$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa File: C186DD80331A11EC8F33C209C4F9AE02.roa (raw, json) Hash identifier: 5MPW02+FWtp87+3JRBALYbpeia6WJ5SPfWoB7PVlecg= Subject key identifier: DC:7F:AE:C9:07:14:C2:82:E8:D4:D5:5F:23:F4:D0:2F:CA:BC:EA:F6 Certificate issuer: /CN=A9157D7A/serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Certificate serial: 0892 Authority key identifier: 40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa Signing time: Tue 28 Apr 2026 23:29:18 +0000 ROA not before: Tue 28 Apr 2026 23:29:18 +0000 ROA not after: Fri 28 Aug 2026 00:00:00 +0000 asID: 134540 IP address blocks: 27.107.128.0/20 maxlen: 24 182.156.128.0/21 maxlen: 24 182.156.136.0/21 maxlen: 24 182.156.144.0/21 maxlen: 24 182.156.152.0/21 maxlen: 24 182.156.160.0/21 maxlen: 24 182.156.168.0/21 maxlen: 24 182.156.176.0/21 maxlen: 24 182.156.184.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2194 (0x892) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D7A, serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Validity Not Before: Apr 28 23:29:18 2026 GMT Not After : Aug 28 00:00:00 2026 GMT Subject: CN=69f142ce-68e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0c:41:c8:ae:94:9f:0d:36:5e:b3:d0:fc:66: db:12:49:95:d0:ae:c3:92:e2:5f:7c:80:64:f7:b5: d3:10:7b:8b:2e:21:c1:fb:8e:ed:16:e9:56:89:2f: 5e:ec:ae:ae:93:6a:a1:c8:5e:d1:bd:3f:07:e1:ba: d6:75:ed:3f:f6:5c:06:f0:bd:7c:27:a4:a2:d3:55: 36:ef:20:94:b3:9f:72:41:e2:0b:b8:bb:c6:d0:a3: 35:f5:82:d0:f0:88:4b:5f:4b:8d:72:ed:e2:58:8f: ed:6f:05:32:ae:f9:fb:48:40:c6:7b:36:e3:9d:35: 66:3b:4f:0a:e4:46:81:67:ce:aa:ae:3f:20:0a:1e: 3e:00:68:23:18:a5:48:20:b5:bd:af:a1:74:78:f9: 38:38:a8:f9:8f:b0:21:32:eb:b3:e0:6b:aa:e9:2b: 7d:68:8b:34:91:ed:2f:67:1a:6c:30:34:4c:f9:a7: a0:26:cc:61:42:54:6a:fe:e4:7b:62:a3:6f:84:f0: 12:99:fa:d4:bc:69:aa:a7:a8:37:3b:f3:5a:41:e9: 42:6e:c6:1d:17:2e:53:d9:0b:bd:49:1a:fb:97:2e: 89:29:1e:73:e4:f5:57:ba:c6:af:5f:4b:e9:3f:e3: 98:ff:45:80:52:94:09:49:da:71:da:57:21:e0:fd: fb:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7F:AE:C9:07:14:C2:82:E8:D4:D5:5F:23:F4:D0:2F:CA:BC:EA:F6 X509v3 Authority Key Identifier: keyid:40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.107.128.0/20 182.156.128.0/18 Signature Algorithm: sha256WithRSAEncryption c1:ae:51:e8:d5:79:88:78:8b:3c:4b:21:d0:60:8e:9d:90:b8: