$ rpki-client -vvf rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/EDBD93FE9E6F11EE85A6B84EC4F9AE02.roa File: EDBD93FE9E6F11EE85A6B84EC4F9AE02.roa (raw, json) Hash identifier: /YSfxaqczW7+Bko40iXZIk1ZbmyTFzPhHoifbb+Y/1Y= Subject key identifier: E0:D4:DD:DC:75:FC:5C:B1:0F:1F:18:7A:25:D7:9F:E5:B9:96:B4:DF Certificate issuer: /CN=A916BFAB/serialNumber=0583A85FE313FC0D6366E22C4466B293EAD45AE4 Certificate serial: 9E Authority key identifier: 05:83:A8:5F:E3:13:FC:0D:63:66:E2:2C:44:66:B2:93:EA:D4:5A:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYOoX-MT_A1jZuIsRGayk-rUWuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/EDBD93FE9E6F11EE85A6B84EC4F9AE02.roa Signing time: Thu 02 May 2024 11:09:25 +0000 ROA not before: Thu 02 May 2024 11:09:25 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 140594 IP address blocks: 103.251.254.0/24 maxlen: 24 103.251.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/BYOoX-MT_A1jZuIsRGayk-rUWuQ.crl rsync://rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/BYOoX-MT_A1jZuIsRGayk-rUWuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYOoX-MT_A1jZuIsRGayk-rUWuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BFAB/serialNumber=0583A85FE313FC0D6366E22C4466B293EAD45AE4 Validity Not Before: May 2 11:09:25 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=66337465-f1e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fb:9b:2e:f5:14:19:ba:23:1f:29:01:c1:78: 8a:d7:9c:4f:e6:14:f6:50:74:b8:fa:28:15:b0:aa: a3:93:e3:be:bc:37:c3:49:a4:23:6c:cc:3d:65:ef: be:ed:34:bc:6a:6f:82:65:d7:7a:27:41:6e:71:dc: 57:e7:3a:ff:cd:53:57:1a:cb:38:3e:a7:a4:1f:03: a6:09:f1:3b:c3:b4:2b:5d:f8:e0:d9:6f:8d:99:78: 50:fc:f6:47:e1:4a:04:5f:42:c7:03:c1:dc:e9:44: 23:6c:13:83:96:ab:23:8c:df:1c:c5:d5:fd:18:af: d5:d9:9b:3c:05:f3:9d:24:e2:24:4b:bd:53:70:80: 69:c9:20:0f:12:d5:72:8f:99:5d:42:26:a3:98:e6: 02:c3:a4:59:15:ee:74:30:16:59:c0:7d:36:d2:42: 13:df:00:fd:7c:96:8e:9a:b0:c3:76:0d:eb:1c:dc: 11:7c:73:2d:64:37:b2:95:34:9c:93:87:e0:fd:17: fb:40:cc:a1:43:7d:e5:71:ac:8c:94:6d:d3:84:d4: b0:86:11:d0:a5:2d:b7:3a:7e:23:bb:4b:01:4d:35: 9d:e7:67:54:e9:10:f5:ef:43:c4:a5:ec:4f:a8:c7: 8b:08:17:86:59:92:9c:58:e3:29:9e:09:5d:16:aa: 98:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D4:DD:DC:75:FC:5C:B1:0F:1F:18:7A:25:D7:9F:E5:B9:96:B4:DF X509v3 Authority Key Identifier: keyid:05:83:A8:5F:E3:13:FC:0D:63:66:E2:2C:44:66:B2:93:EA:D4:5A:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/BYOoX-MT_A1jZuIsRGayk-rUWuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYOoX-MT_A1jZuIsRGayk-rUWuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/EDBD93FE9E6F11EE85A6B84EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.251.254.0/23 