$ rpki-client -vvf repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135332e302f32342d3234203d3e203338353234.roa File: 3130332e3139312e3135332e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: zQTqa3o+Jt4G9fvs0yn3INjU14dWTxAnBreoxOTzEEI= Subject key identifier: 6F:A7:89:4F:A8:44:07:B6:30:81:96:05:4C:82:D7:C9:CD:E1:55:4F Certificate issuer: /CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Certificate serial: 629C554C3357A469D93BA06DE9B4094789442DC8 Authority key identifier: 28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135332e302f32342d3234203d3e203338353234.roa Signing time: Tue 25 Jul 2023 11:00:00 +0000 ROA not before: Tue 25 Jul 2023 10:55:00 +0000 ROA not after: Tue 23 Jul 2024 11:00:00 +0000 asID: 38524 IP address blocks: 103.191.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 11:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:9c:55:4c:33:57:a4:69:d9:3b:a0:6d:e9:b4:09:47:89:44:2d:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Validity Not Before: Jul 25 10:55:00 2023 GMT Not After : Jul 23 11:00:00 2024 GMT Subject: CN=6FA7894FA84407B6308196054C82D7C9CDE1554F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:12:d3:4b:7f:97:34:e0:1d:4e:bf:27:00:d3: 80:71:31:cb:2a:35:a8:39:54:a5:b2:c0:19:0a:04: 93:ed:60:b4:59:76:57:97:15:87:9a:17:21:de:1b: 5c:d6:9a:0d:f8:87:61:58:43:ea:da:bd:b8:fc:a8: e1:84:ab:5a:8e:fd:2c:be:bc:41:9e:ee:5f:d8:5d: dd:9c:b3:3e:7a:1b:9b:c4:eb:35:26:95:6b:a6:dd: bb:fc:fd:3e:c0:a9:24:cd:33:97:27:f2:d8:55:78: ee:29:3f:41:7f:41:78:bc:f1:aa:f9:76:10:72:2f: e5:ee:11:20:e7:34:80:10:b7:a7:ce:20:de:35:27: a4:05:62:ee:4a:58:4b:d6:91:30:a5:1d:2c:bc:4e: 71:02:c1:5c:75:26:8d:c7:fc:ef:78:75:16:22:9c: e2:08:38:95:5e:c8:93:cf:96:d5:f9:17:d7:e9:05: 28:7e:b7:50:37:36:42:a6:53:2b:f2:51:27:61:5f: af:16:1b:fb:ff:df:52:f9:da:bb:52:25:52:13:72: c1:c6:f6:72:03:7b:ec:a9:8d:8d:97:3b:d6:c7:4c: c9:3c:39:e5:80:a8:46:13:79:13:c1:9d:a3:da:cb: 45:df:93:78:6c:7f:9f:42:58:d9:69:2b:2a:13:ad: f9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:A7:89:4F:A8:44:07:B6:30:81:96:05:4C:82:D7:C9:CD:E1:55:4F X509v3 Authority Key Identifier: keyid:28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135332e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.153.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:9d:2c:f9:4c:e6:63:a6:3e:6b:cf:09:b7:19:4e:1c:39:13: fb:8e:92:ce:1f:c6:19:31:95:6c:47:9c:7e:59:54:1e:37:87: be:4c:1a:69:59:35:32:82:88:15:de:d9:18:90:43:8d:78:3e: e6:3f:f1:85:be:49:32:bd:54:bf:13:42:fc:f0:83:73:59:ba: 72:11:22:2e:9a:29:ef:a2:0c:ee:7c:9c:cb:fa:fb:7b:d2:67: f9:8e:56:74:17:f8:6c:55:d0:f0:5a:62:c9:3e:2e:22:82:e9: c8:06:63:34:83:bc:93:e1:d8:e5:95:fc:8e:7b:9f:38:60:89: 7b:8b:cc:a1:df:ec:3d:9f:54:f2:d0:fc:d8:65:d3:6a:91:c2: 18:d4:19:0f:f3:61:6d:bb:ec:e3:50:bf:f7:e6:c0:08:99:8c: c6:70:4d:a6:63:47:26:69:d8:40:c0:0c:20:80:d4:18:1d:a0: 5e:a5:93:0d:29:e8:a8:61:ce:9f:cb:63:27:d5:0c:61:f2:f2: 7f:54:33:e0:71:14:a3:d7:7d:ed:61:42:52:41:96:c8:7c:a8: 52:d5:8a:ec:9b:27:66:30:50:51:97:e7:50:29:7c:32:b8:81: a1:3d:5f:d7:30:2f:2e:84:32:54:91:13:14:0b:f1:f9:02:a2: dd:8a:fe:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYpxVTDNXpGnZO6Bt6bQJR4lELcgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0 MzFGMEY0NzAeFw0yMzA3MjUxMDU1MDBaFw0yNDA3MjMxMTAwMDBaMDMxMTAvBgNV BAMTKDZGQTc4OTRGQTg0NDA3QjYzMDgxOTYwNTRDODJEN0M5Q0RFMTU1NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmEtNLf5c04B1OvycA04BxMcsq Nag5VKWywBkKBJPtYLRZdleXFYeaFyHeG1zWmg34h2FYQ+ravbj8qOGEq1qO/Sy+ vEGe7l/YXd2csz56G5vE6zUmlWum3bv8/T7AqSTNM5cn8thVeO4pP0F/QXi88ar5 dhByL+XuESDnNIAQt6fOIN41J6QFYu5KWEvWkTClHSy8TnECwVx1Jo3H/O94dRYi nOIIOJVeyJPPltX5F9fpBSh+t1A3NkKmUyvyUSdhX68WG/v/31L52rtSJVITcsHG 9nIDe+ypjY2XO9bHTMk8OeWAqEYTeRPBnaPay0Xfk3hsf59CWNlpKyoTrflXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUb6eJT6hEB7YwgZYFTILXyc3hVU8wHwYDVR0j BBgwFoAUKKv4UipDz3zHJXkFpbo+UEMfD0cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmE2Y2ExMi1iMjg3LTRhYzctODdiOC02Y2Q3MzM1M2U2N2YvMC8yOEFCRjg1MjJB NDNDRjdDQzcyNTc5MDVBNUJBM0U1MDQzMUYwRjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0MzFG MEY0Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2YTZjYTEyLWIyODctNGFjNy04 N2I4LTZjZDczMzUzZTY3Zi8wLzMxMzAzMzJlMzEzOTMxMmUzMTM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7+ZMA0GCSqG SIb3DQEBCwUAA4IBAQALnSz5TOZjpj5rzwm3GU4cORP7jpLOH8YZMZVsR5x+WVQe N4e+TBppWTUygogV3tkYkEONeD7mP/GFvkkyvVS/E0L88INzWbpyESIuminvogzu fJzL+vt70mf5jlZ0F/hsVdDwWmLJPi4igunIBmM0g7yT4djllfyOe584YIl7i8yh 3+w9n1Ty0PzYZdNqkcIY1BkP82Ftu+zjUL/35sAImYzGcE2mY0cmadhAwAwggNQY HaBepZMNKeioYc6fy2Mn1Qxh8vJ/VDPgcRSj133tYUJSQZbIfKhS1YrsmydmMFBR l+dQKXwyuIGhPV/XMC8uhDJUkRMUC/H5AqLdiv7u -----END CERTIFICATE-----Generated at Wed May 1 05:56:37 2024 by rpki-client on console-fra.rpki-client.org