$ rpki-client -vvf repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32332e302f32342d3234203d3e20313430343034.roa File: 3130332e3135312e32332e302f32342d3234203d3e20313430343034.roa (raw, json) Hash identifier: Vd/JO2+mnLgblJeI5z87HdBLRRB0OsH6XhWyGzWScQU= Subject key identifier: 8C:EE:2E:01:21:7A:F1:9A:31:E2:A8:A5:2A:6C:AA:5E:4E:5D:B8:CF Certificate issuer: /CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Certificate serial: 7747C0F0396DDE1BA6B6E134904BF12440E18396 Authority key identifier: BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject info access: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32332e302f32342d3234203d3e20313430343034.roa Signing time: Mon 31 Jul 2023 00:05:42 +0000 ROA not before: Mon 31 Jul 2023 00:00:42 +0000 ROA not after: Mon 29 Jul 2024 00:05:42 +0000 asID: 140404 IP address blocks: 103.151.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 10:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:47:c0:f0:39:6d:de:1b:a6:b6:e1:34:90:4b:f1:24:40:e1:83:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Validity Not Before: Jul 31 00:00:42 2023 GMT Not After : Jul 29 00:05:42 2024 GMT Subject: CN=8CEE2E01217AF19A31E2A8A52A6CAA5E4E5DB8CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7f:03:c8:f7:73:0b:6c:c6:8e:47:56:db:89: da:81:9b:3a:03:8c:ce:f1:b0:60:d1:51:f5:e5:0f: b9:35:22:e8:66:c6:b9:10:c3:4c:8f:e0:21:f8:97: cd:67:be:eb:58:f1:de:7d:07:79:aa:d4:c9:b0:f9: e8:0b:be:aa:39:f0:6c:c6:54:13:79:5d:c9:28:19: e7:fe:52:0c:66:fc:81:83:84:7d:5b:88:c1:aa:41: b9:e1:ba:8c:3c:37:81:8e:cc:ec:4e:c0:d2:c9:0f: 50:0d:f8:a3:01:d4:4f:8c:d3:92:51:1f:01:d7:97: 30:47:9c:4d:3a:4e:ea:d8:dc:25:c7:5f:85:11:fe: 0d:3f:3e:6b:c3:19:6a:ee:7c:46:71:46:8c:ab:50: e8:07:ee:17:60:92:1b:db:ac:c8:49:53:df:8b:63: e6:99:8c:d8:9d:60:49:8a:41:56:c7:9d:0c:e9:30: e9:c8:d4:0f:54:cb:01:b9:81:f7:73:32:6c:50:19: d4:c7:53:12:a5:29:9c:26:ae:ec:2d:ac:61:87:ae: 13:06:99:ec:c7:fa:02:00:f4:9b:00:e2:6e:82:15: 4a:24:28:18:bb:0a:0c:8a:6d:15:eb:ee:b6:1a:3f: 19:53:a3:4c:de:ee:6e:53:18:d4:44:ea:45:9a:b2: 00:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:EE:2E:01:21:7A:F1:9A:31:E2:A8:A5:2A:6C:AA:5E:4E:5D:B8:CF X509v3 Authority Key Identifier: keyid:BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32332e302f32342d3234203d3e20313430343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.23.0/24 Signature Algorithm: sha256WithRSAEncryption 46:d0:50:0a:8c:11:b2:fd:ef:92:bc:18:ea:46:5b:b3:ff:35: 