$ rpki-client -vvf rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/51CC36BAC91811EF9DBC1A87C4F9AE02.roa File: 51CC36BAC91811EF9DBC1A87C4F9AE02.roa (raw, json) Hash identifier: WkTewr/cvgKrRlRAZtUZxcpYcDyS2cvO3ZWEnp3vqOY= Subject key identifier: 2B:39:5E:AA:83:C5:20:EC:9A:39:70:48:C3:DB:C6:5D:65:F3:99:C8 Certificate issuer: /CN=A914C002/serialNumber=924A2017564ADAFB2236A20FBF73ADA1B96BFF33 Certificate serial: D6 Authority key identifier: 92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/51CC36BAC91811EF9DBC1A87C4F9AE02.roa Signing time: Wed 15 Jan 2025 04:27:07 +0000 ROA not before: Wed 15 Jan 2025 04:27:07 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 147059 IP address blocks: 157.10.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C002 Validity Not Before: Jan 15 04:27:07 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6787391b-66d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:29:4f:63:cb:57:ee:e7:b7:06:89:a1:49:68: 8f:1f:93:47:99:83:6f:cf:b6:73:17:e7:2a:6a:99: 27:82:59:b6:67:69:19:91:94:1c:fa:e1:4c:96:f0: e3:10:a4:60:ec:38:91:35:56:0f:f0:0f:f8:93:0f: 95:04:9c:99:a5:a3:ea:95:ee:ce:1e:d4:9b:0a:fa: 52:08:fc:62:02:9a:47:21:2b:60:3c:72:8c:67:95: 26:08:da:ce:9b:0e:68:9f:78:e1:45:6b:d7:4b:1c: 44:9f:60:d8:d4:2f:4e:d8:52:04:06:5b:7b:b6:ac: 55:32:03:70:ea:8d:d4:e7:90:d3:54:15:50:3b:be: 1b:2d:c8:de:96:db:19:bd:ad:83:2a:67:3a:40:3c: e4:4f:67:39:42:28:97:d9:85:0d:8c:8a:57:a9:08: 47:2f:b3:6b:db:21:ae:b3:41:bf:09:8d:ff:11:84: 29:35:e7:a3:99:07:34:f3:70:d0:d3:c0:8a:d0:4d: 9a:0e:b5:91:09:82:a6:a9:85:ff:21:ec:4e:85:c0: b2:da:44:bd:b0:07:6b:19:68:11:68:99:c3:36:36: e0:44:6f:4f:0b:1a:a8:05:ab:58:e5:d2:d2:d4:0e: ce:74:58:6b:9d:90:34:d9:14:85:4d:a7:c6:b1:06: e9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:39:5E:AA:83:C5:20:EC:9A:39:70:48:C3:DB:C6:5D:65:F3:99:C8 X509v3 Authority Key Identifier: keyid:92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/51CC36BAC91811EF9DBC1A87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.28.0/24 Signature Algorithm: sha256WithRSAEncryption b6:7c:74:40:51:45:2b:cc:f5:05:ac:71:42:dd:41:94:16:74: 7a:e3:d3:c8:c7:bd:64:cf:5e:4a:f5:2f:2f:5c:ea:e7:a6:e4: 15:07:ac:e7:fd:de:b5:a5:89:b3:ce:77:a8:49:b3:cf:00:81: e7:8a:7c:2b:c1:9d:ef:3d:98:e2:d9:32:7d:58:d8:16:39:18: 6d:5d:89:10:0a:d8:f2:31:58:09:f0:7f:d4:df:19:1a:a3:80: 52:2d:17:e1:ca:52:d6:29:bf:16:0e:1b:05:3a:33:8b:2d:0a: 36:23:15:ba:12:40:f0:8b:09:35:15:b1:dd:45:0f:f1:ca:ec: d0:bf:7b:70:bd:e2:13:94:11:29:2d:8d:36:16:fe:c2:02:39: a8:e2:cc:b4:69:01:15:1c:da:bf:16:a3:0e:eb:30:fd:f3:aa: 55:18:c6:99:a9:e4:32:4d:0f:03:66:17:44:c5:66:1d:4c:82: e4:3b:aa:90:2b:be:49:4b:94:e7:20:fe:ba:56:ba:e1:e3:65: 27:3c:dc:5c:71:cb:20:00:5f:b6:4c:cc:7f:f9:f3:fb:3f:6a: b8:13:c1:0b:80:dd:4f:e5:a8:5e:ae:30:fe:ed:ef:66:e4:55: 83:29:d0:42:6f:12:59:44:92:15:66:0d:19:05:3b:d3:32:57: 53:53:28:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwMDIxMTAvBgNVBAUTKDkyNEEyMDE3NTY0QURBRkIyMjM2QTIwRkJGNzNBREEx Qjk2QkZGMzMwHhcNMjUwMTE1MDQyNzA3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg3MzkxYi02NmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqilPY8tX7ue3BomhSWiPH5NHmYNvz7ZzF+cqapknglm2Z2kZkZQc+uFMlvDj EKRg7DiRNVYP8A/4kw+VBJyZpaPqle7OHtSbCvpSCPxiAppHIStgPHKMZ5UmCNrO mw5on3jhRWvXSxxEn2DY1C9O2FIEBlt7tqxVMgNw6o3U55DTVBVQO74bLcjeltsZ va2DKmc6QDzkT2c5QiiX2YUNjIpXqQhHL7Nr2yGus0G/CY3/EYQpNeejmQc083DQ 08CK0E2aDrWRCYKmqYX/IexOhcCy2kS9sAdrGWgRaJnDNjbgRG9PCxqoBatY5dLS 1A7OdFhrnZA02RSFTafGsQbpzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCs5XqqD xSDsmjlwSMPbxl1l85nIMB8GA1UdIwQYMBaAFJJKIBdWStr7IjaiD79zraG5a/8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzAwMi9DMDFEMEMwQ0E5 MjUxMUVFQUM0QkRCNTdDNEY5QUUwMi9ra29nRjFaSzJ2c2lOcUlQdjNPdG9ibHJf ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2trb2dGMVpLMnZzaU5xSVB2M090b2Jscl96TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEMwMDIvQzAxRDBDMENBOTI1MTFFRUFDNEJEQjU3QzRGOUFFMDIvNTFDQzM2QkFD OTE4MTFFRjlEQkMxQTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdChwwDQYJKoZIhvcNAQELBQADggEBALZ8dEBRRSvM9QWs cULdQZQWdHrj08jHvWTPXkr1Ly9c6uem5BUHrOf93rWlibPOd6hJs88AgeeKfCvB ne89mOLZMn1Y2BY5GG1diRAK2PIxWAnwf9TfGRqjgFItF+HKUtYpvxYOGwU6M4st CjYjFboSQPCLCTUVsd1FD/HK7NC/e3C94hOUESktjTYW/sICOajizLRpARUc2r8W ow7rMP3zqlUYxpmp5DJNDwNmF0TFZh1MguQ7qpArvklLlOcg/rpWuuHjZSc83Fxx yyAAX7ZMzH/58/s/argTwQuA3U/lqF6uMP7t72bkVYMp0EJvEllEkhVmDRkFO9My V1NTKCY= -----END CERTIFICATE-----Generated at Wed Feb 19 20:36:25 2025 by rpki-client