$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BA7491AAE0FE11EF9196F463C4F9AE02.roa File: BA7491AAE0FE11EF9196F463C4F9AE02.roa (raw, json) Hash identifier: WM2qr1kr5yJTrreJCFNTLmOIKUbWdUzkV99jyXWi1/g= Subject key identifier: 90:DD:97:2B:75:92:99:F3:7D:95:33:36:84:2B:79:FD:E6:8D:B8:62 Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 0538 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BA7491AAE0FE11EF9196F463C4F9AE02.roa Signing time: Sun 01 Mar 2026 20:06:20 +0000 ROA not before: Thu 25 Sep 2025 02:21:14 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 20473 IP address blocks: 202.155.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 01:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1336 (0x538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: Sep 25 02:21:14 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a49c3c-c8cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:2c:07:25:27:00:8c:df:18:6b:6c:98:23: 5f:5e:0c:bb:9b:e9:3e:9c:2a:05:0c:bd:44:a3:fd: 0b:54:b1:32:d7:f5:f9:a0:f8:73:4b:7c:5e:f5:01: 32:3b:8f:9a:c8:94:41:16:97:ec:a2:43:82:12:a7: f9:78:b8:97:f7:d3:c0:d1:a0:54:52:b8:62:32:5f: 98:92:09:7e:f7:b4:29:8f:69:00:de:6a:97:d6:c1: b2:22:05:f8:ce:63:99:c7:b1:18:83:66:c4:fe:eb: 90:54:bb:64:8f:8d:9b:51:1b:00:04:85:1e:9e:af: f9:56:b8:ca:6a:71:9b:42:e6:24:5a:f6:2d:2c:b5: 51:05:ad:36:4b:a5:10:15:a4:81:23:bc:f9:23:2c: b3:0b:f0:73:ba:56:be:75:12:41:e9:43:99:5d:a9: 88:98:49:2d:ab:06:c4:31:31:80:11:1a:bf:80:6c: 29:f1:2f:6b:20:6a:0b:9a:9f:52:dc:b6:9a:93:2d: d3:51:aa:59:23:12:90:82:5f:00:0b:e7:f5:cf:95: 8a:25:07:b2:fb:8b:de:f2:de:43:7e:92:cb:63:40: 4e:a9:05:3a:1c:98:99:2f:b0:01:79:e5:53:de:47: 67:70:b6:20:21:89:9a:88:27:7c:ff:c9:c5:3a:d4: 08:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:DD:97:2B:75:92:99:F3:7D:95:33:36:84:2B:79:FD:E6:8D:B8:62 X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BA7491AAE0FE11EF9196F463C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.155.133.0/24 Signature Algorithm: sha256WithRSAEncryption cc:a1:47:fa:fd:e8:ca:d6:b2:62:b3:7b:8a:1d:a8:08:38:10: 2d:aa:0c:e9:b1:30:4b:20:dd:c5:ef:d0:bd:ae:08:4d:3a:f8: 9c:c5:a1:c5:88:03:b4:a6:8a:77:b6:9c:6a:72:ad:22:0d:84: 5a:a3:fb:16:5e:f7:5d:db:18:aa:16:2d:60:b8:57:bf:a4:c8: 55:ef:00:fc:f0:f6:8d:69:ef:7b:65:2a:20:11:c1:91:89:5b: 2e:6d:c2:d9:8d:17:8e:95:f5:82:ac:12:95:1e:45:42:5b:18: 0d:f4:e7:75:85:7e:d9:8e:12:b2:56:2e:ad:28:f6:75:bd:b1: a7:39:ef:cf:24:48:ca:be:5a:a6:76:81:21:99:e5:8f:96:bf: 71:21:41:15:ec:28:24:44:9d:db:cb:f3:2d:0c:3b:70:76:f0: e5:98:c8:90:a9:27:9f:39:5d:2a:f9:01:24:b7:b6:54:2b:fd: 7f:09:53:82:8c:3d:83:8c:97:23:d7:97:ea:92:cf:e5:38:24: bb:fd:fc:a9:70:a6:fe:0d:56:b4:94:7c:a8:20:a7:14:2c:38: b5:40:a0:b4:e5:a8:f1:11:65:90:5d:1c:31:46:f9:9d:da:04: 3f:98:b4:81:5a:6b:72:8b:cc:da:6a:45:c0:45:5a:3f:8f:f4: b4:5a:d7:16 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwOTI1MDIyMTE0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OWMzYy1jOGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGUsByUnAIzfGGtsmCNfXgy7m+k+nCoFDL1Eo/0LVLEy1/X5oPhzS3xe9QEy O4+ayJRBFpfsokOCEqf5eLiX99PA0aBUUrhiMl+Ykgl+97Qpj2kA3mqX1sGyIgX4 zmOZx7EYg2bE/uuQVLtkj42bURsABIUenq/5VrjKanGbQuYkWvYtLLVRBa02S6UQ FaSBI7z5IyyzC/Bzula+dRJB6UOZXamImEktqwbEMTGAERq/gGwp8S9rIGoLmp9S 3Laaky3TUapZIxKQgl8AC+f1z5WKJQey+4ve8t5DfpLLY0BOqQU6HJiZL7ABeeVT 3kdncLYgIYmaiCd8/8nFOtQIVwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJDdlyt1 kpnzfZUzNoQref3mjbhiMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvQkE3NDkxQUFF MEZFMTFFRjkxOTZGNDYzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAypuFMA0GCSqGSIb3DQEBCwUAA4IBAQDMoUf6/ejK1rJis3uKHagI OBAtqgzpsTBLIN3F79C9rghNOvicxaHFiAO0pop3tpxqcq0iDYRao/sWXvdd2xiq Fi1guFe/pMhV7wD88PaNae97ZSogEcGRiVsubcLZjReOlfWCrBKVHkVCWxgN9Od1 hX7ZjhKyVi6tKPZ1vbGnOe/PJEjKvlqmdoEhmeWPlr9xIUEV7CgkRJ3by/MtDDtw dvDlmMiQqSefOV0q+QEkt7ZUK/1/CVOCjD2DjJcj15fqks/lOCS7/fypcKb+DVa0 lHyoIKcULDi1QKC05ajxEWWQXRwxRvmd2gQ/mLSBWmtyi8zaakXARVo/j/S0WtcW -----END CERTIFICATE-----Generated at Thu Mar 5 19:11:31 2026 by rpki-client