$ rpki-client -vvf repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/3130332e31372e3139322e302f32342d3234203d3e20313331373836.roa File: 3130332e31372e3139322e302f32342d3234203d3e20313331373836.roa (raw, json) Hash identifier: 0S9kP4+sQFhI1WaavQmssHc5hZcSavzP/4M80c3dFlI= Subject key identifier: 41:B7:F0:55:EE:91:A0:F6:EA:B2:4C:69:10:3C:75:0D:77:4B:56:9C Certificate issuer: /CN=5715F968646EAE08576ECCEF3FABAC250A40A47B Certificate serial: 5A47755AE6648120F1D7E96F369BB7CB7C153AEC Authority key identifier: 57:15:F9:68:64:6E:AE:08:57:6E:CC:EF:3F:AB:AC:25:0A:40:A4:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5715F968646EAE08576ECCEF3FABAC250A40A47B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/3130332e31372e3139322e302f32342d3234203d3e20313331373836.roa Signing time: Mon 31 Jul 2023 00:03:42 +0000 ROA not before: Sun 30 Jul 2023 23:58:42 +0000 ROA not after: Mon 29 Jul 2024 00:03:42 +0000 asID: 131786 IP address blocks: 103.17.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/5715F968646EAE08576ECCEF3FABAC250A40A47B.crl rsync://repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/5715F968646EAE08576ECCEF3FABAC250A40A47B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5715F968646EAE08576ECCEF3FABAC250A40A47B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:47:75:5a:e6:64:81:20:f1:d7:e9:6f:36:9b:b7:cb:7c:15:3a:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5715F968646EAE08576ECCEF3FABAC250A40A47B Validity Not Before: Jul 30 23:58:42 2023 GMT Not After : Jul 29 00:03:42 2024 GMT Subject: CN=41B7F055EE91A0F6EAB24C69103C750D774B569C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0f:4c:8f:7f:f8:b2:bf:7a:f7:7b:fb:d2:74: be:58:1d:66:a4:04:26:fa:f2:98:4c:90:f4:6f:f0: 90:39:ce:08:b4:aa:c3:ff:5e:6c:7f:96:05:bb:b3: bc:96:76:02:0d:ba:02:1f:af:f5:ea:a3:ec:0b:67: 7d:06:e3:22:42:c6:6a:62:25:c1:56:7e:e8:7f:2a: 84:89:39:89:c7:f6:cc:fd:08:1d:85:e5:32:f9:d2: 78:2e:bc:2a:09:c7:27:52:13:e3:f1:cd:c9:5d:88: 13:fc:95:f9:4d:ba:72:47:68:5f:6b:57:fd:d2:96: 87:13:0a:21:30:f5:4a:bb:5f:44:b4:30:73:96:cc: 9f:ab:73:74:07:85:f6:6c:c0:f0:c0:dc:8c:69:33: 26:57:78:08:30:16:b5:57:80:98:39:f6:75:78:94: 71:34:f5:f8:28:39:ca:47:1d:4b:ed:5e:52:0e:03: 24:2e:27:42:03:67:35:a6:96:87:e7:dd:82:f6:6f: 9b:e8:57:5f:80:d1:0b:d4:dc:04:f5:95:51:19:48: ac:52:9c:4f:0c:df:81:41:64:e7:2a:15:15:a5:e6: f0:33:b2:ef:55:69:03:bb:b0:44:58:ab:cc:c0:d7: e0:ad:e6:52:92:23:55:4f:45:e2:29:94:9f:7e:76: 9d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B7:F0:55:EE:91:A0:F6:EA:B2:4C:69:10:3C:75:0D:77:4B:56:9C X509v3 Authority Key Identifier: keyid:57:15:F9:68:64:6E:AE:08:57:6E:CC:EF:3F:AB:AC:25:0A:40:A4:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/5715F968646EAE08576ECCEF3FABAC250A40A47B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5715F968646EAE08576ECCEF3FABAC250A40A47B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/3130332e31372e3139322e302f32342d3234203d3e20313331373836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.192.0/24 