$ rpki-client -vvf repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa File: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (raw, json) Hash identifier: Om3EIO8Z43OlsQAXn+7E4IJIJpjBYpWvrj00qh4r5xY= Subject key identifier: 06:43:6F:4F:28:C7:E8:E0:88:DB:9A:A7:07:0E:74:7D:87:1C:33:43 Certificate issuer: /CN=5C559181306986EE89AADF0A1CFC78EA8A093530 Certificate serial: 02D7F2CA2D9CE025F9AEC9DF3E39F1803997915A Authority key identifier: 5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C559181306986EE89AADF0A1CFC78EA8A093530.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa Signing time: Thu 26 Oct 2023 07:13:16 +0000 ROA not before: Thu 26 Oct 2023 07:08:16 +0000 ROA not after: Thu 24 Oct 2024 07:13:16 +0000 asID: 151556 IP address blocks: 103.250.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.crl rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C559181306986EE89AADF0A1CFC78EA8A093530.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:d7:f2:ca:2d:9c:e0:25:f9:ae:c9:df:3e:39:f1:80:39:97:91:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C559181306986EE89AADF0A1CFC78EA8A093530 Validity Not Before: Oct 26 07:08:16 2023 GMT Not After : Oct 24 07:13:16 2024 GMT Subject: CN=06436F4F28C7E8E088DB9AA7070E747D871C3343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:bd:43:76:d9:30:ad:b9:c8:03:21:94:e1:45: 1b:b8:ba:8a:57:03:6c:15:f5:f1:57:88:53:0d:33: 8f:e3:d9:2d:79:66:44:b2:d6:33:8f:ae:1a:9c:c8: bb:b8:0f:cc:3b:d3:c3:8b:64:d7:6d:a4:a7:73:47: 75:76:dd:0a:32:6d:24:3f:db:6d:8f:d1:48:9a:7e: 9d:ab:9d:98:3f:21:79:7e:4a:45:18:ae:fe:58:67: 91:75:69:4e:a2:b8:3e:61:a2:e3:9a:39:54:17:79: 09:09:40:dc:59:57:59:e7:40:94:5f:41:f4:b3:fc: 51:7c:39:3a:ad:60:b4:8e:31:5e:5d:c7:5e:e5:cc: f3:79:31:e7:85:5c:42:96:f8:d5:2e:bc:cf:8c:ac: b7:0a:b3:f0:b3:e8:ab:e3:6c:ea:e2:a8:4e:f2:eb: 52:55:4b:96:0b:6f:44:bb:13:65:7c:9f:9b:b2:62: 32:24:7d:ab:52:c3:b1:ca:42:77:d8:8c:02:49:fa: 36:f9:1a:6f:9a:a1:1c:6f:c9:62:b0:9e:b9:1a:d7: b4:2d:e3:0c:a8:ea:36:39:77:62:e0:2e:8b:c2:82: 18:4e:bc:cc:bc:da:12:f6:d8:a4:5b:56:2f:a1:d1: 1a:55:d7:14:21:28:f3:62:9e:aa:25:93:ea:d6:be: 89:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:43:6F:4F:28:C7:E8:E0:88:DB:9A:A7:07:0E:74:7D:87:1C:33:43 X509v3 Authority Key Identifier: keyid:5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C559181306986EE89AADF0A1CFC78EA8A093530.