$ rpki-client -vvf rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/0A94FC36198711EB80EAEF4CC4F9AE02.roa File: 0A94FC36198711EB80EAEF4CC4F9AE02.roa (raw, json) Hash identifier: pSgSIQQUaLX2o2nTmQmGl/Qpmc9pAZuJpTvLRIL92IA= Subject key identifier: BD:1A:05:6F:86:72:24:71:52:22:25:C5:62:28:83:F0:92:7C:5F:66 Certificate issuer: /CN=A9171172/serialNumber=76DEAC060460F6F8A5BD58299C53ABCAF9B1D358 Certificate serial: 0729 Authority key identifier: 76:DE:AC:06:04:60:F6:F8:A5:BD:58:29:9C:53:AB:CA:F9:B1:D3:58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/0A94FC36198711EB80EAEF4CC4F9AE02.roa Signing time: Wed 18 Dec 2024 21:41:11 +0000 ROA not before: Wed 18 Dec 2024 21:41:11 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 7486 IP address blocks: 165.69.0.0/17 maxlen: 18 165.69.32.0/24 maxlen: 24 165.69.36.0/24 maxlen: 24 165.69.40.0/24 maxlen: 24 165.69.128.0/17 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.crl rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:52:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1833 (0x729) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171172 Validity Not Before: Dec 18 21:41:11 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67634177-cf79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:21:33:67:ec:50:3f:6f:c5:0d:32:da:fc:3e: 7b:18:0e:85:9f:89:b7:a7:23:1e:18:be:21:ce:7e: c0:f5:a6:8a:72:5f:4a:64:ce:b4:22:0b:d3:c1:19: 8d:d3:bd:96:21:5f:ce:d5:18:ff:d2:67:9b:4a:13: 4a:ef:fd:76:d7:8b:da:0e:cd:68:a4:62:e9:f4:6b: 4a:64:f3:bf:5e:05:be:9c:89:7b:89:e2:ec:49:1c: a7:d1:c0:5a:26:fe:24:dd:b3:09:d2:5b:2d:87:d8: dc:ce:3c:49:35:78:44:84:5b:7a:af:85:df:cd:76: fa:ad:13:24:5b:6c:75:56:62:9a:88:d2:4e:cf:2f: 53:2e:a1:77:56:84:e0:62:41:6c:ee:1a:67:ae:49: a1:08:c0:77:e3:21:dc:47:c3:fa:39:e8:0b:4c:59: 92:9d:0b:1e:71:e2:10:a9:bf:94:8d:52:14:2b:b0: 79:1c:c2:1f:b8:11:48:19:0d:6a:df:08:59:40:3b: 45:50:12:b6:8b:09:f8:1a:45:bf:31:e5:dd:ae:8e: bb:79:f3:ac:0d:29:3c:e8:f3:49:21:de:31:89:28: c5:03:a7:91:99:ea:e6:79:87:de:0b:65:ad:13:0e: 79:b9:d1:77:f5:74:18:e1:9e:b4:f8:c8:ec:6a:2d: bb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:1A:05:6F:86:72:24:71:52:22:25:C5:62:28:83:F0:92:7C:5F:66 X509v3 Authority Key Identifier: keyid:76:DE:AC:06:04:60:F6:F8:A5:BD:58:29:9C:53:AB:CA:F9:B1:D3:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/0A94FC36198711EB80EAEF4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.69.