$ rpki-client -vvf rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/28C6AB84C0E411EEAFFB100BC4F9AE02.roa File: 28C6AB84C0E411EEAFFB100BC4F9AE02.roa (raw, json) Hash identifier: V4rJ9+KQ3AK8oq6Dx/jnK6Kq8OonvPFz54Mtrt4dysM= Subject key identifier: E1:BB:1D:02:7D:F1:23:DB:1C:E5:D8:51:C4:34:65:7F:22:B3:5A:24 Certificate issuer: /CN=A918E79C/serialNumber=B52C54D46A68ADECC37D5F6F27228C6DEA73E85C Certificate serial: B2 Authority key identifier: B5:2C:54:D4:6A:68:AD:EC:C3:7D:5F:6F:27:22:8C:6D:EA:73:E8:5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tSxU1GporezDfV9vJyKMbepz6Fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/28C6AB84C0E411EEAFFB100BC4F9AE02.roa Signing time: Thu 09 Jan 2025 04:48:38 +0000 ROA not before: Thu 09 Jan 2025 04:48:38 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 32110 IP address blocks: 157.10.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.crl rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tSxU1GporezDfV9vJyKMbepz6Fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E79C, serialNumber=B52C54D46A68ADECC37D5F6F27228C6DEA73E85C Validity Not Before: Jan 9 04:48:38 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=677f5526-ad89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f9:cc:6e:75:11:c3:fc:31:1d:0b:d1:29:35: 02:f0:cb:cd:56:c8:05:f1:b0:2d:34:38:73:b1:6b: eb:b7:f9:81:2a:82:78:83:57:96:cd:67:4b:1b:9d: f9:8d:9f:b1:f6:c9:65:91:f3:dc:45:aa:07:75:b8: c2:14:11:08:d3:b7:ef:43:59:97:f2:a7:9c:ec:bc: db:af:6e:8f:57:d0:b2:43:5c:7a:a6:9a:43:15:57: 59:8b:ed:df:72:84:65:35:be:19:03:83:85:ca:94: ec:0a:82:8a:a4:00:a0:e5:bc:79:23:e5:ce:08:fb: 33:5a:c7:9a:33:d2:74:fc:f0:dc:cf:6f:35:76:39: 8c:e6:83:2e:55:84:e3:51:c0:53:a5:a5:e6:ea:ee: b0:c7:5f:79:1d:cc:65:a9:4e:0e:d0:d5:ae:3d:86: e5:e1:8e:e1:35:54:4e:0a:1d:22:32:94:16:de:00: 46:e9:ee:8b:b4:8d:c9:a4:15:d1:24:88:ad:33:bf: fa:35:8b:b0:2f:d5:5d:c8:1f:d8:a4:8c:d0:97:9e: 74:3e:e6:d6:de:72:1c:ec:19:60:e1:b7:d7:f3:e9: ac:e3:52:32:76:d3:e5:81:d1:88:21:f6:5c:fc:b2: 1b:b9:bd:94:28:b0:5f:df:cb:b6:79:2c:ba:5e:08: 48:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:BB:1D:02:7D:F1:23:DB:1C:E5:D8:51:C4:34:65:7F:22:B3:5A:24 X509v3 Authority Key Identifier: keyid:B5:2C:54:D4:6A:68:AD:EC:C3:7D:5F:6F:27:22:8C:6D:EA:73:E8:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tSxU1GporezDfV9vJyKMbepz6Fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/28C6AB84C0E411EEAFFB100BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.206.0/24 