$ rpki-client -vvf rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/941EE9A46BB911ED97343873C4F9AE02.roa File: 941EE9A46BB911ED97343873C4F9AE02.roa (raw, json) Hash identifier: 5ZbVoX8toC5MCMXRauyxLFjSv/lDIxp6UGtS1LazqGA= Subject key identifier: 76:37:99:19:0E:10:54:0B:34:91:DB:18:0A:C3:07:4E:2F:66:77:D3 Certificate issuer: /CN=A9168494/serialNumber=B13EA4934F41FC4834CD2A6FF8218D40F7A97789 Certificate serial: 01D5 Authority key identifier: B1:3E:A4:93:4F:41:FC:48:34:CD:2A:6F:F8:21:8D:40:F7:A9:77:89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/941EE9A46BB911ED97343873C4F9AE02.roa Signing time: Wed 29 May 2024 05:10:39 +0000 ROA not before: Wed 29 May 2024 05:10:39 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 3550 IP address blocks: 165.220.0.0/21 maxlen: 21 165.220.16.0/20 maxlen: 20 165.220.16.0/24 maxlen: 24 165.220.32.0/19 maxlen: 19 165.220.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.crl rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 03:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168494 Validity Not Before: May 29 05:10:39 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6656b8cf-896b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:93:09:ae:71:90:aa:45:89:dc:ce:8f:77:e1: e9:77:33:78:4e:63:92:29:ce:a1:d9:c1:11:a0:ff: 30:77:be:b8:cd:86:ae:09:6e:c6:dd:90:9b:4d:1c: 53:74:89:0c:48:f2:2f:83:10:bf:a7:2e:41:70:4a: f8:92:c2:92:b8:1e:65:6f:d0:45:e1:c0:20:e9:c9: cf:5a:a3:4d:aa:5a:38:23:39:6f:25:9e:ac:0b:27: 8c:de:52:61:90:aa:0a:6a:14:50:f7:96:65:e1:92: 29:54:d4:a1:cf:ca:49:5e:ad:c1:ff:d4:b8:dc:f5: 31:98:ad:d6:4b:c4:f1:93:d8:0c:25:00:64:2a:8f: aa:46:8c:2b:df:01:62:e9:67:da:c0:de:1e:39:d3: 5e:88:02:b6:54:57:b3:6f:70:54:97:22:8b:30:bd: 4e:d6:27:98:28:40:fc:3b:1d:dd:92:59:37:fb:a4: 84:a5:88:94:c7:5e:80:05:34:18:3d:04:a2:a4:32: ce:94:6c:fb:43:e1:81:f1:66:d9:de:a9:2b:0b:26: b4:2a:bb:4d:79:7f:ba:46:28:06:88:1c:f8:87:65: 8c:b0:87:ab:24:3c:df:10:03:0c:ff:90:c6:b0:60: 0a:71:8e:e5:40:6e:77:26:63:af:ef:6f:91:0e:18: 94:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:37:99:19:0E:10:54:0B:34:91:DB:18:0A:C3:07:4E:2F:66:77:D3 X509v3 Authority Key Identifier: keyid:B1:3E:A4:93:4F:41:FC:48:34:CD:2A:6F:F8:21:8D:40:F7:A9:77:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/941EE9A46BB911ED97343873C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.220.0.0/21 165.220.16.0-165.220.127.255 Signature Algorithm: sha256WithRSAEncryption 