$ rpki-client -vvf rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/4687D3AAD94911EEB080041BC4F9AE02.roa File: 4687D3AAD94911EEB080041BC4F9AE02.roa (raw, json) Hash identifier: kFLW+5H6giWcutmctCbYDVM+6QZdw33zv0OJ7Q8jSoc= Subject key identifier: 26:5D:46:B2:5D:22:B1:BA:9E:23:63:19:48:8C:7D:E3:3D:6E:A6:FC Certificate issuer: /CN=A914400E/serialNumber=CE6C46F802B15B8CF4ADA345A8288AD6E7FA535E Certificate serial: B5 Authority key identifier: CE:6C:46:F8:02:B1:5B:8C:F4:AD:A3:45:A8:28:8A:D6:E7:FA:53:5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zmxG-AKxW4z0raNFqCiK1uf6U14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/4687D3AAD94911EEB080041BC4F9AE02.roa Signing time: Tue 11 Feb 2025 05:28:41 +0000 ROA not before: Tue 11 Feb 2025 05:28:41 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152319 IP address blocks: 157.10.132.0/23 maxlen: 23 157.10.132.0/24 maxlen: 24 157.10.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/zmxG-AKxW4z0raNFqCiK1uf6U14.crl rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/zmxG-AKxW4z0raNFqCiK1uf6U14.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zmxG-AKxW4z0raNFqCiK1uf6U14.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914400E, serialNumber=CE6C46F802B15B8CF4ADA345A8288AD6E7FA535E Validity Not Before: Feb 11 05:28:41 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67aae009-ff0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:91:b4:a3:ea:26:45:0c:5e:05:2c:32:ee:d7: 64:5e:f7:35:35:fb:b6:48:a1:f9:3c:3b:1e:81:62: e3:10:0f:4f:65:07:e1:14:d9:4f:56:30:28:92:ea: 44:55:20:70:93:f6:2c:fe:25:b6:b3:44:37:d5:43: ef:27:e3:0b:80:35:fb:d8:56:67:3c:be:c3:e8:20: fc:3f:eb:d6:0f:f0:24:79:6c:30:8e:7d:c9:a0:19: 7f:7d:5e:eb:5c:a5:e3:d0:f6:47:53:d9:21:5c:fa: 35:29:56:6d:97:22:14:91:71:83:40:42:c0:4f:93: c9:5a:71:43:ce:20:0f:66:a9:68:10:9f:a6:57:2b: 88:94:f5:ba:12:89:fe:01:43:ab:3c:f9:2f:7f:75: bd:08:82:43:73:78:1c:d8:e8:df:34:09:f4:61:aa: cc:44:b1:36:16:86:70:d6:11:ca:e6:7d:ef:9e:6a: d1:eb:fc:82:b4:a5:c3:99:d6:e0:b2:7b:96:c9:be: 6e:38:6b:17:be:df:ca:73:28:c2:ff:36:e1:eb:a9: 55:88:0c:de:ac:53:39:23:fa:28:e9:f2:b3:f4:ac: c0:b0:3e:50:8f:dc:0e:2e:fd:49:51:c7:1d:f8:93: ed:b2:d2:60:47:85:f1:65:b0:76:c7:54:9a:a7:dd: 76:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:5D:46:B2:5D:22:B1:BA:9E:23:63:19:48:8C:7D:E3:3D:6E:A6:FC X509v3 Authority Key Identifier: keyid:CE:6C:46:F8:02:B1:5B:8C:F4:AD:A3:45:A8:28:8A:D6:E7:FA:53:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/zmxG-AKxW4z0raNFqCiK1uf6U14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zmxG-AKxW4z0raNFqCiK1uf6U14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914400E/C52B0264D94811EEBA34B47BC4F9AE02/4687D3AAD94911EEB080041BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.132.0/23 