$ rpki-client -vvf rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/D737BB744B4111ECACAF3B6FC4F9AE02.roa File: D737BB744B4111ECACAF3B6FC4F9AE02.roa (raw, json) Hash identifier: 91y/zfPKe4toYeLlym6g8YBWRWa9in1N6/DuRedfMc4= Subject key identifier: 08:6D:27:48:C3:F1:BC:5C:E6:F2:A2:6D:02:C5:C4:A8:B7:0E:B2:C1 Certificate issuer: /CN=A9186684/serialNumber=34A1232EA718469EADB7ADBC4CD9E00DF6A85206 Certificate serial: 05C1 Authority key identifier: 34:A1:23:2E:A7:18:46:9E:AD:B7:AD:BC:4C:D9:E0:0D:F6:A8:52:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKEjLqcYRp6tt628TNngDfaoUgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/D737BB744B4111ECACAF3B6FC4F9AE02.roa Signing time: Mon 18 Aug 2025 23:35:32 +0000 ROA not before: Mon 18 Aug 2025 23:35:32 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 55521 IP address blocks: 180.92.216.0/21 maxlen: 21 180.92.216.0/24 maxlen: 24 180.92.217.0/24 maxlen: 24 180.92.218.0/24 maxlen: 24 180.92.219.0/24 maxlen: 24 180.92.220.0/24 maxlen: 24 180.92.221.0/24 maxlen: 24 180.92.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/NKEjLqcYRp6tt628TNngDfaoUgY.crl rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/NKEjLqcYRp6tt628TNngDfaoUgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKEjLqcYRp6tt628TNngDfaoUgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1473 (0x5c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186684, serialNumber=34A1232EA718469EADB7ADBC4CD9E00DF6A85206 Validity Not Before: Aug 18 23:35:32 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a3b8c4-513c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ea:af:d3:c0:2d:d3:df:bc:63:93:93:31:fc: 2f:34:e6:98:36:20:ab:7d:72:fe:37:25:55:f1:86: 5f:a3:0b:f8:02:d3:c7:bc:ee:0c:16:3d:e6:19:aa: 0c:2a:aa:7d:43:43:32:83:27:94:a0:f3:6e:d8:a4: ee:ae:a5:ef:3f:ee:8f:c2:b2:6e:a5:5f:39:9f:13: 74:3e:80:a0:46:36:75:58:21:d6:3a:58:81:95:87: 9f:04:b5:63:39:63:17:7f:7b:f4:74:a9:0e:f4:d9: 7f:f3:50:22:02:f1:23:af:5b:96:6b:55:31:76:7f: 0a:3f:16:b2:75:14:33:fa:59:e7:f0:57:6a:2e:7d: 02:fd:e6:43:7c:1a:dd:55:b6:c7:a2:7b:76:23:c5: f5:b9:4c:ef:86:df:4d:e8:f3:2b:55:0d:b1:ae:14: c3:8d:e1:f2:4b:25:18:f8:46:3a:0f:d0:b2:69:b2: f8:a3:f9:fc:aa:b4:35:d8:3f:b5:f3:8e:18:0c:9a: 5d:53:b5:fc:74:38:c7:da:eb:a0:96:ac:73:5d:ed: 34:95:03:5c:04:1a:ff:0f:39:0a:96:e6:22:a5:80: 6b:bb:2b:30:54:e5:6c:cc:59:71:c8:6e:00:53:04: e4:df:52:03:c9:cc:08:44:d6:ef:f1:9c:35:57:8d: 49:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:6D:27:48:C3:F1:BC:5C:E6:F2:A2:6D:02:C5:C4:A8:B7:0E:B2:C1 X509v3 Authority Key Identifier: keyid:34:A1:23:2E:A7:18:46:9E:AD:B7:AD:BC:4C:D9:E0:0D:F6:A8:52:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/NKEjLqcYRp6tt628TNngDfaoUgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKEjLqcYRp6tt628TNngDfaoUgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/D737BB744B4111ECACAF3B6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.92.216.0/21 Signature Algorithm: sha256WithRSAEncryption a3:50:4c:3d:ad:12:20:c5:43:c0:e1:75:6e:0e:1b:29:79:7a: 50:a1:c3:c4:54:a0:4f:24:a2:07:e3:07:02:f2:7b:c9:9a:e9: 54:17:a9:ae:65:19:78:47:1a:83:9d:9c:18:41:2d:4f:ad:2e: 56:1e:31:bc:37:0a:17:7b:09:86:b7:09:5a:b7:63:35:aa:b6: 9c:35:30:18:b6:71:88:f1:3a:75:e2:2f:83:bb:3d:13:6d:97: 51:ae:38:e9:d7:de:ba:36:31:80:59:3e:07:37:89:8b:3a:66: b0:2f:7a:5e:55:3c:54:38:85:7e:0f:ca:84:51:6f:7d:2c:0d: e9:05:a4:9e:d5:8a:a5:81:72:4c:d3:2a:e6:38:f7:dc:46:df: 8f:96:89:90:2c:fe:7d:a4:8d:43:ce:77:5e:0e:c6:f7:f9:ae: a7:3b:0c:72:c7:89:3f:7a:9a:e2:ff:2e:2e:f3:82:34:66:ea: 66:05:a9:5f:8c:3f:f0:32:9f:c0:54:52:72:90:3b:09:98:27: 6d:e3:9f:18:91:48:db:99:33:ef:c1:58:72:88:c0:0f:bb:e4: 0f:f2:74:34:78:0b:5c:a7:dc:dd:50:00:f3:71:c7:b6:87:44: c2:b0:9b:1e:59:f1:aa:2f:ea:cf:b5:d0:10:d6:c0:e9:e6:65: b2:58:6e:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY2ODQxMTAvBgNVBAUTKDM0QTEyMzJFQTcxODQ2OUVBREI3QURCQzRDRDlFMDBE RjZBODUyMDYwHhcNMjUwODE4MjMzNTMyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzYjhjNC01MTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+qv08At09+8Y5OTMfwvNOaYNiCrfXL+NyVV8YZfowv4AtPHvO4MFj3mGaoM Kqp9Q0MygyeUoPNu2KTurqXvP+6PwrJupV85nxN0PoCgRjZ1WCHWOliBlYefBLVj OWMXf3v0dKkO9Nl/81AiAvEjr1uWa1Uxdn8KPxaydRQz+lnn8FdqLn0C/eZDfBrd VbbHont2I8X1uUzvht9N6PMrVQ2xrhTDjeHySyUY+EY6D9CyabL4o/n8qrQ12D+1 844YDJpdU7X8dDjH2uuglqxzXe00lQNcBBr/DzkKluYipYBruyswVOVszFlxyG4A UwTk31IDycwIRNbv8Zw1V41JRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAhtJ0jD 8bxc5vKibQLFxKi3DrLBMB8GA1UdIwQYMBaAFDShIy6nGEaerbetvEzZ4A32qFIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjY4NC8zNkI4NkFEQ0Q4 OUYxMUVCQUI5OEM1NUFDNEY5QUUwMi9OS0VqTHFjWVJwNnR0NjI4VE5uZ0RmYW9V Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LRWpMcWNZUnA2dHQ2MjhUTm5nRGZhb1VnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY2ODQvMzZCODZBRENEODlGMTFFQkFCOThDNTVBQzRGOUFFMDIvRDczN0JCNzQ0 QjQxMTFFQ0FDQUYzQjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAO0XNgwDQYJKoZIhvcNAQELBQADggEBAKNQTD2tEiDFQ8Dh dW4OGyl5elChw8RUoE8kogfjBwLye8ma6VQXqa5lGXhHGoOdnBhBLU+tLlYeMbw3 Chd7CYa3CVq3YzWqtpw1MBi2cYjxOnXiL4O7PRNtl1GuOOnX3ro2MYBZPgc3iYs6 ZrAvel5VPFQ4hX4PyoRRb30sDekFpJ7ViqWBckzTKuY499xG34+WiZAs/n2kjUPO d14Oxvf5rqc7DHLHiT96muL/Li7zgjRm6mYFqV+MP/Ayn8BUUnKQOwmYJ23jnxiR SNuZM+/BWHKIwA+75A/ydDR4C1yn3N1QAPNxx7aHRMKwmx5Z8aov6s+10BDWwOnm ZbJYbqA= -----END CERTIFICATE-----Generated at Sun Aug 24 00:35:01 2025 by rpki-client