$ rpki-client -vvf repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa File: 3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa (raw, json) Hash identifier: oqubHhwxtqsJoNuAhS2y/kFxKvbD0whsJAs7D5UsNuU= Subject key identifier: B1:BC:8B:11:34:D6:7B:6C:ED:2F:CD:4C:F6:D8:66:E6:FE:45:3B:B8 Certificate issuer: /CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Certificate serial: 7EC52E0C0181381B6BE8ED6F547348A4696F93AA Authority key identifier: AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa Signing time: Fri 14 Jul 2023 13:45:47 +0000 ROA not before: Fri 14 Jul 2023 13:40:47 +0000 ROA not after: Fri 12 Jul 2024 13:45:47 +0000 asID: 141591 IP address blocks: 103.159.62.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:c5:2e:0c:01:81:38:1b:6b:e8:ed:6f:54:73:48:a4:69:6f:93:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Validity Not Before: Jul 14 13:40:47 2023 GMT Not After : Jul 12 13:45:47 2024 GMT Subject: CN=B1BC8B1134D67B6CED2FCD4CF6D866E6FE453BB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:63:c7:b8:c2:08:18:92:f9:ff:f5:9c:18:9d: b2:cc:7c:77:bd:8a:96:cf:4b:f9:d3:b3:c6:4a:3c: 63:13:24:ec:be:d1:73:c6:63:41:99:54:6a:e0:4b: 41:d4:d5:f8:58:22:1a:31:8b:13:9b:53:df:3b:50: 10:ca:a7:c2:be:ac:83:49:5d:79:b1:de:f0:5e:f4: 33:52:79:5c:a7:fe:66:91:be:f8:c9:ce:58:fa:53: fa:50:0a:53:da:29:30:29:a6:69:db:b3:7f:04:d4: 7c:58:81:e0:9f:21:ce:e9:42:a9:bc:cf:12:20:53: 3d:df:65:06:b9:d3:8b:66:dc:14:a9:d9:4c:43:18: 81:17:87:95:98:d7:72:57:2a:93:de:46:2c:57:60: 1a:01:4c:9b:61:c1:c9:4f:a9:e9:c7:26:06:dc:1d: f3:09:30:18:cf:2b:4a:54:22:a4:94:d4:93:9a:41: 7e:5b:d4:be:b2:29:7b:21:74:b5:2d:d7:42:fe:6b: 45:05:2e:63:5c:f4:91:09:25:df:56:6d:53:c3:a0: 62:1a:40:f3:6f:32:f1:50:1d:ae:87:f8:06:27:34: 7d:66:b6:16:de:4f:ab:e0:fd:c3:c8:21:97:51:f7: 76:73:96:31:0c:39:07:82:bb:13:c8:9e:8f:b9:34: dc:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:BC:8B:11:34:D6:7B:6C:ED:2F:CD:4C:F6:D8:66:E6:FE:45:3B:B8 X509v3 Authority Key Identifier: keyid:AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.62.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:f1:55:8f:e6:ef:65:28:ad:8c:86:a6:6a:4d:db:e8:e3:29: 6b:ad:f3:60:34:55:24:b0:4e:48:c2:79:5a:8e:32:33:04:6f: a3:be:8d:87:9e:f1:07:94:65:53:e0:fb:65:e6:79:1e:b0:a7: 15:2f:14:8a:fe:d0:68:ab:b9:47:3a:ab:2b:6f:0f:bc:6f:03: a6:32:f0:78:33:a1:e8:c4:2c:5e:7e:52:59:ef:3e:6d:12:ff: 48:dc:59:26:fa:ed:8f:88:8e:d5:a1:b5:de:68:ef:e9:6a:76: fe:ea:c3:21:2c:1d:4b:1a:a8:7d:56:87:72:bc:6c:3e:cb:bc: ab:f0:b5:9d:57:f6:ba:19:53:6a:32:50:22:92:f0:6e:ec:23: 38:29:7b:d0:10:04:87:65:70:4a:e5:9d:bc:fc:34:9e:89:47: 42:fc:8c:b7:4f:ea:b6:ed:07:88:ac:ed:5a:ae:71:6f:da:c8: e1:71:ac:cb:4b:75:20:9b:f8:72:45:58:c2:53:21:ee:30:f8: f6:98:f1:a5:a5:22:d0:16:66:23:7c:50:9b:1d:b1:1c:61:c0: d6:19:ec:d0:e9:b5:ad:85:c9:1d:64:74:4c:a1:68:7a:11:ff: ee:f0:a2:3b:8b:26:9b:4e:4f:4d:5e:27:64:c0:47:06:c6:96: e6:4b:dc:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfsUuDAGBOBtr6O1vVHNIpGlvk6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNG MDU0ODFCMTAeFw0yMzA3MTQxMzQwNDdaFw0yNDA3MTIxMzQ1NDdaMDMxMTAvBgNV BAMTKEIxQkM4QjExMzRENjdCNkNFRDJGQ0Q0Q0Y2RDg2NkU2RkU0NTNCQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnY8e4wggYkvn/9ZwYnbLMfHe9 ipbPS/nTs8ZKPGMTJOy+0XPGY0GZVGrgS0HU1fhYIhoxixObU987UBDKp8K+rINJ XXmx3vBe9DNSeVyn/maRvvjJzlj6U/pQClPaKTAppmnbs38E1HxYgeCfIc7pQqm8 zxIgUz3fZQa504tm3BSp2UxDGIEXh5WY13JXKpPeRixXYBoBTJthwclPqenHJgbc HfMJMBjPK0pUIqSU1JOaQX5b1L6yKXshdLUt10L+a0UFLmNc9JEJJd9WbVPDoGIa QPNvMvFQHa6H+AYnNH1mthbeT6vg/cPIIZdR93ZzljEMOQeCuxPIno+5NNwRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsbyLETTWe2ztL81M9thm5v5FO7gwHwYDVR0j BBgwFoAUrkACt+kq9Zx25/i+SzSRk/BUgbEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGMxNzFmNC1iZDExLTQ4ZWQtODdmMC0yN2VhMTIwOTA2NGYvMC9BRTQwMDJCN0U5 MkFGNTlDNzZFN0Y4QkU0QjM0OTE5M0YwNTQ4MUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNGMDU0 ODFCMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYzE3MWY0LWJkMTEtNDhlZC04 N2YwLTI3ZWExMjA5MDY0Zi8wLzMxMzAzMzJlMzEzNTM5MmUzNjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzUzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ58+MA0GCSqG SIb3DQEBCwUAA4IBAQAP8VWP5u9lKK2MhqZqTdvo4ylrrfNgNFUksE5IwnlajjIz BG+jvo2HnvEHlGVT4Ptl5nkesKcVLxSK/tBoq7lHOqsrbw+8bwOmMvB4M6HoxCxe flJZ7z5tEv9I3Fkm+u2PiI7VobXeaO/panb+6sMhLB1LGqh9VodyvGw+y7yr8LWd V/a6GVNqMlAikvBu7CM4KXvQEASHZXBK5Z28/DSeiUdC/Iy3T+q27QeIrO1arnFv 2sjhcazLS3Ugm/hyRVjCUyHuMPj2mPGlpSLQFmYjfFCbHbEcYcDWGezQ6bWthckd ZHRMoWh6Ef/u8KI7iyabTk9NXidkwEcGxpbmS9xv -----END CERTIFICATE-----Generated at Sat Jun 1 23:43:21 2024 by rpki-client on console-fra.rpki-client.org