$ rpki-client -vvf repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e3132332e3135382e302f32342d3234203d3e20313332363433.roa File: 3130332e3132332e3135382e302f32342d3234203d3e20313332363433.roa (raw, json) Hash identifier: riVDVwXaTbab1nppF+xqV/7E+CtdbzxL3WMBn2b0F9s= Subject key identifier: 5D:E3:3C:32:04:85:93:2A:C3:72:9E:B1:66:22:D4:95:E1:F6:34:8A Certificate issuer: /CN=54FF141BE96013FE6BC0816D991BCFB4F6618CBE Certificate serial: 16F06DC382C15F8A0DD253474BA61D0596F36B5A Authority key identifier: 54:FF:14:1B:E9:60:13:FE:6B:C0:81:6D:99:1B:CF:B4:F6:61:8C:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e3132332e3135382e302f32342d3234203d3e20313332363433.roa Signing time: Mon 31 Jul 2023 00:08:19 +0000 ROA not before: Mon 31 Jul 2023 00:03:19 +0000 ROA not after: Mon 29 Jul 2024 00:08:19 +0000 asID: 132643 IP address blocks: 103.123.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.crl rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:f0:6d:c3:82:c1:5f:8a:0d:d2:53:47:4b:a6:1d:05:96:f3:6b:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54FF141BE96013FE6BC0816D991BCFB4F6618CBE Validity Not Before: Jul 31 00:03:19 2023 GMT Not After : Jul 29 00:08:19 2024 GMT Subject: CN=5DE33C320485932AC3729EB16622D495E1F6348A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3f:28:4d:19:73:36:46:68:3a:97:de:e1:d2: 71:44:29:86:bb:86:12:9a:2a:2d:c6:2e:d3:6b:92: 40:82:0e:a8:7a:2c:9e:fe:a6:2f:ee:e1:4a:2b:9c: 1b:25:64:73:81:7e:da:64:73:3c:7d:69:27:85:bb: b9:a1:69:b3:34:a8:03:05:f1:79:22:b7:e2:22:29: be:c9:b3:97:93:df:55:9a:82:da:ce:04:8a:ac:74: e2:54:37:29:bd:b6:9f:11:db:cd:41:78:40:58:b2: 9c:96:59:46:e8:5b:24:8d:86:a2:90:ae:cc:d9:09: 50:0d:00:b4:df:e8:c1:5c:c6:97:4b:84:0e:48:53: d3:79:b6:83:a7:40:a7:6f:d7:c8:bf:d8:c6:65:52: 0a:52:75:cb:d1:bd:b5:da:bb:b6:72:1f:b9:aa:5f: dc:e0:49:4d:ba:c8:9a:d9:f3:a3:85:93:b1:76:8d: b2:72:87:0d:12:4a:16:0f:d6:d1:2c:ff:46:c6:7a: 5a:8f:30:df:a1:fa:c1:1f:ca:5f:6b:2d:2a:23:ca: 0a:20:16:a4:01:48:f2:9a:ea:94:f4:3c:3f:8c:d9: 71:41:45:7d:2d:3b:62:c5:b0:d3:bc:28:8a:c6:3f: 37:71:9e:a4:5f:aa:e9:48:02:c7:c9:bc:a7:35:a1: 94:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E3:3C:32:04:85:93:2A:C3:72:9E:B1:66:22:D4:95:E1:F6:34:8A X509v3 Authority Key Identifier: keyid:54:FF:14:1B:E9:60:13:FE:6B:C0:81:6D:99:1B:CF:B4:F6:61:8C:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e3132332e3135382e302f32342d3234203d3e20313332363433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.158.