
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa
File: BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa (raw, json)
Hash identifier: Vxx/pqU8MaqJLS0f7GcfKJsjOpaQz3t/K4gZsqKNCIc=
Subject key identifier: 2D:97:F0:42:98:F3:C9:44:D7:1E:B2:3B:22:94:3E:C0:2A:E9:67:E4
Certificate issuer: /CN=A9144391/serialNumber=96A635027B64A654D808945DB835A9E28C794B01
Certificate serial: 0173
Authority key identifier: 96:A6:35:02:7B:64:A6:54:D8:08:94:5D:B8:35:A9:E2:8C:79:4B:01
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa
Signing time: Wed 17 Jun 2026 05:35:42 +0000
ROA not before: Wed 17 Jun 2026 05:35:42 +0000
ROA not after: Thu 30 Sep 2027 00:00:00 +0000
asID: 153053
IP address blocks: 160.25.96.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.crl
rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 371 (0x173)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9144391, serialNumber=96A635027B64A654D808945DB835A9E28C794B01
Validity
Not Before: Jun 17 05:35:42 2026 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=6a32322e-9da0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9f:cb:a8:2a:20:05:e1:23:6e:58:cb:77:62:
46:db:88:19:c9:cf:dd:18:0b:c9:92:9a:c5:10:31:
0c:ba:1d:c7:16:64:9e:7a:21:5d:1b:99:67:8c:e0:
9d:0d:c6:2f:d2:99:80:20:ad:2c:0e:42:ac:38:f2:
2f:4e:56:aa:5d:23:85:54:c0:ce:40:6c:4d:f2:4a:
5f:ff:08:55:79:34:7a:5f:ba:34:03:7a:eb:fa:9f:
3b:c5:42:2c:d3:04:a0:6c:67:5c:99:75:14:f5:f6:
e2:a0:4d:ae:e3:0e:66:58:1d:c7:1b:0f:42:41:46:
6f:b2:40:2d:b9:9b:b8:2d:7b:c0:3d:62:88:cb:7d:
9f:92:1b:f8:c4:5b:66:b0:c8:67:e3:5b:68:77:ef:
97:24:49:f3:e8:a1:88:20:94:d3:3e:c2:bf:c3:93:
bb:6e:57:3d:c2:3a:f3:e1:0e:a9:72:84:9e:54:9a:
82:1c:8e:d8:10:4f:cc:7e:44:90:24:95:f0:7b:ac:
b8:3c:e0:88:c0:92:78:15:62:04:c8:db:af:5b:b8:
8d:0c:78:ea:dc:a4:5a:06:08:8d:e8:8f:8f:fd:1a:
a1:be:cb:a1:68:fd:b0:01:0d:09:69:2d:f1:86:ae:
1f:cb:2c:0e:7b:8e:73:fe:fe:88:51:be:3e:a2:5a:
1c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:97:F0:42:98:F3:C9:44:D7:1E:B2:3B:22:94:3E:C0:2A:E9:67:E4
X509v3 Authority Key Identifier:
keyid:96:A6:35:02:7B:64:A6:54:D8:08:94:5D:B8:35:A9:E2:8C:79:4B:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/lqY1AntkplTYCJRduDWp4ox5SwE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lqY1AntkplTYCJRduDWp4ox5SwE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/F7209C3270AD11EFA848B068C4F9AE02/BBA8F97C70AF11EF9C9B2C0EC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
160.25.96.0/23
Signature Algorithm: sha256WithRSAEncryption
70:a0:34:6c:0f:13:81:34:27:2c:47:f7:2f:fa:c2:7e:90:b5:
2c:5c:44:f1:49:36:9d:c8:b8:1a:4a:bd:92:f8:c0:28:c1:81:
33:2f:c7:a4:5e:3a:39:8c:69:c1:d0:29:f0:38:d6:48:a9:76:
24:56:59:f3:27:ce:67:08:fa:9d:bc:34:52:e2:9e:e7:d0:5a:
7c:ae:c4:0d:0b:e6:e1:5f:ff:f0:d3:00:ba:c9:ba:4a:f6:9a:
81:1b:99:a1:86:41:b6:f0:3b:5c:a8:d2:3a:60:35:6b:96:2f:
64:0b:e3:92:cc:3f:98:e1:fe:21:ff:fe:af:38:d9:ae:02:48:
1e:a4:70:28:f4:c5:44:3f:05:94:28:64:c3:ed:96:a6:26:ae:
76:2f:2c:42:aa:8b:65:6b:65:c9:57:64:78:71:15:28:eb:03:
d7:be:fe:34:1b:b5:5e:5b:9e:00:a2:fd:66:e8:cc:74:9f:3e:
a5:db:35:9c:64:d5:d0:86:99:59:d9:53:7d:29:3c:ed:1f:97:
53:49:2e:76:bf:05:1b:75:3c:a9:02:01:ff:f0:e8:77:c9:38:
33:8e:56:f7:04:a7:be:38:3c:eb:e3:8b:4d:f5:d8:4a:60:1e:
7d:9f:4d:3f:0c:f0:67:ec:6f:d8:fa:fb:82:da:47:04:9c:7a:
36:aa:34:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:21:12 2026 by rpki-client