$ rpki-client -vvf repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa File: 3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa (raw, json) Hash identifier: 00Medh3iJDdM+GaZSfxwXYeXsE2k/jJy5x2ACG+4emI= Subject key identifier: 33:83:63:F9:CC:76:1D:79:10:5A:8D:33:41:00:BF:D8:F8:10:32:26 Certificate issuer: /CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Certificate serial: 1BBC1CF4A76538CE1DD54920DC214A0241BE283C Authority key identifier: 45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa Signing time: Tue 05 Dec 2023 10:05:22 +0000 ROA not before: Tue 05 Dec 2023 10:00:22 +0000 ROA not after: Tue 03 Dec 2024 10:05:22 +0000 asID: 140454 IP address blocks: 103.108.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 22:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:bc:1c:f4:a7:65:38:ce:1d:d5:49:20:dc:21:4a:02:41:be:28:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Validity Not Before: Dec 5 10:00:22 2023 GMT Not After : Dec 3 10:05:22 2024 GMT Subject: CN=338363F9CC761D79105A8D334100BFD8F8103226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b4:86:68:e8:ea:ea:1d:98:2f:48:bc:5a:2c: 4f:6a:82:5e:de:2e:93:db:2b:ac:89:f4:f0:88:15: df:fb:e6:58:d3:d3:9f:23:2d:37:81:4d:b1:94:e8: 82:b0:82:c3:d7:00:b6:96:fd:45:40:6b:a0:06:3a: 93:24:23:15:b7:38:f3:ef:8b:fe:ec:3b:cd:9c:be: 54:bb:69:df:a1:ef:1b:eb:0c:da:cc:da:6e:f3:62: cb:3d:38:84:4b:6d:56:6a:fd:cf:4b:3b:2a:52:7a: f7:68:5a:55:a7:9f:ca:01:ad:5b:60:15:f2:71:bb: 47:09:7e:37:3c:35:7c:43:89:d7:98:9f:01:9b:a1: 79:ec:fe:89:9d:31:15:6a:61:2c:1b:0b:cd:d4:08: 4e:5c:fc:af:a1:0d:f7:91:25:03:8d:73:4d:a7:76: bf:07:a8:f0:dc:66:09:98:bf:77:00:70:55:55:17: d4:7b:bf:b3:ef:6c:7b:aa:f6:9d:7b:93:39:c2:8e: 64:40:c4:eb:ef:6d:b9:70:b3:33:a6:cb:ac:f7:3e: 82:7a:6f:a4:ed:13:e8:19:e1:85:fe:ca:b4:2e:98: 90:5c:3e:8b:b2:1f:c5:5e:e7:d1:b9:23:dc:c3:ab: 0f:2d:3b:82:57:f9:a6:c1:5e:fb:bf:a0:d8:fc:de: 4d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:83:63:F9:CC:76:1D:79:10:5A:8D:33:41:00:BF:D8:F8:10:32:26 X509v3 Authority Key Identifier: keyid:45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.156.0/22 Signature Algorithm: sha256WithRSAEncryption b9:73:5c:32:fc:a6:79:83:14:c6:2f:42:a3:f8:b1:00:64:b1: 63:32:b5:17:9d:42:81:df:3d:ef:ca:39:3a:67:f0:96:0d:db: 33:21:c7:92:a9:29:6a:63:5a:1e:1a:48:5f:36:01:62:7a:8c: 5e:44:c9:df:a6:ad:ed:ba:81:b7:a4:c8:d3:4c:bc:98:56:4a: 35:c8:e2:38:53:f0:93:08:c8:87:8b:9b:ec:74:17:ce:fa:85: 7b:7b:67:9e:d6:c8:01:cc:9d:01:f2:a6:c6:ef:59:33:af:87: 66:3a:88:c8:f8:02:b2:9b:9c:8f:88:68:71:f6:9c:9c:0c:a2: 7b:ed:db:5d:a3:5f:1c:16:21:e4:0c:4e:1d:9f:50:50:82:34: 36:94:b2:55:0f:8c:a6:49:35:e3:d7:68:21:37:ab:27:e3:e2: 02:ff:a8:1c:3d:fe:88:6f:60:ce:90:33:dd:ec:9b:d6:da:53: ff:f3:f3:33:9f:d7:90:39:7c:13:55:34:ea:a7:c3:bf:32:f9: d0:7d:b0:4f:e4:c8:fb:53:69:1e:f8:80:96:4c:be:57:16:fe: 48:a1:c5:2f:56:f3:cf:7f:9c:47:3e:6f:e3:36:93:d0:63:db: cb:93:84:fc:6c:22:f2:7f:50:19:9a:ac:5b:b8:21:59:4c:00: e9:37:e8:16 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG7wc9KdlOM4d1Ukg3CFKAkG+KDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5 NUZDRUM3MDAeFw0yMzEyMDUxMDAwMjJaFw0yNDEyMDMxMDA1MjJaMDMxMTAvBgNV BAMTKDMzODM2M0Y5Q0M3NjFENzkxMDVBOEQzMzQxMDBCRkQ4RjgxMDMyMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmtIZo6OrqHZgvSLxaLE9qgl7e LpPbK6yJ9PCIFd/75ljT058jLTeBTbGU6IKwgsPXALaW/UVAa6AGOpMkIxW3OPPv i/7sO82cvlS7ad+h7xvrDNrM2m7zYss9OIRLbVZq/c9LOypSevdoWlWnn8oBrVtg FfJxu0cJfjc8NXxDideYnwGboXns/omdMRVqYSwbC83UCE5c/K+hDfeRJQONc02n dr8HqPDcZgmYv3cAcFVVF9R7v7PvbHuq9p17kznCjmRAxOvvbblwszOmy6z3PoJ6 b6TtE+gZ4YX+yrQumJBcPouyH8Ve59G5I9zDqw8tO4JX+abBXvu/oNj83k1tAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUM4Nj+cx2HXkQWo0zQQC/2PgQMiYwHwYDVR0j BBgwFoAURRZMIOr3+rWD+xLIFycVCJX87HAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWFlMTJmYS05OGZkLTRlNTEtOTgwZS1hZDVmNWI5MGQ3YTYvMC80NTE2NEMyMEVB RjdGQUI1ODNGQjEyQzgxNzI3MTUwODk1RkNFQzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5NUZD RUM3MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYWUxMmZhLTk4ZmQtNGU1MS05 ODBlLWFkNWY1YjkwZDdhNi8wLzMxMzAzMzJlMzEzMDM4MmUzMTM1MzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnbJwwDQYJ KoZIhvcNAQELBQADggEBALlzXDL8pnmDFMYvQqP4sQBksWMytRedQoHfPe/KOTpn 8JYN2zMhx5KpKWpjWh4aSF82AWJ6jF5Eyd+mre26gbekyNNMvJhWSjXI4jhT8JMI yIeLm+x0F876hXt7Z57WyAHMnQHypsbvWTOvh2Y6iMj4ArKbnI+IaHH2nJwMonvt 212jXxwWIeQMTh2fUFCCNDaUslUPjKZJNePXaCE3qyfj4gL/qBw9/ohvYM6QM93s m9baU//z8zOf15A5fBNVNOqnw78y+dB9sE/kyPtTaR74gJZMvlcW/kihxS9W889/ nEc+b+M2k9Bj28uThPxsIvJ/UBmarFu4IVlMAOk36BY= -----END CERTIFICATE-----Generated at Thu May 2 00:09:49 2024 by rpki-client on console-ams.rpki-client.org