$ rpki-client -vvf repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa File: 3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa (raw, json) Hash identifier: 0hrJvHl26ZrT+bw28/YaOCN1Wb7+2PbRVtspUcaP9Yg= Subject key identifier: 16:6A:24:F7:8F:92:74:E8:7A:34:6C:60:09:65:B8:1A:C2:E6:C0:71 Certificate issuer: /CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Certificate serial: 0A5A6F6CB6DE75927EA724B59332C8E10A2BC4F4 Authority key identifier: DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa Signing time: Mon 31 Jul 2023 00:05:49 +0000 ROA not before: Mon 31 Jul 2023 00:00:49 +0000 ROA not after: Mon 29 Jul 2024 00:05:49 +0000 asID: 140442 IP address blocks: 103.152.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 16:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:5a:6f:6c:b6:de:75:92:7e:a7:24:b5:93:32:c8:e1:0a:2b:c4:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Validity Not Before: Jul 31 00:00:49 2023 GMT Not After : Jul 29 00:05:49 2024 GMT Subject: CN=166A24F78F9274E87A346C600965B81AC2E6C071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:04:31:20:75:05:77:4c:97:ec:de:ad:7d:ee: 54:fd:1b:19:f9:99:50:53:29:63:df:6d:14:f4:53: 17:90:fc:da:8b:5d:c9:73:e5:71:37:ed:0a:7d:6a: 83:23:20:14:b7:ec:cb:9c:cf:c4:bc:28:31:a7:91: e3:05:28:ee:94:5a:83:ef:79:06:95:55:3f:e4:3a: 1d:6a:93:dd:9f:16:ba:78:38:f6:3c:20:56:eb:d3: d3:13:fe:ad:14:46:c6:26:92:87:05:be:db:16:9b: 5e:dc:aa:32:60:ad:2f:25:97:2c:7c:44:16:0c:40: cc:bf:c9:87:4c:7a:53:ba:77:f6:ff:f5:02:4e:98: 78:97:41:7a:f9:f3:ab:6d:df:e3:d3:95:bd:6c:9d: f1:c6:91:86:2c:15:a5:c5:e5:ba:97:5e:db:1a:e8: 0e:ee:81:d8:a4:ae:3b:27:9b:bf:63:7e:eb:60:7e: 25:78:3b:e2:c8:63:eb:e9:7c:ee:d8:c5:bc:3d:d6: c2:1a:1c:b4:39:d3:6a:1e:b6:c7:47:4a:ad:92:51: 7a:c7:75:7d:4e:9a:d8:77:b6:18:e2:3d:60:42:26: 0f:69:5a:bf:f5:8b:b1:5b:f0:17:74:a2:84:56:a6: 9e:b8:98:32:0d:27:83:5f:a0:51:f5:e3:21:f6:a2: 3f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:6A:24:F7:8F:92:74:E8:7A:34:6C:60:09:65:B8:1A:C2:E6:C0:71 X509v3 Authority Key Identifier: keyid:DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.72.0/23 Signature Algorithm: sha256WithRSAEncryption 73:cd:73:c7:29:f7:4b:b2:2f:0f:70:43:d4:10:13:e3:ca:7b: 3d:31:88:c5:b4:0a:d2:2d:82:c9:94:2f:86:90:2e:7c:44:cc: 94:f6:ee:24:a8:d1:14:1f:92:58:00:e1:1b:bd:f3:d7:a4:7a: 7d:14:07:0d:74:9a:8a:71:0e:38:8b:e6:fc:fd:30:85:70:d8: 70:af:29:85:b3:9d:9d:fa:43:b9:9e:9c:c9:e0:cc:1c:6d:db: 81:2c:18:d1:44:5c:ee:57:d0:5c:b8:c6:49:86:a5:0d:82:99: 23:3d:e3:c6:49:01:17:f4:7a:e6:08:99:7a:d8:34:91:bb:4a: 68:fe:ab:85:c7:b6:f2:d3:45:67:b6:37:41:51:54:46:6a:95: 77:0a:aa:32:52:89:8d:d5:2d:3a:24:c0:d9:d5:4e:77:19:02: 1f:4c:ff:22:eb:f3:2a:c4:6a:0a:79:ce:86:b1:1b:06:5e:53: 5e:38:eb:77:b0:49:e4:54:cf:c3:59:b1:60:e4:78:be:07:b0: 92:50:da:ab:1c:22:ab:2d:c3:97:1a:40:d3:fd:87:d4:d8:92: bc:5b:f6:81:97:1a:b2:39:b6:ab:ba:24:eb:3c:21:a6:a1:d6: 83:04:01:b1:28:f3:bf:5a:b5:fb:b7:61:56:15:a5:0c:c2:f7: 05:a7:ec:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUClpvbLbedZJ+pyS1kzLI4QorxPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMw MkVBN0Q5RTAeFw0yMzA3MzEwMDAwNDlaFw0yNDA3MjkwMDA1NDlaMDMxMTAvBgNV BAMTKDE2NkEyNEY3OEY5Mjc0RTg3QTM0NkM2MDA5NjVCODFBQzJFNkMwNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRBDEgdQV3TJfs3q197lT9Gxn5 mVBTKWPfbRT0UxeQ/NqLXclz5XE37Qp9aoMjIBS37Mucz8S8KDGnkeMFKO6UWoPv eQaVVT/kOh1qk92fFrp4OPY8IFbr09MT/q0URsYmkocFvtsWm17cqjJgrS8llyx8 RBYMQMy/yYdMelO6d/b/9QJOmHiXQXr586tt3+PTlb1snfHGkYYsFaXF5bqXXtsa 6A7ugdikrjsnm79jfutgfiV4O+LIY+vpfO7Yxbw91sIaHLQ502oetsdHSq2SUXrH dX1Omth3thjiPWBCJg9pWr/1i7Fb8Bd0ooRWpp64mDINJ4NfoFH14yH2oj+/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFmok94+SdOh6NGxgCWW4GsLmwHEwHwYDVR0j BBgwFoAU2+kVYOvljzHwH1Q9dRsD/ALqfZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NzI4Yzc3Yi0yMTAwLTRmMmEtOTBkOS0wOGM1M2U4NDFlMWIvMC9EQkU5MTU2MEVC RTU4RjMxRjAxRjU0M0Q3NTFCMDNGQzAyRUE3RDlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMwMkVB N0Q5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3MjhjNzdiLTIxMDAtNGYyYS05 MGQ5LTA4YzUzZTg0MWUxYi8wLzMxMzAzMzJlMzEzNTMyMmUzNzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5hIMA0GCSqG SIb3DQEBCwUAA4IBAQBzzXPHKfdLsi8PcEPUEBPjyns9MYjFtArSLYLJlC+GkC58 RMyU9u4kqNEUH5JYAOEbvfPXpHp9FAcNdJqKcQ44i+b8/TCFcNhwrymFs52d+kO5 npzJ4MwcbduBLBjRRFzuV9BcuMZJhqUNgpkjPePGSQEX9HrmCJl62DSRu0po/quF x7by00VntjdBUVRGapV3CqoyUomN1S06JMDZ1U53GQIfTP8i6/MqxGoKec6GsRsG XlNeOOt3sEnkVM/DWbFg5Hi+B7CSUNqrHCKrLcOXGkDT/YfU2JK8W/aBlxqyObar uiTrPCGmodaDBAGxKPO/WrX7t2FWFaUMwvcFp+zu -----END CERTIFICATE-----Generated at Thu Apr 25 09:16:51 2024 by rpki-client on console-ams.rpki-client.org