20:d8:5f:b8:f6:4a:bb:4e:6e:fd:85:b8:ed:e0:46:07:60:46: b7:94:e0:be:7b:6c:e2:6e:5f:42:08:19:36:2d:74:64:83:40: db:1d:f8:f7:21:48:d5:65:e7:1a:24:7e:e6:9b:c3:a9:f6:b8: 83:a9:e5:06:2b:d1:6d:b9:13:1d:28:2b:15:fc:4a:dd:26:d8: 2a:fc:4c:42:3b:b2:25:83:bb:28:3e:46:5e:0c:b8:b7:4e:7d: 21:68:0f:f6:1c:f4:15:a7:f7:3e:84:ae:21:fd:78:dc:cb:4a: dc:d0:cc:84:2d:67:37:42:02:38:9f:92:e6:c6:42:a1:05:3a: 1f:3a:ce:e3:bf:e0:34:79:59:2f:da:90:68:65:2f:b8:08:4c: 2c:65:df:7d:4b:87:9d:26:9b:51:ba:49:d6:f7:7d:ff:f4:45: 0b:5e:f8:81:9c:05:4d:5f:09:8f:4a:87:e4:83:d4:f2:b0:6d: 5a:65:a8:52:fc:06:9f:fd:c4:fd:00:8e:69:81:29:9d:fa:57: fd:a5:28:c8:fe:a3:c7:8a:b8:bc:7e:cc:86:07:8a:15:aa:d3: 55:a5:a8:11:4b:8e:55:a9:14:24:06:e3:e1:9f:16:69:61:f0: ee:d6:34:9c:41:35:f2:cf:e2:9f:37:e4:91:f5:d5:ff:8c:5f: 92:8e:8d:b1 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg0OTQxMTAvBgNVBAUTKEIxM0VBNDkzNEY0MUZDNDgzNENEMkE2RkY4MjE4RDQw RjdBOTc3ODkwHhcNMjQwNTI5MDUxMDM5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2YjhjZi04OTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJMJrnGQqkWJ3M6Pd+HpdzN4TmOSKc6h2cERoP8wd764zYauCW7G3ZCbTRxT dIkMSPIvgxC/py5BcEr4ksKSuB5lb9BF4cAg6cnPWqNNqlo4IzlvJZ6sCyeM3lJh kKoKahRQ95Zl4ZIpVNShz8pJXq3B/9S43PUxmK3WS8Txk9gMJQBkKo+qRowr3wFi 6WfawN4eOdNeiAK2VFezb3BUlyKLML1O1ieYKED8Ox3dklk3+6SEpYiUx16ABTQY PQSipDLOlGz7Q+GB8WbZ3qkrCya0KrtNeX+6RigGiBz4h2WMsIerJDzfEAMM/5DG sGAKcY7lQG53JmOv72+RDhiUHwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFHY3mRkO EFQLNJHbGArDB04vZnfTMB8GA1UdIwQYMBaAFLE+pJNPQfxINM0qb/ghjUD3qXeJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODQ5NC8zMUI4MjYzQzA5 OTMxMUVEQjIxQzlCNEJDNEY5QUUwMi9zVDZrazA5Ql9FZzB6U3B2LUNHTlFQZXBk NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NUNmtrMDlCX0VnMHpTcHYtQ0dOUVBlcGQ0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg0OTQvMzFCODI2M0MwOTkzMTFFREIyMUM5QjRCQzRGOUFFMDIvOTQxRUU5QTQ2 QkI5MTFFRDk3MzQzODczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAOl3AAwDAMEBKXcEAMEB6XcADANBgkqhkiG9w0BAQsFAAOC AQEAINhfuPZKu05u/YW47eBGB2BGt5Tgvnts4m5fQggZNi10ZINA2x349yFI1WXn GiR+5pvDqfa4g6nlBivRbbkTHSgrFfxK3SbYKvxMQjuyJYO7KD5GXgy4t059IWgP 9hz0Faf3PoSuIf143MtK3NDMhC1nN0ICOJ+S5sZCoQU6HzrO47/gNHlZL9qQaGUv uAhMLGXffUuHnSabUbpJ1vd9//RFC174gZwFTV8Jj0qH5IPU8rBtWmWoUvwGn/3E /QCOaYEpnfpX/aUoyP6jx4q4vH7MhgeKFarTVaWoEUuOVakUJAbj4Z8WaWHw7tY0 nEE18s/inzfkkfXV/4xfko6NsQ== -----END CERTIFICATE-----Generated at Wed Feb 19 20:45:31 2025 by rpki-client