$ rpki-client -vvf repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa File: 3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa (raw, json) Hash identifier: VZep5SMLlhmK4fCJQVZwVXTZa74wijq/UOE4w+1JN4E= Subject key identifier: E4:4B:86:71:17:64:EF:27:FC:09:44:9C:23:C2:5D:ED:85:20:52:4A Certificate issuer: /CN=356EA38801BC51EF3EDB8730387F8EDEBD11898F Certificate serial: 13826B62A0CC4E24CBEBD2AB619D5E996B52D205 Authority key identifier: 35:6E:A3:88:01:BC:51:EF:3E:DB:87:30:38:7F:8E:DE:BD:11:89:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/356EA38801BC51EF3EDB8730387F8EDEBD11898F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa Signing time: Thu 14 Sep 2023 04:01:21 +0000 ROA not before: Thu 14 Sep 2023 03:56:21 +0000 ROA not after: Thu 12 Sep 2024 04:01:21 +0000 asID: 58404 IP address blocks: 103.102.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/356EA38801BC51EF3EDB8730387F8EDEBD11898F.crl rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/356EA38801BC51EF3EDB8730387F8EDEBD11898F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/356EA38801BC51EF3EDB8730387F8EDEBD11898F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:82:6b:62:a0:cc:4e:24:cb:eb:d2:ab:61:9d:5e:99:6b:52:d2:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=356EA38801BC51EF3EDB8730387F8EDEBD11898F Validity Not Before: Sep 14 03:56:21 2023 GMT Not After : Sep 12 04:01:21 2024 GMT Subject: CN=E44B86711764EF27FC09449C23C25DED8520524A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:5c:68:2f:7d:5f:5b:78:1d:6e:36:83:cc: b3:40:cb:c2:f3:a7:56:7f:16:a9:d5:1e:67:55:f7: 98:38:69:b2:ae:94:40:8e:5d:a1:4a:12:ca:75:b9: 89:b3:9d:04:d2:b3:98:80:52:8c:12:ad:5e:ee:68: ee:04:36:96:9b:41:f4:98:f4:82:e6:f3:09:2a:f1: 24:4f:c3:cf:45:d0:06:f5:32:0f:c8:63:a9:ed:87: 7a:85:c7:0a:a1:d2:a3:be:f0:83:0e:f1:a7:57:fa: 4d:24:bd:ee:1e:79:db:2d:4d:62:0b:c0:55:4a:9d: 47:40:0f:2f:16:38:6b:5b:fa:c5:b9:4a:38:2a:44: 0a:b3:af:33:b2:02:78:9f:22:e1:c4:76:83:0f:1f: d5:cd:a0:1f:9b:36:9e:0a:d8:f7:fa:6a:bc:7e:73: 3e:4a:85:df:f6:3b:17:d7:0b:19:b4:40:fa:50:e0: 9e:65:c6:77:94:f1:da:54:51:f0:20:0d:ed:f8:ac: 51:69:41:42:8c:40:b3:25:d0:f1:46:8f:a6:34:86: c3:72:4d:67:69:67:32:64:38:ef:1d:06:59:41:e7: a1:27:4c:c7:0d:be:ac:21:f4:cc:95:8b:93:76:06: a2:14:72:41:43:7e:9e:80:4a:a7:67:76:da:e2:42: 3d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:4B:86:71:17:64:EF:27:FC:09:44:9C:23:C2:5D:ED:85:20:52:4A X509v3 Authority Key Identifier: keyid:35:6E:A3:88:01:BC:51:EF:3E:DB:87:30:38:7F:8E:DE:BD:11:89:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/356EA38801BC51EF3EDB8730387F8EDEBD11898F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/356EA38801BC51EF3EDB8730387F8EDEBD11898F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.152.