$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa File: BAF4AD0418B211EB8C78F510C4F9AE02.roa (raw, json) Hash identifier: UBSeqpgmfI4wXUPJhQgwKdIciBi2ooD212TCB+um0C0= Subject key identifier: C4:9B:28:BD:78:C0:C7:1D:A2:9F:CA:8B:A2:78:63:1D:B5:D5:4B:E9 Certificate issuer: /CN=A9121D26/serialNumber=E95EFFC29416584BF37C0C8F9EB73B920F9A41AD Certificate serial: 07DD Authority key identifier: E9:5E:FF:C2:94:16:58:4B:F3:7C:0C:8F:9E:B7:3B:92:0F:9A:41:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa Signing time: Wed 22 Oct 2025 22:10:57 +0000 ROA not before: Wed 22 Oct 2025 22:10:57 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141197 IP address blocks: 202.0.159.0/24 maxlen: 24 2407:1240:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.crl rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121D26, serialNumber=E95EFFC29416584BF37C0C8F9EB73B920F9A41AD Validity Not Before: Oct 22 22:10:57 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f95670-8843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a9:f8:8f:44:75:61:68:42:c8:39:c9:e0:d8: cc:f8:65:47:91:cf:70:44:59:ca:36:f9:9b:a7:95: de:cf:f0:36:86:ce:e0:06:89:5c:ce:6a:d3:29:4e: 93:19:50:27:94:03:73:5a:5c:4f:77:d8:39:ed:a5: 39:82:f6:aa:2e:24:95:03:d9:21:c3:2d:64:0c:4d: 63:d6:cf:9d:b6:96:e5:c1:82:a5:75:ed:7a:95:42: 2d:fa:2e:02:8b:ae:1b:95:f0:b1:30:ac:44:b3:3b: 76:b6:33:c2:b2:61:13:38:68:67:5a:c0:7a:e7:8d: 16:b1:e3:f9:b3:dc:73:1a:36:e4:33:71:16:ea:e0: 4f:78:d3:2d:70:f3:3b:25:6d:ab:0d:ef:ad:05:0a: 66:d8:5d:ec:ac:a3:73:1b:5a:d4:9a:38:dc:fc:12: 08:ab:70:38:82:44:16:c9:26:4f:7d:97:9c:d1:27: 56:94:4f:34:9c:eb:b0:74:76:b7:a6:45:2b:01:14: 0f:bd:73:ea:9a:69:63:e2:2b:83:e9:26:a9:22:c2: 4e:9a:ea:2d:b7:13:c6:87:f1:e2:14:75:85:49:e2: a2:e3:b5:15:9d:49:c3:48:f9:2d:72:f9:78:df:a9: bf:57:95:60:63:3a:7b:e6:0f:84:68:78:fe:d7:b5: 3a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:9B:28:BD:78:C0:C7:1D:A2:9F:CA:8B:A2:78:63:1D:B5:D5:4B:E9 X509v3 Authority Key Identifier: keyid:E9:5E:FF:C2:94:16:58:4B:F3:7C:0C:8F:9E:B7:3B:92:0F:9A:41:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.0.159.0/24 IPv6: 2407:1240:1::/48 Signature Algorithm: sha256WithRSAEncryption 3a:1b:44:d2:a0:7a:d1:a3:4e:59:49:ab:e0:4a:e8:dc:16:01: da:51:99:69:0f:45:44:03:35:7b:d3:7f:86:e8:7b:32:9c:3c: 2a:a9:ec:f1:1e:9d:6d:93:24:ab:50:8b:05:2e:7b:3c:4f:1f: 45:05:e0:05:4e:d3:59:41:c6:21:52:59:2f:18:98:f9:35:52: 54:96:13:26:bf:10:7f:31:9e:5f:24:f3:6f:8b:10:e3:60:04: 7d:91:8a:ba:4e:1b:d2:9b:84:b4:a4:23:22:f2:12:96:5d:41: bd:51:67:c9:71:95:50:54:7a:d4:9a:75:8d:3e:db:d7:36:86: 17:c5:a4:05:d7:5b:a4:9c:5e:31:db:49:ca:ca:7a:f0:a2:21: ce:94:b9:a2:d2:62:16:86:f6:b2:df:d5:5d:79:33:c4:a9:6d: af:d7:5e:51:cd:dd:1d:9f:03:4b:a9:7a:8b:4a:cf:09:51:12: f9:15:ad:a3:83:f4:b6:41:5e:2b:2a:6e:c9:4a:cf:cc:0a:7f: d7:b9:ab:c2:27:a5:de:eb:d6:ca:29:99:bd:05:2d:a4:05:28: e6:ee:83:f2:73:70:ab:a3:80:ef:ef:ec:4e:cf:fc:ca:4c:b9: fd:a5:46:98:b7:a7:ea:d3:99:1f:f9:b2:a6:f6:f1:6b:d6:c5: ca:6c:01:e0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFEMjYxMTAvBgNVBAUTKEU5NUVGRkMyOTQxNjU4NEJGMzdDMEM4RjlFQjczQjky MEY5QTQxQUQwHhcNMjUxMDIyMjIxMDU3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5NTY3MC04ODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6n4j0R1YWhCyDnJ4NjM+GVHkc9wRFnKNvmbp5Xez/A2hs7gBolczmrTKU6T GVAnlANzWlxPd9g57aU5gvaqLiSVA9khwy1kDE1j1s+dtpblwYKlde16lUIt+i4C i64blfCxMKxEszt2tjPCsmETOGhnWsB6540WseP5s9xzGjbkM3EW6uBPeNMtcPM7 JW2rDe+tBQpm2F3srKNzG1rUmjjc/BIIq3A4gkQWySZPfZec0SdWlE80nOuwdHa3 pkUrARQPvXPqmmlj4iuD6SapIsJOmuottxPGh/HiFHWFSeKi47UVnUnDSPktcvl4 36m/V5VgYzp75g+EaHj+17U6WQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMSbKL14 wMcdop/Ki6J4Yx211UvpMB8GA1UdIwQYMBaAFOle/8KUFlhL83wMj563O5IPmkGt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUQyNi8wN0YwODQ4MDE4 QUQxMUVCOUVFMzM0ODVDNEY5QUUwMi82Vjdfd3BRV1dFdnpmQXlQbnJjN2tnLWFR YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZWN193cFFXV0V2emZBeVBucmM3a2ctYVFhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjFEMjYvMDdGMDg0ODAxOEFEMTFFQjlFRTMzNDg1QzRGOUFFMDIvQkFGNEFEMDQx OEIyMTFFQjhDNzhGNTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKAJ8wDwQCAAIwCQMHACQHEkAAATANBgkqhkiG9w0BAQsF AAOCAQEAOhtE0qB60aNOWUmr4Ero3BYB2lGZaQ9FRAM1e9N/huh7Mpw8Kqns8R6d bZMkq1CLBS57PE8fRQXgBU7TWUHGIVJZLxiY+TVSVJYTJr8QfzGeXyTzb4sQ42AE fZGKuk4b0puEtKQjIvISll1BvVFnyXGVUFR61Jp1jT7b1zaGF8WkBddbpJxeMdtJ ysp68KIhzpS5otJiFob2st/VXXkzxKltr9deUc3dHZ8DS6l6i0rPCVES+RWto4P0 tkFeKypuyUrPzAp/17mrwiel3uvWyimZvQUtpAUo5u6D8nNwq6OA7+/sTs/8yky5 /aVGmLen6tOZH/mypvbxa9bFymwB4A== -----END CERTIFICATE-----Generated at Wed Nov 5 19:20:36 2025 by rpki-client