$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/C3BB51160DAC11EFB00E6B16C4F9AE02.roa File: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (raw, json) Hash identifier: qg93oWWTuAPTiOr/0YJ1p+8YAjeXzMdg4Ry+BJ5sjwQ= Subject key identifier: 21:AE:61:D7:5C:C1:AF:F0:49:6E:6F:2C:F6:A2:98:DF:C9:5D:72:1D Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: A6 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/C3BB51160DAC11EFB00E6B16C4F9AE02.roa Signing time: Thu 09 May 2024 02:35:14 +0000 ROA not before: Thu 09 May 2024 02:35:14 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 38079 IP address blocks: 192.122.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: May 9 02:35:14 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=663c3662-ab05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:16:67:f8:8b:4c:01:63:86:82:be:be:8b:81: 4d:98:98:39:3b:7f:23:98:55:77:86:f6:af:a2:41: 73:12:de:3b:06:21:e5:4d:40:c3:c1:3f:a0:a7:10: 72:68:c6:09:e9:32:99:97:53:9c:6f:1f:f3:39:42: 3a:73:7d:1e:ef:cd:a5:91:90:4a:8f:89:27:da:dd: b3:01:59:34:01:e8:72:68:c9:3b:4a:34:09:97:72: f1:07:3e:75:7a:53:15:b1:2f:3c:4b:65:b1:30:2f: 55:f1:30:ef:e1:de:39:c5:d1:aa:66:13:b1:00:58: 66:09:71:f7:e8:c4:f9:98:93:6d:b3:b7:36:c1:54: 13:62:c7:cc:5d:90:38:6c:3a:2a:30:14:f5:80:c6: b9:3c:8e:fc:56:53:91:ec:23:35:b3:12:63:46:45: 5a:3d:64:82:62:ed:80:ba:b1:af:af:13:04:a5:96: 4d:57:5d:cb:af:c5:31:5e:18:5a:28:94:2e:71:00: 61:d3:d1:1e:82:88:8c:ab:03:d5:68:a8:92:4e:d3: b7:81:16:1c:4d:40:e0:a1:ea:89:51:8e:fa:74:54: ed:21:c1:de:ce:c6:db:5a:f7:b2:df:fc:01:c6:d8: 33:46:61:c9:31:a9:68:a9:e4:2e:9e:68:b9:0c:72: 1e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:AE:61:D7:5C:C1:AF:F0:49:6E:6F:2C:F6:A2:98:DF:C9:5D:72:1D X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/C3BB51160DAC11EFB00E6B16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.122.171.0/24 Signature Algorithm: sha256WithRSAEncryption c3:81:46:3b:81:dd:42:da:6f:6e:90:71:de:7c:11:50:36:83: 81:95:0e:82:96:6d:53:3a:28:15:db:a3:31:b9:57:83:c0:24: 2b:c8:8d:b0:66:87:7c:59:6b:c3:0e:1f:7a:6e:25:40:f7:66: 8e:85:c3:19:7a:2f:4b:a4:ba:84:e6:35:c8:5e:ba:8f:1e:e6: 3d:c9:db:43:b4:0f:a9:75:fb:cc:1e:6e:51:aa:0f:eb:3f:d0: ff:16:0f:57:cb:4a:47:e4:55:2a:dd:10:01:0f:1e:65:3f:af: e1:40:ad:59:52:32:40:58:3e:62:43:1c:94:d6:7b:bf:af:a3: 78:d3:93:b5:85:2e:22:d5:f9:5a:da:85:39:e0:6c:66:c1:8d: 14:51:0a:98:44:98:a8:71:91:6f:6e:a8:da:d4:49:78:ec:48: d9:8a:d9:a4:a8:85:13:5e:d6:7c:3d:54:19:44:ee:a4:e7:66: 31:1c:f3:e6:11:6f:ac:ce:10:98:52:f8:3c:26:39:f8:93:be: c7:d1:4c:36:79:60:89:a6:da:cf:ef:10:82:58:9b:c3:23:d0: 89:55:87:82:ab:b5:45:9b:14:cc:5e:f8:70:97:0a:da:8f:a9: ed:60:6a:1d:9f:1b:65:55:6c:1c:c8:e7:29:92:d3:0e:97:6d: 45:37:c7:83 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjQwNTA5MDIzNTE0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjNjMzY2Mi1hYjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRZn+ItMAWOGgr6+i4FNmJg5O38jmFV3hvavokFzEt47BiHlTUDDwT+gpxBy aMYJ6TKZl1Ocbx/zOUI6c30e782lkZBKj4kn2t2zAVk0AehyaMk7SjQJl3LxBz51 elMVsS88S2WxMC9V8TDv4d45xdGqZhOxAFhmCXH36MT5mJNts7c2wVQTYsfMXZA4 bDoqMBT1gMa5PI78VlOR7CM1sxJjRkVaPWSCYu2AurGvrxMEpZZNV13Lr8UxXhha KJQucQBh09EegoiMqwPVaKiSTtO3gRYcTUDgoeqJUY76dFTtIcHezsbbWvey3/wB xtgzRmHJMaloqeQunmi5DHIeNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCGuYddc wa/wSW5vLPaimN/JXXIdMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBDNTMvREI2M0M5QTIxMTc2MTFFRTlDNTU5QTNFQzRGOUFFMDIvQzNCQjUxMTYw REFDMTFFRkIwMEU2QjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAeqswDQYJKoZIhvcNAQELBQADggEBAMOBRjuB3ULab26Q cd58EVA2g4GVDoKWbVM6KBXbozG5V4PAJCvIjbBmh3xZa8MOH3puJUD3Zo6Fwxl6 L0ukuoTmNcheuo8e5j3J20O0D6l1+8weblGqD+s/0P8WD1fLSkfkVSrdEAEPHmU/ r+FArVlSMkBYPmJDHJTWe7+vo3jTk7WFLiLV+VrahTngbGbBjRRRCphEmKhxkW9u qNrUSXjsSNmK2aSohRNe1nw9VBlE7qTnZjEc8+YRb6zOEJhS+DwmOfiTvsfRTDZ5 YImm2s/vEIJYm8Mj0IlVh4KrtUWbFMxe+HCXCtqPqe1gah2fG2VVbBzI5ymS0w6X bUU3x4M= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:33 2024 by rpki-client on console-fra.rpki-client.org