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:f9:39:a5:1f:2b:ec:a2:91:bf:1e:89:bf:91:61:48:4e:cf: 68:4d:c1:4f:cd:06:e0:2f:94:10:3d:fc:36:a4:3e:e8:a9:c8: f0:a2:aa:bd:05:be:2d:2c:fb:34:34:89:45:51:bc:3e:be:a5: 72:7e:67:5b:61:e2:69:12:b2:0f:e6:9e:2b:0d:34:4f:e7:f5: d4:42:72:fc:6c:36:76:73:1e:37:fd:f1:cc:61:cc:9d:0c:20: 46:43:9e:3a:dd:28:63:68:20:ad:db:c9:b1:81:f4:d6:51:32: 95:72:1a:67:86:bd:37:3c:0c:fe:07:1c:f8:67:02:d4:02:3e: 46:f8:aa:7d:8f:f8:4b:47:41:f2:21:b9:ea:be:7e:f1:a4:fb: ef:f1:a5:6b:f4:a9:8c:d4:da:d8:f6:09:0e:49:31:b9:29:2e: da:f4:be:fe:39:28:d5:07:42:59:60:e1:94:93:7f:94:c9:56: e9:0e:4c:a1:5e:ca:48:b7:7d:af:53:8e:cd:92:62:31:73:59: a9:9c:c9:61:1c:d6:81:5d:17:dd:c1:e2:66:3a:86:cd:58:0f: 3d:3c:4c:b3:07:0f:7e:dd:91:a0:ec:29:d1:3f:6f:f9:5d:33: 5f:01:89:3d:49:33:6a:1c:58:07:e1:12:0a:c5:08:d3:e1:2d: c7:d6:3b:08 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE4JrYqDMTiTL69KrYZ1emWtS0gUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2RUEzODgwMUJDNTFFRjNFREI4NzMwMzg3RjhFREVC RDExODk4RjAeFw0yMzA5MTQwMzU2MjFaFw0yNDA5MTIwNDAxMjFaMDMxMTAvBgNV BAMTKEU0NEI4NjcxMTc2NEVGMjdGQzA5NDQ5QzIzQzI1REVEODUyMDUyNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKblxoL31fW3gdbjaDzLNAy8Lz p1Z/FqnVHmdV95g4abKulECOXaFKEsp1uYmznQTSs5iAUowSrV7uaO4ENpabQfSY 9ILm8wkq8SRPw89F0Ab1Mg/IY6nth3qFxwqh0qO+8IMO8adX+k0kve4eedstTWIL wFVKnUdADy8WOGtb+sW5SjgqRAqzrzOyAnifIuHEdoMPH9XNoB+bNp4K2Pf6arx+ cz5Khd/2OxfXCxm0QPpQ4J5lxneU8dpUUfAgDe34rFFpQUKMQLMl0PFGj6Y0hsNy TWdpZzJkOO8dBllB56EnTMcNvqwh9MyVi5N2BqIUckFDfp6ASqdndtriQj1BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5EuGcRdk7yf8CUScI8Jd7YUgUkowHwYDVR0j BBgwFoAUNW6jiAG8Ue8+24cwOH+O3r0RiY8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjJiNmVkMi1jYzU4LTQ1YzUtYmQ4OC1jYjk1NTA3MTZhMDQvMC8zNTZFQTM4ODAx QkM1MUVGM0VEQjg3MzAzODdGOEVERUJEMTE4OThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2RUEzODgwMUJDNTFFRjNFREI4NzMwMzg3RjhFREVCRDEx ODk4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMmI2ZWQyLWNjNTgtNDVjNS1i ZDg4LWNiOTU1MDcxNmEwNC8wLzMxMzAzMzJlMzEzMDMyMmUzMTM1MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM4MzQzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2aYMA0GCSqG SIb3DQEBCwUAA4IBAQBs+TmlHyvsopG/Hom/kWFITs9oTcFPzQbgL5QQPfw2pD7o qcjwoqq9Bb4tLPs0NIlFUbw+vqVyfmdbYeJpErIP5p4rDTRP5/XUQnL8bDZ2cx43 /fHMYcydDCBGQ5463ShjaCCt28mxgfTWUTKVchpnhr03PAz+Bxz4ZwLUAj5G+Kp9 j/hLR0HyIbnqvn7xpPvv8aVr9KmM1NrY9gkOSTG5KS7a9L7+OSjVB0JZYOGUk3+U yVbpDkyhXspIt32vU47NkmIxc1mpnMlhHNaBXRfdweJmOobNWA89PEyzBw9+3ZGg 7CnRP2/5XTNfAYk9STNqHFgH4RIKxQjT4S3H1jsI -----END CERTIFICATE-----Generated at Thu Apr 25 06:16:24 2024 by rpki-client on console-ams.rpki-client.org