$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/9EEE3C44D94F11EF916BCF23C4F9AE02.roa File: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (raw, json) Hash identifier: MOCyDx3MMCgJ0iKiHYJPId15Yf0kFHcGhSay9PLqfd4= Subject key identifier: 30:73:CD:7D:C9:EE:4D:A1:5C:33:19:52:01:A6:BD:E8:A0:54:DC:F2 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 0206 Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/9EEE3C44D94F11EF916BCF23C4F9AE02.roa Signing time: Thu 25 Sep 2025 04:23:06 +0000 ROA not before: Thu 25 Sep 2025 04:23:06 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133320 IP address blocks: 45.118.9.0/24 maxlen: 24 2001:df6:a900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:57:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Sep 25 04:23:06 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d4c3aa-9aa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0b:eb:84:ad:11:97:3a:ae:b1:3a:85:f1:ea: 37:9d:bb:20:09:59:f8:22:a7:8a:55:f2:5b:61:3a: 03:6e:c9:11:b7:d6:e7:fa:a1:99:a5:6f:de:7e:56: b8:af:10:1c:8b:ac:cd:32:85:02:8e:c4:24:c6:5f: f1:5f:ab:3f:7d:90:7b:9c:5a:a3:d5:e0:d6:36:7d: 96:a7:2f:dc:44:7c:4a:10:f5:59:6c:0a:51:62:bf: a3:af:20:1b:f1:cc:61:13:65:80:4c:b6:0e:54:fc: 9f:23:94:4a:4a:43:98:f1:ac:5c:68:d5:c5:7a:17: 22:af:70:60:93:08:55:65:24:73:75:fb:3a:9a:9d: e7:21:16:0b:88:88:a0:82:2d:4c:f9:fd:26:57:b0: 40:ad:e8:a0:7c:1b:01:ca:fc:1a:1c:17:0c:18:c1: a8:6c:a2:93:2c:32:69:8a:72:5b:21:fe:a3:d4:19: ef:14:ec:8c:53:3b:74:22:39:83:2c:ec:f2:60:eb: 99:ed:0b:11:8a:c2:e0:6f:ca:b9:c5:89:8b:4f:ec: f2:0d:69:e2:a7:87:5a:7d:37:3e:cf:d1:81:30:05: ef:ac:d3:be:f9:35:8b:1c:d2:f8:ce:51:f6:20:49: 12:00:e7:0c:ce:3a:16:75:34:80:2e:74:ab:39:5c: 05:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:73:CD:7D:C9:EE:4D:A1:5C:33:19:52:01:A6:BD:E8:A0:54:DC:F2 X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/9EEE3C44D94F11EF916BCF23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.118.9.0/24 IPv6: 2001:df6:a900::/48 Signature Algorithm: sha256WithRSAEncryption 18:2c:c9:1e:fa:93:cf:dd:f8:b1:4e:3c:11:e1:79:cd:7f:d1: a6:7f:15:82:84:8c:d2:e7:ab:d3:b5:ce:76:37:a2:4b:fa:ac: b9:83:26:c8:92:4f:42:ef:6a:b4:8c:b9:33:b9:1a:0e:41:a7: c5:5e:49:03:3b:e7:bc:d0:e3:57:9a:66:b0:71:99:5a:96:dd: db:5d:e4:2e:c8:bc:f3:a1:4d:87:38:aa:b3:ee:d5:77:60:fb: a1:f3:5d:6f:9f:22:c1:15:bf:9f:0a:bb:d3:a6:04:a8:07:7b: 67:6f:de:3e:b1:94:8d:19:e6:99:32:4e:9a:84:72:87:82:14: 9d:1e:3c:99:96:60:25:80:83:bf:c9:ba:22:e0:f0:0d:c1:7d: fe:b8:2c:15:09:06:6b:1c:64:71:bc:66:b9:a3:58:9b:d6:83: a6:cf:03:37:2c:b7:1d:e7:72:7b:5e:97:81:64:3a:1f:d0:ca: 4b:3a:ae:e2:84:d0:2d:79:ae:a4:5f:53:b4:30:0a:48:17:12: 9d:9a:7b:38:4c:51:b6:2d:3c:c7:17:7a:91:fd:32:83:c2:5c: 6d:8c:de:ae:b8:90:7a:67:c4:74:60:12:80:88:d9:ce:c1:87: 71:b2:d8:eb:48:3e:27:fa:d4:33:05:d8:df:df:d1:44:aa:30: c8:29:b0:14 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUwOTI1MDQyMzA2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0YzNhYS05YWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwvrhK0RlzqusTqF8eo3nbsgCVn4IqeKVfJbYToDbskRt9bn+qGZpW/efla4 rxAci6zNMoUCjsQkxl/xX6s/fZB7nFqj1eDWNn2Wpy/cRHxKEPVZbApRYr+jryAb 8cxhE2WATLYOVPyfI5RKSkOY8axcaNXFehcir3BgkwhVZSRzdfs6mp3nIRYLiIig gi1M+f0mV7BAreigfBsByvwaHBcMGMGobKKTLDJpinJbIf6j1BnvFOyMUzt0IjmD LOzyYOuZ7QsRisLgb8q5xYmLT+zyDWnip4dafTc+z9GBMAXvrNO++TWLHNL4zlH2 IEkSAOcMzjoWdTSALnSrOVwFFwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDBzzX3J 7k2hXDMZUgGmveigVNzyMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU5RTUvREQ5RjFGN0MzQzAxMTFFRTkxQ0JFMTU3QzRGOUFFMDIvOUVFRTNDNDRE OTRGMTFFRjkxNkJDRjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAAtdgkwDwQCAAIwCQMHACABDfapADANBgkqhkiG9w0BAQsF AAOCAQEAGCzJHvqTz934sU48EeF5zX/Rpn8VgoSM0uer07XOdjeiS/qsuYMmyJJP Qu9qtIy5M7kaDkGnxV5JAzvnvNDjV5pmsHGZWpbd213kLsi886FNhziqs+7Vd2D7 ofNdb58iwRW/nwq706YEqAd7Z2/ePrGUjRnmmTJOmoRyh4IUnR48mZZgJYCDv8m6 IuDwDcF9/rgsFQkGaxxkcbxmuaNYm9aDps8DNyy3Hedye16XgWQ6H9DKSzqu4oTQ LXmupF9TtDAKSBcSnZp7OExRti08xxd6kf0yg8JcbYzerriQemfEdGASgIjZzsGH cbLY60g+J/rUMwXY39/RRKowyCmwFA== -----END CERTIFICATE-----Generated at Tue Oct 21 00:14:28 2025 by rpki-client