$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32342d3234203d3e20313430343133.roa File: 3130332e3135312e33342e302f32342d3234203d3e20313430343133.roa (raw, json) Hash identifier: DTZijHS7CUFPRZxJ52ARJUww45EKWA+UZuShQ0kr70s= Subject key identifier: 11:DA:86:D5:3A:0B:FB:28:38:95:CF:1C:FA:4E:F6:52:52:B5:3A:68 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 58CED9488839EECD41C3102CA6A7952FFF2B0A26 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32342d3234203d3e20313430343133.roa Signing time: Mon 06 Nov 2023 07:00:01 +0000 ROA not before: Mon 06 Nov 2023 06:55:01 +0000 ROA not after: Mon 04 Nov 2024 07:00:01 +0000 asID: 140413 IP address blocks: 103.151.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 22:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:ce:d9:48:88:39:ee:cd:41:c3:10:2c:a6:a7:95:2f:ff:2b:0a:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Nov 6 06:55:01 2023 GMT Not After : Nov 4 07:00:01 2024 GMT Subject: CN=11DA86D53A0BFB283895CF1CFA4EF65252B53A68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:24:af:79:30:ef:9b:60:49:16:d5:21:5a:0d: 0e:1a:44:d6:4f:ed:cd:41:62:56:b6:3e:af:81:25: ac:41:8a:08:d8:96:6f:c4:3a:9f:6a:f6:36:88:62: f5:8a:d9:b7:8b:ad:19:c9:1a:2a:8b:30:ff:c3:4a: 49:77:b9:6a:c3:80:1e:35:45:06:94:a5:e7:4c:54: 16:3d:70:91:a2:33:9f:f4:57:f7:b1:ac:cd:28:21: b6:5d:61:bb:32:e7:89:31:57:e1:f2:0b:aa:10:c5: 5d:85:fe:2b:c5:f2:f2:64:48:71:90:92:34:df:61: 25:0f:71:b7:d4:48:ba:c4:86:b7:06:5a:aa:87:b9: a3:39:52:6e:e8:44:f7:be:40:b7:dd:2c:e8:b3:46: 70:a2:b5:43:98:e4:ab:45:77:10:07:f1:b6:57:3f: 9e:b4:a0:7b:41:1b:d0:08:a4:c6:a4:b0:d9:a6:09: 4f:5e:90:1a:f3:25:97:98:c4:2b:d2:cc:84:cf:87: dd:df:4d:db:35:a1:08:be:2d:92:d3:8b:1f:f3:03: 41:ab:4e:a4:d6:a5:1a:7f:63:6b:e2:7c:f9:cd:3f: 0e:e3:51:25:75:f2:20:5c:17:df:b5:b0:82:14:c0: 67:b5:ad:15:b2:a0:5d:aa:7e:b2:50:8b:44:dc:33: 27:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DA:86:D5:3A:0B:FB:28:38:95:CF:1C:FA:4E:F6:52:52:B5:3A:68 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32342d3234203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.34.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:1e:86:78:52:49:0e:7d:bb:08:60:41:d9:8f:48:8a:9d:56: d5:ce:e3:77:fd:b0:c2:51:ce:f7:14:a1:3d:35:8c:3e:49:8b: a7:5f:90:44:7c:50:2e:d7:d6:de:c9:a6:68:85:15:e7:bf:40: 7d:0d:c0:57:5e:22:a6:39:1e:3d:c1:f9:6f:42:21:25:f6:ba: de:5c:77:e6:f9:56:de:74:5c:8d:61:5e:80:5a:46:a8:8f:14: a4:f0:0f:7e:62:94:4d:28:49:b8:6e:d0:56:22:67:14:c7:ab: ce:2b:76:be:68:92:f2:97:9f:4f:f2:14:f0:64:3c:aa:cf:f5: 05:ef:15:04:57:55:93:e6:bd:4c:a3:4b:19:4d:b5:14:83:d0: e4:cd:87:b3:a9:e5:ae:1d:16:42:03:7c:6f:3f:92:92:93:0d: c6:56:e6:1d:56:29:1e:45:b1:29:dc:3a:79:f1:4f:85:c5:d0: bb:0a:78:53:aa:1a:d7:78:07:f3:ac:30:3e:4c:46:d2:09:30: d2:33:6a:da:b8:8b:49:45:d8:ae:07:09:a8:af:76:cf:7a:26: ec:68:7d:71:03:a2:93:12:f9:bc:28:09:31:d6:99:bb:a5:7c: 16:0e:ec:4c:de:6b:83:4f:c3:c0:1b:40:18:c3:32:20:ad:3d: 8c:b9:98:b6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWM7ZSIg57s1BwxAspqeVL/8rCiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yMzExMDYwNjU1MDFaFw0yNDExMDQwNzAwMDFaMDMxMTAvBgNV BAMTKDExREE4NkQ1M0EwQkZCMjgzODk1Q0YxQ0ZBNEVGNjUyNTJCNTNBNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxJK95MO+bYEkW1SFaDQ4aRNZP 7c1BYla2Pq+BJaxBigjYlm/EOp9q9jaIYvWK2beLrRnJGiqLMP/DSkl3uWrDgB41 RQaUpedMVBY9cJGiM5/0V/exrM0oIbZdYbsy54kxV+HyC6oQxV2F/ivF8vJkSHGQ kjTfYSUPcbfUSLrEhrcGWqqHuaM5Um7oRPe+QLfdLOizRnCitUOY5KtFdxAH8bZX P560oHtBG9AIpMaksNmmCU9ekBrzJZeYxCvSzITPh93fTds1oQi+LZLTix/zA0Gr TqTWpRp/Y2vifPnNPw7jUSV18iBcF9+1sIIUwGe1rRWyoF2qfrJQi0TcMyepAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEdqG1ToL+yg4lc8c+k72UlK1OmgwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMxMzAzMzJlMzEzNTMxMmUzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5ciMA0GCSqG SIb3DQEBCwUAA4IBAQB9HoZ4UkkOfbsIYEHZj0iKnVbVzuN3/bDCUc73FKE9NYw+ SYunX5BEfFAu19beyaZohRXnv0B9DcBXXiKmOR49wflvQiEl9rreXHfm+VbedFyN YV6AWkaojxSk8A9+YpRNKEm4btBWImcUx6vOK3a+aJLyl59P8hTwZDyqz/UF7xUE V1WT5r1Mo0sZTbUUg9DkzYezqeWuHRZCA3xvP5KSkw3GVuYdVikeRbEp3Dp58U+F xdC7CnhTqhrXeAfzrDA+TEbSCTDSM2rauItJRdiuBwmor3bPeibsaH1xA6KTEvm8 KAkx1pm7pXwWDuxM3muDT8PAG0AYwzIgrT2MuZi2 -----END CERTIFICATE-----Generated at Thu May 2 01:04:45 2024 by rpki-client on console-fra.rpki-client.org