$ rpki-client -vvf repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131392e302f32342d3234203d3e20313430343433.roa File: 3130332e3135322e3131392e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: sML0oATaiw/teUfGg+pQacAHDNvyI7kujN481oJRNUE= Subject key identifier: D8:32:4E:43:41:0D:AD:D5:F4:84:2C:C1:02:E1:F4:10:EA:21:8A:7B Certificate issuer: /CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F Certificate serial: 4B8BEB58B3E66143A0674CBE336DD037013FD2E2 Authority key identifier: 6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131392e302f32342d3234203d3e20313430343433.roa Signing time: Wed 16 Aug 2023 17:00:00 +0000 ROA not before: Wed 16 Aug 2023 16:55:00 +0000 ROA not after: Wed 14 Aug 2024 17:00:00 +0000 asID: 140443 IP address blocks: 103.152.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.crl rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:8b:eb:58:b3:e6:61:43:a0:67:4c:be:33:6d:d0:37:01:3f:d2:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F Validity Not Before: Aug 16 16:55:00 2023 GMT Not After : Aug 14 17:00:00 2024 GMT Subject: CN=D8324E43410DADD5F4842CC102E1F410EA218A7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cf:0d:d6:02:91:72:2f:d5:2a:96:78:d2:73: 91:bd:b6:54:c9:bc:e3:2f:ce:21:e6:4c:e4:fc:4a: 35:e1:6f:7c:a5:07:9f:c8:f3:12:0f:2d:c4:4e:10: 32:44:e0:b0:05:b1:30:69:c9:d8:c9:4d:44:0d:6d: 1e:21:fc:75:e4:24:38:29:fd:1e:4c:0d:54:1b:a1: 08:f8:07:fa:fe:4b:76:72:40:59:88:d3:64:bd:ad: e2:55:45:71:75:c6:17:91:5d:2f:31:25:d4:1a:77: 43:cb:cf:30:94:5e:ba:49:0e:34:ae:b7:6f:41:e5: 57:32:f4:94:72:c1:45:88:93:c8:9b:f2:b3:d1:c0: 56:1c:9d:ad:be:70:96:0b:b7:f1:72:05:ec:9d:07: 47:75:fd:8d:06:97:1a:90:6c:ec:f4:5b:c4:21:b6: ac:5c:5b:96:8d:72:d9:58:1f:55:b9:4e:d5:25:bb: d5:3a:3e:5f:59:b4:fa:a7:51:9e:39:94:9b:fd:c6: 00:7d:31:c2:ae:e2:8c:d8:0b:73:42:3b:c3:67:1b: 83:c9:b3:9b:94:c9:00:0c:93:b1:ea:d4:f6:07:f6: ac:25:e2:1b:75:29:68:19:69:f0:c2:7c:61:50:af: 8e:c3:89:83:8e:fe:c9:14:0e:85:20:f0:2b:1f:23: 6f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:32:4E:43:41:0D:AD:D5:F4:84:2C:C1:02:E1:F4:10:EA:21:8A:7B X509v3 Authority Key Identifier: keyid:6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131392e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.119.0/24 Signature Algorithm: sha256WithRSAEncryption 59:3a:c9:85:61:c3:ec:6c:7d:5c:ec:10:0a:d3:b3:46:61:9e: 6c:ea:39:56:26:e0:64:3c:3a:32:7e:fc:f5:ee:7e:c6:b8:98: 