$ rpki-client -vvf repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/3130332e3136382e3235312e302f32342d3234203d3e20313432333237.roa File: 3130332e3136382e3235312e302f32342d3234203d3e20313432333237.roa (raw, json) Hash identifier: EvKAlpyGeox6t1h0DBB350/SVTR7ONE/z/5K3Exppu4= Subject key identifier: 55:E7:BD:3D:ED:C8:D6:AF:CF:15:1E:43:03:DA:4D:82:C0:28:B4:73 Certificate issuer: /CN=4EE959798755CD4BA407AEB6EBDD3100261EAA55 Certificate serial: 67A6CEB8970B89655ED1C41E9EEEEB18BE840556 Authority key identifier: 4E:E9:59:79:87:55:CD:4B:A4:07:AE:B6:EB:DD:31:00:26:1E:AA:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EE959798755CD4BA407AEB6EBDD3100261EAA55.cer Subject info access: rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/3130332e3136382e3235312e302f32342d3234203d3e20313432333237.roa Signing time: Sat 02 Sep 2023 13:00:00 +0000 ROA not before: Sat 02 Sep 2023 12:55:00 +0000 ROA not after: Sat 31 Aug 2024 13:00:00 +0000 asID: 142327 IP address blocks: 103.168.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/4EE959798755CD4BA407AEB6EBDD3100261EAA55.crl rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/4EE959798755CD4BA407AEB6EBDD3100261EAA55.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EE959798755CD4BA407AEB6EBDD3100261EAA55.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 16:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:a6:ce:b8:97:0b:89:65:5e:d1:c4:1e:9e:ee:eb:18:be:84:05:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EE959798755CD4BA407AEB6EBDD3100261EAA55 Validity Not Before: Sep 2 12:55:00 2023 GMT Not After : Aug 31 13:00:00 2024 GMT Subject: CN=55E7BD3DEDC8D6AFCF151E4303DA4D82C028B473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c3:cd:f0:f6:d9:72:8f:ff:19:40:47:e4:2e: 03:0f:f7:b9:27:e0:1d:b9:2c:55:e4:37:f8:ae:2c: 31:92:ca:a8:8f:7d:7e:a2:74:47:be:af:f1:25:d9: f5:15:76:fe:4d:fd:fe:ba:65:b7:3b:52:32:92:3a: f5:0c:af:4d:b8:d7:e0:20:f4:1a:06:e8:41:60:9d: f8:4d:c2:b3:f1:2f:56:55:c8:4d:42:b3:d2:6d:c3: 53:09:96:4d:af:a4:21:c1:4c:d0:6e:2c:93:08:3b: d1:29:d0:f5:ea:8f:d9:0a:90:e2:de:b1:35:d5:a5: 33:16:6c:80:75:28:cb:d5:dc:0e:50:24:7d:53:61: fc:6a:90:a2:c1:71:13:94:75:40:21:b6:13:8a:f1: 8d:e4:42:b2:c1:18:79:c1:8f:88:85:cf:37:fb:b7: 7e:dd:1d:6a:d9:53:7a:96:6f:9a:e3:71:4e:19:33: 9c:ca:25:9f:a1:7d:ac:1c:57:0d:c7:e5:62:6c:45: 05:56:06:fa:12:47:07:21:0c:d0:aa:4a:31:93:bb: 98:56:5b:20:90:47:ff:3f:ec:dd:10:9a:a8:b6:98: 30:38:ff:9d:c4:37:dd:5f:46:b7:76:6d:60:94:e6: 01:9b:2e:18:b1:8d:2e:5f:81:37:52:2f:77:28:28: d2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:E7:BD:3D:ED:C8:D6:AF:CF:15:1E:43:03:DA:4D:82:C0:28:B4:73 X509v3 Authority Key Identifier: keyid:4E:E9:59:79:87:55:CD:4B:A4:07:AE:B6:EB:DD:31:00:26:1E:AA:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/4EE959798755CD4BA407AEB6EBDD3100261EAA55.