Signature Algorithm: sha256WithRSAEncryption 86:b2:76:aa:f4:be:e2:9e:79:f0:7f:7c:e1:10:d0:96:42:e5: e3:a9:31:4a:15:a8:bf:1f:b9:2f:ef:6c:2f:22:fa:ce:f5:ee: de:54:5c:6e:72:ee:42:9d:1e:3c:b8:4e:d3:65:ad:12:3d:f3: 29:18:5e:fc:66:03:d3:c7:50:b3:fc:85:0b:0b:56:0f:ed:58: 1f:6e:b9:7b:78:99:09:77:44:8d:aa:11:75:c7:aa:c9:9b:c5: c6:5c:af:f8:6a:f6:4e:a6:b0:b3:9a:97:50:13:1a:d2:dc:af: b2:8e:fc:1a:2e:6d:9f:36:a4:59:d6:ac:f0:e9:20:66:f8:f0: 1c:b5:fb:e1:96:5d:e5:01:c9:f7:9e:73:92:bf:8a:cc:79:5a: 53:7b:69:67:a4:58:8d:2c:34:7b:67:b8:e5:28:66:4e:0a:8d: 72:65:30:a8:1f:50:fd:9f:69:0f:a3:c4:eb:ea:16:e0:9f:17: 52:19:a0:22:ca:6b:8b:54:86:22:7a:07:cf:0d:d6:39:e2:23: e5:5a:1d:d3:05:aa:0f:a0:ee:f6:96:ee:16:d1:50:df:e5:97: 3c:55:48:db:4a:83:d9:27:2a:95:8c:a2:30:4b:31:22:e3:7b: d4:47:60:4d:78:78:ab:5b:41:e0:20:c9:47:0c:88:c8:f8:a3: ed:fa:ad:1b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWkd1WuZkgSDx1+lvNpu3y3wVOuwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTcxNUY5Njg2NDZFQUUwODU3NkVDQ0VGM0ZBQkFDMjUw QTQwQTQ3QjAeFw0yMzA3MzAyMzU4NDJaFw0yNDA3MjkwMDAzNDJaMDMxMTAvBgNV BAMTKDQxQjdGMDU1RUU5MUEwRjZFQUIyNEM2OTEwM0M3NTBENzc0QjU2OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlD0yPf/iyv3r3e/vSdL5YHWak BCb68phMkPRv8JA5zgi0qsP/Xmx/lgW7s7yWdgINugIfr/Xqo+wLZ30G4yJCxmpi JcFWfuh/KoSJOYnH9sz9CB2F5TL50nguvCoJxydSE+PxzcldiBP8lflNunJHaF9r V/3SlocTCiEw9Uq7X0S0MHOWzJ+rc3QHhfZswPDA3IxpMyZXeAgwFrVXgJg59nV4 lHE09fgoOcpHHUvtXlIOAyQuJ0IDZzWmlofn3YL2b5voV1+A0QvU3AT1lVEZSKxS nE8M34FBZOcqFRWl5vAzsu9VaQO7sERYq8zA1+Ct5lKSI1VPReIplJ9+dp1NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQbfwVe6RoPbqskxpEDx1DXdLVpwwHwYDVR0j BBgwFoAUVxX5aGRurghXbszvP6usJQpApHswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTUxNGQ2MS05OWZmLTQyYTktYmE5YS01OTYxZGQ2OGRiNjUvMC81NzE1Rjk2ODY0 NkVBRTA4NTc2RUNDRUYzRkFCQUMyNTBBNDBBNDdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTcxNUY5Njg2NDZFQUUwODU3NkVDQ0VGM0ZBQkFDMjUwQTQw QTQ3Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNTE0ZDYxLTk5ZmYtNDJhOS1i YTlhLTU5NjFkZDY4ZGI2NS8wLzMxMzAzMzJlMzEzNzJlMzEzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxHAMA0GCSqG SIb3DQEBCwUAA4IBAQCGsnaq9L7innnwf3zhENCWQuXjqTFKFai/H7kv72wvIvrO 9e7eVFxucu5CnR48uE7TZa0SPfMpGF78ZgPTx1Cz/IULC1YP7Vgfbrl7eJkJd0SN qhF1x6rJm8XGXK/4avZOprCzmpdQExrS3K+yjvwaLm2fNqRZ1qzw6SBm+PActfvh ll3lAcn3nnOSv4rMeVpTe2lnpFiNLDR7Z7jlKGZOCo1yZTCoH1D9n2kPo8Tr6hbg nxdSGaAiymuLVIYiegfPDdY54iPlWh3TBaoPoO72lu4W0VDf5Zc8VUjbSoPZJyqV jKIwSzEi43vUR2BNeHirW0HgIMlHDIjI+KPt+q0b -----END CERTIFICATE-----Generated at Tue Apr 23 20:37:37 2024 by rpki-client on console-fra.rpki-client.org