$ rpki-client -vvf rpki.apnic.net/member_repository/A916216D/A3991E24B7C011E3B499F1325911EA32/EDA0915CC08D11E899023A13C4F9AE02.roa File: EDA0915CC08D11E899023A13C4F9AE02.roa (raw, json) Hash identifier: H5jA0wvxquA3z0Uv4vCVKm+ji480n3r5oo8JclCxhv4= Subject key identifier: 34:B0:50:63:2D:81:6A:9F:39:01:33:D6:45:A9:01:37:FA:6C:D7:FC Certificate issuer: /CN=A916216D/serialNumber=AAFFBAF265AACA4C9517AFEB7F54FCCB0FB1DC1B Certificate serial: 2BF2 Authority key identifier: AA:FF:BA:F2:65:AA:CA:4C:95:17:AF:EB:7F:54:FC:CB:0F:B1:DC:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qv-68mWqykyVF6_rf1T8yw-x3Bs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916216D/A3991E24B7C011E3B499F1325911EA32/EDA0915CC08D11E899023A13C4F9AE02.roa Signing time: Thu 16 May 2024 15:52:32 +0000 ROA not before: Thu 16 May 2024 15:52:32 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 58717 IP address blocks: 103.26.245.0/24 maxlen: 24 103.26.246.0/24 maxlen: 24 103.26.247.0/24 maxlen: 24 157.119.184.0/22 maxlen: 22 157.119.184.0/22 maxlen: 24 157.119.184.0/24 maxlen: 24 157.119.185.0/24 maxlen: 24 157.119.186.0/24 maxlen: 24 157.119.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916216D/A3991E24B7C011E3B499F1325911EA32/qv-68mWqykyVF6_rf1T8yw-x3Bs.crl rsync://rpki.apnic.net/member_repository/A916216D/A3991E24B7C011E3B499F1325911EA32/qv-68mWqykyVF6_rf1T8yw-x3Bs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qv-68mWqykyVF6_rf1T8yw-x3Bs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11250 (0x2bf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916216D/serialNumber=AAFFBAF265AACA4C9517AFEB7F54FCCB0FB1DC1B Validity Not Before: May 16 15:52:32 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66462bc0-2402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:fa:d7:85:2a:ef:c5:13:3b:cd:dd:33:f5:5e: 84:05:27:4d:6f:5e:7d:d4:4b:16:48:10:6a:bd:94: ea:a3:f8:1c:d1:7e:8d:60:bd:b8:2d:1e:7a:d3:3d: c1:2d:0f:67:50:ec:79:80:36:39:aa:ca:ed:22:ff: 01:58:62:5a:57:d0:c0:8d:71:cd:35:c0:24:24:e8: 53:37:e7:c9:99:b9:39:c4:ac:85:33:0a:bb:51:c5: fc:14:9c:6f:08:0b:c0:bd:a9:22:5e:88:b2:0b:f6: 37:72:dd:05:53:9a:ea:f7:74:ae:33:c4:62:09:ce: 55:08:9b:1b:80:ff:63:c6:4b:cd:a5:3c:60:a3:37: 33:2f:f0:43:90:eb:36:e9:c1:cb:c8:6a:7d:53:93: 8c:e6:85:0f:71:b4:3c:32:9e:f1:63:fb:79:b1:53: 5f:78:82:a4:8b:63:8b:1a:72:29:20:cb:a7:a9:f5: a4:99:f5:0b:5c:01:ae:47:a3:1d:aa:90:21:92:15: dd:89:bb:5b:53:71:da:26:20:10:d9:ad:5f:f3:0d: 4e:a1:b6:e9:c7:ac:ce:a9:ab:ac:71:1d:b9:34:1f: dd:7d:f5:f4:c7:4e:5f:26:55:d9:27:c5:e7:dd:d1: d9:20:6d:5d:34:91:c1:50:61:c7:37:1f:ec:39:e3: a4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B0:50:63:2D:81:6A:9F:39:01:33:D6:45:A9:01:37:FA:6C:D7:FC X509v3 Authority Key Identifier: keyid:AA:FF:BA:F2:65:AA:CA:4C:95:17:AF:EB:7F:54:FC:CB:0F:B1:DC:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916216D/A3991E24B7C011E3B499F1325911EA32/qv-68mWqykyVF6_rf1T8yw-x3Bs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qv-68mWqykyVF6_rf1T8yw-x3Bs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916216D/A3991E24B7C011E3B499F1325911EA32/EDA0915CC08D11E899023A13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.245.0-103.26.247.255 157.119.184.