NzA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE2NWQ4My1lZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaF0IW3abTSkJl6ulQRfP1ovp5nqGxzK7My3R/eyNOX1v1eSgwqY/fvQd8Sx I7W91hHU8NyO+YCZYU4131c0jA/GbWyQQ96GSfOlXe5QiXUJWSZsMIet6Fx/cSSL u5466dfcvz2hDLDU9KM0X/Tq/dHxYgVoTzVlZWhbdyO69veJvhSjsRNw6Yn6NKcu 5GqIAx7s1GJS0GYnLhwlBPkE+d+K1DWgUTB38lbJzwmd61qWe3q/QqQzriWP0/0m pGeP9yp8Gfcwv5rxLvmgL/Dxir65shcjgtqtjjFV/T1m9HMrv74Ir8C5zaC4lioG PVWZH1mODB7HA0GkuD1ejLKlawIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC96edmz Rl1rIcZS+sDE68b00BnbMB8GA1UdIwQYMBaAFOj5LWsqKTDwpb6vUwRMhdjq3h66 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUM4Ny9GRDA4M0Y1ODVF RUQxMUVDOUE0OTZENTlDNEY5QUUwMi82UGt0YXlvcE1QQ2x2cTlUQkV5RjJPcmVI cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZQa3RheW9wTVBDbHZxOVRCRXlGMk9yZUhyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlDODcvRkQwODNGNTg1RUVEMTFFQzlBNDk2RDU5QzRGOUFFMDIvQkY5Q0Y1RUU1 OTc3MTFGMThEOTA1NDc4QTY4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAARQAMA0GCSqGSIb3DQEBCwUAA4IBAQCQbicU6GyHI1InS7uUVKjV H9m/gJgZT7TBUdSKoC7NxV5Ir00mURkLmCnV9NYY/arc+JcQdWvX2QWz2ngqaTKT bbd3WGn+YdR7oZZdth3hD97dxXikfp5b03WibA6wlIKaWyxRuMZi4JMORXOhGOHM 3xoddXUKu806INHf3tm+GbTjefYIvqgIpFAfCnkUNlfndriaWGT9+zY/4RG2q37O NdlWnoSs5vdh/hQex4kkbucLbNKR6HslanhtxkqS2VSutpdlpDGMRqEXl+KmsKq6 u89dS/xo48jeE29p+7ZW/Hz8M8cl/VJ45Jw/DsVq8EvIyTepI8HXOzILjyiJZF6u -----END CERTIFICATE-----Generated at Sat Jun 13 09:34:54 2026 by rpki-client