$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa File: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (raw, json) Hash identifier: NvJb/4wQSjtQq1H0caGF3ijTN8kYQyihjTwpPkkEVFo= Subject key identifier: FA:09:1F:75:FE:14:A8:9E:48:C8:C4:78:B5:ED:0C:C2:1B:C6:42:10 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 7AD4739E0D8380DD23288FC1AC12FB821091F533 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa Signing time: Wed 11 Oct 2023 09:00:01 +0000 ROA not before: Wed 11 Oct 2023 08:55:01 +0000 ROA not after: Wed 09 Oct 2024 09:00:01 +0000 asID: 396982 IP address blocks: 103.157.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d4:73:9e:0d:83:80:dd:23:28:8f:c1:ac:12:fb:82:10:91:f5:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Oct 11 08:55:01 2023 GMT Not After : Oct 9 09:00:01 2024 GMT Subject: CN=FA091F75FE14A89E48C8C478B5ED0CC21BC64210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:59:41:3e:30:41:5b:f1:2d:8b:30:2d:9d:56: 23:7a:32:81:c5:8a:ca:a5:b8:3a:84:f6:a2:a8:55: 38:7c:e9:1c:8d:65:c7:2e:b7:ad:64:42:5a:cb:fe: c0:48:5b:1a:1b:c7:aa:d9:de:87:a5:20:06:94:f8: f8:c5:30:3b:5c:6e:33:d0:22:b6:e5:c6:24:d5:21: bf:47:26:5d:2e:37:f7:13:ba:f0:c5:17:31:d9:5f: c2:c7:56:1a:f0:54:eb:0b:58:68:12:a9:11:64:e5: 36:b3:fd:79:7f:0c:6e:aa:6c:95:b9:60:ff:ef:0b: 80:d1:31:b7:dc:57:d7:a0:7e:20:07:57:c0:18:78: e5:8d:74:89:a6:7e:e6:c3:df:d0:c4:46:ed:13:e5: 61:2f:4e:b4:5c:bd:42:71:49:fa:9c:ba:58:66:20: 3e:42:3d:96:52:49:3d:f1:ba:d7:aa:2b:0f:c4:9f: 1c:67:63:7c:80:7b:36:8c:31:8a:d7:ac:91:69:11: f5:c3:8c:43:a6:73:c8:49:22:a6:29:02:5e:07:e4: f0:1a:e7:39:59:64:9b:2b:41:d9:11:d2:e9:f4:19: 99:4f:bc:75:fc:57:30:79:5c:6a:f3:86:64:72:43: 3e:4e:db:10:39:8c:4e:3b:32:8a:7f:53:e4:09:b5: 81:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:09:1F:75:FE:14:A8:9E:48:C8:C4:78:B5:ED:0C:C2:1B:C6:42:10 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.55.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:15:09:85:24:07:24:0d:05:88:54:8b:e8:ae:31:ac:8c:43: 5e:61:a9:13:44:9d:2e:ae:4c:d0:55:2b:95:5d:91:42:39:18: dd:37:b5:6d:f6:df:1e:57:fa:6a:47:e9:8e:36:47:67:76:a0: fd:c3:a4:95:36:f8:0a:50:3e:c2:08:4c:7b:fa:88:1c:4f:68: 4a:62:86:f0:c6:ed:49:7f:ed:2f:b0:38:b3:d1:da:4a:6e:32: 70:a1:3c:6f:fe:5b:a1:0b:e2:3f:ae:4e:ed:f8:c6:91:41:9b: f1:f9:9d:a0:07:87:c3:3b:fc:b8:08:0d:95:d4:f1:91:71:f2: b0:6f:6f:3c:c9:6a:ad:3b:0c:f6:47:fd:77:0d:84:2d:48:1f: d0:b2:cb:31:73:23:e3:7b:3a:d0:12:80:25:c5:b6:7d:7a:0c: 6f:c5:ab:bd:dc:b4:1e:fc:f4:52:7b:0f:9d:f4:26:f0:c6:34: 45:5f:e2:18:73:61:7a:85:f4:91:a1:e6:b5:3a:ef:dc:76:71: c1:d8:38:73:c6:52:23:20:1f:c4:30:ab:60:5b:91:0e:79:52: f6:9e:a4:ff:6a:5c:b0:c7:2b:2d:ac:1b:fc:d4:ef:41:a8:43: f4:2f:86:c9:ec:73:a4:74:e7:80:dd:cb:1c:16:36:ae:23:2c: 1e:10:61:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUetRzng2DgN0jKI/BrBL7ghCR9TMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yMzEwMTEwODU1MDFaFw0yNDEwMDkwOTAwMDFaMDMxMTAvBgNV BAMTKEZBMDkxRjc1RkUxNEE4OUU0OEM4QzQ3OEI1RUQwQ0MyMUJDNjQyMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgWUE+MEFb8S2LMC2dViN6MoHF isqluDqE9qKoVTh86RyNZccut61kQlrL/sBIWxobx6rZ3oelIAaU+PjFMDtcbjPQ IrblxiTVIb9HJl0uN/cTuvDFFzHZX8LHVhrwVOsLWGgSqRFk5Taz/Xl/DG6qbJW5 YP/vC4DRMbfcV9egfiAHV8AYeOWNdImmfubD39DERu0T5WEvTrRcvUJxSfqculhm ID5CPZZSST3xuteqKw/EnxxnY3yAezaMMYrXrJFpEfXDjEOmc8hJIqYpAl4H5PAa 5zlZZJsrQdkR0un0GZlPvHX8VzB5XGrzhmRyQz5O2xA5jE47Mop/U+QJtYEdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+gkfdf4UqJ5IyMR4te0MwhvGQhAwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmMzc3NzExLTFlM2QtNGU1YS1h NGFjLTA1YTFjNTAyYWQyOC8wLzMxMzAzMzJlMzEzNTM3MmUzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM2MzkzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ503MA0GCSqG SIb3DQEBCwUAA4IBAQA6FQmFJAckDQWIVIvorjGsjENeYakTRJ0urkzQVSuVXZFC ORjdN7Vt9t8eV/pqR+mONkdndqD9w6SVNvgKUD7CCEx7+ogcT2hKYobwxu1Jf+0v sDiz0dpKbjJwoTxv/luhC+I/rk7t+MaRQZvx+Z2gB4fDO/y4CA2V1PGRcfKwb288 yWqtOwz2R/13DYQtSB/QsssxcyPjezrQEoAlxbZ9egxvxau93LQe/PRSew+d9Cbw xjRFX+IYc2F6hfSRoea1Ou/cdnHB2DhzxlIjIB/EMKtgW5EOeVL2nqT/alywxyst rBv81O9BqEP0L4bJ7HOkdOeA3cscFjauIyweEGEY -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org