$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/51E59058921B11EFB656CB41C4F9AE02.roa File: 51E59058921B11EFB656CB41C4F9AE02.roa (raw, json) Hash identifier: ZDrCMxxOwwuqNF0Q4xD3EvKSvIiYcNvuSOn5SbIs2mk= Subject key identifier: 32:1E:7E:8C:2A:52:3A:9D:61:2D:6C:FC:47:68:82:39:DF:EA:91:07 Certificate issuer: /CN=A91C6CAF/serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9 Certificate serial: D5 Authority key identifier: 9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/51E59058921B11EFB656CB41C4F9AE02.roa Signing time: Wed 29 Jan 2025 04:18:01 +0000 ROA not before: Wed 29 Jan 2025 04:18:01 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 134480 IP address blocks: 157.10.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.crl rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 03:07:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6CAF Validity Not Before: Jan 29 04:18:01 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6799abf9-76f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c5:a9:33:79:94:62:91:ee:f1:ac:57:12:59: fb:30:4e:9f:96:b1:64:74:fb:87:94:6a:91:99:07: f2:e4:83:22:0d:1b:f6:8a:a4:6b:ff:c3:e4:27:3f: c3:0f:6e:b2:84:d9:64:1c:23:53:54:47:bc:b7:e2: 5a:4c:02:c1:cc:87:cb:0d:8a:3b:32:23:61:c7:51: 6b:13:b1:de:ad:0e:da:73:c2:ad:11:88:db:d0:1d: 08:ea:aa:63:3c:40:dc:c6:fb:ea:eb:ef:15:aa:40: 39:d2:4c:f5:1a:4c:47:2b:d5:00:57:f4:ac:d1:a0: d8:e7:2b:04:f4:b2:99:35:5a:de:d6:a7:5a:c2:ca: 85:03:b4:4e:3f:d9:5a:b7:27:d8:fc:a4:a8:b9:4c: 24:d2:3d:8e:c8:29:d8:e0:05:e1:41:76:73:70:f9: 22:a3:6e:3a:f7:0f:50:8e:d3:f8:38:4d:52:0f:af: ea:06:f9:20:64:a3:00:0d:25:68:6f:fd:91:44:e6: 9a:f9:97:cc:50:17:ee:9c:a8:93:17:a5:fc:a1:80: 8a:00:64:fe:02:ae:e4:42:9f:1c:2c:96:d7:fd:d9: 34:2b:ee:05:b1:82:02:16:8b:39:ed:4e:13:67:1b: dd:c9:be:dd:aa:d0:4e:1d:34:a7:7f:f6:6d:43:38: f6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1E:7E:8C:2A:52:3A:9D:61:2D:6C:FC:47:68:82:39:DF:EA:91:07 X509v3 Authority Key Identifier: keyid:9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/51E59058921B11EFB656CB41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.239.0/24 Signature Algorithm: sha256WithRSAEncryption 21:0b:98:04:80:12:7f:21:fc:fc:5d:40:5a:93:be:d1:70:a0: ea:cf:d2:88:29:e8:39:70:07:f1:40:a4:a4:b4:11:f0:9a:ba: 8e:11:0a:d3:51:77:cc:26:68:c0:0c:22:59:4d:f7:43:a4:23: 06:f6:f2:64:66:96:95:3e:ea:54:77:f8:fc:aa:18:f8:7b:a9: 51:f5:1b:2c:98:22:bb:7c:9e:49:46:2b:dd:eb:d5:61:37:ff: 74:40:6b:38:71:be:43:f2:00:d7:6f:99:87:93:12:3d:65:e4: 00:4d:12:74:aa:a8:8c:86:44:11:68:8e:a0:67:01:bd:de:70: 34:97:3a:b3:27:36:d7:33:8b:a7:02:60:e5:ea:d7:71:e9:3d: c7:60:47:67:cf:f5:55:81:ce:69:60:b8:56:a4:0e:b4:09:96: bb:f9:23:50:1e:bb:36:3f:c8:45:a8:41:6b:7a:d8:ba:ba:98: 2f:a9:74:77:4a:53:53:f9:7d:29:f6:0b:f5:c2:c2:89:71:36: 5b:61:59:2c:4d:7a:4a:67:91:9e:37:bc:29:4b:72:68:f0:db: 26:4e:f7:41:38:79:ce:18:a8:52:8e:e2:46:1f:09:4f:64:99: 2f:a4:df:ad:50:a8:f4:7d:4b:47:53:98:ce:f9:4b:7b:59:90: 1c:e5:2c:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZDQUYxMTAvBgNVBAUTKDlGMDJEQTNBQjVGQjQ1MzE3NTA3QzQ4MDIxQ0UwQThC OTM3MjU1QzkwHhcNMjUwMTI5MDQxODAxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk5YWJmOS03NmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsWpM3mUYpHu8axXEln7ME6flrFkdPuHlGqRmQfy5IMiDRv2iqRr/8PkJz/D D26yhNlkHCNTVEe8t+JaTALBzIfLDYo7MiNhx1FrE7HerQ7ac8KtEYjb0B0I6qpj PEDcxvvq6+8VqkA50kz1GkxHK9UAV/Ss0aDY5ysE9LKZNVre1qdawsqFA7ROP9la tyfY/KSouUwk0j2OyCnY4AXhQXZzcPkio2469w9QjtP4OE1SD6/qBvkgZKMADSVo b/2RROaa+ZfMUBfunKiTF6X8oYCKAGT+Aq7kQp8cLJbX/dk0K+4FsYICFos57U4T Zxvdyb7dqtBOHTSnf/ZtQzj2hwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDIefowq UjqdYS1s/Edogjnf6pEHMB8GA1UdIwQYMBaAFJ8C2jq1+0UxdQfEgCHOCouTclXJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkNBRi9GM0UwRkFFNEI2 RjQxMUVFQUMyMDM4MTBDNEY5QUUwMi9ud0xhT3JYN1JURjFCOFNBSWM0S2k1TnlW Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL253TGFPclg3UlRGMUI4U0FJYzRLaTVOeVZjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZDQUYvRjNFMEZBRTRCNkY0MTFFRUFDMjAzODEwQzRGOUFFMDIvNTFFNTkwNTg5 MjFCMTFFRkI2NTZDQjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCu8wDQYJKoZIhvcNAQELBQADggEBACELmASAEn8h/Pxd QFqTvtFwoOrP0ogp6DlwB/FApKS0EfCauo4RCtNRd8wmaMAMIllN90OkIwb28mRm lpU+6lR3+PyqGPh7qVH1GyyYIrt8nklGK93r1WE3/3RAazhxvkPyANdvmYeTEj1l 5ABNEnSqqIyGRBFojqBnAb3ecDSXOrMnNtczi6cCYOXq13HpPcdgR2fP9VWBzmlg uFakDrQJlrv5I1AeuzY/yEWoQWt62Lq6mC+pdHdKU1P5fSn2C/XCwolxNlthWSxN ekpnkZ43vClLcmjw2yZO90E4ec4YqFKO4kYfCU9kmS+k361QqPR9S0dTmM75S3tZ kBzlLM0= -----END CERTIFICATE-----Generated at Wed Apr 9 07:27:30 2025 by rpki-client