96:7c:cb:4f:1f:fb:c2:1d:db:07:4f:cb:f4:1d:96:d2:a8:0f: f6:56:f8:5b:69:be:6e:8d:94:8d:18:49:60:8e:38:a8:7b:05: cc:73:e8:c7:58:22:c7:56:43:86:88:df:12:90:97:a8:4a:26: 78:14:3e:49:05:40:5c:a9:d3:54:71:3e:91:fb:15:5c:52:f7: 10:cc:9d:f2:ad:b3:b9:98:70:a9:ad:e4:54:cb:14:b4:fd:59: 0b:5d:0a:5d:90:37:8c:74:4a:fe:68:e8:7b:83:1a:19:5f:dd: a3:0f:f2:87:dc:8c:fa:79:ce:c6:56:f6:74:c3:81:ff:f3:d8: 62:da:49:44:70:23:5e:a8:72:3a:a2:96:36:65:ea:38:9d:f8: 8b:ff:4e:0b:dd:e3:97:61:9a:68:63:78:d0:0d:4a:a6:5c:66: 80:79:9d:ea:b3:f3:8c:40:96:e5:3a:5e:ec:a6:a7:85:ff:f5: 0c:e6:59:ba:80:eb:34:db:59:7f:8e:d6:0e:e6:a5:71:93:28: 9c:5d:cf:00:14:78:32:c3:45:bc:39:ab:c0:f9:0d:f9:6f:2c: 7e:64:85:8b:34:29:82:9e:a4:53:db:8c:e3:43:d2:30:48:d7: c3:7f:41:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd0fA8Dlt3humtuE0kEvxJEDhg5YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5 MDJBRjk5ODAeFw0yMzA3MzEwMDAwNDJaFw0yNDA3MjkwMDA1NDJaMDMxMTAvBgNV BAMTKDhDRUUyRTAxMjE3QUYxOUEzMUUyQThBNTJBNkNBQTVFNEU1REI4Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBfwPI93MLbMaOR1bbidqBmzoD jM7xsGDRUfXlD7k1IuhmxrkQw0yP4CH4l81nvutY8d59B3mq1Mmw+egLvqo58GzG VBN5XckoGef+Ugxm/IGDhH1biMGqQbnhuow8N4GOzOxOwNLJD1AN+KMB1E+M05JR HwHXlzBHnE06TurY3CXHX4UR/g0/PmvDGWrufEZxRoyrUOgH7hdgkhvbrMhJU9+L Y+aZjNidYEmKQVbHnQzpMOnI1A9UywG5gfdzMmxQGdTHUxKlKZwmruwtrGGHrhMG mezH+gIA9JsA4m6CFUokKBi7CgyKbRXr7rYaPxlTo0ze7m5TGNRE6kWasgDpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjO4uASF68Zox4qilKmyqXk5duM8wHwYDVR0j BBgwFoAUvrOzW6HD2spZxsUl6pgj/5Aq+ZgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MGNiNWM5Yi1mMzgzLTRlODEtODEyYy0wZTIyN2FkNDZiMWIvMC9CRUIzQjM1QkEx QzNEQUNBNTlDNkM1MjVFQTk4MjNGRjkwMkFGOTk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5MDJB Rjk5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwY2I1YzliLWYzODMtNGU4MS04 MTJjLTBlMjI3YWQ0NmIxYi8wLzMxMzAzMzJlMzEzNTMxMmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5cXMA0GCSqG SIb3DQEBCwUAA4IBAQBG0FAKjBGy/e+SvBjqRluz/zWWfMtPH/vCHdsHT8v0HZbS qA/2Vvhbab5ujZSNGElgjjioewXMc+jHWCLHVkOGiN8SkJeoSiZ4FD5JBUBcqdNU cT6R+xVcUvcQzJ3yrbO5mHCpreRUyxS0/VkLXQpdkDeMdEr+aOh7gxoZX92jD/KH 3Iz6ec7GVvZ0w4H/89hi2klEcCNeqHI6opY2Zeo4nfiL/04L3eOXYZpoY3jQDUqm XGaAeZ3qs/OMQJblOl7spqeF//UM5lm6gOs021l/jtYO5qVxkyicXc8AFHgyw0W8 OavA+Q35byx+ZIWLNCmCnqRT24zjQ9IwSNfDf0Ey -----END CERTIFICATE-----Generated at Wed Apr 24 08:33:50 2024 by rpki-client on console-fra.rpki-client.org