3f:7e:7d:2c:ec:ac:63:f5:59:7d:66:0e:b9:ad:61:94:7e:17: 9b:e6:18:c7:34:aa:d0:9e:91:49:55:ce:24:64:3f:25:d3:07: 12:d3:48:e6:42:50:b8:77:87:ad:c4:f1:a8:a6:68:b3:62:8c: b2:1a:fa:59:5f:e6:cc:14:e3:dd:c0:f4:2f:e7:30:0a:b6:71: a8:74:aa:94:a3:41:cd:c1:09:44:f0:db:53:86:d5:23:82:bf: 5c:91:fc:4d:00:81:a5:67:a8:bd:1c:ce:ec:37:9b:76:f8:21: bc:71:6e:97:ad:0c:9a:bc:b7:f3:6c:93:da:7b:7e:9e:b7:63: 68:81:17:fb:99:1d:1c:24:1e:a3:12:16:ae:cd:8b:2a:dc:ae: 41:a0:32:bd:e5:4c:4b:11:7c:95:3b:68:03:06:c5:35:92:b0: 46:55:59:89:37:e9:a5:09:08:57:fe:d3:04:5d:66:51:9d:64: 6e:08:8e:d3:18:11:cc:7f:e7:3c:72:f6:b4:5b:1b:6a:b0:71: fb:30:9a:fa:29:fa:1b:03:4f:3e:4d:88:00:2a:28:20:c3:5d: 07:f6:c1:5f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUS4vrWLPmYUOgZ0y+M23QNwE/0uIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRDQzY5NTA4RUY0RTY3MEVGQkM1QzY5MjAzRDZCMTIw RkE5MzkyRjAeFw0yMzA4MTYxNjU1MDBaFw0yNDA4MTQxNzAwMDBaMDMxMTAvBgNV BAMTKEQ4MzI0RTQzNDEwREFERDVGNDg0MkNDMTAyRTFGNDEwRUEyMThBN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+zw3WApFyL9UqlnjSc5G9tlTJ vOMvziHmTOT8SjXhb3ylB5/I8xIPLcROEDJE4LAFsTBpydjJTUQNbR4h/HXkJDgp /R5MDVQboQj4B/r+S3ZyQFmI02S9reJVRXF1xheRXS8xJdQad0PLzzCUXrpJDjSu t29B5Vcy9JRywUWIk8ib8rPRwFYcna2+cJYLt/FyBeydB0d1/Y0GlxqQbOz0W8Qh tqxcW5aNctlYH1W5TtUlu9U6Pl9ZtPqnUZ45lJv9xgB9McKu4ozYC3NCO8NnG4PJ s5uUyQAMk7Hq1PYH9qwl4ht1KWgZafDCfGFQr47DiYOO/skUDoUg8CsfI2+VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2DJOQ0ENrdX0hCzBAuH0EOohinswHwYDVR0j BBgwFoAUbcxpUI705nDvvFxpID1rEg+pOS8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjA3M2FjZS1hNjkxLTQ4NjMtOWMxYy01OWIyZGI5Y2I0NjMvMC82RENDNjk1MDhF RjRFNjcwRUZCQzVDNjkyMDNENkIxMjBGQTkzOTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRDQzY5NTA4RUY0RTY3MEVGQkM1QzY5MjAzRDZCMTIwRkE5 MzkyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMDczYWNlLWE2OTEtNDg2My05 YzFjLTU5YjJkYjljYjQ2My8wLzMxMzAzMzJlMzEzNTMyMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmHcwDQYJ KoZIhvcNAQELBQADggEBAFk6yYVhw+xsfVzsEArTs0ZhnmzqOVYm4GQ8OjJ+/PXu fsa4mD9+fSzsrGP1WX1mDrmtYZR+F5vmGMc0qtCekUlVziRkPyXTBxLTSOZCULh3 h63E8aimaLNijLIa+llf5swU493A9C/nMAq2cah0qpSjQc3BCUTw21OG1SOCv1yR /E0AgaVnqL0czuw3m3b4IbxxbpetDJq8t/Nsk9p7fp63Y2iBF/uZHRwkHqMSFq7N iyrcrkGgMr3lTEsRfJU7aAMGxTWSsEZVWYk36aUJCFf+0wRdZlGdZG4IjtMYEcx/ 5zxy9rRbG2qwcfswmvop+hsDTz5NiAAqKCDDXQf2wV8= -----END CERTIFICATE-----Generated at Fri May 3 10:33:23 2024 by rpki-client on console-ams.rpki-client.org