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.129.0/24 Signature Algorithm: sha256WithRSAEncryption b7:f0:cc:15:88:3d:7a:5b:23:ed:c7:74:bc:47:4d:91:08:0c: d9:17:40:8c:e7:fa:dd:81:27:8f:64:f3:7a:d6:a5:ba:44:21: 5b:7e:fd:96:e0:c5:d6:3e:6d:67:86:b3:40:05:58:4e:c4:81: 3e:53:ca:51:cc:dc:6b:1c:72:ba:66:58:f8:7a:e0:1a:a5:a9: 93:35:7e:df:a3:31:b8:36:1f:02:29:4c:5c:f9:c7:8e:05:ed: 39:0d:4a:b9:12:d2:9f:0a:34:9f:70:47:cd:e9:4f:a1:07:10: c6:c9:17:3a:5a:1f:80:93:2e:ed:fe:bc:80:64:61:cd:b7:09: 06:e2:04:ca:e2:76:7d:65:cf:7e:48:ed:c4:4f:eb:a4:65:18: d7:7e:3b:32:61:54:11:b3:82:24:19:5b:90:05:27:c1:4c:61: 92:ec:ea:b1:25:ca:f7:c8:b0:61:ba:90:b1:93:61:cd:32:13: bc:c2:57:fb:54:ea:17:f9:21:5f:fe:16:d8:93:74:6a:2d:75: 36:53:44:77:93:4c:33:e5:b9:c6:ad:3e:5f:f8:85:20:df:6f: 0f:9e:c9:04:0c:c8:47:66:02:18:c2:6b:35:9d:17:3d:68:a0: 4d:83:52:4b:38:10:70:49:e7:64:80:59:8f:fe:da:74:ab:40: 98:5e:e0:7f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAtfyyi2c4CX5rsnfPjnxgDmXkVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM1NTkxODEzMDY5ODZFRTg5QUFERjBBMUNGQzc4RUE4 QTA5MzUzMDAeFw0yMzEwMjYwNzA4MTZaFw0yNDEwMjQwNzEzMTZaMDMxMTAvBgNV BAMTKDA2NDM2RjRGMjhDN0U4RTA4OERCOUFBNzA3MEU3NDdEODcxQzMzNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlvUN22TCtucgDIZThRRu4uopX A2wV9fFXiFMNM4/j2S15ZkSy1jOPrhqcyLu4D8w708OLZNdtpKdzR3V23QoybSQ/ 222P0Uiafp2rnZg/IXl+SkUYrv5YZ5F1aU6iuD5houOaOVQXeQkJQNxZV1nnQJRf QfSz/FF8OTqtYLSOMV5dx17lzPN5MeeFXEKW+NUuvM+MrLcKs/Cz6KvjbOriqE7y 61JVS5YLb0S7E2V8n5uyYjIkfatSw7HKQnfYjAJJ+jb5Gm+aoRxvyWKwnrka17Qt 4wyo6jY5d2LgLovCghhOvMy82hL22KRbVi+h0RpV1xQhKPNinqolk+rWvom1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBkNvTyjH6OCI25qnBw50fYccM0MwHwYDVR0j BBgwFoAUXFWRgTBphu6Jqt8KHPx46ooJNTAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZmE4MWU2ZS00YjE2LTRiNjItOGYxOC01Mjg5MmU1NGI5MGQvMC81QzU1OTE4MTMw Njk4NkVFODlBQURGMEExQ0ZDNzhFQThBMDkzNTMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUM1NTkxODEzMDY5ODZFRTg5QUFERjBBMUNGQzc4RUE4QTA5 MzUzMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmYTgxZTZlLTRiMTYtNGI2Mi04 ZjE4LTUyODkyZTU0YjkwZC8wLzMxMzAzMzJlMzIzNTMwMmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn+oEwDQYJ KoZIhvcNAQELBQADggEBALfwzBWIPXpbI+3HdLxHTZEIDNkXQIzn+t2BJ49k83rW pbpEIVt+/ZbgxdY+bWeGs0AFWE7EgT5TylHM3GsccrpmWPh64BqlqZM1ft+jMbg2 HwIpTFz5x44F7TkNSrkS0p8KNJ9wR83pT6EHEMbJFzpaH4CTLu3+vIBkYc23CQbi BMridn1lz35I7cRP66RlGNd+OzJhVBGzgiQZW5AFJ8FMYZLs6rElyvfIsGG6kLGT Yc0yE7zCV/tU6hf5IV/+FtiTdGotdTZTRHeTTDPlucatPl/4hSDfbw+eyQQMyEdm AhjCazWdFz1ooE2DUks4EHBJ52SAWY/+2nSrQJhe4H8= -----END CERTIFICATE-----Generated at Sat Jun 1 15:52:55 2024 by rpki-client on console-ams.rpki-client.org