$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/BA8DE47CDFE311F08DEF0674556F56BC.roa File: BA8DE47CDFE311F08DEF0674556F56BC.roa (raw, json) Hash identifier: mmdoH+5fMH1SUT2ncOmpXZx/2twUEHAZ4APCf5ovSWY= Subject key identifier: 0A:AF:B9:6B:1C:D6:6F:C1:B8:22:79:34:FF:14:FD:D2:27:7D:65:3E Certificate issuer: /CN=A91B8070/serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Certificate serial: BB Authority key identifier: 4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/BA8DE47CDFE311F08DEF0674556F56BC.roa Signing time: Sun 01 Mar 2026 16:14:32 +0000 ROA not before: Tue 23 Dec 2025 09:42:43 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 149430 IP address blocks: 163.223.38.0/23 maxlen: 23 163.223.38.0/24 maxlen: 24 163.223.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:29:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8070, serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Validity Not Before: Dec 23 09:42:43 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a465e8-bf5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:a3:fb:74:7f:54:86:a9:ae:47:3d:c5:35:6d: e8:50:0b:ed:a3:7f:4f:f0:d1:a9:fe:e3:6e:ab:0b: 82:0c:01:51:84:e8:60:1a:a8:72:34:e4:d5:3d:71: bf:ac:c1:aa:02:8d:51:a9:1c:5b:d9:10:5c:34:61: 95:1f:b2:d7:d2:5b:8b:d0:d4:2e:e7:ed:d4:91:35: 28:5f:f1:64:17:8d:1b:26:42:c9:0e:7f:2f:2d:56: d9:a8:4c:35:04:23:2f:ea:9a:2d:c2:23:6f:47:b7: 48:02:b8:df:cd:50:86:84:09:87:3d:c8:eb:6c:65: ce:f8:a5:5b:a0:d1:97:9c:ee:94:d2:23:1e:7c:91: ce:7f:54:30:15:0c:b9:1b:07:5c:c5:2b:4c:61:65: 18:d0:af:c9:c9:92:1e:71:11:b9:48:bd:5d:bb:a6: 76:ee:40:84:65:0a:1a:24:d9:af:e6:65:91:85:88: 68:f4:06:07:c4:eb:1e:19:b3:2c:f1:a7:06:50:ac: 23:6d:e6:bd:8b:2f:fa:ca:50:e1:ea:c2:21:5a:d1: 1c:e7:57:9f:65:98:ee:1c:2b:0d:f4:f9:2c:a3:06: d8:fa:70:5f:32:bd:0c:f0:45:65:04:88:c3:fa:6a: 0c:e1:33:19:65:58:a0:39:d8:bc:3e:72:97:5d:2a: 4c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:AF:B9:6B:1C:D6:6F:C1:B8:22:79:34:FF:14:FD:D2:27:7D:65:3E X509v3 Authority Key Identifier: keyid:4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/BA8DE47CDFE311F08DEF0674556F56BC.roa sbgp-ipAddrBlock: critical IPv4: 163.223.38.0/23 Signature Algorithm: sha256WithRSAEncryption 54:36:cd:b4:81:81:d7:54:93:54:3a:1d:5e:96:ec:89:0d:31: 2e:7e:5a:ad:37:0a:b9:16:0d:a3:6d:a1:79:c6:4e:2d:2f:79: 40:65:8f:5c:ff:30:77:73:c4:e3:c8:f8:fa:35:4c:81:ba:1b: 8a:98:18:0b:9c:f6:65:a2:c2:33:ef:f2:09:7b:53:62:e2:4e: de:37:24:e7:81:eb:13:22:89:e4:61:af:ee:59:89:bb:b5:91: fb:0c:89:71:5c:be:92:fc:86:40:70:d1:eb:db:ec:14:9c:2c: 1d:0e:c2:5b:84:32:3d:1f:fd:91:34:53:d4:ba:a8:ec:9c:6c: 87:9a:16:28:9c:85:95:6e:b6:ab:43:9e:a6:e1:ea:f9:52:cd: 0c:d5:5d:73:03:ba:e6:2b:39:e5:8c:6d:ca:96:fb:6c:f5:86: ca:b3:89:0c:00:49:31:99:9e:2a:3d:d9:b4:ee:2c:ba:2e:08: bb:35:d1:ba:f5:15:66:8f:3b:18:31:57:9c:3c:20:cf:4e:55: a7:f8:77:9f:0a:e5:90:5f:4e:a9:08:a8:36:75:02:7c:5e:02: a5:a6:41:58:6f:4e:96:f1:11:68:4d:a9:59:ab:80:20:eb:40: 0f:50:3c:8d:a7:52:86:22:7f:85:02:81:f2:d2:74:a7:f6:8c: 94:17:0d:d3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwNzAxMTAvBgNVBAUTKDRFRkI5M0I0OUJGMUJBNTYwMDhERkM2MDYwOEI1MjE2 QUVDOTlBQzYwHhcNMjUxMjIzMDk0MjQzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjVlOC1iZjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+qP7dH9UhqmuRz3FNW3oUAvto39P8NGp/uNuqwuCDAFRhOhgGqhyNOTVPXG/ rMGqAo1RqRxb2RBcNGGVH7LX0luL0NQu5+3UkTUoX/FkF40bJkLJDn8vLVbZqEw1 BCMv6potwiNvR7dIArjfzVCGhAmHPcjrbGXO+KVboNGXnO6U0iMefJHOf1QwFQy5 GwdcxStMYWUY0K/JyZIecRG5SL1du6Z27kCEZQoaJNmv5mWRhYho9AYHxOseGbMs 8acGUKwjbea9iy/6ylDh6sIhWtEc51efZZjuHCsN9PksowbY+nBfMr0M8EVlBIjD +moM4TMZZVigOdi8PnKXXSpMiwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAqvuWsc 1m/BuCJ5NP8U/dInfWU+MB8GA1UdIwQYMBaAFE77k7Sb8bpWAI38YGCLUhauyZrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODA3MC9BRTM2NDY5NjEz ODQxMUYwQkM1RjQ1NDdDNEY5QUUwMi9UdnVUdEp2eHVsWUFqZnhnWUl0U0ZxN0pt c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R2dVR0SnZ4dWxZQWpmeGdZSXRTRnE3Sm1zWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgwNzAvQUUzNjQ2OTYxMzg0MTFGMEJDNUY0NTQ3QzRGOUFFMDIvQkE4REU0N0NE RkUzMTFGMDhERUYwNjc0NTU2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBo98mMA0GCSqGSIb3DQEBCwUAA4IBAQBUNs20gYHXVJNUOh1eluyJ DTEuflqtNwq5Fg2jbaF5xk4tL3lAZY9c/zB3c8TjyPj6NUyBuhuKmBgLnPZlosIz 7/IJe1Ni4k7eNyTngesTIonkYa/uWYm7tZH7DIlxXL6S/IZAcNHr2+wUnCwdDsJb hDI9H/2RNFPUuqjsnGyHmhYonIWVbrarQ56m4er5Us0M1V1zA7rmKznljG3Klvts 9YbKs4kMAEkxmZ4qPdm07iy6Lgi7NdG69RVmjzsYMVecPCDPTlWn+HefCuWQX06p CKg2dQJ8XgKlpkFYb06W8RFoTalZq4Ag60APUDyNp1KGIn+FAoHy0nSn9oyUFw3T -----END CERTIFICATE-----Generated at Mon Mar 2 07:36:57 2026 by rpki-client