$ rpki-client -vvf rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/A39F9B12614D11F0B92E7536C4F9AE02.roa File: A39F9B12614D11F0B92E7536C4F9AE02.roa (raw, json) Hash identifier: /cNCzP73KCeXOq4a1l00QP7uG/Uj16TGXUXJojUqMM8= Subject key identifier: BF:FC:2E:FD:B7:98:AA:2D:14:19:62:12:3D:94:51:40:4B:A9:F2:23 Certificate issuer: /CN=A9186E8A/serialNumber=BDD5E9A76F1AC4C8E51797ECE99E3DCEECEE7493 Certificate serial: 07B5 Authority key identifier: BD:D5:E9:A7:6F:1A:C4:C8:E5:17:97:EC:E9:9E:3D:CE:EC:EE:74:93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vdXpp28axMjlF5fs6Z49zuzudJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/A39F9B12614D11F0B92E7536C4F9AE02.roa Signing time: Tue 15 Jul 2025 07:30:53 +0000 ROA not before: Tue 15 Jul 2025 07:30:53 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 62610 IP address blocks: 152.32.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/vdXpp28axMjlF5fs6Z49zuzudJM.crl rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/vdXpp28axMjlF5fs6Z49zuzudJM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vdXpp28axMjlF5fs6Z49zuzudJM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1973 (0x7b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186E8A, serialNumber=BDD5E9A76F1AC4C8E51797ECE99E3DCEECEE7493 Validity Not Before: Jul 15 07:30:53 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=687603ad-04b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1c:f1:d4:07:a3:f4:01:5b:be:38:4a:ba:71: 41:08:c9:82:84:e5:a4:a6:26:21:b9:0f:a4:f3:08: 4f:f9:06:5a:76:a6:60:f6:13:c9:26:55:c2:8f:00: 43:8f:05:28:73:a3:81:c9:bc:a8:4d:32:45:cf:ab: ef:90:35:dc:d4:98:86:51:54:f5:cb:5e:02:60:2b: e4:ce:4b:9e:28:52:23:8d:eb:98:d9:f1:29:39:7d: 37:4b:7e:3c:fd:ab:be:50:51:fd:da:fd:a7:b3:87: 9b:14:2b:b5:e9:e4:30:9b:f8:10:bd:20:63:05:3c: ca:8d:8d:35:06:01:f6:53:05:8a:2a:58:77:26:b4: 84:82:52:6b:8d:11:78:86:ef:c5:a2:ff:b6:9c:f9: 6c:b6:0f:28:27:15:43:d9:d4:15:97:5d:7e:9e:e0: 52:d3:a1:94:1a:3f:a2:f3:c5:26:1b:43:ef:1b:d0: dc:16:40:ac:26:ac:69:e4:7b:23:c6:e7:93:cf:1e: 9a:57:eb:64:22:a9:1b:77:a7:cc:9c:d7:19:df:d8: 0b:6c:e4:11:61:cc:88:ee:1d:65:70:47:24:81:c8: 4a:03:32:92:63:af:af:44:6c:86:19:76:55:d2:97: 1e:53:60:42:1c:3b:81:84:f6:a1:0b:00:db:57:7a: eb:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:FC:2E:FD:B7:98:AA:2D:14:19:62:12:3D:94:51:40:4B:A9:F2:23 X509v3 Authority Key Identifier: keyid:BD:D5:E9:A7:6F:1A:C4:C8:E5:17:97:EC:E9:9E:3D:CE:EC:EE:74:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/vdXpp28axMjlF5fs6Z49zuzudJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vdXpp28axMjlF5fs6Z49zuzudJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/A39F9B12614D11F0B92E7536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.32.136.0/24 