$ rpki-client -vvf repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa File: 3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa (raw, json) Hash identifier: Jg4pz3Hkw6f7QYdJvGC5dnSRK8+NePilRXf9XklU4Yk= Subject key identifier: F9:02:E9:BC:1D:96:15:9E:EF:35:29:4F:55:20:E5:27:F4:93:D4:A2 Certificate issuer: /CN=3E788037924369AA3B8E52A5857804BE5D285FA2 Certificate serial: 643996F2C5EC366AE28D0F8A21092C31EFD86726 Authority key identifier: 3E:78:80:37:92:43:69:AA:3B:8E:52:A5:85:78:04:BE:5D:28:5F:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa Signing time: Wed 29 Nov 2023 06:00:00 +0000 ROA not before: Wed 29 Nov 2023 05:55:00 +0000 ROA not after: Wed 27 Nov 2024 06:00:00 +0000 asID: 141645 IP address blocks: 103.162.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.crl rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:39:96:f2:c5:ec:36:6a:e2:8d:0f:8a:21:09:2c:31:ef:d8:67:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E788037924369AA3B8E52A5857804BE5D285FA2 Validity Not Before: Nov 29 05:55:00 2023 GMT Not After : Nov 27 06:00:00 2024 GMT Subject: CN=F902E9BC1D96159EEF35294F5520E527F493D4A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:49:7a:df:e6:24:a6:d0:63:22:7d:a3:71:9f: 4b:08:04:a5:3f:35:69:12:51:02:a3:ad:21:14:e6: 60:f1:c3:d2:cb:ee:1c:d5:d7:d9:74:1a:2a:59:aa: 72:8d:8d:74:66:f7:be:d7:94:31:db:37:cf:97:3a: 9b:41:87:7e:74:1c:43:4d:ea:cb:c7:01:bb:6a:a0: 11:ea:e4:86:35:cf:51:fc:46:11:4f:f8:2b:c1:70: 56:89:76:7a:5b:68:6c:f4:57:fc:10:4d:6a:25:55: 65:13:a0:44:4a:02:45:00:49:b6:80:88:4b:7d:6d: f0:d9:0d:46:af:ef:b1:f7:4e:65:af:32:71:d3:bd: 55:84:b9:94:22:fb:bf:51:0b:7a:2a:5d:a3:74:37: 83:02:eb:84:2a:0b:3e:33:95:11:cc:3c:ff:41:f5: 57:10:9e:29:e8:2c:d7:42:35:cf:27:3f:48:d3:cc: 4a:eb:4c:88:92:10:3a:a6:f0:57:a0:05:a7:c7:50: 60:9f:33:5c:93:f9:ad:26:e6:e7:52:37:32:9b:bb: 3a:92:72:97:44:9e:5c:62:11:56:08:b4:0f:a9:26: 1e:f8:35:66:b7:26:11:1a:de:34:5e:18:83:90:58: d7:36:d7:6d:af:52:9f:bb:31:3f:15:37:6a:8a:d5: 01:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:02:E9:BC:1D:96:15:9E:EF:35:29:4F:55:20:E5:27:F4:93:D4:A2 X509v3 Authority Key Identifier: keyid:3E:78:80:37:92:43:69:AA:3B:8E:52:A5:85:78:04:BE:5D:28:5F:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.54.