ab:d5:1e:ef:e2:60:2c:c2:97:fa:5e:7f:01:89:39:2d:3a:b2: 24:48:00:d4:24:c7:14:c5:af:d5:24:06:8e:93:06:7d:ba:b9: 2b:e0:38:8c:8c:d4:e9:8c:05:a5:31:17:25:7c:7e:2d:bc:e5: 39:a1:f8:2d:bf:9e:0a:f9:b9:9e:fe:b2:2c:9c:c5:3a:4c:6f: 70:00:28:57:04:28:89:be:8c:4d:20:53:f0:c0:88:b9:59:ac: 45:1f:dc:d1:8b:02:da:67:f5:8b:cf:23:f5:0a:e4:dd:16:99: 66:6f:8a:f7:79:21:1b:fa:85:28:1a:5f:ae:1d:61:dd:cb:8f: d7:1e:01:e1:8b:8d:a5:58:ae:a2:d4:3f:f7:66:a3:08:94:1d: c2:fc:8b:6d:28:2b:45:73:8f:b4:d1:25:ab:f7:d9:3e:26:0a: ba:e8:80:7b:7c:56:ce:5c:7f:91:2e:58:be:b9:94:b7:4e:4d: 54:d7:8b:dc:34:30:24:2b:ca:26:e2:5a:7e:b4:e1:48:4e:30: ec:69:d3:79:8a:a1:12:e6:1d:77:40:8b:7a:90:ea:b0:3b:a3: a5:6d:a0:c2:30:b7:bb:dd:c2:f8:15:ca:13:77:7c:d8:da:f2: e0:d7:e5:3c -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEN0ExMTAvBgNVBAUTKDQwMUI0Mjk5MDZDOTBFQTAzRUNGQzYxQjE1QkE0RUYx MjM5MDMzNzkwHhcNMjYwNDI4MjMyOTE4WhcNMjYwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxNDJjZS02OGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQxByK6Unw02XrPQ/GbbEkmV0K7DkuJffIBk97XTEHuLLiHB+47tFulWiS9e 7K6uk2qhyF7RvT8H4brWde0/9lwG8L18J6Si01U27yCUs59yQeILuLvG0KM19YLQ 8IhLX0uNcu3iWI/tbwUyrvn7SEDGezbjnTVmO08K5EaBZ86qrj8gCh4+AGgjGKVI ILW9r6F0ePk4OKj5j7AhMuuz4Guq6St9aIs0ke0vZxpsMDRM+aegJsxhQlRq/uR7 YqNvhPASmfrUvGmqp6g3O/NaQelCbsYdFy5T2Qu9SRr7ly6JKR5z5PVXusavX0vp P+OY/0WAUpQJSdpx2lch4P37IwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNx/rskH FMKC6NTVXyP00C/KvOr2MB8GA1UdIwQYMBaAFEAbQpkGyQ6gPs/GGxW6TvEjkDN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q3QS81RERDQ0NDNjk5 MTUxMUVCOTY3MjcyNDNDNEY5QUUwMi9RQnRDbVFiSkRxQS16OFliRmJwTzhTT1FN M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCdENtUWJKRHFBLXo4WWJGYnBPOFNPUU0zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEN0EvNUREQ0NDQzY5OTE1MTFFQjk2NzI3MjQzQzRGOUFFMDIvQzE4NkREODAz MzFBMTFFQzhGMzNDMjA5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQEG2uAAwQGtpyAMA0GCSqGSIb3DQEBCwUAA4IBAQDBrlHo1XmIeIs8 SyHQYI6dkLir1R7v4mAswpf6Xn8BiTktOrIkSADUJMcUxa/VJAaOkwZ9urkr4DiM jNTpjAWlMRclfH4tvOU5ofgtv54K+bme/rIsnMU6TG9wAChXBCiJvoxNIFPwwIi5 WaxFH9zRiwLaZ/WLzyP1CuTdFplmb4r3eSEb+oUoGl+uHWHdy4/XHgHhi42lWK6i 1D/3ZqMIlB3C/IttKCtFc4+00SWr99k+Jgq66IB7fFbOXH+RLli+uZS3Tk1U14vc NDAkK8om4lp+tOFITjDsadN5iqES5h13QIt6kOqwO6OlbaDCMLe73cL4FcoTd3zY 2vLg1+U8 -----END CERTIFICATE-----Generated at Wed May 13 07:19:43 2026 by rpki-client