$ rpki-client -vvf repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32342d3234203d3e20313430343433.roa File: 3130332e3135322e3131382e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: 2ZerJNqT3stnaRdU/AlWY/jZ6uAmMZ4tkD8jX0DxCH8= Subject key identifier: 5A:92:76:38:7E:0B:3B:CA:27:F3:37:05:EF:BB:6F:E6:6B:F0:4A:FB Certificate issuer: /CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F Certificate serial: 2A3AA3F89051609FC0D4DA3A2AB9FFA0EA640015 Authority key identifier: 6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32342d3234203d3e20313430343433.roa Signing time: Wed 16 Aug 2023 18:00:00 +0000 ROA not before: Wed 16 Aug 2023 17:55:00 +0000 ROA not after: Wed 14 Aug 2024 18:00:00 +0000 asID: 140443 IP address blocks: 103.152.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.crl rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:3a:a3:f8:90:51:60:9f:c0:d4:da:3a:2a:b9:ff:a0:ea:64:00:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F Validity Not Before: Aug 16 17:55:00 2023 GMT Not After : Aug 14 18:00:00 2024 GMT Subject: CN=5A9276387E0B3BCA27F33705EFBB6FE66BF04AFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e7:d8:d5:8d:94:af:99:69:e1:bd:c4:6a:9c: 5d:15:b8:58:4b:68:d1:56:59:1f:f1:dd:bc:1e:d2: 48:38:a5:dc:39:46:c5:d0:b1:de:99:78:bb:6e:99: f2:26:ed:2f:15:d0:cd:5d:50:07:44:36:ee:8d:66: 73:65:ad:74:80:73:3c:27:84:26:45:b8:b5:0b:8e: ef:fa:51:8b:6b:ac:6f:fa:3b:19:77:47:67:7f:20: ca:26:f4:2c:aa:06:b0:dd:bb:b1:8c:db:f0:41:a5: 5b:d4:52:5d:68:42:43:15:ab:c8:19:54:f0:98:2e: cf:83:68:d5:e5:99:bd:8e:46:63:96:31:50:b7:99: 00:b7:e1:4a:cd:20:b3:e7:cc:d2:91:f5:9a:33:7b: 7f:c8:07:40:f2:6c:87:20:73:bd:45:d9:28:fa:83: 85:5b:2a:c4:98:40:21:bc:f3:13:12:44:50:9a:94: be:19:61:42:1c:b4:71:f8:fe:d7:7b:44:22:d4:01: 38:5e:d7:0f:0c:8e:38:53:fc:7e:48:03:56:aa:24: b1:ff:84:68:0c:9c:e9:3c:ba:4f:bc:6d:fb:4b:42: 76:25:6d:e3:0c:00:e4:b3:44:70:13:dc:0c:16:2f: ba:52:a7:0d:a4:0f:84:6b:a4:d5:25:9a:35:5a:55: b4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:92:76:38:7E:0B:3B:CA:27:F3:37:05:EF:BB:6F:E6:6B:F0:4A:FB X509v3 Authority Key Identifier: keyid:6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.118.0/24 Signature Algorithm: sha256WithRSAEncryption a1:08:9b:67:01:c6:7d:fc:8d:6e:a9:93:f1:70:78:dd:25:05: 2b:db:81:8f:17:1f:a8:89:0f:7d:d4:4a:23:26:5f:02:e2:54: 96:6a:52:9e:62:ac:10:fa:7a:cd:86:bc:cc:c2:42:a4:b2:90: de:0f:03:0e:7e:7c:36:bf:cf:1e:19:d0:35:9f:3c:69:c3:4e: 9a:f8:af:99:c0:19:0b:09:6a:42:2e:b2:3e:4c:d1:f1:17:0f: 97:f7:19:64:65:5a:1a:db:fb:da:95:81:69:5d:8d:40:ef:c8: cb:df:fb:33:a5:b4:e7:0b:f4:72:8c:e0:b9:97:84:be:4f:b1: 81:44:d5:01:56:b5:20:57:29:e7:4b:5c:71:c7:dd:b0:e6:97: c7:08:e3:d2:a6:f2:4f:ad:7b:f3:a3:e0:58:76:c9:a7:cf:18: 40:13:0d:a7:c0:9d:53:fc:f8:4b:71:cd:05:43:69:d4:03:06: 87:8d:cb:b9:33:02:d6:b2:36:5c:f2:f8:a2:ea:53:f7:44:7b: 39:5f:20:27:eb:7c:41:60:1b:1b:cc:78:04:19:6c:fd:1b:d3: 6e:ad:19:aa:7b:57:e3:83:84:24:a6:17:e0:7d:24:92:88:cf: 81:0f:7e:1f:46:17:e5:b9:65:09:32:3c:72:97:4b:15:fa:be: 4e:f4:15:97 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKjqj+JBRYJ/A1No6Krn/oOpkABUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRDQzY5NTA4RUY0RTY3MEVGQkM1QzY5MjAzRDZCMTIw RkE5MzkyRjAeFw0yMzA4MTYxNzU1MDBaFw0yNDA4MTQxODAwMDBaMDMxMTAvBgNV BAMTKDVBOTI3NjM4N0UwQjNCQ0EyN0YzMzcwNUVGQkI2RkU2NkJGMDRBRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDt59jVjZSvmWnhvcRqnF0VuFhL aNFWWR/x3bwe0kg4pdw5RsXQsd6ZeLtumfIm7S8V0M1dUAdENu6NZnNlrXSAczwn hCZFuLULju/6UYtrrG/6Oxl3R2d/IMom9CyqBrDdu7GM2/BBpVvUUl1oQkMVq8gZ VPCYLs+DaNXlmb2ORmOWMVC3mQC34UrNILPnzNKR9Zoze3/IB0DybIcgc71F2Sj6 g4VbKsSYQCG88xMSRFCalL4ZYUIctHH4/td7RCLUAThe1w8MjjhT/H5IA1aqJLH/ hGgMnOk8uk+8bftLQnYlbeMMAOSzRHAT3AwWL7pSpw2kD4RrpNUlmjVaVbS/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWpJ2OH4LO8on8zcF77tv5mvwSvswHwYDVR0j BBgwFoAUbcxpUI705nDvvFxpID1rEg+pOS8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjA3M2FjZS1hNjkxLTQ4NjMtOWMxYy01OWIyZGI5Y2I0NjMvMC82RENDNjk1MDhF RjRFNjcwRUZCQzVDNjkyMDNENkIxMjBGQTkzOTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRDQzY5NTA4RUY0RTY3MEVGQkM1QzY5MjAzRDZCMTIwRkE5 MzkyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMDczYWNlLWE2OTEtNDg2My05 YzFjLTU5YjJkYjljYjQ2My8wLzMxMzAzMzJlMzEzNTMyMmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmHYwDQYJ KoZIhvcNAQELBQADggEBAKEIm2cBxn38jW6pk/FweN0lBSvbgY8XH6iJD33USiMm XwLiVJZqUp5irBD6es2GvMzCQqSykN4PAw5+fDa/zx4Z0DWfPGnDTpr4r5nAGQsJ akIusj5M0fEXD5f3GWRlWhrb+9qVgWldjUDvyMvf+zOltOcL9HKM4LmXhL5PsYFE 1QFWtSBXKedLXHHH3bDml8cI49Km8k+te/Oj4Fh2yafPGEATDafAnVP8+EtxzQVD adQDBoeNy7kzAtayNlzy+KLqU/dEezlfICfrfEFgGxvMeAQZbP0b026tGap7V+OD hCSmF+B9JJKIz4EPfh9GF+W5ZQkyPHKXSxX6vk70FZc= -----END CERTIFICATE-----Generated at Fri May 3 11:55:18 2024 by rpki-client on console-fra.rpki-client.org