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:43:7a:e2:c5:91:77:de:88:95:eb:4c:b8:42:e2:b8:ae:35: b8:f3:ec:a6:b6:78:43:26:e9:21:c5:39:e8:c3:bd:c4:85:77: 6e:92:ea:37:cd:74:1b:c2:84:4e:23:e8:9a:27:52:cd:3e:77: 7f:af:ec:8a:fc:94:e8:37:cb:6d:90:91:49:0d:c8:b7:0a:9f: 35:e2:82:32:39:2c:7c:eb:8e:7b:fb:79:6e:b6:d4:cd:99:c5: d1:d5:86:4c:14:25:70:d5:15:08:b3:f0:7d:26:8a:1f:7c:68: 3b:71:f1:8b:85:f3:dd:75:ac:07:25:db:92:02:9b:96:03:c2: 85:fb:43:b2:74:04:24:31:ea:c0:a4:4d:20:81:50:af:03:50: 6e:1a:10:72:b1:d9:d7:77:7b:61:bd:5e:9d:72:62:db:a9:b8: 5d:93:af:ac:97:bf:d1:c5:6e:fb:3d:98:20:03:43:18:c6:57: c9:71:67:db:01:a8:7a:3e:b6:3e:ab:50:6c:74:cb:63:28:9e: 64:9e:68:80:36:49:48:69:bd:e3:b9:f9:a2:d0:1d:1c:cb:63: f4:15:aa:a1:03:7d:58:21:6c:2a:2c:59:9a:eb:ad:88:cd:e9: 1d:4e:7c:cb:08:95:60:cc:10:20:04:4e:6a:7a:76:50:ca:67: 15:58:73:8c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICBykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzExNzIxMTAvBgNVBAUTKDc2REVBQzA2MDQ2MEY2RjhBNUJENTgyOTlDNTNBQkNB RjlCMUQzNTgwHhcNMjQxMjE4MjE0MTExWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYzNDE3Ny1jZjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiEzZ+xQP2/FDTLa/D57GA6Fn4m3pyMeGL4hzn7A9aaKcl9KZM60IgvTwRmN 072WIV/O1Rj/0mebShNK7/1214vaDs1opGLp9GtKZPO/XgW+nIl7ieLsSRyn0cBa Jv4k3bMJ0lsth9jczjxJNXhEhFt6r4XfzXb6rRMkW2x1VmKaiNJOzy9TLqF3VoTg YkFs7hpnrkmhCMB34yHcR8P6OegLTFmSnQseceIQqb+UjVIUK7B5HMIfuBFIGQ1q 3whZQDtFUBK2iwn4GkW/MeXdro67efOsDSk86PNJId4xiSjFA6eRmermeYfeC2Wt Ew55udF39XQY4Z60+Mjsai27qwIDAQABo4IClDCCApAwHQYDVR0OBBYEFL0aBW+G ciRxUiIlxWIog/CSfF9mMB8GA1UdIwQYMBaAFHberAYEYPb4pb1YKZxTq8r5sdNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTE3Mi84MTU4M0FCRTE4 QkUxMUVCQUMxMERFNDZDNEY5QUUwMi9kdDZzQmdSZzl2aWx2VmdwbkZPcnl2bXgw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R0NnNCZ1JnOXZpbHZWZ3BuRk9yeXZteDAxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzExNzIvODE1ODNBQkUxOEJFMTFFQkFDMTBERTQ2QzRGOUFFMDIvMEE5NEZDMzYx OTg3MTFFQjgwRUFFRjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwClRTANBgkqhkiG9w0BAQsFAAOCAQEAfkN64sWRd96IletM uELiuK41uPPsprZ4QybpIcU56MO9xIV3bpLqN810G8KETiPomidSzT53f6/sivyU 6DfLbZCRSQ3ItwqfNeKCMjksfOuOe/t5brbUzZnF0dWGTBQlcNUVCLPwfSaKH3xo O3Hxi4Xz3XWsByXbkgKblgPChftDsnQEJDHqwKRNIIFQrwNQbhoQcrHZ13d7Yb1e nXJi26m4XZOvrJe/0cVu+z2YIANDGMZXyXFn2wGoej62PqtQbHTLYyieZJ5ogDZJ SGm947n5otAdHMtj9BWqoQN9WCFsKixZmuutiM3pHU58ywiVYMwQIAROanp2UMpn FVhzjA== -----END CERTIFICATE-----Generated at Mon Apr 7 01:50:24 2025 by rpki-client