$ rpki-client -vvf repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa File: 3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa (raw, json) Hash identifier: 2e3QgDlhYOehP7JMHixNNgkTFaMcLEB73HdIACQiL5c= Subject key identifier: DE:1A:9E:6E:97:CC:14:60:BC:8F:DB:06:99:2F:D2:7A:80:8A:AE:65 Certificate issuer: /CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Certificate serial: 172878AC0D9BF236FA4E99F8A9AC01D08073FEAA Authority key identifier: 45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa Signing time: Tue 05 Dec 2023 10:04:49 +0000 ROA not before: Tue 05 Dec 2023 09:59:49 +0000 ROA not after: Tue 03 Dec 2024 10:04:49 +0000 asID: 140454 IP address blocks: 103.153.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 22:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:28:78:ac:0d:9b:f2:36:fa:4e:99:f8:a9:ac:01:d0:80:73:fe:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Validity Not Before: Dec 5 09:59:49 2023 GMT Not After : Dec 3 10:04:49 2024 GMT Subject: CN=DE1A9E6E97CC1460BC8FDB06992FD27A808AAE65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:91:6e:3f:18:23:5f:3a:71:85:9a:e6:f7:bc: df:5e:43:35:5f:d6:62:e7:f4:52:e2:b7:c9:68:f6: 2d:eb:78:3a:b9:f3:08:9c:0e:76:a8:d1:f3:34:f1: ff:5f:df:3a:85:f2:f2:c0:9a:38:46:46:21:3e:39: 6f:3f:75:38:13:b3:2e:53:13:ac:8d:37:93:eb:03: d1:83:ce:05:25:df:1e:9b:5e:72:a0:15:e7:63:ab: 77:dd:c0:b3:2c:16:eb:0c:1a:84:aa:d6:5a:c4:5e: 9f:55:27:0a:b0:b9:dd:73:da:70:77:4e:e3:a8:ca: c4:ac:4d:56:6f:f4:b7:c7:a9:b2:e7:09:3b:8b:67: 78:8e:20:7f:06:fc:bc:b7:a1:69:69:e9:fb:49:67: 90:9a:4c:34:36:9c:a1:60:fb:3c:1e:ff:ae:f5:7a: 1d:bb:df:51:4f:95:54:68:8f:02:82:50:ea:85:c4: 55:49:82:cd:98:ee:d6:03:08:87:29:07:31:b6:58: e1:2f:ad:77:c1:38:4f:39:b3:fb:5f:9a:7b:a3:14: 0e:03:90:e7:79:30:83:ea:96:b0:de:03:54:14:ea: 9d:ce:39:de:c4:90:80:71:38:88:6d:9b:d1:40:ad: f0:b4:1e:4d:25:46:54:16:a8:ba:04:0c:80:7b:dd: 99:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:1A:9E:6E:97:CC:14:60:BC:8F:DB:06:99:2F:D2:7A:80:8A:AE:65 X509v3 Authority Key Identifier: keyid:45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.40.0/23 Signature Algorithm: sha256WithRSAEncryption 07:e6:ef:37:da:b1:d9:8c:7f:0b:3d:1d:ff:33:16:d3:d8:dc: 1f:0f:3d:1b:d4:d6:1e:b3:82:2e:fc:53:61:0b:cf:2e:d8:b4: 53:e7:3f:8e:8b:7f:d2:96:bc:9b:34:1c:49:e5:32:8e:c6:20: 85:26:a9:22:e3:f4:4c:37:ef:7a:23:80:e1:16:4d:f3:a3:d5: 5b:c3:a0:04:99:84:62:ce:aa:bf:f8:a2:ab:88:db:4a:f9:e7: e2:d0:6e:f8:27:e8:46:f6:ca:58:52:13:d1:32:7f:5d:4f:12: 53:4b:5b:ef:41:46:df:eb:b2:be:0b:ac:06:1c:36:b8:36:ea: 93:38:f2:e2:ac:91:dc:e2:ac:c4:5b:cb:20:4d:12:e4:29:95: 58:e9:90:da:71:83:a4:6a:f9:4b:75:8f:0d:42:08:64:07:2b: 37:93:bc:5f:78:90:0a:4d:0d:d3:35:62:e5:68:87:58:28:87: 7a:55:d1:4f:4d:e0:b1:84:6a:40:90:65:1e:7e:cc:fd:71:d9: e6:b4:72:2c:cd:1a:10:fa:d5:45:86:b7:42:51:fe:14:5e:83: ac:93:a0:6a:73:c4:f9:9e:cd:94:e6:9d:8d:14:44:bf:6c:09: ef:92:c4:df:a0:25:1b:c0:32:9e:00:3e:fc:c8:7c:6b:7d:d0: 61:3c:0b:00 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFyh4rA2b8jb6Tpn4qawB0IBz/qowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5 NUZDRUM3MDAeFw0yMzEyMDUwOTU5NDlaFw0yNDEyMDMxMDA0NDlaMDMxMTAvBgNV BAMTKERFMUE5RTZFOTdDQzE0NjBCQzhGREIwNjk5MkZEMjdBODA4QUFFNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPkW4/GCNfOnGFmub3vN9eQzVf 1mLn9FLit8lo9i3reDq58wicDnao0fM08f9f3zqF8vLAmjhGRiE+OW8/dTgTsy5T E6yNN5PrA9GDzgUl3x6bXnKgFedjq3fdwLMsFusMGoSq1lrEXp9VJwqwud1z2nB3 TuOoysSsTVZv9LfHqbLnCTuLZ3iOIH8G/Ly3oWlp6ftJZ5CaTDQ2nKFg+zwe/671 eh2731FPlVRojwKCUOqFxFVJgs2Y7tYDCIcpBzG2WOEvrXfBOE85s/tfmnujFA4D kOd5MIPqlrDeA1QU6p3OOd7EkIBxOIhtm9FArfC0Hk0lRlQWqLoEDIB73ZmxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3hqebpfMFGC8j9sGmS/SeoCKrmUwHwYDVR0j BBgwFoAURRZMIOr3+rWD+xLIFycVCJX87HAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWFlMTJmYS05OGZkLTRlNTEtOTgwZS1hZDVmNWI5MGQ3YTYvMC80NTE2NEMyMEVB RjdGQUI1ODNGQjEyQzgxNzI3MTUwODk1RkNFQzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5NUZD RUM3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYWUxMmZhLTk4ZmQtNGU1MS05 ODBlLWFkNWY1YjkwZDdhNi8wLzMxMzAzMzJlMzEzNTMzMmUzNDMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5koMA0GCSqG SIb3DQEBCwUAA4IBAQAH5u832rHZjH8LPR3/MxbT2NwfDz0b1NYes4Iu/FNhC88u 2LRT5z+Oi3/SlrybNBxJ5TKOxiCFJqki4/RMN+96I4DhFk3zo9Vbw6AEmYRizqq/ +KKriNtK+efi0G74J+hG9spYUhPRMn9dTxJTS1vvQUbf67K+C6wGHDa4NuqTOPLi rJHc4qzEW8sgTRLkKZVY6ZDacYOkavlLdY8NQghkBys3k7xfeJAKTQ3TNWLlaIdY KId6VdFPTeCxhGpAkGUefsz9cdnmtHIszRoQ+tVFhrdCUf4UXoOsk6Bqc8T5ns2U 5p2NFES/bAnvksTfoCUbwDKeAD78yHxrfdBhPAsA -----END CERTIFICATE-----Generated at Thu May 2 01:04:47 2024 by rpki-client on console-fra.rpki-client.org