$ rpki-client -vvf rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/6DEC60FC198811EBAD4C384FC4F9AE02.roa File: 6DEC60FC198811EBAD4C384FC4F9AE02.roa (raw, json) Hash identifier: TqWlSvEbulsxgMFSPWR73Zcfo4/Sx7qDnwHFKBbxddo= Subject key identifier: EF:12:EB:8D:9F:BD:D3:74:A0:75:44:44:3F:42:64:68:A3:ED:D7:E5 Certificate issuer: /CN=A9171172/serialNumber=76DEAC060460F6F8A5BD58299C53ABCAF9B1D358 Certificate serial: 0676 Authority key identifier: 76:DE:AC:06:04:60:F6:F8:A5:BD:58:29:9C:53:AB:CA:F9:B1:D3:58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/6DEC60FC198811EBAD4C384FC4F9AE02.roa Signing time: Wed 10 Jan 2024 23:01:30 +0000 ROA not before: Wed 10 Jan 2024 23:01:30 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 16509 IP address blocks: 165.69.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.crl rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1654 (0x676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171172/serialNumber=76DEAC060460F6F8A5BD58299C53ABCAF9B1D358 Validity Not Before: Jan 10 23:01:30 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659f21ca-cf69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4f:0a:c6:cd:cf:cb:4e:c4:2a:f6:cf:a2:96: 12:26:2c:9e:ce:1d:9f:ce:17:b7:35:83:cc:e5:d3: 33:f3:61:9c:3e:80:6c:0c:1d:fb:8a:66:a8:8b:e4: 33:5f:1b:cc:da:96:fc:66:08:c2:6a:c2:0b:46:6d: 20:85:1a:e0:04:b7:00:f4:93:e1:01:f5:68:7e:9c: d6:61:10:f3:31:23:36:ac:db:f0:13:23:1c:2b:bf: e5:a5:ac:72:35:05:af:ec:dd:c7:21:08:d5:d8:79: 58:97:da:8a:09:58:3b:4f:d0:54:89:81:bc:23:d5: 43:8d:e6:87:76:a5:53:6e:49:12:71:1d:7d:2d:b9: 2b:99:00:57:b2:8d:de:4f:5e:86:3e:85:74:52:2f: 98:ba:c8:fb:cb:7a:cd:10:e6:7e:f5:54:6c:c2:be: 66:53:b9:fe:be:6f:ba:67:a2:5c:81:9c:df:2e:89: 03:37:71:42:a5:be:9b:e9:e7:af:e3:95:c2:af:41: fc:c9:4e:dd:be:ad:4a:fc:82:79:65:94:2e:60:cf: 11:c9:fd:9c:62:3c:73:87:c5:6c:d9:61:f2:6a:28: 39:e2:b9:40:7a:b4:e3:35:ba:89:fb:d8:cd:6f:5e: d1:83:a2:0b:c2:cd:31:bd:26:9a:fa:bc:a5:b8:c3: 9d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:12:EB:8D:9F:BD:D3:74:A0:75:44:44:3F:42:64:68:A3:ED:D7:E5 X509v3 Authority Key Identifier: keyid:76:DE:AC:06:04:60:F6:F8:A5:BD:58:29:9C:53:AB:CA:F9:B1:D3:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/6DEC60FC198811EBAD4C384FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.69.249.0/24 Signature Algorithm: sha256WithRSAEncryption 95:9f:f9:e3:ea:96:1f:1a:48:df:90:1e:ee:db:70:b2:d6:0e: 