$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa File: 3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa (raw, json) Hash identifier: /4S8d6m7jX0GR4TalIVSPa6sqOSraNgZKAKOG7IlQ1U= Subject key identifier: 83:5C:26:CA:68:EB:99:A0:CA:CD:A2:C5:E3:5C:34:56:23:35:34:B5 Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 667BF8B472DAF9CF92286D277A91578DB44429C0 Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa Signing time: Sat 28 Oct 2023 20:23:22 +0000 ROA not before: Sat 28 Oct 2023 20:18:22 +0000 ROA not after: Sat 26 Oct 2024 20:23:22 +0000 asID: 139438 IP address blocks: 103.145.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 10:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:7b:f8:b4:72:da:f9:cf:92:28:6d:27:7a:91:57:8d:b4:44:29:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Oct 28 20:18:22 2023 GMT Not After : Oct 26 20:23:22 2024 GMT Subject: CN=835C26CA68EB99A0CACDA2C5E35C3456233534B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a6:b2:ff:f1:5a:c2:8f:55:6b:aa:bd:5a:fa: 65:c7:bd:f7:e7:48:5f:e6:e6:ff:56:6c:d3:48:37: bc:95:fe:26:7b:11:89:21:89:b5:30:af:49:82:68: 29:2d:cf:d4:3b:e2:df:e0:26:1d:4b:d7:0e:f1:e0: ca:ad:f6:23:3d:fd:8e:b5:fb:d3:21:32:7e:f0:bc: cc:bc:6f:e5:86:65:b2:fc:57:42:b5:5c:6b:38:47: 00:6f:18:41:c5:26:d6:be:6d:98:a2:99:4d:4c:6f: 61:f1:8e:23:bd:bd:26:e6:75:a3:33:3f:d5:1a:8e: e8:dd:8b:80:1a:29:5c:71:8a:ab:59:a7:ad:45:55: 9c:f3:1a:d6:dc:49:4f:56:d8:2d:f8:a2:4f:9b:8e: df:8e:f6:16:f8:39:99:b4:a2:00:53:d0:47:3d:c5: 3a:26:79:58:7a:97:e5:55:fb:5d:22:5c:13:6d:20: a6:55:80:2b:57:3a:6d:ea:94:d1:94:93:bf:f4:42: 66:92:8b:19:25:61:d5:6b:30:58:20:e2:37:51:88: ee:4d:32:9f:47:47:14:1c:7f:57:99:bb:df:cc:4f: 2e:2f:91:30:88:ca:91:10:20:71:03:e1:22:23:23: 07:9b:b2:22:dd:04:f1:72:bc:1d:ea:2d:f8:48:e2: a9:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:5C:26:CA:68:EB:99:A0:CA:CD:A2:C5:E3:5C:34:56:23:35:34:B5 X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.15.0/24 Signature Algorithm: sha256WithRSAEncryption a6:73:6d:09:02:c9:13:95:af:18:50:67:83:57:67:e3:3e:f6: 98:27:63:fd:1e:69:4b:b5:fb:4e:45:a5:85:28:ca:c5:05:29: 48:8f:72:17:e6:70:8f:80:97:3a:cb:f3:8b:e8:15:aa:f2:87: 02:34:21:db:51:7e:99:fa:82:86:48:9d:31:d4:eb:92:60:b6: 51:e5:51:73:f6:17:a9:8c:53:00:e8:d7:38:a6:ab:6c:15:14: 5e:12:eb:85:ec:5c:d2:23:f7:3c:a1:6b:50:0a:42:d0:46:c3: 8f:1c:20:66:d4:f4:0b:45:c6:7b:0f:b0:14:40:2d:48:a1:1e: 30:c3:71:b8:24:c6:f1:24:c0:21:bc:b2:39:7f:ca:61:67:6e: 6d:e2:93:d0:21:63:f0:a3:d9:40:32:af:e9:e5:27:d5:2c:9a: ef:e1:de:6e:29:05:cb:92:c7:59:e8:e4:5a:da:6b:95:eb:64: 10:79:d8:70:1f:c2:70:c4:68:e1:98:92:23:0b:44:14:79:92: 09:cf:d3:fe:ac:2e:8d:37:e9:cc:fb:a6:1a:bc:d9:25:fa:09: 37:bf:19:d1:29:e2:9c:fe:e7:20:6c:25:ec:c6:07:72:b2:e1: 9a:d7:f9:df:ae:21:84:b2:90:5d:ff:62:84:33:55:82:83:ed: cd:fb:19:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZnv4tHLa+c+SKG0nepFXjbREKcAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yMzEwMjgyMDE4MjJaFw0yNDEwMjYyMDIzMjJaMDMxMTAvBgNV BAMTKDgzNUMyNkNBNjhFQjk5QTBDQUNEQTJDNUUzNUMzNDU2MjMzNTM0QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJprL/8VrCj1Vrqr1a+mXHvffn SF/m5v9WbNNIN7yV/iZ7EYkhibUwr0mCaCktz9Q74t/gJh1L1w7x4Mqt9iM9/Y61 +9MhMn7wvMy8b+WGZbL8V0K1XGs4RwBvGEHFJta+bZiimU1Mb2HxjiO9vSbmdaMz P9Uajujdi4AaKVxxiqtZp61FVZzzGtbcSU9W2C34ok+bjt+O9hb4OZm0ogBT0Ec9 xTomeVh6l+VV+10iXBNtIKZVgCtXOm3qlNGUk7/0QmaSixklYdVrMFgg4jdRiO5N Mp9HRxQcf1eZu9/MTy4vkTCIypEQIHED4SIjIwebsiLdBPFyvB3qLfhI4qnrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUg1wmymjrmaDKzaLF41w0ViM1NLUwHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMDQyMzNmLWJiMmMtNDdkNy05 MDFjLWUzYzgyZjhkNDIzYy8wLzMxMzAzMzJlMzEzNDM1MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5EPMA0GCSqG SIb3DQEBCwUAA4IBAQCmc20JAskTla8YUGeDV2fjPvaYJ2P9HmlLtftORaWFKMrF BSlIj3IX5nCPgJc6y/OL6BWq8ocCNCHbUX6Z+oKGSJ0x1OuSYLZR5VFz9hepjFMA 6Nc4pqtsFRReEuuF7FzSI/c8oWtQCkLQRsOPHCBm1PQLRcZ7D7AUQC1IoR4ww3G4 JMbxJMAhvLI5f8phZ25t4pPQIWPwo9lAMq/p5SfVLJrv4d5uKQXLksdZ6ORa2muV 62QQedhwH8JwxGjhmJIjC0QUeZIJz9P+rC6NN+nM+6YavNkl+gk3vxnRKeKc/ucg bCXsxgdysuGa1/nfriGEspBd/2KEM1WCg+3N+xnX -----END CERTIFICATE-----Generated at Sun May 5 12:23:53 2024 by rpki-client on console-fra.rpki-client.org