$ rpki-client -vvf repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/3130332e31332e3133382e302f32332d3233203d3e20313530323135.roa File: 3130332e31332e3133382e302f32332d3233203d3e20313530323135.roa (raw, json) Hash identifier: RI0U6b+HWcEwcUYcrPdpjw/HsOlDt2PVNfd3YpkFlsw= Subject key identifier: 11:42:E4:0F:EB:8A:67:13:F2:5A:95:C9:14:92:8E:E3:77:AE:77:D6 Certificate issuer: /CN=FE880CC93B6284E6833106A5BEB71A0CDDE57C0B Certificate serial: 57E0FE4AA93F3351DEF85CBB72C9C0901645C569 Authority key identifier: FE:88:0C:C9:3B:62:84:E6:83:31:06:A5:BE:B7:1A:0C:DD:E5:7C:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/3130332e31332e3133382e302f32332d3233203d3e20313530323135.roa Signing time: Wed 30 Aug 2023 10:00:00 +0000 ROA not before: Wed 30 Aug 2023 09:55:00 +0000 ROA not after: Wed 28 Aug 2024 10:00:00 +0000 asID: 150215 IP address blocks: 103.13.138.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.crl rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:e0:fe:4a:a9:3f:33:51:de:f8:5c:bb:72:c9:c0:90:16:45:c5:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE880CC93B6284E6833106A5BEB71A0CDDE57C0B Validity Not Before: Aug 30 09:55:00 2023 GMT Not After : Aug 28 10:00:00 2024 GMT Subject: CN=1142E40FEB8A6713F25A95C914928EE377AE77D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cf:e2:7d:6c:94:cd:2c:c4:d4:80:54:78:4f: 87:8c:08:a1:d5:84:9d:9c:4a:c2:6d:61:a1:2c:3d: 4a:63:d2:71:37:23:d6:94:42:7b:4e:05:67:90:95: b4:ad:4f:7b:40:3a:5d:de:db:26:0a:29:21:35:84: 55:26:3e:c3:4e:65:8e:14:51:e8:58:d1:a0:d0:cb: 91:15:96:f0:fe:88:11:06:c2:77:fd:35:b2:ae:f0: 4b:51:13:d2:c6:7c:38:32:d6:65:9c:cc:aa:e5:42: e5:0e:95:b6:53:75:e1:5b:71:0a:02:62:5c:2c:68: d5:95:8b:f5:18:4e:dc:3c:55:86:88:d4:71:70:78: c2:4f:3e:66:d7:85:36:22:c3:90:63:e6:db:ef:ec: b5:f5:4c:fb:fc:ec:3c:61:fa:dc:87:90:07:ee:96: a2:e1:64:9c:31:c3:4f:af:00:57:ec:f6:6e:cc:3f: 26:13:82:18:b5:fe:76:1f:cb:87:40:8f:86:22:59: a7:be:bd:8d:92:9a:1d:dd:7c:de:98:1c:0c:e6:84: fe:52:f8:11:41:8b:47:cb:d5:5e:a2:e4:b3:73:85: bb:da:0b:99:b9:46:aa:3e:5f:3c:db:cd:5a:e0:05: 0a:20:5a:6e:ba:88:e9:d9:24:87:4a:1c:2f:8d:e9: 97:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:42:E4:0F:EB:8A:67:13:F2:5A:95:C9:14:92:8E:E3:77:AE:77:D6 X509v3 Authority Key Identifier: keyid:FE:88:0C:C9:3B:62:84:E6:83:31:06:A5:BE:B7:1A:0C:DD:E5:7C:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/3130332e31332e3133382e302f32332d3233203d3e20313530323135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.138.0/23 Signature Algorithm: sha256WithRSAEncryption a4:e9:72:1b:95:b4:0c:a7:68:2e:f1:b5:3a:b2:9b:df:db:7d: dd:73:ba:65:3f:50:76:f0:85:9b:5c:a2:f7:a6:fd:84:3d:2d: 64:87:a3:81:b6:1b:17:c1:36:c9:30:a9:e1:55:20:d8:42:40: 4a:ab:0f:18:28:41:f2:37:3e:0a:fb:7e:ad:df:de:2e:d6:e9: b9:32:99:f0:43:ee:08:67:13:e2:52:e5:db:b5:a7:25:e1:37: d2:42:29:8e:92:5a:a9:80:b1:1b:48:62:7f:08:87:18:fc:1b: 7f:2c:71:a9:6c:0f:6d:1a:f3:a1:1e:21:ef:12:5d:bc:fc:8b: b9:ef:0e:bc:f6:39:3b:56:72:eb:8d:4c:92:5e:3e:4c:a8:4a: 33:04:fd:14:82:26:ad:68:0b:7b:0e:e6:22:fe:f6:fe:2d:2c: f4:7b:41:b1:c2:97:fa:b5:1c:f8:9d:20:9c:cb:a8:df:2b:5f: 73:4b:b0:ec:ff:ef:c0:f7:af:d1:42:84:48:2a:1f:45:c0:12: fe:c3:fb:05:97:92:d0:7c:e8:1e:45:64:19:d3:f2:36:9c:ca: 6e:0c:d4:79:78:cf:ce:26:9c:2d:7d:0a:d4:13:eb:67:51:92: 08:79:13:af:46:74:69:3f:a9:3e:b1:c7:9e:e3:16:f7:ba:2c: 55:e6:b5:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV+D+Sqk/M1He+Fy7csnAkBZFxWkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU4ODBDQzkzQjYyODRFNjgzMzEwNkE1QkVCNzFBMENE REU1N0MwQjAeFw0yMzA4MzAwOTU1MDBaFw0yNDA4MjgxMDAwMDBaMDMxMTAvBgNV BAMTKDExNDJFNDBGRUI4QTY3MTNGMjVBOTVDOTE0OTI4RUUzNzdBRTc3RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBz+J9bJTNLMTUgFR4T4eMCKHV hJ2cSsJtYaEsPUpj0nE3I9aUQntOBWeQlbStT3tAOl3e2yYKKSE1hFUmPsNOZY4U UehY0aDQy5EVlvD+iBEGwnf9NbKu8EtRE9LGfDgy1mWczKrlQuUOlbZTdeFbcQoC YlwsaNWVi/UYTtw8VYaI1HFweMJPPmbXhTYiw5Bj5tvv7LX1TPv87Dxh+tyHkAfu lqLhZJwxw0+vAFfs9m7MPyYTghi1/nYfy4dAj4YiWae+vY2Smh3dfN6YHAzmhP5S +BFBi0fL1V6i5LNzhbvaC5m5Rqo+XzzbzVrgBQogWm66iOnZJIdKHC+N6ZfvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEULkD+uKZxPyWpXJFJKO43eud9YwHwYDVR0j BBgwFoAU/ogMyTtihOaDMQalvrcaDN3lfAswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjUzMjQ3YS1hNTZlLTQyNGEtYTA3Yi0zNmEyNTExZDdjYWEvMC9GRTg4MENDOTNC NjI4NEU2ODMzMTA2QTVCRUI3MUEwQ0RERTU3QzBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU4ODBDQzkzQjYyODRFNjgzMzEwNkE1QkVCNzFBMENEREU1 N0MwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2NTMyNDdhLWE1NmUtNDI0YS1h MDdiLTM2YTI1MTFkN2NhYS8wLzMxMzAzMzJlMzEzMzJlMzEzMzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzIzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZw2KMA0GCSqG SIb3DQEBCwUAA4IBAQCk6XIblbQMp2gu8bU6spvf233dc7plP1B28IWbXKL3pv2E PS1kh6OBthsXwTbJMKnhVSDYQkBKqw8YKEHyNz4K+36t394u1um5MpnwQ+4IZxPi UuXbtacl4TfSQimOklqpgLEbSGJ/CIcY/Bt/LHGpbA9tGvOhHiHvEl28/Iu57w68 9jk7VnLrjUySXj5MqEozBP0UgiataAt7DuYi/vb+LSz0e0Gxwpf6tRz4nSCcy6jf K19zS7Ds/+/A96/RQoRIKh9FwBL+w/sFl5LQfOgeRWQZ0/I2nMpuDNR5eM/OJpwt fQrUE+tnUZIIeROvRnRpP6k+scee4xb3uixV5rU1 -----END CERTIFICATE-----Generated at Sun Jun 2 14:42:31 2024 by rpki-client on console-ams.rpki-client.org