$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa File: C186DD80331A11EC8F33C209C4F9AE02.roa (raw, json) Hash identifier: 4LAsvPxFJVP/38iRypn40TaMOPz9lx58IyU7j8BYYnw= Subject key identifier: A4:34:5F:2F:39:97:D6:59:0B:8C:D2:C9:AC:33:19:8C:C2:06:9F:74 Certificate issuer: /CN=A9157D7A/serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Certificate serial: 075A Authority key identifier: 40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa Signing time: Wed 14 May 2025 23:12:20 +0000 ROA not before: Wed 14 May 2025 23:12:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134540 IP address blocks: 27.107.128.0/20 maxlen: 24 182.156.128.0/21 maxlen: 24 182.156.136.0/21 maxlen: 24 182.156.144.0/21 maxlen: 24 182.156.152.0/21 maxlen: 24 182.156.160.0/21 maxlen: 24 182.156.168.0/21 maxlen: 24 182.156.176.0/21 maxlen: 24 182.156.184.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1882 (0x75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D7A, serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Validity Not Before: May 14 23:12:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68252354-7803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:41:09:96:eb:22:72:85:d4:07:fc:b7:5f:9b: 99:f8:f2:07:c0:30:f1:b5:c5:4f:1b:df:52:59:d4: 27:9e:da:ca:b4:56:ef:b7:2e:be:01:c0:b8:b5:6f: 96:83:7b:62:34:ab:75:3c:5a:e8:ed:62:47:bb:7f: ec:f7:fa:cc:0c:74:91:91:ae:55:97:ba:e6:d1:03: 64:d4:61:af:c4:76:3c:44:c6:9f:43:5b:fb:38:d3: 37:ed:7e:23:5e:02:9d:e7:5d:72:b2:f0:68:be:ae: 0e:31:a0:b8:27:a6:62:35:47:21:73:66:06:e1:16: 2d:2a:49:7e:c6:8f:9d:1f:48:5f:49:ba:5e:50:f1: 5c:08:00:ef:75:8e:ab:6a:6f:c0:5d:2d:13:52:ec: db:97:10:c1:72:a8:ab:1b:fd:8d:bc:36:4e:ff:2b: 08:59:e8:a1:13:5b:12:bd:14:e3:9b:fe:cf:a1:01: ae:df:43:10:51:e5:b7:f2:f0:cb:3b:60:42:c1:ed: 06:64:1a:32:95:5b:80:d1:10:dd:b2:65:f0:b6:9b: 2c:13:bc:f2:cc:90:e0:7d:7e:0b:d4:dd:45:71:19: f6:63:ce:5b:41:14:a1:23:7b:cb:95:73:49:e1:1c: 7e:ef:29:40:55:4e:1f:46:5b:bd:06:26:ac:25:27: 3e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:34:5F:2F:39:97:D6:59:0B:8C:D2:C9:AC:33:19:8C:C2:06:9F:74 X509v3 Authority Key Identifier: keyid:40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.107.128.0/20 182.156.128.0/18 Signature Algorithm: sha256WithRSAEncryption 86:b3:37:8d:f9:45:20:75:97:7b:a2:b0:63:4f:83:98:1b:bf: cc:37:09:95:d0:e8:f0:6d:6f:48:31:69:83:5d:2c:f2:9d:12: 46:0e:16:f5:1c:bb:aa:52:99:4b:f6:3d:07:6d:2c:d9:67:65: 90:d7:fe:01:f5:bd:eb:62:ee:35:ec:c0:8a:80:03:80:1e:76: 06:2f:cf:24:da:0d:7b:d7:d3:5f:f4:4a:9c:d6:95:33:99:0a: 6a:5a:ba:c2:74:87:f6:de:40:f9:45:f7:dd:83:1d:0c:c5:54: d4:4d:c5:ca:b7:90:91:91:b8:4f:e8:de:fa:e3:72:c2:0a:46: df:33:a5:91:1a:5e:c9:5a:2b:9c:ae:cf:1c:9a:7a:2a:f4:62: a2:ec:c6:ab:e4:63:fa:34:38:34:9b:09:0c:0a:60:a8:92:c2: ba:72:81:20:a9:7a:39:14:97:9a:79:09:95:0a:fe:7e:83:76: 84:bd:3b:61:28:07:8a:2c:7a:c9:5c:01:31:9d:4e:58:01:4b: 56:f9:bc:6d:1a:4a:e4:68:02:87:99:90:e6:8c:48:8d:d5:c1: 7d:87:dc:f4:0a:41:18:13:25:20:38:31:21:99:3f:2a:57:bb: 60:0e:5c:27:22:26:91:97:e1:05:0c:0a:2d:4b:5b:5e:88:fa: 7f:67:14:4c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEN0ExMTAvBgNVBAUTKDQwMUI0Mjk5MDZDOTBFQTAzRUNGQzYxQjE1QkE0RUYx MjM5MDMzNzkwHhcNMjUwNTE0MjMxMjIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1MjM1NC03ODAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkEJlusicoXUB/y3X5uZ+PIHwDDxtcVPG99SWdQnntrKtFbvty6+AcC4tW+W g3tiNKt1PFro7WJHu3/s9/rMDHSRka5Vl7rm0QNk1GGvxHY8RMafQ1v7ONM37X4j XgKd511ysvBovq4OMaC4J6ZiNUchc2YG4RYtKkl+xo+dH0hfSbpeUPFcCADvdY6r am/AXS0TUuzblxDBcqirG/2NvDZO/ysIWeihE1sSvRTjm/7PoQGu30MQUeW38vDL O2BCwe0GZBoylVuA0RDdsmXwtpssE7zyzJDgfX4L1N1FcRn2Y85bQRShI3vLlXNJ 4Rx+7ylAVU4fRlu9BiasJSc+oQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKQ0Xy85 l9ZZC4zSyawzGYzCBp90MB8GA1UdIwQYMBaAFEAbQpkGyQ6gPs/GGxW6TvEjkDN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q3QS81RERDQ0NDNjk5 MTUxMUVCOTY3MjcyNDNDNEY5QUUwMi9RQnRDbVFiSkRxQS16OFliRmJwTzhTT1FN M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCdENtUWJKRHFBLXo4WWJGYnBPOFNPUU0zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEN0EvNUREQ0NDQzY5OTE1MTFFQjk2NzI3MjQzQzRGOUFFMDIvQzE4NkREODAz MzFBMTFFQzhGMzNDMjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAQba4ADBAa2nIAwDQYJKoZIhvcNAQELBQADggEBAIazN435 RSB1l3uisGNPg5gbv8w3CZXQ6PBtb0gxaYNdLPKdEkYOFvUcu6pSmUv2PQdtLNln ZZDX/gH1veti7jXswIqAA4AedgYvzyTaDXvX01/0SpzWlTOZCmpausJ0h/beQPlF 992DHQzFVNRNxcq3kJGRuE/o3vrjcsIKRt8zpZEaXslaK5yuzxyaeir0YqLsxqvk Y/o0ODSbCQwKYKiSwrpygSCpejkUl5p5CZUK/n6DdoS9O2EoB4oseslcATGdTlgB S1b5vG0aSuRoAoeZkOaMSI3VwX2H3PQKQRgTJSA4MSGZPypXu2AOXCciJpGX4QUM Ci1LW16I+n9nFEw= -----END CERTIFICATE-----Generated at Tue Jun 3 23:55:47 2025 by rpki-client