$ rpki-client -vvf repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36352e302f32342d3234203d3e20313431363231.roa File: 3130332e3135352e36352e302f32342d3234203d3e20313431363231.roa (raw, json) Hash identifier: gxM+29/05iYVukA2t1NfAW5u025wPnVm7/9rO/TTwNc= Subject key identifier: CE:61:F3:A7:90:4F:55:FE:86:6D:35:D4:DA:A9:12:E9:04:B4:33:45 Certificate issuer: /CN=571E2EFA23FEA611810611410635E23A090F4550 Certificate serial: 3D9FE107B30B67FFE2202D5BEE799A649F6EF4EC Authority key identifier: 57:1E:2E:FA:23:FE:A6:11:81:06:11:41:06:35:E2:3A:09:0F:45:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36352e302f32342d3234203d3e20313431363231.roa Signing time: Tue 18 Jul 2023 23:00:01 +0000 ROA not before: Tue 18 Jul 2023 22:55:01 +0000 ROA not after: Tue 16 Jul 2024 23:00:01 +0000 asID: 141621 IP address blocks: 103.155.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.crl rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:9f:e1:07:b3:0b:67:ff:e2:20:2d:5b:ee:79:9a:64:9f:6e:f4:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=571E2EFA23FEA611810611410635E23A090F4550 Validity Not Before: Jul 18 22:55:01 2023 GMT Not After : Jul 16 23:00:01 2024 GMT Subject: CN=CE61F3A7904F55FE866D35D4DAA912E904B43345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:48:88:ff:56:68:ea:14:89:d6:9e:fa:53:13: 97:fd:dd:ed:2f:4f:f0:88:af:7d:4b:29:5b:d3:1e: 8a:98:c4:37:2d:be:fc:1a:0d:55:2d:57:88:53:cc: 11:14:1c:9c:34:26:c0:21:b0:9c:84:8a:1a:0b:e7: f7:20:de:96:b7:91:5a:e4:6c:2d:f5:a4:49:72:3a: 0c:69:6d:e6:23:14:a9:b7:d9:1b:0e:6a:bd:a3:50: d2:9c:7e:7b:70:05:d1:8d:b1:64:a5:02:4b:c1:18: 79:63:2e:ef:ac:1e:b8:b2:c4:12:98:3a:34:06:63: df:e7:f9:31:5e:8d:77:5c:02:4a:6f:a7:0c:8d:1e: 38:25:e3:ca:35:bf:62:d2:0a:91:f3:67:21:46:66: 1d:40:a0:d5:09:ea:23:f7:cf:d8:2a:88:95:91:b0: da:7f:fe:fe:15:bf:42:d4:06:a2:e1:e9:28:9a:22: 11:9b:2b:e7:5c:6d:88:fb:a6:28:ab:f0:fd:50:07: 6a:d9:d4:7f:18:f2:e7:4d:69:cc:4e:e6:57:0c:0d: 79:d0:a5:76:ef:3d:4a:9b:9f:cc:6f:cd:3e:29:af: a0:25:fa:f8:61:e6:9a:d6:0f:c8:45:f3:a5:be:b7: 25:96:93:2b:21:4b:2c:16:8e:e6:c0:d4:cc:59:47: 92:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:61:F3:A7:90:4F:55:FE:86:6D:35:D4:DA:A9:12:E9:04:B4:33:45 X509v3 Authority Key Identifier: keyid:57:1E:2E:FA:23:FE:A6:11:81:06:11:41:06:35:E2:3A:09:0F:45:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36352e302f32342d3234203d3e20313431363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.65.0/24 Signature Algorithm: sha256WithRSAEncryption 72:e0:5c:91:1a:36:67:13:40:32:7c:d1:78:71:e8:3a:f3:19: