$ rpki-client -vvf rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/6DEC60FC198811EBAD4C384FC4F9AE02.roa File: 6DEC60FC198811EBAD4C384FC4F9AE02.roa (raw, json) Hash identifier: 00f5UezOFyyqRBMxbkiUS7o0hS0GGG4xnKYK/4mdm8c= Subject key identifier: 75:92:9C:C4:1C:45:12:70:5F:7F:66:4C:BF:BF:B7:3F:4C:FC:34:8D Certificate issuer: /CN=A9171172/serialNumber=76DEAC060460F6F8A5BD58299C53ABCAF9B1D358 Certificate serial: 0728 Authority key identifier: 76:DE:AC:06:04:60:F6:F8:A5:BD:58:29:9C:53:AB:CA:F9:B1:D3:58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/6DEC60FC198811EBAD4C384FC4F9AE02.roa Signing time: Wed 18 Dec 2024 21:41:10 +0000 ROA not before: Wed 18 Dec 2024 21:41:10 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 16509 IP address blocks: 165.69.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.crl rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1832 (0x728) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171172 Validity Not Before: Dec 18 21:41:10 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67634176-ad47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:44:37:93:4d:d5:ad:9e:c6:37:b0:ad:28:dd: f5:1a:46:62:40:00:57:23:fe:fd:93:a9:68:66:c7: be:ed:1e:e5:70:f3:7f:74:f0:6b:d7:08:87:b9:7f: 45:6f:e4:a5:2c:db:02:b0:a0:ab:0a:77:1a:b1:5a: da:26:21:79:4e:44:0d:df:fa:50:db:95:b9:76:ed: b9:91:16:46:52:83:ea:a1:9f:3b:56:74:9f:c2:84: fc:db:db:7a:12:93:4a:d7:d2:3f:de:e1:da:d3:d7: 26:3d:e8:97:a7:1f:c9:b0:9f:47:a6:23:4e:d1:8e: 6d:52:25:dc:52:44:e4:52:b8:87:95:e1:f8:34:f9: 6b:ce:4d:d5:1a:8e:1f:6c:a9:88:f0:ac:40:3b:6b: 94:ca:cf:e4:74:57:19:cc:21:be:52:56:93:89:db: b0:bd:9a:3a:f8:14:da:e2:c2:47:4e:4e:78:73:6c: 98:b1:f2:76:40:fb:a3:86:25:93:0e:c9:e5:e6:c5: b5:0c:f6:50:cc:9c:a7:83:20:61:5b:6f:1e:f9:7f: 21:7d:11:b4:5e:d9:9e:f3:24:46:e4:5e:8a:1d:b2: 9c:f9:94:73:36:af:2a:36:71:97:d4:8f:ff:e9:f8: 70:fe:b7:b9:8b:f5:ca:6b:6e:44:b4:a6:a9:b0:f6: 41:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:92:9C:C4:1C:45:12:70:5F:7F:66:4C:BF:BF:B7:3F:4C:FC:34:8D X509v3 Authority Key Identifier: keyid:76:DE:AC:06:04:60:F6:F8:A5:BD:58:29:9C:53:AB:CA:F9:B1:D3:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/dt6sBgRg9vilvVgpnFOryvmx01g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dt6sBgRg9vilvVgpnFOryvmx01g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171172/81583ABE18BE11EBAC10DE46C4F9AE02/6DEC60FC198811EBAD4C384FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.69.249.0/24 