
$ rpki-client -vvf rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/BA3B98B2FB0D11F098EF6A0C746F56BC.roa
File: BA3B98B2FB0D11F098EF6A0C746F56BC.roa (raw, json)
Hash identifier: 34c/Kc0Bwls+6oOOKNDceH3aYMTH4DTkUaqgCKVVab4=
Subject key identifier: D0:1D:62:FD:E4:EA:7C:F3:28:F8:F0:14:2A:50:FF:94:44:BA:C5:D4
Certificate issuer: /CN=A9133065/serialNumber=654BCFD70ABC60B54139285305EFD0E315C3368E
Certificate serial: C7
Authority key identifier: 65:4B:CF:D7:0A:BC:60:B5:41:39:28:53:05:EF:D0:E3:15:C3:36:8E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/BA3B98B2FB0D11F098EF6A0C746F56BC.roa
Signing time: Tue 07 Jul 2026 08:35:39 +0000
ROA not before: Tue 07 Jul 2026 08:35:39 +0000
ROA not after: Thu 30 Sep 2027 00:00:00 +0000
asID: 395793
IP address blocks: 103.95.74.0/24 maxlen: 24
103.95.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.crl
rsync://rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:24:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199 (0xc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9133065, serialNumber=654BCFD70ABC60B54139285305EFD0E315C3368E
Validity
Not Before: Jul 7 08:35:39 2026 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=6a4cba5b-8649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1d:f8:19:f1:be:76:1c:45:f6:6f:0c:40:89:
9e:92:86:0f:ca:0c:75:f2:b4:bb:51:ff:9f:a8:9d:
4a:f7:20:70:78:f8:fe:3e:be:d3:63:75:ac:95:81:
95:04:13:2a:74:d5:4d:8a:c5:fe:57:c0:a1:2e:08:
8c:cc:76:18:31:f6:b5:f9:b3:87:0f:2f:12:7d:fe:
d1:ff:32:47:39:40:7c:fd:50:8f:06:0d:3a:2a:96:
7f:16:fb:6f:39:c2:e9:02:28:e7:40:d4:c0:4e:bc:
3a:ee:13:98:d5:e5:53:e5:2f:be:16:43:e6:31:74:
ed:76:1c:18:bf:26:14:43:1d:45:aa:ec:7f:8b:50:
21:03:8c:f5:36:a0:c2:b2:ed:eb:36:d7:dc:4c:a2:
bc:0e:3b:8a:16:0e:cc:85:bd:7c:26:fa:37:c8:54:
f9:92:1c:5f:ee:c0:21:7a:ab:8a:62:99:7d:57:95:
c9:1f:2e:5c:4b:2b:53:e2:02:2a:1a:54:0b:ee:24:
a1:e2:d7:d1:14:7b:e5:4f:a7:c0:19:4e:cc:1d:0b:
e3:b0:60:6f:8f:e2:4b:e5:52:8f:cf:64:1d:51:27:
b7:2b:7f:9c:6c:7b:0b:e0:7b:a6:ae:12:75:4a:ec:
4a:32:de:7d:0c:1b:45:1c:09:e9:a3:13:b7:81:01:
b1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:1D:62:FD:E4:EA:7C:F3:28:F8:F0:14:2A:50:FF:94:44:BA:C5:D4
X509v3 Authority Key Identifier:
keyid:65:4B:CF:D7:0A:BC:60:B5:41:39:28:53:05:EF:D0:E3:15:C3:36:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/BA3B98B2FB0D11F098EF6A0C746F56BC.roa
sbgp-ipAddrBlock: critical
IPv4:
103.95.74.0/23
Signature Algorithm: sha256WithRSAEncryption
31:e1:10:2e:5b:0a:84:0d:3c:94:ea:8f:b7:ab:6f:79:f5:0a:
1f:35:39:07:db:a4:5b:76:cb:20:3c:1c:e9:54:1d:94:16:20:
62:cc:55:57:7c:ae:b9:ef:dc:a6:09:00:7c:e9:29:ad:dd:68:
7b:e4:9c:ca:43:ce:f3:98:89:f1:28:6f:18:ec:98:d6:31:35:
65:50:bf:21:d4:0d:19:5a:6f:8e:73:1e:24:87:8d:71:c5:83:
fd:56:83:ec:9f:04:a3:f4:c9:69:4c:4d:88:4b:b6:f1:e2:7a:
04:48:15:92:e0:0c:df:64:c1:92:1b:a1:bb:c1:07:fc:5f:4a:
e5:82:86:1e:96:65:2a:1e:b2:16:37:16:ba:5b:44:32:01:a2:
69:3d:cb:98:da:df:5d:90:f2:30:8f:c4:22:98:07:f3:6e:1c:
df:ae:bd:88:78:f5:00:e5:c7:02:ee:d3:81:8b:9e:8f:09:4c:
d7:d0:2f:a6:5e:8d:63:ef:67:0d:01:0e:d6:63:58:e9:49:5b:
56:55:28:be:45:35:ad:7f:94:2b:99:1c:e0:3f:85:56:52:f7:
d8:e2:1b:03:dd:c6:a0:9c:37:09:70:a2:88:93:6b:aa:dc:93:
d6:1d:8b:cb:db:28:65:e2:29:6c:b2:68:2f:e3:45:01:60:70:
c4:4d:35:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 00:17:48 2026 by rpki-client