$ rpki-client -vvf repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36342e302f32342d3234203d3e20313431363231.roa File: 3130332e3135352e36342e302f32342d3234203d3e20313431363231.roa (raw, json) Hash identifier: eKfDQYY/ye9dg/wxBF5NKE8Fb56a1oyjJmumuZXOsmI= Subject key identifier: 4F:2D:F0:D5:2D:36:D9:19:43:8B:2D:48:5B:42:9E:ED:1B:E5:96:41 Certificate issuer: /CN=571E2EFA23FEA611810611410635E23A090F4550 Certificate serial: 4855CD929911B94C44709CF1E82E9D3C0029202B Authority key identifier: 57:1E:2E:FA:23:FE:A6:11:81:06:11:41:06:35:E2:3A:09:0F:45:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36342e302f32342d3234203d3e20313431363231.roa Signing time: Tue 18 Jul 2023 23:00:01 +0000 ROA not before: Tue 18 Jul 2023 22:55:01 +0000 ROA not after: Tue 16 Jul 2024 23:00:01 +0000 asID: 141621 IP address blocks: 103.155.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.crl rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:55:cd:92:99:11:b9:4c:44:70:9c:f1:e8:2e:9d:3c:00:29:20:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=571E2EFA23FEA611810611410635E23A090F4550 Validity Not Before: Jul 18 22:55:01 2023 GMT Not After : Jul 16 23:00:01 2024 GMT Subject: CN=4F2DF0D52D36D919438B2D485B429EED1BE59641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ab:4b:b9:06:98:c7:07:bc:22:41:fa:85:9b: 04:5e:2d:93:d3:69:32:4c:c0:71:b4:1c:06:ee:b5: 8e:e4:74:9a:c2:cc:a9:ed:a9:d3:5a:5c:d9:c0:de: 79:cb:f7:af:53:24:bf:bf:46:7a:52:51:65:68:bc: 1a:b4:95:fd:c1:9f:2e:ed:4a:d0:67:16:72:8a:bc: f7:28:af:2d:2b:c5:8c:96:7d:cc:6d:5c:ed:a6:ae: b8:a0:48:28:73:31:dc:d7:1a:f4:82:9e:28:e6:5e: ff:dc:63:94:4c:f5:11:79:ac:a8:2f:9f:9f:c1:d6: 7b:56:24:f6:bb:c1:b1:ec:de:20:dd:48:76:4a:c0: 78:d7:02:db:7b:5e:ee:66:e8:1d:6e:0c:91:29:8a: ef:e1:d3:57:1f:66:89:19:59:bd:a9:57:a8:8a:af: bc:e0:48:72:59:8d:94:36:22:a1:8c:9d:62:21:d4: df:0b:b5:08:9e:2c:8e:67:83:e1:ea:34:85:3c:1e: ce:f4:8e:d7:a1:87:3d:77:bd:54:27:94:dc:2b:57: c5:26:14:c4:d9:dd:13:88:ff:c6:13:65:4f:ff:ae: 03:4d:a6:7c:e9:9d:90:e3:2d:a2:83:e0:64:04:bb: e4:16:dc:72:38:59:af:59:96:a4:1c:fc:71:2f:5f: 56:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:2D:F0:D5:2D:36:D9:19:43:8B:2D:48:5B:42:9E:ED:1B:E5:96:41 X509v3 Authority Key Identifier: keyid:57:1E:2E:FA:23:FE:A6:11:81:06:11:41:06:35:E2:3A:09:0F:45:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36342e302f32342d3234203d3e20313431363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.64.0/24 Signature Algorithm: sha256WithRSAEncryption 90:43:5f:7b:af:92:54:bf:a5:f9:2e:45:33:e5:e4:df:4e:f6: 