Signature Algorithm: sha256WithRSAEncryption 29:fe:e5:04:3f:66:5a:4b:98:b6:ce:4b:5a:a1:32:cb:9c:f0: d2:44:06:a6:f9:25:97:2f:76:b7:29:73:59:b8:63:8c:84:c2: 7e:cd:d2:70:fb:79:ac:f4:27:67:ba:1a:c4:54:a0:df:0b:07: 58:fb:99:98:31:17:10:50:2c:8b:c3:0a:29:a4:a6:82:72:e3: cd:bd:6e:c0:f9:c3:66:0d:f7:e1:1b:bf:ba:bb:9f:b6:89:77: 86:a8:d1:cc:d3:15:6f:6a:89:16:9b:7b:56:86:c1:1f:3b:33: d9:4d:03:dc:d5:7f:d8:5f:22:72:b1:58:dd:e7:b4:ad:7a:74: 9b:3a:fb:56:e1:59:53:9d:da:db:0d:ef:a7:04:0b:4a:97:dc: d2:03:4b:50:6e:2d:56:44:49:11:1e:68:6f:80:00:b3:80:b3: ab:ba:3c:4b:e4:8d:91:b0:29:70:b0:70:3d:8c:21:98:1c:75: 0b:f3:93:8a:58:d4:ea:b9:b9:77:3b:5b:e2:1b:ca:4a:44:2a: 68:fd:d0:3c:f4:6d:d4:e5:26:40:22:15:64:7d:ea:ac:25:48: 48:c2:b5:5f:a8:e2:a6:47:47:ad:6f:0e:05:d0:0c:29:e8:12: cf:66:86:86:ca:5e:3a:96:9b:04:8c:4e:d1:7c:3f:97:36:68: 2b:15:e6:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzExNzIxMTAvBgNVBAUTKDc2REVBQzA2MDQ2MEY2RjhBNUJENTgyOTlDNTNBQkNB RjlCMUQzNTgwHhcNMjQxMjE4MjE0MTEwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYzNDE3Ni1hZDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkQ3k03VrZ7GN7CtKN31GkZiQABXI/79k6loZse+7R7lcPN/dPBr1wiHuX9F b+SlLNsCsKCrCncasVraJiF5TkQN3/pQ25W5du25kRZGUoPqoZ87VnSfwoT829t6 EpNK19I/3uHa09cmPeiXpx/JsJ9HpiNO0Y5tUiXcUkTkUriHleH4NPlrzk3VGo4f bKmI8KxAO2uUys/kdFcZzCG+UlaTiduwvZo6+BTa4sJHTk54c2yYsfJ2QPujhiWT Dsnl5sW1DPZQzJyngyBhW28e+X8hfRG0Xtme8yRG5F6KHbKc+ZRzNq8qNnGX1I// 6fhw/re5i/XKa25EtKapsPZB7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHWSnMQc RRJwX39mTL+/tz9M/DSNMB8GA1UdIwQYMBaAFHberAYEYPb4pb1YKZxTq8r5sdNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTE3Mi84MTU4M0FCRTE4 QkUxMUVCQUMxMERFNDZDNEY5QUUwMi9kdDZzQmdSZzl2aWx2VmdwbkZPcnl2bXgw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R0NnNCZ1JnOXZpbHZWZ3BuRk9yeXZteDAxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzExNzIvODE1ODNBQkUxOEJFMTFFQkFDMTBERTQ2QzRGOUFFMDIvNkRFQzYwRkMx OTg4MTFFQkFENEMzODRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAClRfkwDQYJKoZIhvcNAQELBQADggEBACn+5QQ/ZlpLmLbO S1qhMsuc8NJEBqb5JZcvdrcpc1m4Y4yEwn7N0nD7eaz0J2e6GsRUoN8LB1j7mZgx FxBQLIvDCimkpoJy4829bsD5w2YN9+Ebv7q7n7aJd4ao0czTFW9qiRabe1aGwR87 M9lNA9zVf9hfInKxWN3ntK16dJs6+1bhWVOd2tsN76cEC0qX3NIDS1BuLVZESREe aG+AALOAs6u6PEvkjZGwKXCwcD2MIZgcdQvzk4pY1Oq5uXc7W+IbykpEKmj90Dz0 bdTlJkAiFWR96qwlSEjCtV+o4qZHR61vDgXQDCnoEs9mhobKXjqWmwSMTtF8P5c2 aCsV5n8= -----END CERTIFICATE-----Generated at Sun Feb 16 15:30:22 2025 by rpki-client