$ rpki-client -vvf rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/5B118C12986011F0A5423187C4F9AE02.roa File: 5B118C12986011F0A5423187C4F9AE02.roa (raw, json) Hash identifier: OXXb1y44b21RuXCm0yOOerFNyOFngqcHwK/xrGzNLmQ= Subject key identifier: C9:E3:37:81:3F:39:FB:0D:94:F0:6F:9F:C3:8F:D5:EE:F0:DD:36:EC Certificate issuer: /CN=A9174C7A/serialNumber=A58ADACEF9D24553A55646B5A6EBCCEAB19F2FBC Certificate serial: 3D Authority key identifier: A5:8A:DA:CE:F9:D2:45:53:A5:56:46:B5:A6:EB:CC:EA:B1:9F:2F:BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/5B118C12986011F0A5423187C4F9AE02.roa Signing time: Tue 23 Sep 2025 09:33:26 +0000 ROA not before: Tue 23 Sep 2025 09:33:26 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134134 IP address blocks: 165.99.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.crl rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:47:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174C7A, serialNumber=A58ADACEF9D24553A55646B5A6EBCCEAB19F2FBC Validity Not Before: Sep 23 09:33:26 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68d26966-c714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:94:38:a6:86:0f:69:aa:31:56:8a:ce:c2:d2: be:06:6e:e2:0d:af:c8:61:6b:45:2d:60:19:37:52: f8:11:4d:45:8b:fe:e9:7d:76:3c:45:35:57:cc:ca: e1:ca:b0:22:6c:b9:eb:4d:a9:60:54:f9:5c:e9:a4: c8:1e:d0:6c:10:f3:78:4b:d8:45:df:5b:d4:a2:29: 05:9f:00:62:21:95:39:15:1e:d3:b2:61:76:00:da: 8b:07:b0:c6:d3:f8:3b:cc:38:eb:62:9f:25:03:bc: fe:3c:a6:38:00:ea:6e:63:df:c4:1f:7a:9f:26:8c: 0b:55:af:e3:1f:df:2f:e3:d8:61:14:52:8b:11:cf: 45:3a:c6:a4:22:1b:fc:96:6a:65:72:3d:4a:8a:f5: 10:b0:ef:a0:88:c3:82:28:ef:47:68:7c:5e:35:d5: 2b:8b:c9:31:36:de:75:f4:97:eb:15:d4:1a:c1:52: 22:1e:67:e7:d0:1c:9a:8c:d2:19:ff:0b:82:64:65: 57:31:d2:cc:df:98:7f:96:a7:28:60:7f:47:06:70: 4e:b4:96:0d:aa:3a:b8:7d:2a:eb:b9:8f:ae:90:35: d8:d5:d1:a2:a9:25:6c:8e:d7:08:0c:02:df:f7:92: 1b:c8:11:2f:ff:df:8b:db:3e:17:4f:39:8c:1d:7d: 84:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E3:37:81:3F:39:FB:0D:94:F0:6F:9F:C3:8F:D5:EE:F0:DD:36:EC X509v3 Authority Key Identifier: keyid:A5:8A:DA:CE:F9:D2:45:53:A5:56:46:B5:A6:EB:CC:EA:B1:9F:2F:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/5B118C12986011F0A5423187C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.189.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:99:04:f8:49:fe:3c:8b:b5:b8:e5:bb:d0:0e:c8:f3:a0:57: 5d:67:b6:31:88:36:b4:33:3e:00:98:69:de:75:c5:91:c2:12: 13:e1:88:49:21:69:c3:61:e8:61:65:cf:6b:27:52:b4:21:75: 7f:19:1c:80:ad:ad:6c:6f:bd:5f:cd:4f:f4:fa:51:9a:38:94: f5:b4:b4:02:14:72:41:d3:b1:85:c3:88:63:11:62:4f:2c:f8: 72:b2:78:52:e1:c5:24:01:d5:ac:4e:34:5a:1b:07:c5:b5:9f: 02:5b:b1:4b:40:73:72:a6:ee:a0:fc:89:ac:52:14:7a:26:16: f6:11:fc:ca:bd:03:ce:2e:e8:50:a7:10:b1:37:94:1f:fa:7d: e4:4f:90:75:ba:48:63:54:58:a8:65:aa:93:a9:da:0f:af:b7: 6c:bb:f4:ff:fb:25:88:ed:f1:04:a2:e8:59:ea:e9:a2:e4:f7: 80:84:16:04:26:cb:06:18:8b:c0:45:95:3a:5a:f7:f9:c4:66: c5:42:3d:ce:a1:ca:26:fa:c3:50:2b:35:aa:c8:0e:31:a3:31: ce:30:9e:04:14:13:05:ba:77:24:6f:80:97:33:92:5d:4b:cb: 9d:50:24:5f:9f:c7:08:52:fc:fe:30:0f:1d:f8:3b:bb:2d:6c: 19:e6:f8:02 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEM3QTExMC8GA1UEBRMoQTU4QURBQ0VGOUQyNDU1M0E1NTY0NkI1QTZFQkNDRUFC MTlGMkZCQzAeFw0yNTA5MjMwOTMzMjZaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZDI2OTY2LWM3MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDElDimhg9pqjFWis7C0r4GbuINr8hha0UtYBk3UvgRTUWL/ul9djxFNVfMyuHK sCJsuetNqWBU+VzppMge0GwQ83hL2EXfW9SiKQWfAGIhlTkVHtOyYXYA2osHsMbT +DvMOOtinyUDvP48pjgA6m5j38Qfep8mjAtVr+Mf3y/j2GEUUosRz0U6xqQiG/yW amVyPUqK9RCw76CIw4Io70dofF411SuLyTE23nX0l+sV1BrBUiIeZ+fQHJqM0hn/ C4JkZVcx0szfmH+Wpyhgf0cGcE60lg2qOrh9Kuu5j66QNdjV0aKpJWyO1wgMAt/3 khvIES//34vbPhdPOYwdfYQjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUyeM3gT85 +w2U8G+fw4/V7vDdNuwwHwYDVR0jBBgwFoAUpYrazvnSRVOlVka1puvM6rGfL7ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0QzdBLzQ0RjE0QUZDNDA0 NjExRjA5QkYwRDg0RkM0RjlBRTAyL3BZcmF6dm5TUlZPbFZrYTFwdXZNNnJHZkw3 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcFlyYXp2blNSVk9sVmthMXB1dk02ckdmTDd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEM3QS80NEYxNEFGQzQwNDYxMUYwOUJGMEQ4NEZDNEY5QUUwMi81QjExOEMxMjk4 NjAxMUYwQTU0MjMxODdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVjvTANBgkqhkiG9w0BAQsFAAOCAQEADpkE+En+PIu1uOW7 0A7I86BXXWe2MYg2tDM+AJhp3nXFkcISE+GISSFpw2HoYWXPaydStCF1fxkcgK2t bG+9X81P9PpRmjiU9bS0AhRyQdOxhcOIYxFiTyz4crJ4UuHFJAHVrE40WhsHxbWf AluxS0BzcqbuoPyJrFIUeiYW9hH8yr0Dzi7oUKcQsTeUH/p95E+QdbpIY1RYqGWq k6naD6+3bLv0//sliO3xBKLoWerpouT3gIQWBCbLBhiLwEWVOlr3+cRmxUI9zqHK JvrDUCs1qsgOMaMxzjCeBBQTBbp3JG+AlzOSXUvLnVAkX5/HCFL8/jAPHfg7uy1s Geb4Ag== -----END CERTIFICATE-----Generated at Tue Oct 21 04:15:48 2025 by rpki-client