Signature Algorithm: sha256WithRSAEncryption 39:e9:fc:66:9e:b2:fc:70:86:a5:d4:c8:bd:1f:2c:0e:18:4a: 78:de:4d:61:04:83:d2:aa:71:24:7d:8d:5e:27:ed:a7:30:b8: c0:ec:76:a0:5d:82:96:7a:73:a0:de:c8:57:e1:b3:97:e3:4d: a9:b4:be:95:58:0a:01:e5:f0:ae:92:d0:dd:13:b2:ea:05:16: 83:a6:e9:4f:54:5f:a9:48:bf:2c:57:56:d3:38:10:91:e0:98: ef:4f:34:c3:c0:c4:c4:67:dd:c7:44:36:34:3c:42:1c:44:c5: 21:45:30:ad:62:54:a9:5c:32:e3:77:0c:72:ba:35:c8:bc:45: 2e:e6:f2:fa:fa:8a:d1:1d:59:3c:3a:fe:3a:08:29:4f:bd:55: 24:30:59:56:28:b0:59:ce:ff:f2:8a:18:27:61:16:b4:8b:53: 40:ca:c3:00:53:ea:16:14:c7:94:cd:25:1b:3d:42:f1:cf:84: a4:aa:b3:22:64:49:42:07:f3:88:aa:d7:c8:b3:28:5d:32:b3: 8c:53:74:36:0a:6d:62:be:69:68:c6:86:fd:4a:b0:dd:5f:81: d3:77:37:b6:84:3c:b5:29:b1:66:04:78:20:af:2c:bc:2c:c0: 92:e0:f0:ce:6a:b9:8a:8b:1c:a2:36:34:57:46:b4:6e:df:a4: 3d:45:c9:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQwMEUxMTAvBgNVBAUTKENFNkM0NkY4MDJCMTVCOENGNEFEQTM0NUE4Mjg4QUQ2 RTdGQTUzNUUwHhcNMjUwMjExMDUyODQxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FhZTAwOS1mZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpG0o+omRQxeBSwy7tdkXvc1Nfu2SKH5PDsegWLjEA9PZQfhFNlPVjAokupE VSBwk/Ys/iW2s0Q31UPvJ+MLgDX72FZnPL7D6CD8P+vWD/AkeWwwjn3JoBl/fV7r XKXj0PZHU9khXPo1KVZtlyIUkXGDQELAT5PJWnFDziAPZqloEJ+mVyuIlPW6Eon+ AUOrPPkvf3W9CIJDc3gc2OjfNAn0YarMRLE2FoZw1hHK5n3vnmrR6/yCtKXDmdbg snuWyb5uOGsXvt/KcyjC/zbh66lViAzerFM5I/oo6fKz9KzAsD5Qj9wOLv1JUccd +JPtstJgR4XxZbB2x1Sap912dQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCZdRrJd IrG6niNjGUiMfeM9bqb8MB8GA1UdIwQYMBaAFM5sRvgCsVuM9K2jRagoitbn+lNe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDAwRS9DNTJCMDI2NEQ5 NDgxMUVFQkEzNEI0N0JDNEY5QUUwMi96bXhHLUFLeFc0ejByYU5GcUNpSzF1ZjZV MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pteEctQUt4VzR6MHJhTkZxQ2lLMXVmNlUxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQwMEUvQzUyQjAyNjREOTQ4MTFFRUJBMzRCNDdCQzRGOUFFMDIvNDY4N0QzQUFE OTQ5MTFFRUIwODAwNDFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCoQwDQYJKoZIhvcNAQELBQADggEBADnp/GaesvxwhqXU yL0fLA4YSnjeTWEEg9KqcSR9jV4n7acwuMDsdqBdgpZ6c6DeyFfhs5fjTam0vpVY CgHl8K6S0N0TsuoFFoOm6U9UX6lIvyxXVtM4EJHgmO9PNMPAxMRn3cdENjQ8QhxE xSFFMK1iVKlcMuN3DHK6Nci8RS7m8vr6itEdWTw6/joIKU+9VSQwWVYosFnO//KK GCdhFrSLU0DKwwBT6hYUx5TNJRs9QvHPhKSqsyJkSUIH84iq18izKF0ys4xTdDYK bWK+aWjGhv1KsN1fgdN3N7aEPLUpsWYEeCCvLLwswJLg8M5quYqLHKI2NFdGtG7f pD1Fyec= -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:11 2025 by rpki-client