$ rpki-client -vvf rpki.apnic.net/member_repository/A9185259/FF90928C9CF811F08812DE1EC4F9AE02/991FC9309CFA11F08F0A1549C4F9AE02.roa File: 991FC9309CFA11F08F0A1549C4F9AE02.roa (raw, json) Hash identifier: /OONPuUDLnHhTMEraEKTABbJUmrt5brSg9FbXWyrZbQ= Subject key identifier: 05:D2:16:41:69:83:D0:AC:28:D5:99:C7:FB:F0:61:77:80:DC:8E:C8 Certificate issuer: /CN=A9185259/serialNumber=745036097429CC1AC76C4C99898D06F83E075C13 Certificate serial: 02 Authority key identifier: 74:50:36:09:74:29:CC:1A:C7:6C:4C:99:89:8D:06:F8:3E:07:5C:13 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dFA2CXQpzBrHbEyZiY0G-D4HXBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185259/FF90928C9CF811F08812DE1EC4F9AE02/991FC9309CFA11F08F0A1549C4F9AE02.roa Signing time: Mon 29 Sep 2025 06:07:37 +0000 ROA not before: Mon 29 Sep 2025 06:07:37 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 154022 IP address blocks: 165.101.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185259/FF90928C9CF811F08812DE1EC4F9AE02/dFA2CXQpzBrHbEyZiY0G-D4HXBM.crl rsync://rpki.apnic.net/member_repository/A9185259/FF90928C9CF811F08812DE1EC4F9AE02/dFA2CXQpzBrHbEyZiY0G-D4HXBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dFA2CXQpzBrHbEyZiY0G-D4HXBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185259, serialNumber=745036097429CC1AC76C4C99898D06F83E075C13 Validity Not Before: Sep 29 06:07:37 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68da2229-95fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:24:f6:5d:0d:6b:be:ea:4c:30:cc:0d:eb:ab: 05:39:3c:d3:35:0a:03:3e:cc:72:69:a2:94:ba:da: 48:16:44:b0:ea:ad:6a:a1:44:a3:ae:ef:dd:0d:b9: 0a:d6:40:51:a4:61:ea:b3:d4:6a:85:5e:44:b4:58: c0:29:d3:a9:45:c0:0d:0a:37:b9:88:4d:cc:9c:5c: 17:a3:03:83:a2:a2:04:90:3a:eb:80:f4:61:75:de: f2:88:25:88:fe:11:70:4c:39:00:88:ed:df:af:90: b3:40:67:fe:a6:1e:e4:c0:e3:4a:53:58:9d:74:48: f5:35:4a:2a:8f:86:44:f2:66:16:bd:4c:08:ac:ae: a9:27:ee:93:05:68:f1:a4:1b:9a:2a:54:ea:8c:96: 2c:14:27:98:e9:dc:fa:44:d2:0c:1a:df:0e:53:51: 40:60:08:4a:9b:09:f1:2e:03:ed:3b:14:b4:b2:b5: 34:33:db:1e:0c:8d:f9:f4:06:d0:21:38:ef:86:ef: fb:4a:48:c6:fa:92:33:d9:24:28:4a:fc:d8:50:5f: 94:44:77:be:26:ec:f6:19:78:9a:7b:6e:35:47:91: 73:59:73:8b:47:f7:e0:51:d5:c4:74:ee:eb:b1:e4: e9:56:b8:a2:49:2f:b9:a9:34:74:50:9d:73:f2:49: f5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D2:16:41:69:83:D0:AC:28:D5:99:C7:FB:F0:61:77:80:DC:8E:C8 X509v3 Authority Key Identifier: keyid:74:50:36:09:74:29:CC:1A:C7:6C:4C:99:89:8D:06:F8:3E:07:5C:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185259/FF90928C9CF811F08812DE1EC4F9AE02/dFA2CXQpzBrHbEyZiY0G-D4HXBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dFA2CXQpzBrHbEyZiY0G-D4HXBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185259/FF90928C9CF811F08812DE1EC4F9AE02/991FC9309CFA11F08F0A1549C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.131.