$ rpki-client -vvf rpki.apnic.net/member_repository/A9190587/90F1435A621811F0AA22A026C4F9AE02/0B9DC9A2623711F0B8A15A64C4F9AE02.roa File: 0B9DC9A2623711F0B8A15A64C4F9AE02.roa (raw, json) Hash identifier: 5FDU6DEKQtmTGtpdU43fv/DkGAEq2snYHdpdiV+BACQ= Subject key identifier: A7:B3:E6:22:AC:ED:A6:00:F5:EC:EA:CE:06:20:28:77:C8:BB:04:61 Certificate issuer: /CN=A9190587/serialNumber=A9B53F7B619631870928902FF484765741BDA2E9 Certificate serial: 03 Authority key identifier: A9:B5:3F:7B:61:96:31:87:09:28:90:2F:F4:84:76:57:41:BD:A2:E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qbU_e2GWMYcJKJAv9IR2V0G9ouk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190587/90F1435A621811F0AA22A026C4F9AE02/0B9DC9A2623711F0B8A15A64C4F9AE02.roa Signing time: Wed 16 Jul 2025 11:21:40 +0000 ROA not before: Wed 16 Jul 2025 11:21:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153056 IP address blocks: 165.101.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190587/90F1435A621811F0AA22A026C4F9AE02/qbU_e2GWMYcJKJAv9IR2V0G9ouk.crl rsync://rpki.apnic.net/member_repository/A9190587/90F1435A621811F0AA22A026C4F9AE02/qbU_e2GWMYcJKJAv9IR2V0G9ouk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qbU_e2GWMYcJKJAv9IR2V0G9ouk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190587, serialNumber=A9B53F7B619631870928902FF484765741BDA2E9 Validity Not Before: Jul 16 11:21:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68778b44-c604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1b:50:f3:7d:44:6e:f5:26:d2:9d:09:5d:5b: f3:f3:d6:eb:70:87:44:2b:d0:fa:75:16:e3:33:87: 17:8b:2e:d9:b4:7f:01:da:c8:a8:9c:f2:de:1b:8e: d6:86:dc:0a:40:17:db:43:b7:54:fa:a4:0b:eb:2d: 8a:a3:8f:a5:86:43:4a:3b:47:70:43:47:01:b2:67: 5f:79:5e:55:7c:ad:e7:de:fc:c9:db:dc:48:76:40: fc:a4:08:51:5e:03:0f:16:81:81:b0:9f:e9:06:03: 8b:4d:de:07:58:24:e6:b9:88:1e:f1:9d:69:b0:a5: 5b:f5:a0:f0:f1:dc:ea:e3:55:f4:8e:6a:fb:26:b2: 72:9d:48:34:5a:98:95:78:18:08:8f:a5:17:4a:7a: a6:d8:49:85:eb:0a:e1:ee:0a:17:b6:32:5f:3a:8e: c7:6e:5a:e7:ae:5c:cd:1f:2a:4c:b1:5e:4e:a9:e8: 10:91:c0:14:9b:0c:e0:cb:7d:78:54:da:54:b1:9e: 43:bf:b0:d7:f0:c1:8c:08:94:28:29:ac:59:b6:55: cc:1e:3b:49:a4:98:b4:a4:4e:46:cd:b4:eb:49:7b: dc:46:11:c0:b6:41:19:b5:35:2d:b1:52:35:e3:fc: 2b:3d:11:37:80:31:06:9b:dc:19:17:36:b9:a0:a9: d0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B3:E6:22:AC:ED:A6:00:F5:EC:EA:CE:06:20:28:77:C8:BB:04:61 X509v3 Authority Key Identifier: keyid:A9:B5:3F:7B:61:96:31:87:09:28:90:2F:F4:84:76:57:41:BD:A2:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190587/90F1435A621811F0AA22A026C4F9AE02/qbU_e2GWMYcJKJAv9IR2V0G9ouk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qbU_e2GWMYcJKJAv9IR2V0G9ouk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190587/90F1435A621811F0AA22A026C4F9AE02/0B9DC9A2623711F0B8A15A64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.187.0/24 