01:a8:c6:3b:28:c9:98:f1:44:27:aa:68:ed:93:da:70:2a:04: 5a:58:6f:06:15:ea:f9:fb:bb:82:1a:70:0e:db:d4:b5:cd:7f: 41:8e:0f:45:57:64:7e:db:dd:34:18:50:74:cc:48:ae:41:de: 45:eb:64:d8:48:cf:dc:85:f2:b9:b2:45:dc:79:ba:d8:21:f7: e8:8a:2f:4b:32:cd:3d:7b:c6:8f:66:47:3c:75:f6:d9:ce:0d: 24:d3:fd:07:ba:88:3b:4a:01:43:dc:44:5e:0e:ee:14:d5:2b: e8:ba:16:b2:df:e8:69:19:e0:c4:fd:e7:43:d9:e2:1c:56:c8: cf:90:77:7e:3f:62:36:c2:23:96:86:db:e0:38:96:2b:e0:1d: 15:00:c8:05:c2:2f:10:8d:86:88:8a:37:0b:9b:22:44:96:51: 76:c2:2d:87:21:56:bb:76:9f:f2:b3:50:6d:51:4a:c9:33:8f: 5d:c1:58:c0:56:3e:78:fa:0b:99:2d:f0:16:aa:a2:3f:d5:ea: c9:e2:3a:ab:a3:0e:e8:be:b4:3d:d7:41:5c:97:54:1d:93:2c: 75:54:0d:f2:7b:4e:23:5d:34:c0:fc:36:02:20:db:77:d0:66: 68:6a:17:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzExNzIxMTAvBgNVBAUTKDc2REVBQzA2MDQ2MEY2RjhBNUJENTgyOTlDNTNBQkNB RjlCMUQzNTgwHhcNMjQwMTEwMjMwMTMwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmMjFjYS1jZjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs08Kxs3Py07EKvbPopYSJiyezh2fzhe3NYPM5dMz82GcPoBsDB37imaoi+Qz XxvM2pb8ZgjCasILRm0ghRrgBLcA9JPhAfVofpzWYRDzMSM2rNvwEyMcK7/lpaxy NQWv7N3HIQjV2HlYl9qKCVg7T9BUiYG8I9VDjeaHdqVTbkkScR19LbkrmQBXso3e T16GPoV0Ui+Yusj7y3rNEOZ+9VRswr5mU7n+vm+6Z6JcgZzfLokDN3FCpb6b6eev 45XCr0H8yU7dvq1K/IJ5ZZQuYM8Ryf2cYjxzh8Vs2WHyaig54rlAerTjNbqJ+9jN b17Rg6ILws0xvSaa+ryluMOdWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFO8S642f vdN0oHVERD9CZGij7dflMB8GA1UdIwQYMBaAFHberAYEYPb4pb1YKZxTq8r5sdNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTE3Mi84MTU4M0FCRTE4 QkUxMUVCQUMxMERFNDZDNEY5QUUwMi9kdDZzQmdSZzl2aWx2VmdwbkZPcnl2bXgw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R0NnNCZ1JnOXZpbHZWZ3BuRk9yeXZteDAxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzExNzIvODE1ODNBQkUxOEJFMTFFQkFDMTBERTQ2QzRGOUFFMDIvNkRFQzYwRkMx OTg4MTFFQkFENEMzODRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAClRfkwDQYJKoZIhvcNAQELBQADggEBAJWf+ePqlh8aSN+Q Hu7bcLLWDgGoxjsoyZjxRCeqaO2T2nAqBFpYbwYV6vn7u4IacA7b1LXNf0GOD0VX ZH7b3TQYUHTMSK5B3kXrZNhIz9yF8rmyRdx5utgh9+iKL0syzT17xo9mRzx19tnO DSTT/Qe6iDtKAUPcRF4O7hTVK+i6FrLf6GkZ4MT950PZ4hxWyM+Qd34/YjbCI5aG 2+A4livgHRUAyAXCLxCNhoiKNwubIkSWUXbCLYchVrt2n/KzUG1RSskzj13BWMBW Pnj6C5kt8Baqoj/V6sniOqujDui+tD3XQVyXVB2TLHVUDfJ7TiNdNMD8NgIg23fQ ZmhqF5A= -----END CERTIFICATE-----Generated at Thu Apr 18 23:55:17 2024 by rpki-client on console-fra.rpki-client.org