$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa File: BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa (raw, json) Hash identifier: +8jBRpghwFfo1F3h7+S0bDrvFBVOSwK0s/1hp0fqnzI= Subject key identifier: 19:90:D3:A8:27:38:69:B7:82:6E:E0:90:CE:1C:72:7D:63:13:38:77 Certificate issuer: /CN=A9144391/serialNumber=96A635027B64A654D808945DB835A9E28C794B01 Certificate serial: 011A Authority key identifier: 96:A6:35:02:7B:64:A6:54:D8:08:94:5D:B8:35:A9:E2:8C:79:4B:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa Signing time: Sun 01 Mar 2026 05:46:38 +0000 ROA not before: Wed 09 Jul 2025 07:13:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153053 IP address blocks: 160.25.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.crl rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391, serialNumber=96A635027B64A654D808945DB835A9E28C794B01 Validity Not Before: Jul 9 07:13:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a3d2be-a1a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:51:a1:07:2c:0d:b1:e1:ca:aa:11:ed:04:cc: 5e:b5:ad:71:5c:4c:ac:ce:c9:b5:39:9c:19:43:6a: 00:38:6c:f5:04:bc:bf:d2:4f:67:95:28:14:50:d7: b8:ff:1d:fb:90:6d:9c:41:c9:56:07:fe:ff:9c:37: 28:e7:b7:29:0a:66:80:28:16:e0:03:ad:7b:25:a2: 61:97:86:dc:ea:5f:fe:23:0d:6b:93:5f:18:cc:a1: 00:a2:81:27:f0:fa:28:1e:47:6b:15:8b:3c:7a:fd: e7:d0:70:73:51:6c:67:82:ec:6a:3d:a8:5d:fb:7f: cc:96:73:9a:0c:65:e6:d3:45:8b:87:6c:b4:50:05: f2:9e:0b:df:fe:c7:57:f4:4b:53:aa:eb:28:a7:e4: ee:7e:af:37:38:7f:5a:e2:e7:f4:01:a4:c4:9a:5c: 5b:2b:a2:15:fa:84:3f:fc:3d:5f:3d:98:9f:da:9c: a3:a4:65:a3:b8:3c:47:43:74:01:cb:5f:83:a2:58: 84:f6:3e:35:f6:b2:13:6b:cd:bd:11:4c:0f:9b:9a: e7:30:14:cb:0e:17:97:33:5d:cb:b0:5c:66:d4:95: 25:74:12:74:97:03:cd:84:97:86:d9:92:5a:8d:4f: 68:9f:a8:47:d1:ad:8e:84:7d:5a:1a:55:a2:97:63: b7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:90:D3:A8:27:38:69:B7:82:6E:E0:90:CE:1C:72:7D:63:13:38:77 X509v3 Authority Key Identifier: keyid:96:A6:35:02:7B:64:A6:54:D8:08:94:5D:B8:35:A9:E2:8C:79:4B:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.96.0/23 Signature Algorithm: sha256WithRSAEncryption 13:47:70:97:e8:5f:65:ba:28:c6:96:3c:f4:8e:99:b3:46:8e: eb:40:fb:36:48:fe:3b:ce:44:1a:7c:32:e9:11:e0:e0:2e:b7: 99:1e:93:d8:41:c7:95:40:10:f5:a5:fa:48:08:7e:1e:55:bc: 63:62:12:86:b6:2e:b5:f7:66:bd:32:7f:da:86:a6:79:c4:e0: 31:f2:62:a1:2c:92:35:41:98:a3:8d:b0:47:6b:00:e0:43:f3: 72:2b:14:b1:11:1c:6a:d4:33:b2:78:fe:82:ab:8d:5f:16:c0: b3:ea:d6:53:ef:fd:54:70:6e:26:5c:3f:3e:ff:8d:fd:32:db: 70:a9:7d:43:35:00:dd:56:f9:82:5f:47:ec:32:a1:d1:ef:9b: b7:24:35:76:23:56:a8:28:13:e2:72:22:16:60:44:25:b3:64: b0:de:fa:b5:e0:cf:5f:76:29:65:a9:79:44:bb:24:ca:f8:27: 31:8c:f0:90:df:02:89:6a:fd:a2:8e:b8:33:18:7e:fb:a3:b0: 9e:4d:45:38:c4:64:ac:42:d0:5e:01:e6:f6:8a:81:71:18:1a: 77:63:8e:1d:f7:52:3f:d8:b4:82:8f:c4:3c:0b:ab:d4:69:d2: aa:48:60:a5:77:f0:97:04:b8:b6:4f:e0:02:44:f9:c0:c2:5a: 39:9a:5b:4a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzOTExMTAvBgNVBAUTKDk2QTYzNTAyN0I2NEE2NTREODA4OTQ1REI4MzVBOUUy OEM3OTRCMDEwHhcNMjUwNzA5MDcxMzQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZDJiZS1hMWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41GhBywNseHKqhHtBMxeta1xXEyszsm1OZwZQ2oAOGz1BLy/0k9nlSgUUNe4 /x37kG2cQclWB/7/nDco57cpCmaAKBbgA617JaJhl4bc6l/+Iw1rk18YzKEAooEn 8PooHkdrFYs8ev3n0HBzUWxnguxqPahd+3/MlnOaDGXm00WLh2y0UAXyngvf/sdX 9EtTqusop+Tufq83OH9a4uf0AaTEmlxbK6IV+oQ//D1fPZif2pyjpGWjuDxHQ3QB y1+DoliE9j419rITa829EUwPm5rnMBTLDheXM13LsFxm1JUldBJ0lwPNhJeG2ZJa jU9on6hH0a2OhH1aGlWil2O3jQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBmQ06gn OGm3gm7gkM4ccn1jEzh3MB8GA1UdIwQYMBaAFJamNQJ7ZKZU2AiUXbg1qeKMeUsB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM5MS9GNzIwOUMzMjcw QUQxMUVGQTg0OEIwNjhDNEY5QUUwMi9scVkxQW50a3BsVFlDSlJkdURXcDRveDVT d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xxWTFBbnRrcGxUWUNKUmR1RFdwNG94NVN3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQzOTEvRjcyMDlDMzI3MEFEMTFFRkE4NDhCMDY4QzRGOUFFMDIvQkJBOEY5N0M3 MEFGMTFFRjlDOUIyQzBFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBlgMA0GCSqGSIb3DQEBCwUAA4IBAQATR3CX6F9luijGljz0jpmz Ro7rQPs2SP47zkQafDLpEeDgLreZHpPYQceVQBD1pfpICH4eVbxjYhKGti6192a9 Mn/ahqZ5xOAx8mKhLJI1QZijjbBHawDgQ/NyKxSxERxq1DOyeP6Cq41fFsCz6tZT 7/1UcG4mXD8+/439MttwqX1DNQDdVvmCX0fsMqHR75u3JDV2I1aoKBPiciIWYEQl s2Sw3vq14M9fdillqXlEuyTK+CcxjPCQ3wKJav2ijrgzGH77o7CeTUU4xGSsQtBe Aeb2ioFxGBp3Y44d91I/2LSCj8Q8C6vUadKqSGCld/CXBLi2T+ACRPnAwlo5mltK -----END CERTIFICATE-----Generated at Mon Mar 2 02:11:35 2026 by rpki-client