Signature Algorithm: sha256WithRSAEncryption 46:ef:66:c6:3c:b1:9a:33:8f:1a:27:53:70:b0:28:20:5e:f5: 19:62:54:e4:c6:2e:a3:a6:1b:ce:34:05:d0:0b:d8:17:aa:5e: a1:1c:5e:6e:44:2f:58:2f:de:0e:91:e6:e7:ac:bc:01:01:e0: c1:dc:dc:7b:f0:43:40:d2:ba:1e:ef:77:2f:9e:5d:14:5d:95: 3a:39:9f:b1:23:d4:47:72:6d:d5:ec:ab:32:42:b5:19:a4:90: e4:46:ad:88:60:eb:3a:ae:e5:3c:c1:ab:c8:c3:30:d9:e4:e1: 42:30:4c:ba:d6:59:17:5b:cb:18:35:20:a7:33:53:27:36:98: 82:dd:e3:28:de:bf:5b:cf:2e:3b:7a:84:b6:b7:e3:f0:fa:e2: 97:4b:45:62:77:51:8d:cd:bb:b4:d8:fc:bc:61:dc:5f:d0:48: 47:3e:96:8e:8c:cb:23:61:35:27:50:4e:d8:55:f7:25:52:75: bb:e8:75:37:c2:eb:0c:37:cd:67:c9:49:86:07:d2:f4:39:2e: 35:a5:ee:3a:69:5e:c9:7b:57:0d:5f:1b:8c:dd:06:48:0d:9d: cf:b3:f9:e5:b0:73:64:07:98:c6:03:eb:73:f9:e5:53:46:60: 9f:71:61:8d:40:6f:51:b6:65:1e:cb:d5:92:d4:e7:76:d0:aa: 1c:88:4f:f3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MDU4NzExMC8GA1UEBRMoQTlCNTNGN0I2MTk2MzE4NzA5Mjg5MDJGRjQ4NDc2NTc0 MUJEQTJFOTAeFw0yNTA3MTYxMTIxNDBaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Nzc4YjQ0LWM2MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmG1DzfURu9SbSnQldW/Pz1utwh0Qr0Pp1FuMzhxeLLtm0fwHayKic8t4bjtaG 3ApAF9tDt1T6pAvrLYqjj6WGQ0o7R3BDRwGyZ195XlV8refe/Mnb3Eh2QPykCFFe Aw8WgYGwn+kGA4tN3gdYJOa5iB7xnWmwpVv1oPDx3OrjVfSOavsmsnKdSDRamJV4 GAiPpRdKeqbYSYXrCuHuChe2Ml86jsduWueuXM0fKkyxXk6p6BCRwBSbDODLfXhU 2lSxnkO/sNfwwYwIlCgprFm2VcweO0mkmLSkTkbNtOtJe9xGEcC2QRm1NS2xUjXj /Cs9ETeAMQab3BkXNrmgqdALAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUp7PmIqzt pgD17OrOBiAod8i7BGEwHwYDVR0jBBgwFoAUqbU/e2GWMYcJKJAv9IR2V0G9oukw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkwNTg3LzkwRjE0MzVBNjIx ODExRjBBQTIyQTAyNkM0RjlBRTAyL3FiVV9lMkdXTVljSktKQXY5SVIyVjBHOW91 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcWJVX2UyR1dNWWNKS0pBdjlJUjJWMEc5b3VrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDU4Ny85MEYxNDM1QTYyMTgxMUYwQUEyMkEwMjZDNEY5QUUwMi8wQjlEQzlBMjYy MzcxMUYwQjhBMTVBNjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVluzANBgkqhkiG9w0BAQsFAAOCAQEARu9mxjyxmjOPGidT cLAoIF71GWJU5MYuo6YbzjQF0AvYF6peoRxebkQvWC/eDpHm56y8AQHgwdzce/BD QNK6Hu93L55dFF2VOjmfsSPUR3Jt1eyrMkK1GaSQ5EatiGDrOq7lPMGryMMw2eTh QjBMutZZF1vLGDUgpzNTJzaYgt3jKN6/W88uO3qEtrfj8Pril0tFYndRjc27tNj8 vGHcX9BIRz6WjozLI2E1J1BO2FX3JVJ1u+h1N8LrDDfNZ8lJhgfS9DkuNaXuOmle yXtXDV8bjN0GSA2dz7P55bBzZAeYxgPrc/nlU0Zgn3FhjUBvUbZlHsvVktTndtCq HIhP8w== -----END CERTIFICATE-----Generated at Wed Nov 5 12:07:45 2025 by rpki-client