Signature Algorithm: sha256WithRSAEncryption bc:d4:ca:3b:fd:d2:d9:04:ff:b6:4f:51:c2:25:eb:40:21:c4: 7c:32:9e:99:6e:3e:db:48:5d:50:f3:df:d3:b1:04:5d:b8:32: 55:77:7f:22:e6:2e:29:3d:cb:31:ae:54:cf:d1:15:63:53:97: b4:44:3a:29:e3:5f:d3:18:d4:1f:0e:3c:e6:33:ba:30:92:7b: ba:ce:34:d2:03:3c:97:51:93:74:57:48:7d:da:64:8a:2d:f3: 17:7d:15:57:b0:63:7c:74:1e:d0:bd:b2:d4:16:5f:6f:80:9c: 47:24:fd:98:8a:6c:50:9f:24:c7:79:13:f0:76:23:2f:8f:ac: 79:fa:c2:20:25:3b:bc:d2:ee:57:7d:f2:c9:fd:0f:62:fc:b0: 1c:90:d2:07:af:c3:40:11:05:ac:ab:89:85:86:77:8b:43:ac: 8f:86:93:0d:ee:af:a1:d1:37:08:66:74:73:db:dc:68:1f:bd: 70:84:d9:97:02:e2:76:fd:c0:5d:d5:07:d1:3b:48:02:0b:f1: 31:c8:72:fa:da:ce:f8:14:7d:f2:5f:70:f3:d8:8a:9c:56:27: f5:97:56:21:1e:cb:95:27:23:07:bb:c3:2b:3c:47:1f:db:29: 46:1c:36:b4:4f:12:df:e4:db:74:d5:b2:1c:36:20:96:ae:d0: 56:fe:cc:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJGQUIxMTAvBgNVBAUTKDA1ODNBODVGRTMxM0ZDMEQ2MzY2RTIyQzQ0NjZCMjkz RUFENDVBRTQwHhcNMjQwNTAyMTEwOTI1WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzNzQ2NS1mMWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPubLvUUGbojHykBwXiK15xP5hT2UHS4+igVsKqjk+O+vDfDSaQjbMw9Ze++ 7TS8am+CZdd6J0FucdxX5zr/zVNXGss4PqekHwOmCfE7w7QrXfjg2W+NmXhQ/PZH 4UoEX0LHA8Hc6UQjbBODlqsjjN8cxdX9GK/V2Zs8BfOdJOIkS71TcIBpySAPEtVy j5ldQiajmOYCw6RZFe50MBZZwH020kIT3wD9fJaOmrDDdg3rHNwRfHMtZDeylTSc k4fg/Rf7QMyhQ33lcayMlG3ThNSwhhHQpS23On4ju0sBTTWd52dU6RD170PEpexP qMeLCBeGWZKcWOMpngldFqqY3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFODU3dx1 /FyxDx8YeiXXn+W5lrTfMB8GA1UdIwQYMBaAFAWDqF/jE/wNY2biLERmspPq1Frk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkZBQi8zM0E5Q0M5QzM2 ODQxMUVFQTkyN0Y5NDhDNEY5QUUwMi9CWU9vWC1NVF9BMWpadUlzUkdheWstclVX dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JZT29YLU1UX0Exalp1SXNSR2F5ay1yVVd1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJGQUIvMzNBOUNDOUMzNjg0MTFFRUE5MjdGOTQ4QzRGOUFFMDIvRURCRDkzRkU5 RTZGMTFFRTg1QTZCODRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn+/4wDQYJKoZIhvcNAQELBQADggEBALzUyjv90tkE/7ZP UcIl60AhxHwynpluPttIXVDz39OxBF24MlV3fyLmLik9yzGuVM/RFWNTl7REOinj X9MY1B8OPOYzujCSe7rONNIDPJdRk3RXSH3aZIot8xd9FVewY3x0HtC9stQWX2+A nEck/ZiKbFCfJMd5E/B2Iy+PrHn6wiAlO7zS7ld98sn9D2L8sByQ0gevw0ARBayr iYWGd4tDrI+Gkw3ur6HRNwhmdHPb3GgfvXCE2ZcC4nb9wF3VB9E7SAIL8THIcvra zvgUffJfcPPYipxWJ/WXViEey5UnIwe7wys8Rx/bKUYcNrRPEt/k23TVshw2IJau 0Fb+zG4= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:33 2024 by rpki-client on console-fra.rpki-client.org