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:e8:db:71:35:7a:18:be:f3:87:5a:01:e7:5d:24:3d:1d:d3: ff:ae:c7:4b:f6:49:cc:87:92:d1:95:8a:f9:07:3e:e8:f5:2d: b8:01:72:13:19:f6:a1:86:ba:7f:d4:64:99:e6:2b:5d:b0:1f: 82:c2:89:81:41:1f:ce:aa:ac:ed:1b:d9:7a:64:81:dc:72:22: d8:61:6e:ce:a4:8e:4a:ec:1a:4c:f8:e0:11:29:6e:49:0f:64: 16:2d:4f:82:f8:ab:e5:e8:ab:2e:7e:f9:dc:67:70:f4:87:5f: 17:0d:3f:5d:63:40:11:41:6b:e1:6a:3a:33:47:6d:45:f1:58: 7a:54:9b:c8:f1:b6:90:45:0d:91:19:21:80:da:de:0f:9c:34: 1b:a3:c9:1d:13:7a:24:e0:7c:76:0e:73:85:4f:c2:72:ee:7f: 30:9f:1d:1e:cf:27:5d:5c:b6:3c:92:8a:de:29:bf:c2:2a:3e: b4:78:6d:f9:00:a1:6b:0b:ae:4a:9a:2b:73:b6:23:e0:80:8e: 26:67:96:6a:18:7e:75:ff:c5:cb:17:4a:67:6c:d6:b3:ad:17: 4b:ad:4a:01:58:c8:9f:ba:5f:1c:f2:6b:48:b0:0e:39:d1:da: 6f:b1:f7:d0:e4:ad:d7:5a:a9:38:89:c0:32:d4:a5:27:73:dd: 46:34:b0:57 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICK/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIxNkQxMTAvBgNVBAUTKEFBRkZCQUYyNjVBQUNBNEM5NTE3QUZFQjdGNTRGQ0NC MEZCMURDMUIwHhcNMjQwNTE2MTU1MjMyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2MmJjMC0yNDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vrXhSrvxRM7zd0z9V6EBSdNb1591EsWSBBqvZTqo/gc0X6NYL24LR560z3B LQ9nUOx5gDY5qsrtIv8BWGJaV9DAjXHNNcAkJOhTN+fJmbk5xKyFMwq7UcX8FJxv CAvAvakiXoiyC/Y3ct0FU5rq93SuM8RiCc5VCJsbgP9jxkvNpTxgozczL/BDkOs2 6cHLyGp9U5OM5oUPcbQ8Mp7xY/t5sVNfeIKki2OLGnIpIMunqfWkmfULXAGuR6Md qpAhkhXdibtbU3HaJiAQ2a1f8w1Oobbpx6zOqauscR25NB/dffX0x05fJlXZJ8Xn 3dHZIG1dNJHBUGHHNx/sOeOkjQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFDSwUGMt gWqfOQEz1kWpATf6bNf8MB8GA1UdIwQYMBaAFKr/uvJlqspMlRev639U/MsPsdwb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjE2RC9BMzk5MUUyNEI3 QzAxMUUzQjQ5OUYxMzI1OTExRUEzMi9xdi02OG1XcXlreVZGNl9yZjFUOHl3LXgz QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F2LTY4bVdxeWt5VkY2X3JmMVQ4eXcteDNCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjIxNkQvQTM5OTFFMjRCN0MwMTFFM0I0OTlGMTMyNTkxMUVBMzIvRURBMDkxNUND MDhEMTFFODk5MDIzQTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGca9QMEA2ca8AMEAp13uDANBgkqhkiG9w0BAQsFAAOC AQEAL+jbcTV6GL7zh1oB510kPR3T/67HS/ZJzIeS0ZWK+Qc+6PUtuAFyExn2oYa6 f9RkmeYrXbAfgsKJgUEfzqqs7RvZemSB3HIi2GFuzqSOSuwaTPjgESluSQ9kFi1P gvir5eirLn753Gdw9IdfFw0/XWNAEUFr4Wo6M0dtRfFYelSbyPG2kEUNkRkhgNre D5w0G6PJHRN6JOB8dg5zhU/Ccu5/MJ8dHs8nXVy2PJKK3im/wio+tHht+QChawuu Sporc7Yj4ICOJmeWahh+df/FyxdKZ2zWs60XS61KAVjIn7pfHPJrSLAOOdHab7H3 0OSt11qpOInAMtSlJ3PdRjSwVw== -----END CERTIFICATE-----Generated at Sat May 18 16:19:53 2024 by rpki-client on console-fra.rpki-client.org