$ rpki-client -vvf repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36342e302f32332d3233203d3e20313431363231.roa File: 3130332e3135352e36342e302f32332d3233203d3e20313431363231.roa (raw, json) Hash identifier: YvSvjfq8o0bigOZfvUNJ2D3voDf15u1xc2Aql4iqASU= Subject key identifier: C3:40:91:53:AB:ED:E5:FA:83:CD:94:4E:AF:6F:14:1C:48:96:8F:F2 Certificate issuer: /CN=571E2EFA23FEA611810611410635E23A090F4550 Certificate serial: 274CD8534571B02D962059879A29E0CC312FE3B6 Authority key identifier: 57:1E:2E:FA:23:FE:A6:11:81:06:11:41:06:35:E2:3A:09:0F:45:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36342e302f32332d3233203d3e20313431363231.roa Signing time: Thu 20 Jul 2023 03:00:02 +0000 ROA not before: Thu 20 Jul 2023 02:55:02 +0000 ROA not after: Thu 18 Jul 2024 03:00:02 +0000 asID: 141621 IP address blocks: 103.155.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.crl rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:4c:d8:53:45:71:b0:2d:96:20:59:87:9a:29:e0:cc:31:2f:e3:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=571E2EFA23FEA611810611410635E23A090F4550 Validity Not Before: Jul 20 02:55:02 2023 GMT Not After : Jul 18 03:00:02 2024 GMT Subject: CN=C3409153ABEDE5FA83CD944EAF6F141C48968FF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1b:c5:f0:c2:a4:be:60:a0:e5:88:f1:d3:f2: 31:99:28:34:cd:14:0b:0f:92:e1:a3:d2:f5:13:94: f3:17:c7:c7:d1:9b:bc:d3:9a:fe:4a:c7:8f:0a:75: ab:77:eb:d0:d9:44:b5:f9:a0:f8:cd:3c:36:64:fb: 48:f6:0c:ef:d4:bf:d6:78:a9:bd:de:7c:b9:32:50: 77:c7:e5:d1:54:7c:e1:f6:95:90:e8:ed:40:13:0a: d9:c9:60:12:65:b1:b0:8e:b4:9d:36:5f:55:c9:49: 29:99:3a:f7:c7:c9:30:69:cd:25:a5:b7:7d:11:d3: d4:18:af:e8:25:00:b8:58:be:81:50:bb:36:e8:64: 39:61:01:01:bd:42:3f:e8:9d:d9:91:66:a1:a8:6b: 41:f2:9c:47:ce:e8:8a:a2:2e:63:58:07:e0:ad:1c: 0a:82:bb:ef:c8:e8:88:42:8c:08:3b:93:e8:c5:e2: 8f:87:7d:4b:6e:f4:cb:2a:0e:62:5c:3c:69:78:65: 84:c2:d5:18:20:7e:c6:a5:08:78:b0:ed:06:53:7d: 87:21:bc:bf:b9:21:9b:b3:66:4d:38:ce:62:8c:2b: 84:23:82:6c:47:cb:e1:f1:e4:07:2e:b2:1b:c8:63: 94:3d:fa:cc:ba:56:90:d1:4d:b6:46:10:1c:1b:b6: b0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:40:91:53:AB:ED:E5:FA:83:CD:94:4E:AF:6F:14:1C:48:96:8F:F2 X509v3 Authority Key Identifier: keyid:57:1E:2E:FA:23:FE:A6:11:81:06:11:41:06:35:E2:3A:09:0F:45:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36342e302f32332d3233203d3e20313431363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.64.