59:d8:13:8a:da:9f:dd:44:b8:6a:2d:73:1d:c2:3d:1c:ea:0c: df:fc:d6:95:d7:42:ce:3c:8f:6a:22:23:ab:df:ef:9d:dc:46: 53:97:9a:90:00:13:b0:74:fc:28:2b:11:c4:b2:24:d7:c6:e6: 25:c7:3c:b8:7c:61:46:b7:32:67:34:37:aa:22:df:c4:e1:36: df:cb:9e:c6:15:77:d4:2c:6d:9b:0c:75:92:0d:59:66:da:cf: 76:d4:61:eb:3b:1d:0f:41:14:a3:cf:72:a6:c1:c1:4d:3f:16: 73:de:9f:a2:a8:ec:49:67:2e:18:d6:af:05:ea:d0:91:f2:96: 9f:96:c3:b3:b4:63:70:0c:dd:b7:b0:3d:89:9b:67:21:60:04: a5:53:03:75:14:d9:90:d7:d3:39:e9:81:19:45:c3:36:3b:06: 2a:88:93:52:eb:69:b3:20:fd:2d:51:4d:ab:98:4c:23:7d:e6: ce:fc:9b:25:f0:90:d8:52:69:f3:81:e7:e6:7b:04:37:18:23: d7:8f:cb:97:eb:fd:2b:a2:f5:2c:8d:d3:14:2c:06:73:86:2d: e5:e7:0e:e5:cd:9a:19:64:7d:72:5a:99:9f:82:e7:76:53:d2: 94:92:40:8e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSFXNkpkRuUxEcJzx6C6dPAApICswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTcxRTJFRkEyM0ZFQTYxMTgxMDYxMTQxMDYzNUUyM0Ew OTBGNDU1MDAeFw0yMzA3MTgyMjU1MDFaFw0yNDA3MTYyMzAwMDFaMDMxMTAvBgNV BAMTKDRGMkRGMEQ1MkQzNkQ5MTk0MzhCMkQ0ODVCNDI5RUVEMUJFNTk2NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDq0u5BpjHB7wiQfqFmwReLZPT aTJMwHG0HAbutY7kdJrCzKntqdNaXNnA3nnL969TJL+/RnpSUWVovBq0lf3Bny7t StBnFnKKvPcory0rxYyWfcxtXO2mrrigSChzMdzXGvSCnijmXv/cY5RM9RF5rKgv n5/B1ntWJPa7wbHs3iDdSHZKwHjXAtt7Xu5m6B1uDJEpiu/h01cfZokZWb2pV6iK r7zgSHJZjZQ2IqGMnWIh1N8LtQieLI5ng+HqNIU8Hs70jtehhz13vVQnlNwrV8Um FMTZ3ROI/8YTZU//rgNNpnzpnZDjLaKD4GQEu+QW3HI4Wa9ZlqQc/HEvX1aFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTy3w1S022RlDiy1IW0Ke7RvllkEwHwYDVR0j BBgwFoAUVx4u+iP+phGBBhFBBjXiOgkPRVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTY0YWJmYi0xOTYyLTQ0YTktODM3Ni1jYmZiMWVmY2RhYmEvMC81NzFFMkVGQTIz RkVBNjExODEwNjExNDEwNjM1RTIzQTA5MEY0NTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTcxRTJFRkEyM0ZFQTYxMTgxMDYxMTQxMDYzNUUyM0EwOTBG NDU1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NjRhYmZiLTE5NjItNDRhOS04 Mzc2LWNiZmIxZWZjZGFiYS8wLzMxMzAzMzJlMzEzNTM1MmUzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5tAMA0GCSqG SIb3DQEBCwUAA4IBAQCQQ197r5JUv6X5LkUz5eTfTvZZ2BOK2p/dRLhqLXMdwj0c 6gzf/NaV10LOPI9qIiOr3++d3EZTl5qQABOwdPwoKxHEsiTXxuYlxzy4fGFGtzJn NDeqIt/E4Tbfy57GFXfULG2bDHWSDVlm2s921GHrOx0PQRSjz3KmwcFNPxZz3p+i qOxJZy4Y1q8F6tCR8paflsOztGNwDN23sD2Jm2chYASlUwN1FNmQ19M56YEZRcM2 OwYqiJNS62mzIP0tUU2rmEwjfebO/Jsl8JDYUmnzgefmewQ3GCPXj8uX6/0rovUs jdMULAZzhi3l5w7lzZoZZH1yWpmfgud2U9KUkkCO -----END CERTIFICATE-----Generated at Wed May 1 04:48:04 2024 by rpki-client on console-ams.rpki-client.org