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EE959798755CD4BA407AEB6EBDD3100261EAA55.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/3130332e3136382e3235312e302f32342d3234203d3e20313432333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.251.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:58:d6:8d:a4:18:0d:ec:94:51:cb:ed:30:06:72:46:95:53: 9c:46:50:af:e0:92:c4:4b:c8:be:1d:8f:92:bd:32:4e:20:35: a5:21:a0:a4:b0:66:06:f7:65:f5:91:17:9f:9c:8b:7d:cd:65: ff:79:44:82:ac:1d:2a:d7:d6:5a:ef:38:d9:c5:fe:f2:63:d1: d8:b1:ca:32:15:f1:18:d6:fb:dc:59:6f:d2:82:e2:25:be:2d: bb:46:a0:6b:bc:c4:33:71:8a:5d:43:ac:78:6b:d0:81:ed:bc: 8f:87:2c:c1:0f:4b:0d:5c:17:2f:1d:3b:7b:19:c4:aa:25:d1: 87:57:3f:a3:93:7d:b5:70:09:24:b7:70:25:42:49:8a:79:7b: c5:f7:39:35:a1:35:4f:ac:db:c3:f6:80:cb:57:6d:fd:b3:73: e7:f0:ff:52:51:1e:d3:24:a8:51:5d:d3:b1:72:ff:78:0e:03: ed:06:46:f3:65:e0:b4:e1:5f:8c:e0:b8:6f:b8:9d:93:2c:a8: 60:5a:ae:0a:fa:21:35:a4:bc:02:ac:e7:eb:3a:6a:55:ad:3d: 63:27:eb:bd:cb:7a:df:f9:23:ca:e3:bd:2a:27:19:5d:78:53: 17:5b:2f:6c:a8:ef:36:83:43:5b:ce:84:0f:72:c3:a8:cb:37: f9:43:64:81 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZ6bOuJcLiWVe0cQenu7rGL6EBVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVFOTU5Nzk4NzU1Q0Q0QkE0MDdBRUI2RUJERDMxMDAy NjFFQUE1NTAeFw0yMzA5MDIxMjU1MDBaFw0yNDA4MzExMzAwMDBaMDMxMTAvBgNV BAMTKDU1RTdCRDNERURDOEQ2QUZDRjE1MUU0MzAzREE0RDgyQzAyOEI0NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOw83w9tlyj/8ZQEfkLgMP97kn 4B25LFXkN/iuLDGSyqiPfX6idEe+r/El2fUVdv5N/f66Zbc7UjKSOvUMr0241+Ag 9BoG6EFgnfhNwrPxL1ZVyE1Cs9Jtw1MJlk2vpCHBTNBuLJMIO9Ep0PXqj9kKkOLe sTXVpTMWbIB1KMvV3A5QJH1TYfxqkKLBcROUdUAhthOK8Y3kQrLBGHnBj4iFzzf7 t37dHWrZU3qWb5rjcU4ZM5zKJZ+hfawcVw3H5WJsRQVWBvoSRwchDNCqSjGTu5hW WyCQR/8/7N0Qmqi2mDA4/53EN91fRrd2bWCU5gGbLhixjS5fgTdSL3coKNL/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVee9Pe3I1q/PFR5DA9pNgsAotHMwHwYDVR0j BBgwFoAUTulZeYdVzUukB662690xACYeqlUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzhkNTgwYi00NTJlLTQyZDctYjA0MS05MDFkYzMzZDY4NTcvMC80RUU5NTk3OTg3 NTVDRDRCQTQwN0FFQjZFQkREMzEwMDI2MUVBQTU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVFOTU5Nzk4NzU1Q0Q0QkE0MDdBRUI2RUJERDMxMDAyNjFF QUE1NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzOGQ1ODBiLTQ1MmUtNDJkNy1i MDQxLTkwMWRjMzNkNjg1Ny8wLzMxMzAzMzJlMzEzNjM4MmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqPswDQYJ KoZIhvcNAQELBQADggEBAJ1Y1o2kGA3slFHL7TAGckaVU5xGUK/gksRLyL4dj5K9 Mk4gNaUhoKSwZgb3ZfWRF5+ci33NZf95RIKsHSrX1lrvONnF/vJj0dixyjIV8RjW +9xZb9KC4iW+LbtGoGu8xDNxil1DrHhr0IHtvI+HLMEPSw1cFy8dO3sZxKol0YdX P6OTfbVwCSS3cCVCSYp5e8X3OTWhNU+s28P2gMtXbf2zc+fw/1JRHtMkqFFd07Fy /3gOA+0GRvNl4LThX4zguG+4nZMsqGBargr6ITWkvAKs5+s6alWtPWMn673Let/5 I8rjvSonGV14UxdbL2yo7zaDQ1vOhA9yw6jLN/lDZIE= -----END CERTIFICATE-----Generated at Fri May 31 15:07:25 2024 by rpki-client on console-fra.rpki-client.org