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:80:87:c9:66:3a:dc:40:67:67:96:f2:e2:d1:14:a5:a2:c9: 2a:49:4f:ef:8b:32:ce:cd:35:eb:b3:ea:0b:c9:41:32:cd:a3: a9:16:5d:39:58:f1:0c:9b:5d:2a:df:7d:1d:25:00:25:36:38: a9:99:a2:f8:f1:21:ec:fd:25:4e:89:09:ef:29:86:c4:a0:e6: e8:c8:cd:1a:b6:e5:e6:b2:77:69:0c:b2:37:c9:01:76:8f:d3: 62:e2:6e:d2:0f:0b:0e:30:b7:76:fb:c9:68:b7:ef:17:9b:b8: 12:8c:95:90:6b:59:ca:07:1a:10:87:da:02:42:1a:c8:49:45: ab:b7:d7:f0:bd:97:2c:39:0b:8d:64:a7:cb:a3:15:56:9e:68: 11:b4:80:3c:04:4e:83:34:68:27:e9:db:46:ee:fb:eb:df:53: fb:d1:f1:fd:a5:d1:bd:7c:a5:8b:9e:d5:b2:06:fc:f8:c3:a0: 0e:2f:9e:d7:63:4b:1b:4c:cf:41:e3:01:bf:fb:fa:7b:0a:4d: 03:62:d4:a9:5a:00:eb:7c:5a:34:da:86:ff:ba:44:d8:fc:48: 78:56:1f:f6:09:34:0d:d0:95:cb:b0:b4:cc:03:5d:9a:80:cd: 05:53:f2:bf:03:e5:06:b4:bb:eb:33:4e:4e:08:62:b0:c3:0e: 13:39:55:28 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZDmW8sXsNmrijQ+KIQksMe/YZyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U3ODgwMzc5MjQzNjlBQTNCOEU1MkE1ODU3ODA0QkU1 RDI4NUZBMjAeFw0yMzExMjkwNTU1MDBaFw0yNDExMjcwNjAwMDBaMDMxMTAvBgNV BAMTKEY5MDJFOUJDMUQ5NjE1OUVFRjM1Mjk0RjU1MjBFNTI3RjQ5M0Q0QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsSXrf5iSm0GMifaNxn0sIBKU/ NWkSUQKjrSEU5mDxw9LL7hzV19l0GipZqnKNjXRm977XlDHbN8+XOptBh350HENN 6svHAbtqoBHq5IY1z1H8RhFP+CvBcFaJdnpbaGz0V/wQTWolVWUToERKAkUASbaA iEt9bfDZDUav77H3TmWvMnHTvVWEuZQi+79RC3oqXaN0N4MC64QqCz4zlRHMPP9B 9VcQninoLNdCNc8nP0jTzErrTIiSEDqm8FegBafHUGCfM1yT+a0m5udSNzKbuzqS cpdEnlxiEVYItA+pJh74NWa3JhEa3jReGIOQWNc2122vUp+7MT8VN2qK1QHJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+QLpvB2WFZ7vNSlPVSDlJ/ST1KIwHwYDVR0j BBgwFoAUPniAN5JDaao7jlKlhXgEvl0oX6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODUzYWZkZC0yZTA5LTQ3NzMtOGJlNC02ZmQwZWU5MGIwNDAvMC8zRTc4ODAzNzky NDM2OUFBM0I4RTUyQTU4NTc4MDRCRTVEMjg1RkEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U3ODgwMzc5MjQzNjlBQTNCOEU1MkE1ODU3ODA0QkU1RDI4 NUZBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4NTNhZmRkLTJlMDktNDc3My04 YmU0LTZmZDBlZTkwYjA0MC8wLzMxMzAzMzJlMzEzNjMyMmUzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6I2MA0GCSqG SIb3DQEBCwUAA4IBAQAPgIfJZjrcQGdnlvLi0RSloskqSU/vizLOzTXrs+oLyUEy zaOpFl05WPEMm10q330dJQAlNjipmaL48SHs/SVOiQnvKYbEoOboyM0atuXmsndp DLI3yQF2j9Ni4m7SDwsOMLd2+8lot+8Xm7gSjJWQa1nKBxoQh9oCQhrISUWrt9fw vZcsOQuNZKfLoxVWnmgRtIA8BE6DNGgn6dtG7vvr31P70fH9pdG9fKWLntWyBvz4 w6AOL57XY0sbTM9B4wG/+/p7Ck0DYtSpWgDrfFo02ob/ukTY/Eh4Vh/2CTQN0JXL sLTMA12agM0FU/K/A+UGtLvrM05OCGKwww4TOVUo -----END CERTIFICATE-----Generated at Fri May 3 15:16:06 2024 by rpki-client on console-ams.rpki-client.org