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:a0:2f:86:3c:31:ee:ac:bc:bd:e4:14:44:99:e9:b9:e2:89: 77:f9:23:b1:90:f3:1f:32:6d:70:ea:b0:c2:c9:cf:72:b1:dd: 5a:06:13:d8:19:65:ef:d5:e9:2d:ae:18:3b:e0:e1:df:4a:55: b5:8d:fb:b2:45:c3:82:3e:36:b9:50:68:20:63:51:d6:75:b6: 59:76:55:e2:2b:11:29:5c:51:4e:53:c0:50:b3:7b:7e:5b:c0: 2f:5b:a2:a6:60:23:7d:9c:50:42:3b:f1:b9:50:a7:65:d3:63: 01:3d:7d:42:6c:23:11:a6:d7:71:81:73:4c:d6:4a:cc:ea:8e: dd:31:7b:16:e4:17:9d:77:1d:35:e4:82:71:dd:13:de:5f:db: 3a:a8:d6:52:2c:5b:24:12:6d:67:a1:17:db:59:86:5c:9f:4a: 65:d2:0e:cf:45:57:97:d9:eb:bc:58:ce:a5:78:3d:f4:92:49: d9:e6:6f:64:67:8b:17:c1:1c:34:12:bd:b8:5d:82:4d:ac:5b: cd:5f:a5:f6:e7:17:c6:ee:b4:51:bf:31:1c:69:74:1c:65:22: 22:af:24:2c:ee:d1:a7:bd:b8:81:26:7f:27:97:92:e4:75:81: e6:5b:cf:9c:b2:3d:09:70:18:76:48:ca:a8:46:be:11:8a:5a: c8:03:5b:da -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFvBtw4LBX4oN0lNHS6YdBZbza1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRGRjE0MUJFOTYwMTNGRTZCQzA4MTZEOTkxQkNGQjRG NjYxOENCRTAeFw0yMzA3MzEwMDAzMTlaFw0yNDA3MjkwMDA4MTlaMDMxMTAvBgNV BAMTKDVERTMzQzMyMDQ4NTkzMkFDMzcyOUVCMTY2MjJENDk1RTFGNjM0OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbPyhNGXM2Rmg6l97h0nFEKYa7 hhKaKi3GLtNrkkCCDqh6LJ7+pi/u4UornBslZHOBftpkczx9aSeFu7mhabM0qAMF 8Xkit+IiKb7Js5eT31WagtrOBIqsdOJUNym9tp8R281BeEBYspyWWUboWySNhqKQ rszZCVANALTf6MFcxpdLhA5IU9N5toOnQKdv18i/2MZlUgpSdcvRvbXau7ZyH7mq X9zgSU26yJrZ86OFk7F2jbJyhw0SShYP1tEs/0bGelqPMN+h+sEfyl9rLSojygog FqQBSPKa6pT0PD+M2XFBRX0tO2LFsNO8KIrGPzdxnqRfqulIAsfJvKc1oZQHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXeM8MgSFkyrDcp6xZiLUleH2NIowHwYDVR0j BBgwFoAUVP8UG+lgE/5rwIFtmRvPtPZhjL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2FmMjcxZi1jODNkLTQ0MWUtYmVhOS0xOGEyNDRkMGUwMGUvMC81NEZGMTQxQkU5 NjAxM0ZFNkJDMDgxNkQ5OTFCQ0ZCNEY2NjE4Q0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTRGRjE0MUJFOTYwMTNGRTZCQzA4MTZEOTkxQkNGQjRGNjYx OENCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYWYyNzFmLWM4M2QtNDQxZS1i ZWE5LTE4YTI0NGQwZTAwZS8wLzMxMzAzMzJlMzEzMjMzMmUzMTM1MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne54wDQYJ KoZIhvcNAQELBQADggEBAFugL4Y8Me6svL3kFESZ6bniiXf5I7GQ8x8ybXDqsMLJ z3Kx3VoGE9gZZe/V6S2uGDvg4d9KVbWN+7JFw4I+NrlQaCBjUdZ1tll2VeIrESlc UU5TwFCze35bwC9boqZgI32cUEI78blQp2XTYwE9fUJsIxGm13GBc0zWSszqjt0x exbkF513HTXkgnHdE95f2zqo1lIsWyQSbWehF9tZhlyfSmXSDs9FV5fZ67xYzqV4 PfSSSdnmb2RnixfBHDQSvbhdgk2sW81fpfbnF8butFG/MRxpdBxlIiKvJCzu0ae9 uIEmfyeXkuR1geZbz5yyPQlwGHZIyqhGvhGKWsgDW9o= -----END CERTIFICATE-----Generated at Wed Apr 24 12:29:10 2024 by rpki-client on console-fra.rpki-client.org