d7:81:6a:40:67:42:a3:32:67:94:4c:41:80:91:5f:0d:52:4b: 26:7b:ba:e0:dc:74:38:92:24:2e:05:3f:44:83:c4:da:03:68: 49:c8:cf:0d:96:9c:00:a7:ff:3f:58:a6:6f:11:e9:ec:67:ba: 71:43:e3:f2:df:b6:a2:2a:25:f6:07:ab:d2:94:70:22:9c:4d: 5d:d0:bc:fc:78:64:0f:db:4e:47:0c:2c:ef:13:19:b6:8b:f0: 92:83:bd:52:1e:08:a5:5d:4c:31:a0:da:1b:82:42:9b:ac:54: 85:d3:0a:1a:4d:d9:93:5e:c5:31:1c:68:66:37:23:f3:ae:f7: f5:f2:d3:ce:e8:b0:61:30:1e:7a:48:1c:df:35:a3:99:4f:c5: f4:43:e9:e4:3e:a9:1c:a5:84:63:d7:4a:1a:e4:50:78:76:ea: af:4b:50:13:f1:2f:9e:61:47:32:c5:74:3d:f5:8f:17:18:70: e3:f1:5c:15:ce:5c:65:d7:bc:13:e5:dd:8f:98:cd:db:d5:b2: 30:9a:f9:8e:1f:4a:c8:bc:9a:4a:14:ae:bd:0b:56:ff:82:03: 1f:bd:39:58:d0:37:68:49:4f:b7:7b:cd:44:68:fa:76:50:b9: 04:97:55:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPZ/hB7MLZ//iIC1b7nmaZJ9u9OwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTcxRTJFRkEyM0ZFQTYxMTgxMDYxMTQxMDYzNUUyM0Ew OTBGNDU1MDAeFw0yMzA3MTgyMjU1MDFaFw0yNDA3MTYyMzAwMDFaMDMxMTAvBgNV BAMTKENFNjFGM0E3OTA0RjU1RkU4NjZEMzVENERBQTkxMkU5MDRCNDMzNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/SIj/VmjqFInWnvpTE5f93e0v T/CIr31LKVvTHoqYxDctvvwaDVUtV4hTzBEUHJw0JsAhsJyEihoL5/cg3pa3kVrk bC31pElyOgxpbeYjFKm32RsOar2jUNKcfntwBdGNsWSlAkvBGHljLu+sHriyxBKY OjQGY9/n+TFejXdcAkpvpwyNHjgl48o1v2LSCpHzZyFGZh1AoNUJ6iP3z9gqiJWR sNp//v4Vv0LUBqLh6SiaIhGbK+dcbYj7piir8P1QB2rZ1H8Y8udNacxO5lcMDXnQ pXbvPUqbn8xvzT4pr6Al+vhh5prWD8hF86W+tyWWkyshSywWjubA1MxZR5IHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzmHzp5BPVf6GbTXU2qkS6QS0M0UwHwYDVR0j BBgwFoAUVx4u+iP+phGBBhFBBjXiOgkPRVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTY0YWJmYi0xOTYyLTQ0YTktODM3Ni1jYmZiMWVmY2RhYmEvMC81NzFFMkVGQTIz RkVBNjExODEwNjExNDEwNjM1RTIzQTA5MEY0NTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTcxRTJFRkEyM0ZFQTYxMTgxMDYxMTQxMDYzNUUyM0EwOTBG NDU1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NjRhYmZiLTE5NjItNDRhOS04 Mzc2LWNiZmIxZWZjZGFiYS8wLzMxMzAzMzJlMzEzNTM1MmUzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5tBMA0GCSqG SIb3DQEBCwUAA4IBAQBy4FyRGjZnE0AyfNF4ceg68xnXgWpAZ0KjMmeUTEGAkV8N Uksme7rg3HQ4kiQuBT9Eg8TaA2hJyM8NlpwAp/8/WKZvEensZ7pxQ+Py37aiKiX2 B6vSlHAinE1d0Lz8eGQP205HDCzvExm2i/CSg71SHgilXUwxoNobgkKbrFSF0woa TdmTXsUxHGhmNyPzrvf18tPO6LBhMB56SBzfNaOZT8X0Q+nkPqkcpYRj10oa5FB4 duqvS1AT8S+eYUcyxXQ99Y8XGHDj8VwVzlxl17wT5d2PmM3b1bIwmvmOH0rIvJpK FK69C1b/ggMfvTlY0DdoSU+3e81EaPp2ULkEl1V2 -----END CERTIFICATE-----Generated at Mon Apr 29 00:38:44 2024 by rpki-client on console-fra.rpki-client.org