$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa File: 3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa (raw, json) Hash identifier: nz2AEU8nn9AMM02S13QC6wiAWu/J78Mx5UkS49jdfKk= Subject key identifier: 0D:DB:B3:CA:D4:0E:3E:98:F8:BD:21:82:18:CF:AB:76:0F:C7:42:EA Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 405AB84FC653234CB1B34CD15EEF411A760D93E6 Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa Signing time: Sat 28 Oct 2023 20:23:09 +0000 ROA not before: Sat 28 Oct 2023 20:18:09 +0000 ROA not after: Sat 26 Oct 2024 20:23:09 +0000 asID: 139438 IP address blocks: 103.145.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 10:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:5a:b8:4f:c6:53:23:4c:b1:b3:4c:d1:5e:ef:41:1a:76:0d:93:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Oct 28 20:18:09 2023 GMT Not After : Oct 26 20:23:09 2024 GMT Subject: CN=0DDBB3CAD40E3E98F8BD218218CFAB760FC742EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:d9:06:27:cf:fc:c9:6e:d2:12:c7:8b:8d:dd: 48:ae:31:a2:f1:79:ef:73:53:bb:e2:0f:75:0e:d4: c0:fa:74:91:a8:db:4d:c7:cd:89:09:b4:c2:31:8e: ec:34:f3:db:67:59:33:96:f5:11:ab:43:30:28:39: 60:19:c5:69:72:15:00:32:a8:63:8f:05:e6:d4:f1: d6:35:f1:a1:e9:53:d9:cf:4e:d9:db:b7:c9:b3:cc: 1a:87:40:ae:e7:7f:ab:c8:3a:f5:07:e4:87:5c:a5: b5:4d:46:a7:e3:a9:5a:ca:02:7c:08:d4:34:94:e2: aa:a0:2d:d1:d1:11:9d:e2:7e:c5:e6:c6:c4:f4:f9: 97:00:1f:a8:f4:f4:cc:18:47:c9:0c:e0:58:d6:b9: 79:71:0d:f6:c4:35:8f:92:52:b6:60:a6:b2:da:a6: bf:91:bb:0d:96:47:4e:d5:9c:c1:12:74:32:4e:83: 97:7b:30:45:66:11:94:6c:a7:19:48:72:d9:b0:14: 48:34:d9:62:ec:a6:1b:73:78:34:7f:90:d2:d9:de: ae:ae:22:73:42:fa:e4:9d:99:9a:07:25:9e:37:e1: b6:5f:ee:17:b1:1f:1a:08:0e:90:fd:95:dd:2d:f6: cc:81:2a:73:57:e1:89:f5:a1:75:80:84:be:67:c7: a2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:DB:B3:CA:D4:0E:3E:98:F8:BD:21:82:18:CF:AB:76:0F:C7:42:EA X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.14.0/24 Signature Algorithm: sha256WithRSAEncryption 99:36:87:c8:cb:81:d3:51:e4:cc:bd:a1:a0:54:0e:07:ec:1a: 13:aa:79:e4:76:b8:57:59:66:7e:16:82:9b:3b:d8:64:05:2d: 75:0b:a6:64:80:ea:f5:b4:1a:83:0a:36:b7:95:36:96:b2:a9: dd:be:ce:bd:dd:83:56:11:86:0c:10:12:b0:89:cb:75:57:99: 79:d2:f7:67:e9:77:68:8e:a1:35:67:90:a0:1c:2f:b3:be:8f: 72:77:76:7c:1d:37:5c:a9:99:8e:33:95:2e:41:d5:94:49:40: bc:ef:2d:f9:db:4a:ab:46:6e:ae:3e:19:44:da:05:3f:2b:cc: 98:39:f3:7a:67:c3:bd:7a:28:82:e2:f3:d9:00:c6:1b:cf:04: 42:ad:77:75:c9:50:b3:be:dd:48:be:2b:1a:90:fa:ac:2c:61: 58:4b:3c:35:b5:b0:6b:0f:06:51:f9:95:9e:4d:bc:16:75:b5: 96:df:49:d3:10:62:a8:d4:f2:94:6d:09:57:35:e5:be:f2:08: 58:f8:df:67:3e:42:63:b0:11:25:bb:03:07:90:50:22:54:d1: e2:c9:4e:1e:2d:15:b4:82:5f:b4:cf:cf:d9:86:45:e3:25:7f: 09:1d:27:e1:54:50:87:0b:3e:4c:a1:d7:2c:bf:a2:f8:92:06: 4e:61:42:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQFq4T8ZTI0yxs0zRXu9BGnYNk+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yMzEwMjgyMDE4MDlaFw0yNDEwMjYyMDIzMDlaMDMxMTAvBgNV BAMTKDBEREJCM0NBRDQwRTNFOThGOEJEMjE4MjE4Q0ZBQjc2MEZDNzQyRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDx2QYnz/zJbtISx4uN3UiuMaLx ee9zU7viD3UO1MD6dJGo203HzYkJtMIxjuw089tnWTOW9RGrQzAoOWAZxWlyFQAy qGOPBebU8dY18aHpU9nPTtnbt8mzzBqHQK7nf6vIOvUH5IdcpbVNRqfjqVrKAnwI 1DSU4qqgLdHREZ3ifsXmxsT0+ZcAH6j09MwYR8kM4FjWuXlxDfbENY+SUrZgprLa pr+Ruw2WR07VnMESdDJOg5d7MEVmEZRspxlIctmwFEg02WLsphtzeDR/kNLZ3q6u InNC+uSdmZoHJZ434bZf7hexHxoIDpD9ld0t9syBKnNX4Yn1oXWAhL5nx6JtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDduzytQOPpj4vSGCGM+rdg/HQuowHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMDQyMzNmLWJiMmMtNDdkNy05 MDFjLWUzYzgyZjhkNDIzYy8wLzMxMzAzMzJlMzEzNDM1MmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5EOMA0GCSqG SIb3DQEBCwUAA4IBAQCZNofIy4HTUeTMvaGgVA4H7BoTqnnkdrhXWWZ+FoKbO9hk BS11C6ZkgOr1tBqDCja3lTaWsqndvs693YNWEYYMEBKwict1V5l50vdn6XdojqE1 Z5CgHC+zvo9yd3Z8HTdcqZmOM5UuQdWUSUC87y3520qrRm6uPhlE2gU/K8yYOfN6 Z8O9eiiC4vPZAMYbzwRCrXd1yVCzvt1IvisakPqsLGFYSzw1tbBrDwZR+ZWeTbwW dbWW30nTEGKo1PKUbQlXNeW+8ghY+N9nPkJjsBEluwMHkFAiVNHiyU4eLRW0gl+0 z8/ZhkXjJX8JHSfhVFCHCz5Modcsv6L4kgZOYUKS -----END CERTIFICATE-----Generated at Sun May 5 12:23:53 2024 by rpki-client on console-fra.rpki-client.org