
$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/B8BB04788D0E11EF9759C171C4F9AE02.roa
File: B8BB04788D0E11EF9759C171C4F9AE02.roa (raw, json)
Hash identifier: Hs4Mr6CkTqD3grXPleI/UUFso3Z7glAg3DBeY+RGSfU=
Subject key identifier: 45:4F:42:D3:54:97:17:73:A8:61:B7:57:47:77:4A:BC:CC:42:5B:5A
Certificate issuer: /CN=A915F2CF/serialNumber=CB30D35C70DFC866A837CAEDFEFCE6FECBFC5B5F
Certificate serial: 088F
Authority key identifier: CB:30:D3:5C:70:DF:C8:66:A8:37:CA:ED:FE:FC:E6:FE:CB:FC:5B:5F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yzDTXHDfyGaoN8rt_vzm_sv8W18.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/B8BB04788D0E11EF9759C171C4F9AE02.roa
Signing time: Mon 06 Jul 2026 21:22:14 +0000
ROA not before: Mon 06 Jul 2026 21:22:14 +0000
ROA not after: Tue 31 Aug 2027 00:00:00 +0000
asID: 5065
IP address blocks: 45.123.100.0/24 maxlen: 24
45.123.101.0/24 maxlen: 24
103.9.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/yzDTXHDfyGaoN8rt_vzm_sv8W18.crl
rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/yzDTXHDfyGaoN8rt_vzm_sv8W18.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yzDTXHDfyGaoN8rt_vzm_sv8W18.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 21:05:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2191 (0x88f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915F2CF, serialNumber=CB30D35C70DFC866A837CAEDFEFCE6FECBFC5B5F
Validity
Not Before: Jul 6 21:22:14 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=6a4c1c86-6589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:33:0f:0d:32:ca:35:42:b3:11:a2:bb:47:84:
e5:88:9f:d3:4b:59:b8:54:29:19:64:05:aa:2b:4d:
3c:d3:7a:9f:a6:97:95:1e:be:5c:62:ca:bf:9d:40:
27:2d:4b:f3:e3:28:9c:5e:f7:fa:1f:37:89:5f:0d:
44:9e:2f:48:5a:52:d8:67:f5:41:c1:19:02:8b:c7:
80:9d:69:57:4e:98:99:e2:4a:9d:3d:c0:8e:e2:d5:
62:27:d2:e9:0b:bc:07:00:3f:80:ed:69:e6:3e:93:
b3:e3:00:24:46:3a:01:5f:0f:04:21:bc:ba:65:df:
4f:f2:7c:16:0b:8a:26:40:70:70:8a:2d:4a:1f:0e:
b1:e6:b0:8a:27:42:ce:39:ef:57:e2:61:75:98:56:
f3:49:a8:70:61:0d:7b:9c:80:5c:a8:32:2a:93:c2:
91:59:da:dc:14:be:da:ac:dc:4a:22:ac:e1:79:e7:
bb:e3:e3:d8:cf:86:ce:13:c8:ca:29:ee:d2:76:ef:
fa:e3:d6:f2:47:df:70:02:43:21:52:ab:6c:93:0b:
b2:2e:dc:1f:07:b5:0d:7b:7f:a9:92:0f:64:46:61:
de:6c:19:96:a7:73:36:7f:f0:85:af:44:93:d2:71:
4e:39:5f:15:bc:c6:d6:17:bf:ff:5d:ca:96:72:90:
ba:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4F:42:D3:54:97:17:73:A8:61:B7:57:47:77:4A:BC:CC:42:5B:5A
X509v3 Authority Key Identifier:
keyid:CB:30:D3:5C:70:DF:C8:66:A8:37:CA:ED:FE:FC:E6:FE:CB:FC:5B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/yzDTXHDfyGaoN8rt_vzm_sv8W18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yzDTXHDfyGaoN8rt_vzm_sv8W18.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/B8BB04788D0E11EF9759C171C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
45.123.100.0/23
103.9.150.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:e6:ef:b6:b6:f4:6b:5b:07:43:c6:8a:a3:3e:ec:ca:c5:93:
c9:e5:c7:e4:c5:2f:61:89:c4:aa:69:6c:0d:75:6d:b0:43:91:
4c:ec:ac:2d:0b:2b:78:36:18:c4:fc:d7:09:a6:ad:61:ab:25:
4c:80:81:da:04:71:0b:d6:35:d5:67:f0:6f:c2:c6:5b:6a:38:
51:df:8d:43:e6:eb:55:5a:50:fb:79:e7:8f:26:48:7e:ad:a3:
14:82:db:ec:59:75:af:c8:70:79:61:01:bc:6c:15:f5:19:58:
ea:4c:28:49:6b:71:06:45:18:e9:e8:36:e6:3b:2a:6b:6b:1c:
ab:8a:05:e2:66:f0:da:15:d8:f9:ef:a8:49:42:33:6b:8d:2b:
57:f4:92:ec:d8:87:99:ff:76:46:18:d8:2e:f0:07:ac:59:c1:
a7:da:81:08:0a:3e:2c:21:8d:60:8b:a1:67:35:31:f5:41:63:
ed:e3:ac:fb:64:3c:22:a6:bb:3b:dc:69:50:54:2f:99:91:37:
62:a7:dd:b8:bb:a3:e6:80:52:9f:a4:da:d6:03:39:e2:43:90:
a2:b2:0e:ac:c8:5d:68:8e:ba:17:35:2d:ed:30:e0:11:77:b9:
e5:5b:73:26:6f:ef:1e:a9:ee:ac:c0:67:d3:fb:4b:05:52:1c:
58:07:5d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:23:19 2026 by rpki-client