$ rpki-client -vvf repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/3130332e3135342e35322e302f32342d3234203d3e20313430343739.roa File: 3130332e3135342e35322e302f32342d3234203d3e20313430343739.roa (raw, json) Hash identifier: vTG0nt26XBw7gKe+bDeNY95JDiYKUGS/pYsFujRRxsw= Subject key identifier: D5:8D:20:65:0D:F1:D7:58:D8:67:1F:A4:21:6A:59:4D:B4:A6:42:31 Certificate issuer: /CN=7470038419B67CD1743CE4D96953077ECE6928FE Certificate serial: 78859AE7FD83D6F59ECC4A4507A0B5B36DE70E21 Authority key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/3130332e3135342e35322e302f32342d3234203d3e20313430343739.roa Signing time: Tue 05 Dec 2023 11:00:02 +0000 ROA not before: Tue 05 Dec 2023 10:55:02 +0000 ROA not after: Tue 03 Dec 2024 11:00:02 +0000 asID: 140479 IP address blocks: 103.154.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:85:9a:e7:fd:83:d6:f5:9e:cc:4a:45:07:a0:b5:b3:6d:e7:0e:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7470038419B67CD1743CE4D96953077ECE6928FE Validity Not Before: Dec 5 10:55:02 2023 GMT Not After : Dec 3 11:00:02 2024 GMT Subject: CN=D58D20650DF1D758D8671FA4216A594DB4A64231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7a:af:5a:43:2f:1c:34:cd:20:02:b9:af:49: 45:b6:36:39:9f:1f:09:14:08:0a:98:c4:1b:61:39: ca:2c:25:68:f1:7e:da:b7:f9:54:05:b4:8d:f3:43: f9:fb:20:d7:3c:52:b2:4e:7d:89:33:54:3d:79:4a: 1f:fd:c8:03:ef:69:47:af:d3:1e:e5:a7:fd:c3:23: a1:0e:ef:9b:e1:0f:c9:04:d0:dc:07:89:94:e1:00: b9:ec:ce:cb:5f:6a:3d:54:f5:d3:29:61:0d:c3:6c: a3:fb:73:0b:bd:39:08:7c:e6:fe:67:31:8f:57:c1: ef:92:30:46:cd:26:c2:30:15:f4:e0:b1:25:d6:e4: 0d:71:2a:bd:39:89:af:e6:54:a8:0e:d3:6a:79:20: 48:a3:f5:63:4b:36:43:0a:01:60:14:ef:0e:27:c9: 5d:17:d0:cc:76:73:f2:49:93:64:0c:50:e9:c8:72: 91:64:f4:e0:04:b2:9f:9a:63:cc:dc:8f:b7:e8:70: 8d:6a:7f:47:72:93:d6:a8:8c:f8:d8:a2:36:9b:74: 94:00:d8:0c:11:e2:ab:8e:ac:6e:6a:7f:b5:f2:80: cb:b7:46:23:c3:ef:a9:9a:2d:0d:5a:cc:60:2f:86: d8:fd:1e:c6:68:62:e0:96:5f:67:3a:ae:57:81:96: e5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:8D:20:65:0D:F1:D7:58:D8:67:1F:A4:21:6A:59:4D:B4:A6:42:31 X509v3 Authority Key Identifier: keyid:74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/3130332e3135342e35322e302f32342d3234203d3e20313430343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.52.0/24 Signature Algorithm: sha256WithRSAEncryption 82:13:e1:58:00:15:d2:99:66:27:af:39:82:9b:f0:40:41:14: bc:04:68:3d:03:22:3d:18:0e:c6:9e:5a:86:73:08:0b:b3:ed: 2f:84:36:69:b9:ea:3b:83:f2:b0:7e:d4:ed:23:2f:9d:08:59: 03:16:f3:23:b6:80:c5:38:cf:86:c9:1e:1a:ed:ce:be:a4:78: d6:c0:9e:e1:8e:ca:dd:4a:e1:a9:2e:07:f9:75:32:d3:ee:e3: 15:2d:9f:f4:12:6a:2c:9b:d9:d3:84:59:9f:45:47:82:b1:25: 5f:00:f1:39:31:a9:b7:cf:97:df:f3:33:b4:64:f6:a5:07:e9: 84:e0:b2:44:41:e7:61:44:aa:a0:7c:7c:ae:f3:fa:55:00:0a: 14:8b:d9:64:9c:4b:01:b8:92:f8:68:35:f1:42:76:46:7b:59: f1:82:56:af:a3:86:54:fb:24:d8:23:6c:ae:7a:f0:ce:36:c5: 6a:1a:38:55:27:ba:fa:21:e6:d9:2c:2e:f8:6f:49:00:a6:fc: 05:fd:4a:8b:05:0c:ae:76:e2:83:20:e2:ff:c7:e8:df:72:bd: 8f:d2:56:19:65:a5:e7:1b:d4:ed:e0:16:d7:55:b1:2e:90:dd: 58:92:3e:08:84:a0:fa:79:2b:19:85:ea:2f:20:b5:97:f7:81: c8:ff:d1:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeIWa5/2D1vWezEpFB6C1s23nDiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VD RTY5MjhGRTAeFw0yMzEyMDUxMDU1MDJaFw0yNDEyMDMxMTAwMDJaMDMxMTAvBgNV BAMTKEQ1OEQyMDY1MERGMUQ3NThEODY3MUZBNDIxNkE1OTREQjRBNjQyMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKeq9aQy8cNM0gArmvSUW2Njmf HwkUCAqYxBthOcosJWjxftq3+VQFtI3zQ/n7INc8UrJOfYkzVD15Sh/9yAPvaUev 0x7lp/3DI6EO75vhD8kE0NwHiZThALnszstfaj1U9dMpYQ3DbKP7cwu9OQh85v5n MY9Xwe+SMEbNJsIwFfTgsSXW5A1xKr05ia/mVKgO02p5IEij9WNLNkMKAWAU7w4n yV0X0Mx2c/JJk2QMUOnIcpFk9OAEsp+aY8zcj7focI1qf0dyk9aojPjYojabdJQA 2AwR4quOrG5qf7XygMu3RiPD76maLQ1azGAvhtj9HsZoYuCWX2c6rleBluUbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1Y0gZQ3x11jYZx+kIWpZTbSmQjEwHwYDVR0j BBgwFoAUdHADhBm2fNF0POTZaVMHfs5pKP4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Yzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMC83NDcwMDM4NDE5 QjY3Q0QxNzQzQ0U0RDk2OTUzMDc3RUNFNjkyOEZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VDRTY5 MjhGRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUxLWIwYjEtNDM1ZC1h NjZiLTYwNGM2ZTVkMjllZi8wLzMxMzAzMzJlMzEzNTM0MmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5o0MA0GCSqG SIb3DQEBCwUAA4IBAQCCE+FYABXSmWYnrzmCm/BAQRS8BGg9AyI9GA7GnlqGcwgL s+0vhDZpueo7g/KwftTtIy+dCFkDFvMjtoDFOM+GyR4a7c6+pHjWwJ7hjsrdSuGp Lgf5dTLT7uMVLZ/0Emosm9nThFmfRUeCsSVfAPE5Mam3z5ff8zO0ZPalB+mE4LJE QedhRKqgfHyu8/pVAAoUi9lknEsBuJL4aDXxQnZGe1nxglavo4ZU+yTYI2yuevDO NsVqGjhVJ7r6IebZLC74b0kApvwF/UqLBQyuduKDIOL/x+jfcr2P0lYZZaXnG9Tt 4BbXVbEukN1Ykj4IhKD6eSsZheovILWX94HI/9EC -----END CERTIFICATE-----Generated at Sat Jun 1 04:06:50 2024 by rpki-client on console-ams.rpki-client.org