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:f2:5d:92:0b:c0:5e:b0:c7:52:7c:dd:f0:ba:96:ff:f0:09: 43:5c:fb:d4:fd:81:39:f6:cc:f7:5e:32:a5:4e:0c:5a:75:e6: 74:f3:15:56:08:72:1f:6c:3b:af:6c:2d:78:a3:42:49:04:7e: b7:98:d0:75:9d:d5:03:47:26:2f:4d:d7:0b:fa:41:e3:ad:79: 8c:bc:ac:de:5e:68:5a:9f:f1:6a:64:d0:d7:3e:dc:cd:96:82: 37:a0:3c:66:a1:87:13:b5:36:02:dd:7b:21:aa:1b:e9:6b:77: d2:a1:37:77:a7:88:b6:8a:66:da:eb:50:3f:e5:44:0d:2d:52: e9:3d:b6:6c:79:da:0a:9b:9e:4b:ee:26:d6:61:93:bb:06:87: 76:4b:53:bf:46:2c:79:94:ce:a8:39:d0:47:6b:00:e8:c3:42: ac:9d:47:fc:a0:42:04:9c:7a:47:79:42:55:be:72:ee:04:83: f6:80:e7:6c:60:7e:91:b3:b9:34:cb:d7:10:7d:ad:e1:60:22: db:84:b2:0c:b5:44:6a:ac:ac:dc:0c:59:b9:f0:31:6d:df:40: 08:2e:ba:1f:08:bb:ea:dc:7d:18:55:e7:17:c8:f5:54:e2:84: e0:17:da:f2:94:22:53:59:27:89:ac:d7:c0:70:95:99:75:71: 3f:19:1d:39 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NTI1OTExMC8GA1UEBRMoNzQ1MDM2MDk3NDI5Q0MxQUM3NkM0Qzk5ODk4RDA2Rjgz RTA3NUMxMzAeFw0yNTA5MjkwNjA3MzdaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGEyMjI5LTk1ZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5JPZdDWu+6kwwzA3rqwU5PNM1CgM+zHJpopS62kgWRLDqrWqhRKOu790NuQrW QFGkYeqz1GqFXkS0WMAp06lFwA0KN7mITcycXBejA4OiogSQOuuA9GF13vKIJYj+ EXBMOQCI7d+vkLNAZ/6mHuTA40pTWJ10SPU1SiqPhkTyZha9TAisrqkn7pMFaPGk G5oqVOqMliwUJ5jp3PpE0gwa3w5TUUBgCEqbCfEuA+07FLSytTQz2x4Mjfn0BtAh OO+G7/tKSMb6kjPZJChK/NhQX5REd74m7PYZeJp7bjVHkXNZc4tH9+BR1cR07uux 5OlWuKJJL7mpNHRQnXPySfWLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUBdIWQWmD 0Kwo1ZnH+/Bhd4DcjsgwHwYDVR0jBBgwFoAUdFA2CXQpzBrHbEyZiY0G+D4HXBMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1MjU5L0ZGOTA5MjhDOUNG ODExRjA4ODEyREUxRUM0RjlBRTAyL2RGQTJDWFFwekJySGJFeVppWTBHLUQ0SFhC TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZEZBMkNYUXB6QnJIYkV5WmlZMEctRDRIWEJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTI1OS9GRjkwOTI4QzlDRjgxMUYwODgxMkRFMUVDNEY5QUUwMi85OTFGQzkzMDlD RkExMUYwOEYwQTE1NDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVlgzANBgkqhkiG9w0BAQsFAAOCAQEAavJdkgvAXrDHUnzd 8LqW//AJQ1z71P2BOfbM914ypU4MWnXmdPMVVghyH2w7r2wteKNCSQR+t5jQdZ3V A0cmL03XC/pB4615jLys3l5oWp/xamTQ1z7czZaCN6A8ZqGHE7U2At17Iaob6Wt3 0qE3d6eItopm2utQP+VEDS1S6T22bHnaCpueS+4m1mGTuwaHdktTv0YseZTOqDnQ R2sA6MNCrJ1H/KBCBJx6R3lCVb5y7gSD9oDnbGB+kbO5NMvXEH2t4WAi24SyDLVE aqys3AxZufAxbd9ACC66Hwi76tx9GFXnF8j1VOKE4Bfa8pQiU1kniazXwHCVmXVx PxkdOQ== -----END CERTIFICATE-----Generated at Wed Nov 5 14:25:48 2025 by rpki-client