$ rpki-client -vvf rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/6AA56694CFE311EFBFBFBD4EC4F9AE02.roa File: 6AA56694CFE311EFBFBFBD4EC4F9AE02.roa (raw, json) Hash identifier: ZYnpWtFc5GmEGP0oZLW3Cph9iucd5VjZwl7K3jSPiKs= Subject key identifier: F8:76:DE:A4:65:E5:27:DE:59:94:E2:D1:18:D2:79:22:EA:79:9D:68 Certificate issuer: /CN=A914C002/serialNumber=924A2017564ADAFB2236A20FBF73ADA1B96BFF33 Certificate serial: D5 Authority key identifier: 92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/6AA56694CFE311EFBFBFBD4EC4F9AE02.roa Signing time: Wed 15 Jan 2025 04:27:06 +0000 ROA not before: Wed 15 Jan 2025 04:27:06 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137030 IP address blocks: 157.10.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 06:58:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C002 Validity Not Before: Jan 15 04:27:06 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6787391a-66a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:98:1d:d5:7a:32:14:41:17:02:7a:d2:ed:7b: 21:7e:ee:d4:09:54:ab:e1:1d:8c:18:f8:17:b0:df: cb:d3:9e:0d:c6:05:d9:5f:47:a0:a8:2c:d8:ff:a1: 2c:1a:5c:b7:22:01:79:54:d6:a2:fd:96:01:f2:5f: 29:b0:e9:d6:39:59:aa:bc:00:0f:65:4b:67:06:e2: 61:20:ad:9b:e4:41:c3:57:c7:ce:f1:eb:15:1c:43: f3:e7:28:1e:97:27:00:78:68:b0:63:f3:92:52:b9: 7a:2e:c3:2c:ae:34:a9:db:08:96:93:10:e5:2c:b2: f2:4a:25:46:2e:f8:e3:15:72:a4:b1:a4:c9:82:44: 53:a7:bd:44:2c:34:fc:e5:28:b5:36:e4:30:fc:29: 8f:fe:37:9b:9e:55:12:a2:1f:61:3c:3d:bc:53:14: 55:e5:81:1d:af:91:12:5c:de:2b:a4:31:5b:0f:3d: 08:66:6b:f3:61:3f:e3:b2:8e:f9:e8:36:f9:65:34: 54:22:00:a6:91:c5:37:e5:67:56:05:fb:59:0d:82: 75:7b:eb:d3:cb:6c:07:a2:7e:06:61:62:68:de:c9: 00:e1:9f:72:67:2c:e2:86:b6:cf:6f:48:9e:51:98: 11:d8:e3:59:6b:e7:54:38:94:96:98:6b:17:e1:9c: 32:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:76:DE:A4:65:E5:27:DE:59:94:E2:D1:18:D2:79:22:EA:79:9D:68 X509v3 Authority Key Identifier: keyid:92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/6AA56694CFE311EFBFBFBD4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.29.0/24 Signature Algorithm: sha256WithRSAEncryption 81:4b:88:6c:23:8b:04:31:c2:b1:b6:5d:c2:d4:ce:a4:08:7c: 9c:47:48:1a:84:90:be:b0:57:77:12:14:69:28:a9:3a:92:77: a3:ad:49:13:da:5c:4c:c2:d1:3e:74:d3:d6:b7:c6:ce:63:f5: 58:14:ff:2a:04:08:2c:0a:ff:62:cc:d4:85:a1:7a:44:dd:0f: be:d2:7a:d6:e5:f9:65:5a:f4:bc:f9:e7:0d:92:84:5e:ae:8f: 94:cf:96:97:38:a8:cd:01:7e:23:56:82:07:b7:d1:99:5f:8b: fd:e8:6f:4b:79:86:23:d1:9d:3b:38:99:73:fa:36:45:6a:fd: f0:df:73:f7:26:d5:24:f1:1b:85:49:0b:a9:c3:bc:38:62:af: 60:e1:82:6c:54:06:d4:7d:24:4c:8e:2e:95:22:dd:ed:99:75: 12:4c:75:d1:b2:85:07:96:47:cf:41:cc:c1:1d:f8:4a:17:af: f6:6b:e6:55:8a:5d:4f:7f:96:19:e0:36:8b:c2:0d:27:2c:bc: 3e:09:d3:52:dc:86:72:67:56:40:87:d4:13:1f:51:e9:ae:dd: 03:37:8b:2d:71:39:4f:e8:f4:dc:21:3c:e9:8a:2f:ed:f0:1b: 34:dd:aa:11:57:cd:13:70:d1:ea:a4:07:b8:2b:f3:67:4c:f4: 92:b0:fe:27 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwMDIxMTAvBgNVBAUTKDkyNEEyMDE3NTY0QURBRkIyMjM2QTIwRkJGNzNBREEx Qjk2QkZGMzMwHhcNMjUwMTE1MDQyNzA2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg3MzkxYS02NmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJgd1XoyFEEXAnrS7Xshfu7UCVSr4R2MGPgXsN/L054NxgXZX0egqCzY/6Es Gly3IgF5VNai/ZYB8l8psOnWOVmqvAAPZUtnBuJhIK2b5EHDV8fO8esVHEPz5yge lycAeGiwY/OSUrl6LsMsrjSp2wiWkxDlLLLySiVGLvjjFXKksaTJgkRTp71ELDT8 5Si1NuQw/CmP/jebnlUSoh9hPD28UxRV5YEdr5ESXN4rpDFbDz0IZmvzYT/jso75 6Db5ZTRUIgCmkcU35WdWBftZDYJ1e+vTy2wHon4GYWJo3skA4Z9yZyzihrbPb0ie UZgR2ONZa+dUOJSWmGsX4ZwyVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPh23qRl 5SfeWZTi0RjSeSLqeZ1oMB8GA1UdIwQYMBaAFJJKIBdWStr7IjaiD79zraG5a/8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzAwMi9DMDFEMEMwQ0E5 MjUxMUVFQUM0QkRCNTdDNEY5QUUwMi9ra29nRjFaSzJ2c2lOcUlQdjNPdG9ibHJf ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2trb2dGMVpLMnZzaU5xSVB2M090b2Jscl96TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEMwMDIvQzAxRDBDMENBOTI1MTFFRUFDNEJEQjU3QzRGOUFFMDIvNkFBNTY2OTRD RkUzMTFFRkJGQkZCRDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCh0wDQYJKoZIhvcNAQELBQADggEBAIFLiGwjiwQxwrG2 XcLUzqQIfJxHSBqEkL6wV3cSFGkoqTqSd6OtSRPaXEzC0T5009a3xs5j9VgU/yoE CCwK/2LM1IWhekTdD77Setbl+WVa9Lz55w2ShF6uj5TPlpc4qM0BfiNWgge30Zlf i/3ob0t5hiPRnTs4mXP6NkVq/fDfc/cm1STxG4VJC6nDvDhir2DhgmxUBtR9JEyO LpUi3e2ZdRJMddGyhQeWR89BzMEd+EoXr/Zr5lWKXU9/lhngNovCDScsvD4J01Lc hnJnVkCH1BMfUemu3QM3iy1xOU/o9NwhPOmKL+3wGzTdqhFXzRNw0eqkB7gr82dM 9JKw/ic= -----END CERTIFICATE-----Generated at Wed Feb 19 20:35:03 2025 by rpki-client