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:96:aa:9d:70:22:a0:c2:75:5f:10:38:c4:8f:d6:37:cc:22: 51:3d:f5:cb:d0:db:70:7c:2e:33:66:77:ae:f2:49:6d:c5:c5: 7e:ce:13:c6:1a:b9:9a:d7:fb:68:ac:8f:64:ac:8e:3b:90:aa: c7:dd:68:e6:d9:2d:e6:b5:67:ad:16:48:30:f4:9f:6d:58:18: c2:46:35:be:8b:39:af:7b:b2:9e:3d:1d:c3:c8:d7:4c:89:3f: 10:98:c9:62:77:b4:2d:1a:95:63:48:eb:1f:ed:bf:2f:6e:8a: d9:c6:40:91:a8:0e:b1:fe:87:cc:5c:3c:1e:57:ac:55:65:d0: 66:1d:64:10:7c:ba:0e:5f:fe:82:e4:06:e4:86:78:04:e4:aa: 80:c5:f8:62:f6:4c:a6:92:ff:d3:43:45:2d:61:36:90:0a:99: fb:a4:79:3d:72:c2:8e:7f:d2:a7:e0:2b:c0:8d:4d:89:67:2d: 52:1d:a1:af:b5:92:77:18:b8:9f:20:25:15:9b:54:e4:31:7b: 29:f4:fe:54:84:df:6b:af:ed:a2:8a:57:d0:6a:10:9b:fd:7e: b8:39:93:cb:35:c4:ae:fa:c0:91:ae:7c:bd:da:f6:3b:e7:7b: ab:d2:a9:cc:7b:ad:ad:f5:97:94:e7:f3:70:7d:c4:99:83:65: 62:4c:0a:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ0zYU0VxsC2WIFmHmingzDEv47YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTcxRTJFRkEyM0ZFQTYxMTgxMDYxMTQxMDYzNUUyM0Ew OTBGNDU1MDAeFw0yMzA3MjAwMjU1MDJaFw0yNDA3MTgwMzAwMDJaMDMxMTAvBgNV BAMTKEMzNDA5MTUzQUJFREU1RkE4M0NEOTQ0RUFGNkYxNDFDNDg5NjhGRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJG8XwwqS+YKDliPHT8jGZKDTN FAsPkuGj0vUTlPMXx8fRm7zTmv5Kx48Kdat369DZRLX5oPjNPDZk+0j2DO/Uv9Z4 qb3efLkyUHfH5dFUfOH2lZDo7UATCtnJYBJlsbCOtJ02X1XJSSmZOvfHyTBpzSWl t30R09QYr+glALhYvoFQuzboZDlhAQG9Qj/ondmRZqGoa0HynEfO6IqiLmNYB+Ct HAqCu+/I6IhCjAg7k+jF4o+HfUtu9MsqDmJcPGl4ZYTC1RggfsalCHiw7QZTfYch vL+5IZuzZk04zmKMK4QjgmxHy+Hx5AcushvIY5Q9+sy6VpDRTbZGEBwbtrCHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUw0CRU6vt5fqDzZROr28UHEiWj/IwHwYDVR0j BBgwFoAUVx4u+iP+phGBBhFBBjXiOgkPRVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTY0YWJmYi0xOTYyLTQ0YTktODM3Ni1jYmZiMWVmY2RhYmEvMC81NzFFMkVGQTIz RkVBNjExODEwNjExNDEwNjM1RTIzQTA5MEY0NTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTcxRTJFRkEyM0ZFQTYxMTgxMDYxMTQxMDYzNUUyM0EwOTBG NDU1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NjRhYmZiLTE5NjItNDRhOS04 Mzc2LWNiZmIxZWZjZGFiYS8wLzMxMzAzMzJlMzEzNTM1MmUzNjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzYzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5tAMA0GCSqG SIb3DQEBCwUAA4IBAQA8lqqdcCKgwnVfEDjEj9Y3zCJRPfXL0NtwfC4zZneu8klt xcV+zhPGGrma1/torI9krI47kKrH3Wjm2S3mtWetFkgw9J9tWBjCRjW+izmve7Ke PR3DyNdMiT8QmMlid7QtGpVjSOsf7b8vborZxkCRqA6x/ofMXDweV6xVZdBmHWQQ fLoOX/6C5AbkhngE5KqAxfhi9kymkv/TQ0UtYTaQCpn7pHk9csKOf9Kn4CvAjU2J Zy1SHaGvtZJ3GLifICUVm1TkMXsp9P5UhN9rr+2iilfQahCb/X64OZPLNcSu+sCR rny92vY753ur0qnMe62t9ZeU5/NwfcSZg2ViTArG -----END CERTIFICATE-----Generated at Sun Apr 28 23:35:35 2024 by rpki-client on console-ams.rpki-client.org