$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa File: 3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa (raw, json) Hash identifier: vVq5IZtEQhPj4BOXAl1eggBM+hgx+OY8wD2HovPggOI= Subject key identifier: 14:04:7C:50:CE:F8:99:61:C0:7C:5F:A0:43:2B:81:22:74:1F:3C:80 Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 022EC08701A0A12163C0B1782E57C2204EF5B3E2 Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa Signing time: Tue 19 Sep 2023 06:00:01 +0000 ROA not before: Tue 19 Sep 2023 05:55:01 +0000 ROA not after: Tue 17 Sep 2024 06:00:01 +0000 asID: 136052 IP address blocks: 103.236.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:2e:c0:87:01:a0:a1:21:63:c0:b1:78:2e:57:c2:20:4e:f5:b3:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Sep 19 05:55:01 2023 GMT Not After : Sep 17 06:00:01 2024 GMT Subject: CN=14047C50CEF89961C07C5FA0432B8122741F3C80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:38:6a:3c:bc:dc:49:76:a8:13:ca:86:05: d7:f7:de:98:1a:b4:dd:f6:0e:85:82:54:6e:c0:43: 75:7b:32:86:f0:7c:47:93:cb:f5:86:2d:6b:a2:25: 42:6c:30:61:9e:da:80:b5:a0:cf:56:dc:aa:0f:23: f7:e1:91:34:0a:50:f5:03:e7:81:39:3a:35:3e:80: 4b:c9:39:f0:c5:08:ef:c5:c5:cd:95:a0:ba:9f:c6: 8e:fe:78:22:56:04:7c:ef:fd:05:f2:7f:d4:27:dc: 4c:64:8e:e6:1c:ae:1a:fb:8e:75:0b:9d:cd:71:3b: 4d:e2:ca:db:af:f5:2c:d3:01:5f:a8:27:ec:c7:34: 56:18:ac:7e:3c:dd:80:fd:16:50:7e:3b:47:1a:6b: 97:10:09:6a:11:ff:1a:6f:b4:8b:8a:b1:68:2b:a2: c3:80:79:54:57:06:f5:b1:b9:23:52:e1:12:b6:b7: ef:ec:e6:ee:e1:ee:22:74:5c:fd:54:4c:30:72:eb: d3:ae:c5:fd:b3:df:3c:8b:02:ea:a5:d3:df:fb:e2: 68:64:2f:ad:8c:61:2d:de:85:0c:e4:40:5d:d7:01: c8:b4:79:a4:3a:55:8e:14:6f:11:5c:1b:01:ea:05: ff:8b:e4:8b:a4:d2:6f:ab:18:8c:e7:b6:c1:81:83: 1e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:04:7C:50:CE:F8:99:61:C0:7C:5F:A0:43:2B:81:22:74:1F:3C:80 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.201.0/24 Signature Algorithm: sha256WithRSAEncryption 69:1a:78:b7:5b:ad:b7:2b:7b:57:9e:d2:8b:20:42:6a:82:fd: 07:1e:b1:55:d2:6c:34:35:c0:72:df:11:02:c7:9a:f1:99:ed: 60:3e:d9:7e:74:08:15:21:09:4b:09:1d:b2:d4:50:d9:53:5c: 97:fd:12:f9:87:e2:7e:20:c1:da:18:74:5b:ee:af:dd:09:d3: 94:54:6c:0c:fa:69:4b:5e:30:8c:1f:5b:16:fc:57:cf:21:7b: 34:00:cf:c2:fc:b5:96:24:2c:7b:15:e8:0d:bf:ba:43:e1:47: 4a:ca:81:c0:88:92:46:57:e8:41:d7:85:0e:6e:54:75:66:62: 71:83:ce:e0:eb:39:a1:1a:9b:b7:be:66:9b:58:ef:8b:87:b7: 04:ac:6f:fc:a4:c2:21:bd:e9:ff:48:c6:5e:81:c7:38:fb:f0: fa:1a:84:80:8e:5e:8a:01:61:d7:8a:25:b7:5c:e4:9a:06:66: c0:4e:4e:97:a3:37:70:7d:13:1d:cc:93:1a:10:ec:1c:57:18: ee:52:fe:53:56:72:e1:ad:a0:51:66:a1:8b:85:79:07:a1:b2: 8c:51:e2:e0:9b:84:fb:23:37:e4:fe:e5:65:ef:4b:82:35:31: 01:17:ea:39:fa:66:2e:ad:41:34:0b:71:75:aa:d6:9c:79:74: 4a:a8:6a:f8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAi7AhwGgoSFjwLF4LlfCIE71s+IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yMzA5MTkwNTU1MDFaFw0yNDA5MTcwNjAwMDFaMDMxMTAvBgNV BAMTKDE0MDQ3QzUwQ0VGODk5NjFDMDdDNUZBMDQzMkI4MTIyNzQxRjNDODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6FzhqPLzcSXaoE8qGBdf33pga tN32DoWCVG7AQ3V7MobwfEeTy/WGLWuiJUJsMGGe2oC1oM9W3KoPI/fhkTQKUPUD 54E5OjU+gEvJOfDFCO/Fxc2VoLqfxo7+eCJWBHzv/QXyf9Qn3ExkjuYcrhr7jnUL nc1xO03iytuv9SzTAV+oJ+zHNFYYrH483YD9FlB+O0caa5cQCWoR/xpvtIuKsWgr osOAeVRXBvWxuSNS4RK2t+/s5u7h7iJ0XP1UTDBy69Ouxf2z3zyLAuql09/74mhk L62MYS3ehQzkQF3XAci0eaQ6VY4UbxFcGwHqBf+L5Iuk0m+rGIzntsGBgx67AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFAR8UM74mWHAfF+gQyuBInQfPIAwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMxMzAzMzJlMzIzMzM2MmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn7MkwDQYJ KoZIhvcNAQELBQADggEBAGkaeLdbrbcre1ee0osgQmqC/QcesVXSbDQ1wHLfEQLH mvGZ7WA+2X50CBUhCUsJHbLUUNlTXJf9EvmH4n4gwdoYdFvur90J05RUbAz6aUte MIwfWxb8V88hezQAz8L8tZYkLHsV6A2/ukPhR0rKgcCIkkZX6EHXhQ5uVHVmYnGD zuDrOaEam7e+ZptY74uHtwSsb/ykwiG96f9Ixl6Bxzj78PoahICOXooBYdeKJbdc 5JoGZsBOTpejN3B9Ex3MkxoQ7BxXGO5S/lNWcuGtoFFmoYuFeQehsoxR4uCbhPsj N+T+5WXvS4I1MQEX6jn6Zi6tQTQLcXWq1px5dEqoavg= -----END CERTIFICATE-----Generated at Wed May 1 05:54:35 2024 by rpki-client on console-ams.rpki-client.org