$ rpki-client -vvf rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/BA1F21AC731111F0BD7FF574C4F9AE02.roa File: BA1F21AC731111F0BD7FF574C4F9AE02.roa (raw, json) Hash identifier: ZbnDvziitm1Xd7r8Nlbv4tUyUgKPSLQSV5/M7lY224A= Subject key identifier: 31:A1:5F:46:CD:58:CB:1F:76:6B:DA:0B:55:95:E1:3D:E4:87:C4:36 Certificate issuer: /CN=A9164390/serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5 Certificate serial: 1D67 Authority key identifier: C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/BA1F21AC731111F0BD7FF574C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:14:24 +0000 ROA not before: Thu 07 Aug 2025 21:26:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38201 IP address blocks: 43.255.148.0/22 maxlen: 22 43.255.148.0/23 maxlen: 23 43.255.150.0/23 maxlen: 23 103.239.160.0/22 maxlen: 22 103.239.160.0/23 maxlen: 23 103.239.160.0/24 maxlen: 24 103.239.161.0/24 maxlen: 24 103.239.162.0/23 maxlen: 23 175.176.144.0/22 maxlen: 22 175.176.144.0/23 maxlen: 23 175.176.146.0/23 maxlen: 23 175.176.147.0/24 maxlen: 24 202.134.24.0/21 maxlen: 21 202.134.24.0/22 maxlen: 22 202.134.24.0/24 maxlen: 24 202.134.25.0/24 maxlen: 24 202.134.26.0/24 maxlen: 24 202.134.27.0/24 maxlen: 24 202.134.28.0/24 maxlen: 24 202.134.29.0/24 maxlen: 24 202.134.30.0/24 maxlen: 24 202.134.31.0/24 maxlen: 24 2400:6400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.crl rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7527 (0x1d67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164390, serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5 Validity Not Before: Aug 7 21:26:31 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42da0-2cd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7f:47:e8:77:1e:7f:89:21:f5:bb:75:fc:5f: 18:db:7e:01:cb:8a:ec:ec:51:e7:c2:ae:f2:24:26: d9:c8:34:ea:14:63:61:21:de:64:06:3b:28:62:c4: 27:2d:55:9f:d7:4f:20:1a:74:a7:d1:e5:ad:f2:e1: b9:71:52:a0:12:fc:5b:4d:9c:f9:e1:b1:ec:5f:b4: bf:fd:07:87:34:79:97:40:12:69:40:e4:d5:71:0c: 09:f9:d3:75:b1:f9:82:41:4c:a3:49:f1:79:d9:e0: f1:10:76:34:af:1a:f5:3a:a8:8f:31:6b:46:a3:0b: 5b:29:fd:30:7f:96:f0:99:a1:55:57:77:8f:7d:43: de:a7:31:62:56:85:50:e8:e2:36:ac:84:89:f9:ab: 02:61:cb:f2:ad:92:80:df:e6:d8:14:f4:50:17:10: f3:75:1c:e7:bf:8c:30:3e:53:a0:19:1b:3a:ba:89: a7:f5:dc:2f:a3:08:dd:d6:8b:21:c3:f8:dd:f3:ed: 41:1d:42:39:f7:6d:0d:29:17:c1:c7:f6:c1:39:53: 3c:e4:5a:52:4e:bd:3f:a6:fa:ed:27:53:5b:a5:c1: 70:49:45:67:ce:b9:bd:94:89:e4:cb:c5:ff:1f:af: 4f:87:97:14:2d:18:7f:54:75:03:1f:e8:62:ed:dd: a8:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:A1:5F:46:CD:58:CB:1F:76:6B:DA:0B:55:95:E1:3D:E4:87:C4:36 X509v3 Authority Key Identifier: keyid:C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/BA1F21AC731111F0BD7FF574C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.255.148.0/22 103.239.160.0/22 175.176.144.0/22 202.134.24.0/21 IPv6: 2400:6400::/32 Signature Algorithm: sha256WithRSAEncryption 14:35:02:df:66:96:8e:4d:ff:10:9d:32:c6:6d:c3:07:ce:9d: 4c:8e:85:d4:22:dd:e4:03:b5:f3:f2:a8:64:f0:34:f2:d3:b4: 9b:39:a0:b8:1b:a1:05:f1:c2:7f:3a:c9:52:d0:26:7f:21:28: 7b:7b:25:e6:3e:2a:bd:30:0c:2e:43:c7:ca:e2:3b:6d:b5:3a: a4:87:a4:45:ad:54:8c:4f:91:7d:8a:d7:3e:6c:cc:ef:c3:94: 43:35:fd:57:ca:88:54:99:db:be:28:c4:e6:54:75:4b:96:a4: d6:26:a2:df:82:56:b6:a1:19:33:0a:f9:6d:b4:e1:7f:1e:50: 58:4f:7a:85:68:de:13:d7:b3:87:7f:0c:37:5b:59:23:bd:7e: e7:5f:35:da:56:cc:7c:49:0e:36:5f:f3:35:fd:73:7d:0d:cc: c9:6a:26:b6:14:02:96:2b:16:22:a4:01:34:c8:a1:1c:0c:51: 62:79:9c:85:80:f4:d0:26:4a:61:0c:09:12:c3:c0:c3:ac:d7: 9c:93:67:39:48:32:f8:4c:54:0d:d0:40:c3:2e:e9:36:4e:56: bd:12:36:94:40:15:79:78:33:da:67:36:91:64:03:94:80:49: 9a:47:4a:85:c0:b2:ef:31:75:70:78:81:08:f1:fa:f5:48:4c: 38:f8:53:6d -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICHWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQzOTAxMTAvBgNVBAUTKEM2NDMzQzQ5RTYzQ0Q5MjAzNUIzMDdFOEY3OTYzNzYw OEZFQURCRjUwHhcNMjUwODA3MjEyNjMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmRhMC0yY2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt39H6Hcef4kh9bt1/F8Y234By4rs7FHnwq7yJCbZyDTqFGNhId5kBjsoYsQn LVWf108gGnSn0eWt8uG5cVKgEvxbTZz54bHsX7S//QeHNHmXQBJpQOTVcQwJ+dN1 sfmCQUyjSfF52eDxEHY0rxr1OqiPMWtGowtbKf0wf5bwmaFVV3ePfUPepzFiVoVQ 6OI2rISJ+asCYcvyrZKA3+bYFPRQFxDzdRznv4wwPlOgGRs6uomn9dwvowjd1osh w/jd8+1BHUI5920NKRfBx/bBOVM85FpSTr0/pvrtJ1NbpcFwSUVnzrm9lInky8X/ H69Ph5cULRh/VHUDH+hi7d2o1wIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFDGhX0bN WMsfdmvaC1WV4T3kh8Q2MB8GA1UdIwQYMBaAFMZDPEnmPNkgNbMH6PeWN2CP6tv1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDM5MC8wRTkzNTRGQ0RD NUMxMUU2OEU5MTVFMzJDNEY5QUUwMi94a004U2VZODJTQTFzd2ZvOTVZM1lJX3Ey X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hrTThTZVk4MlNBMXN3Zm85NVkzWUlfcTJfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQzOTAvMEU5MzU0RkNEQzVDMTFFNjhFOTE1RTMyQzRGOUFFMDIvQkExRjIxQUM3 MzExMTFGMEJEN0ZGNTc0QzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQCK/+UAwQCZ++gAwQCr7CQAwQDyoYYMA0EAgACMAcDBQAkAGQAMA0G CSqGSIb3DQEBCwUAA4IBAQAUNQLfZpaOTf8QnTLGbcMHzp1MjoXUIt3kA7Xz8qhk 8DTy07SbOaC4G6EF8cJ/OslS0CZ/ISh7eyXmPiq9MAwuQ8fK4jtttTqkh6RFrVSM T5F9itc+bMzvw5RDNf1XyohUmdu+KMTmVHVLlqTWJqLfgla2oRkzCvlttOF/HlBY T3qFaN4T17OHfww3W1kjvX7nXzXaVsx8SQ42X/M1/XN9DczJaia2FAKWKxYipAE0 yKEcDFFieZyFgPTQJkphDAkSw8DDrNeck2c5SDL4TFQN0EDDLuk2Tla9EjaUQBV5 eDPaZzaRZAOUgEmaR0qFwLLvMXVweIEI8fr1SEw4+FNt -----END CERTIFICATE-----Generated at Mon Mar 2 06:52:28 2026 by rpki-client