$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa File: C186DD80331A11EC8F33C209C4F9AE02.roa (raw, json) Hash identifier: wT7Gok2ObVdltEihiFf33izm9qdCtxlnOGj2Rw5tT5o= Subject key identifier: 1C:31:2A:B3:D2:81:26:5B:68:C5:39:D2:F7:DF:37:82:AF:1C:2C:F7 Certificate issuer: /CN=A9157D7A/serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Certificate serial: 073F Authority key identifier: 40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa Signing time: Mon 28 Apr 2025 23:34:14 +0000 ROA not before: Mon 28 Apr 2025 23:34:14 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 134540 IP address blocks: 27.107.128.0/20 maxlen: 24 182.156.128.0/21 maxlen: 24 182.156.136.0/21 maxlen: 24 182.156.144.0/21 maxlen: 24 182.156.152.0/21 maxlen: 24 182.156.160.0/21 maxlen: 24 182.156.168.0/21 maxlen: 24 182.156.176.0/21 maxlen: 24 182.156.184.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D7A, serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Validity Not Before: Apr 28 23:34:14 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=68101076-2a31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7b:57:d6:24:4d:e8:34:ac:35:29:32:de:d8: c1:a5:7e:48:f9:52:04:d1:18:93:38:9c:82:05:d9: 48:9e:2d:d3:7c:60:be:21:f4:fb:35:86:39:53:ee: 73:8f:4d:0a:c5:bd:ae:f8:98:e2:b1:49:a0:66:29: b5:44:ca:fe:59:fd:ad:42:cb:d7:6b:a3:d8:c3:1b: ef:bd:38:1f:d6:a5:71:91:52:b9:c5:cb:0e:bf:94: 26:e8:d3:74:98:6f:ec:6a:95:58:2d:70:8a:d0:2f: 49:b3:f1:6f:b9:57:9d:63:03:76:0b:fe:81:09:ac: 9e:12:d7:fb:8c:6f:69:2b:ac:0e:1a:b8:df:89:00: b1:00:0f:62:de:6c:a4:75:3c:8c:a4:d1:4f:28:f8: 93:d5:ab:a9:95:0a:57:48:b5:c4:59:3d:47:92:80: 2f:31:82:4f:d6:cc:8f:26:05:d4:40:af:3e:e7:d0: 25:e0:67:84:0e:c4:a9:bc:90:cc:0a:81:c2:97:d2: fe:b7:d0:67:0b:e5:9c:84:e4:a5:3e:06:32:0d:ed: 95:e5:84:43:a2:3d:2e:60:a1:ad:bd:e5:03:cd:34: a3:b1:7c:2e:c9:83:d3:5f:05:9a:a6:97:4d:36:56: 27:30:43:57:8e:bd:0c:02:21:33:fb:0d:00:d1:81: 3a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:31:2A:B3:D2:81:26:5B:68:C5:39:D2:F7:DF:37:82:AF:1C:2C:F7 X509v3 Authority Key Identifier: keyid:40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/C186DD80331A11EC8F33C209C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.107.128.0/20 182.156.128.0/18 Signature Algorithm: sha256WithRSAEncryption 63:9e:fa:c6:7d:4a:66:fe:19:7f:3a:d2:e9:6c:3d:34:c9:4c: ae:de:f5:91:b6:28:45:80:2d:23:c6:4c:87:c8:67:c0:9a:5c: 54:b4:60:ef:b7:bb:94:ad:77:8e:48:9c:7e:4e:cc:51:85:7a: d4:9e:d4:8b:bc:8a:7c:37:30:a2:26:b3:cd:ee:40:22:61:7c: 47:1c:66:d8:b0:a7:ca:40:19:e8:a9:88:15:ea:51:9a:83:5b: ea:f7:82:e7:11:c3:4f:a0:5a:0e:12:23:a5:d4:63:19:4b:c7: 5b:33:cf:38:18:6b:6a:df:c2:12:5f:52:8c:b7:87:9b:d8:a3: 40:a7:ed:46:87:38:7c:ec:19:06:a7:aa:10:bb:ba:6e:02:44: 87:53:de:da:16:36:09:b6:0f:85:6e:dd:b9:e2:0c:ec:33:ab: 84:71:3d:89:bb:a4:06:46:70:a0:6c:a6:6f:16:c3:e9:b8:4f: c1:e0:ca:c7:be:8d:03:0d:f4:31:8b:1b:99:39:5c:59:7b:c0: 3b:e3:b4:97:0f:36:2a:c1:38:57:99:5c:b1:cb:8c:e2:a5:5a: 7f:3f:65:68:01:b9:a0:5b:a0:fe:9b:16:68:a3:65:81:b1:1c: 23:21:2c:7d:69:6b:bc:e8:60:31:7b:50:31:18:9b:92:5b:2d: 7e:83:d9:c7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEN0ExMTAvBgNVBAUTKDQwMUI0Mjk5MDZDOTBFQTAzRUNGQzYxQjE1QkE0RUYx MjM5MDMzNzkwHhcNMjUwNDI4MjMzNDE0WhcNMjUwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwMTA3Ni0yYTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03tX1iRN6DSsNSky3tjBpX5I+VIE0RiTOJyCBdlIni3TfGC+IfT7NYY5U+5z j00Kxb2u+JjisUmgZim1RMr+Wf2tQsvXa6PYwxvvvTgf1qVxkVK5xcsOv5Qm6NN0 mG/sapVYLXCK0C9Js/FvuVedYwN2C/6BCayeEtf7jG9pK6wOGrjfiQCxAA9i3myk dTyMpNFPKPiT1auplQpXSLXEWT1HkoAvMYJP1syPJgXUQK8+59Al4GeEDsSpvJDM CoHCl9L+t9BnC+WchOSlPgYyDe2V5YRDoj0uYKGtveUDzTSjsXwuyYPTXwWappdN NlYnMENXjr0MAiEz+w0A0YE6VQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBwxKrPS gSZbaMU50vffN4KvHCz3MB8GA1UdIwQYMBaAFEAbQpkGyQ6gPs/GGxW6TvEjkDN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q3QS81RERDQ0NDNjk5 MTUxMUVCOTY3MjcyNDNDNEY5QUUwMi9RQnRDbVFiSkRxQS16OFliRmJwTzhTT1FN M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCdENtUWJKRHFBLXo4WWJGYnBPOFNPUU0zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEN0EvNUREQ0NDQzY5OTE1MTFFQjk2NzI3MjQzQzRGOUFFMDIvQzE4NkREODAz MzFBMTFFQzhGMzNDMjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAQba4ADBAa2nIAwDQYJKoZIhvcNAQELBQADggEBAGOe+sZ9 Smb+GX860ulsPTTJTK7e9ZG2KEWALSPGTIfIZ8CaXFS0YO+3u5Std45InH5OzFGF etSe1Iu8inw3MKIms83uQCJhfEccZtiwp8pAGeipiBXqUZqDW+r3gucRw0+gWg4S I6XUYxlLx1szzzgYa2rfwhJfUoy3h5vYo0Cn7UaHOHzsGQanqhC7um4CRIdT3toW Ngm2D4Vu3bniDOwzq4RxPYm7pAZGcKBspm8Ww+m4T8Hgyse+jQMN9DGLG5k5XFl7 wDvjtJcPNirBOFeZXLHLjOKlWn8/ZWgBuaBboP6bFmijZYGxHCMhLH1pa7zoYDF7 UDEYm5JbLX6D2cc= -----END CERTIFICATE-----Generated at Tue May 13 10:21:03 2025 by rpki-client