$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa File: C186DD80331A11EC8F33C209C4F9AE02.roa (raw, json) Hash identifier: XtqW7baviXAU6XqPk4n9ZbDubsg33KGDVEvxGrKpGog= Subject key identifier: D3:E0:03:B3:38:17:4D:5F:E8:27:67:4D:AF:EF:F6:46:A6:62:72:CC Certificate issuer: /CN=A9157D7A/serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Certificate serial: 0642 Authority key identifier: 40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa Signing time: Wed 15 May 2024 01:05:07 +0000 ROA not before: Wed 15 May 2024 01:05:07 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 134540 IP address blocks: 27.107.128.0/20 maxlen: 24 182.156.128.0/21 maxlen: 24 182.156.136.0/21 maxlen: 24 182.156.144.0/21 maxlen: 24 182.156.152.0/21 maxlen: 24 182.156.160.0/21 maxlen: 24 182.156.168.0/21 maxlen: 24 182.156.176.0/21 maxlen: 24 182.156.184.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 22:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1602 (0x642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D7A Validity Not Before: May 15 01:05:07 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66440a43-88a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:41:1a:e3:64:a7:53:b5:87:62:d8:76:57:5d: 70:41:20:6c:e5:d9:b6:c0:da:02:2e:cc:85:59:34: f8:c5:3d:5e:ea:5d:94:a7:d7:12:7b:80:74:c4:9a: 2f:64:f6:0a:ba:2e:3c:d0:20:a9:6d:65:ed:77:b7: e3:4f:13:ad:4b:81:c6:7b:9a:bd:e2:46:d3:ff:68: d5:7d:46:f9:f9:5c:fa:f3:34:de:c5:77:3d:c7:f9: c5:90:a3:9c:3c:96:d9:26:28:73:fd:80:3d:4d:a1: cf:47:e4:df:d2:7c:dc:9f:a0:9c:57:49:b9:ab:51: 03:05:48:e3:5c:48:f5:04:4b:44:a2:cc:cb:b1:da: 30:58:00:bd:e4:fe:2f:d2:6a:78:13:1f:8b:e4:95: a6:23:11:79:ec:2c:59:d8:3b:05:69:65:5f:69:d9: ee:6f:32:c8:5d:6f:5c:5c:1d:b2:86:1f:14:cf:58: cd:54:f2:4a:bd:ee:d7:93:f8:50:ce:d5:e9:2b:c5: 37:8b:ee:e6:75:07:8f:3b:57:d3:bc:59:34:59:a7: 06:bb:af:66:42:62:17:c5:58:fc:1a:df:79:be:17: 49:98:26:46:14:e9:4d:da:49:46:47:9f:e4:44:dc: 82:69:b7:61:f9:94:4f:ce:2b:79:b6:da:eb:28:b4: 47:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:E0:03:B3:38:17:4D:5F:E8:27:67:4D:AF:EF:F6:46:A6:62:72:CC X509v3 Authority Key Identifier: keyid:40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.107.128.0/20 182.156.128.0/18 Signature Algorithm: sha256WithRSAEncryption 98:76:52:87:6f:81:70:c3:86:0c:91:f5:a7:70:98:32:b6:7a: 83:de:b6:b7:51:85:28:bb:c6:f2:fe:c9:2f:2c:bf:ec:79:c9: 50:d3:46:f6:d7:e4:92:74:2b:9e:17:62:e5:7f:48:0f:57:b5: 24:e2:a0:86:d4:da:55:fc:dd:ba:f2:da:e3:53:b3:a8:28:e7: 50:cd:08:4e:0e:49:a2:11:a9:9e:fe:df:27:b6:4a:ed:0c:78: fe:70:98:8e:da:82:5e:13:81:90:25:00:5f:3d:77:e7:dc:e0: 5a:01:d5:07:84:40:c4:32:fa:b6:38:0b:16:bb:a3:7f:9f:b5: 25:ce:f4:ca:09:ed:07:49:db:97:e5:2d:ef:99:f9:1f:73:4c: f8:d8:b8:7d:43:2d:fb:4f:18:99:c1:6f:51:b6:d7:df:90:ab: 3b:23:70:58:e8:79:eb:dc:1a:0c:ca:00:1a:e4:b1:24:52:fd: 37:4a:d7:fa:94:fd:e8:78:ba:26:9e:54:da:c5:bb:03:68:ec: 70:a9:29:3b:b1:76:f5:d6:e0:ea:18:dc:4e:87:c0:60:ad:1a: 6b:0a:66:48:04:04:81:c7:fe:dc:ab:5b:1d:8b:80:89:28:09: 62:e6:68:3b:3a:71:41:55:ae:e2:13:15:45:e3:76:7c:ba:92: 55:76:86:41 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEN0ExMTAvBgNVBAUTKDQwMUI0Mjk5MDZDOTBFQTAzRUNGQzYxQjE1QkE0RUYx MjM5MDMzNzkwHhcNMjQwNTE1MDEwNTA3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ0MGE0My04OGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0Ea42SnU7WHYth2V11wQSBs5dm2wNoCLsyFWTT4xT1e6l2Up9cSe4B0xJov ZPYKui480CCpbWXtd7fjTxOtS4HGe5q94kbT/2jVfUb5+Vz68zTexXc9x/nFkKOc PJbZJihz/YA9TaHPR+Tf0nzcn6CcV0m5q1EDBUjjXEj1BEtEoszLsdowWAC95P4v 0mp4Ex+L5JWmIxF57CxZ2DsFaWVfadnubzLIXW9cXB2yhh8Uz1jNVPJKve7Xk/hQ ztXpK8U3i+7mdQePO1fTvFk0WacGu69mQmIXxVj8Gt95vhdJmCZGFOlN2klGR5/k RNyCabdh+ZRPzit5ttrrKLRHdQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNPgA7M4 F01f6CdnTa/v9kamYnLMMB8GA1UdIwQYMBaAFEAbQpkGyQ6gPs/GGxW6TvEjkDN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q3QS81RERDQ0NDNjk5 MTUxMUVCOTY3MjcyNDNDNEY5QUUwMi9RQnRDbVFiSkRxQS16OFliRmJwTzhTT1FN M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCdENtUWJKRHFBLXo4WWJGYnBPOFNPUU0zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEN0EvNUREQ0NDQzY5OTE1MTFFQjk2NzI3MjQzQzRGOUFFMDIvQzE4NkREODAz MzFBMTFFQzhGMzNDMjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAQba4ADBAa2nIAwDQYJKoZIhvcNAQELBQADggEBAJh2Uodv gXDDhgyR9adwmDK2eoPetrdRhSi7xvL+yS8sv+x5yVDTRvbX5JJ0K54XYuV/SA9X tSTioIbU2lX83bry2uNTs6go51DNCE4OSaIRqZ7+3ye2Su0MeP5wmI7agl4TgZAl AF89d+fc4FoB1QeEQMQy+rY4Cxa7o3+ftSXO9MoJ7QdJ25flLe+Z+R9zTPjYuH1D LftPGJnBb1G219+QqzsjcFjoeevcGgzKABrksSRS/TdK1/qU/eh4uiaeVNrFuwNo 7HCpKTuxdvXW4OoY3E6HwGCtGmsKZkgEBIHH/tyrWx2LgIkoCWLmaDs6cUFVruIT FUXjdny6klV2hkE= -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:50 2025 by rpki-client