Signature Algorithm: sha256WithRSAEncryption 87:c5:05:56:6f:de:ad:34:7e:b9:e6:3f:41:bc:cb:56:75:fc: 7f:e7:27:23:88:ca:95:0e:e7:b2:92:a6:f7:63:7e:48:bf:e9: 9c:9e:08:ab:8b:5b:dd:f9:96:58:01:c9:c8:2f:1b:02:a9:a6: 8c:e0:d8:a6:d5:56:b6:18:04:07:de:9c:93:ff:74:7e:36:b6: 2e:9a:8f:26:23:19:f2:9c:22:a8:cb:0a:1d:dc:68:de:d5:d5: e3:62:c9:a6:bb:4b:45:20:4b:57:e2:2a:7a:b5:00:2c:d0:25: 3e:c8:da:5b:79:5e:ed:4b:9d:21:59:df:c8:ea:ea:a5:3b:ff: 9c:91:ce:bc:ff:f3:84:9d:90:90:ba:56:34:7f:70:3c:29:08: 08:b3:e6:ae:16:83:aa:b9:5f:67:03:e8:d8:f0:e9:bf:d0:e0: 3c:25:cf:96:26:ab:4b:06:72:6a:a7:6b:9d:a4:8f:20:ae:e9: fd:72:9b:ad:72:fc:42:a0:d9:95:8b:cd:eb:ab:c9:a8:01:ba: 37:50:74:25:e4:28:6d:53:e2:0d:a8:c0:07:1a:c9:94:fc:8d: ef:67:2d:65:8e:09:d2:3a:85:5d:27:3c:34:9b:61:7a:be:95: ed:a5:65:cf:53:07:ec:51:19:de:45:83:a7:1e:9f:06:dc:55: a5:46:6e:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU3OUMxMTAvBgNVBAUTKEI1MkM1NEQ0NkE2OEFERUNDMzdENUY2RjI3MjI4QzZE RUE3M0U4NUMwHhcNMjUwMTA5MDQ0ODM4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdmNTUyNi1hZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfnMbnURw/wxHQvRKTUC8MvNVsgF8bAtNDhzsWvrt/mBKoJ4g1eWzWdLG535 jZ+x9sllkfPcRaoHdbjCFBEI07fvQ1mX8qec7Lzbr26PV9CyQ1x6pppDFVdZi+3f coRlNb4ZA4OFypTsCoKKpACg5bx5I+XOCPszWseaM9J0/PDcz281djmM5oMuVYTj UcBTpaXm6u6wx195HcxlqU4O0NWuPYbl4Y7hNVROCh0iMpQW3gBG6e6LtI3JpBXR JIitM7/6NYuwL9VdyB/YpIzQl550PubW3nIc7Blg4bfX8+ms41IydtPlgdGIIfZc /LIbub2UKLBf38u2eSy6XghIuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOG7HQJ9 8SPbHOXYUcQ0ZX8is1okMB8GA1UdIwQYMBaAFLUsVNRqaK3sw31fbycijG3qc+hc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTc5Qy81OEE4MTE4RUMw RTAxMUVFOTAwMDkyMDlDNEY5QUUwMi90U3hVMUdwb3JlekRmVjl2SnlLTWJlcHo2 RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RTeFUxR3BvcmV6RGZWOXZKeUtNYmVwejZGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU3OUMvNThBODExOEVDMEUwMTFFRTkwMDA5MjA5QzRGOUFFMDIvMjhDNkFCODRD MEU0MTFFRUFGRkIxMDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCs4wDQYJKoZIhvcNAQELBQADggEBAIfFBVZv3q00frnm P0G8y1Z1/H/nJyOIypUO57KSpvdjfki/6ZyeCKuLW935llgBycgvGwKppozg2KbV VrYYBAfenJP/dH42ti6ajyYjGfKcIqjLCh3caN7V1eNiyaa7S0UgS1fiKnq1ACzQ JT7I2lt5Xu1LnSFZ38jq6qU7/5yRzrz/84SdkJC6VjR/cDwpCAiz5q4Wg6q5X2cD 6Njw6b/Q4Dwlz5Ymq0sGcmqna52kjyCu6f1ym61y/EKg2ZWLzeuryagBujdQdCXk KG1T4g2owAcayZT8je9nLWWOCdI6hV0nPDSbYXq+le2lZc9TB+xRGd5Fg6cenwbc VaVGbsI= -----END CERTIFICATE-----Generated at Sat Apr 26 16:54:48 2025 by rpki-client