Signature Algorithm: sha256WithRSAEncryption 33:1b:48:8e:1c:62:d7:64:7b:1e:4f:ba:c8:c7:c7:4f:3b:5d: f8:72:a0:87:6d:ce:88:ca:46:f0:ea:be:c0:6f:d9:ea:ec:2b: 51:31:10:3d:6a:c0:a8:51:f0:50:38:70:03:77:e7:8c:0f:bf: 66:38:72:34:e3:75:11:32:89:cd:7b:a9:4b:b7:b7:3a:f8:a7: 4c:36:d0:7f:10:c5:c4:1b:e1:9e:9c:14:35:7e:f4:b7:85:85: 4e:69:1b:54:b3:86:37:27:54:e7:89:c9:49:cd:bd:a4:16:2e: 73:97:12:15:9b:3b:59:e2:b4:19:38:ab:88:40:07:7a:5f:97: c5:30:24:3e:b6:98:af:1c:6e:3f:dd:96:08:b4:ae:cb:ac:b7: 9e:d9:91:c6:fb:9c:15:34:56:c5:57:94:eb:7c:c1:eb:a4:30: 35:40:91:21:fb:85:92:d9:82:44:d1:89:73:f0:a2:04:a8:d2: 14:91:4e:1c:4a:6a:f5:dc:40:0d:e8:cb:66:29:12:4e:48:f7: a7:d4:cd:64:9f:39:a9:07:a2:aa:cc:50:ab:b3:e5:c8:aa:2c: 6f:f8:a7:39:36:1b:59:d2:ef:4e:7b:1e:1c:3e:36:8f:3c:d7: 1e:fb:39:54:f3:a3:28:88:cf:6d:83:77:b2:a5:d5:55:46:7b: 13:f6:76:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZFOEExMTAvBgNVBAUTKEJERDVFOUE3NkYxQUM0QzhFNTE3OTdFQ0U5OUUzRENF RUNFRTc0OTMwHhcNMjUwNzE1MDczMDUzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODc2MDNhZC0wNGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxzx1Aej9AFbvjhKunFBCMmChOWkpiYhuQ+k8whP+QZadqZg9hPJJlXCjwBD jwUoc6OBybyoTTJFz6vvkDXc1JiGUVT1y14CYCvkzkueKFIjjeuY2fEpOX03S348 /au+UFH92v2ns4ebFCu16eQwm/gQvSBjBTzKjY01BgH2UwWKKlh3JrSEglJrjRF4 hu/Fov+2nPlstg8oJxVD2dQVl11+nuBS06GUGj+i88UmG0PvG9DcFkCsJqxp5Hsj xueTzx6aV+tkIqkbd6fMnNcZ39gLbOQRYcyI7h1lcEckgchKAzKSY6+vRGyGGXZV 0pceU2BCHDuBhPahCwDbV3rrUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL/8Lv23 mKotFBliEj2UUUBLqfIjMB8GA1UdIwQYMBaAFL3V6advGsTI5ReX7OmePc7s7nST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkU4QS8zMTQ4REM5RTJE RkYxMUVCODY4QTkxMzVDNEY5QUUwMi92ZFhwcDI4YXhNamxGNWZzNlo0OXp1enVk Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZkWHBwMjhheE1qbEY1ZnM2WjQ5enV6dWRKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZFOEEvMzE0OERDOUUyREZGMTFFQjg2OEE5MTM1QzRGOUFFMDIvQTM5RjlCMTI2 MTREMTFGMEI5MkU3NTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACYIIgwDQYJKoZIhvcNAQELBQADggEBADMbSI4cYtdkex5P usjHx087XfhyoIdtzojKRvDqvsBv2ersK1ExED1qwKhR8FA4cAN354wPv2Y4cjTj dREyic17qUu3tzr4p0w20H8QxcQb4Z6cFDV+9LeFhU5pG1SzhjcnVOeJyUnNvaQW LnOXEhWbO1nitBk4q4hAB3pfl8UwJD62mK8cbj/dlgi0rsust57Zkcb7nBU0VsVX lOt8weukMDVAkSH7hZLZgkTRiXPwogSo0hSRThxKavXcQA3oy2YpEk5I96fUzWSf OakHoqrMUKuz5ciqLG/4pzk2G1nS7057Hhw+No881x77OVTzoyiIz22Dd7Kl1VVG exP2djk= -----END CERTIFICATE-----Generated at Sun Jul 20 08:04:22 2025 by rpki-client