$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa File: 3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa (raw, json) Hash identifier: 0tb7WibZG2une9C+kTkaXOGHtpzhAHXDOe1e9c/dkrA= Subject key identifier: 02:AB:F5:CC:BC:35:AA:10:23:28:8B:50:A9:63:33:A5:A5:C3:57:6A Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 6A9FFCC9A40D5A0100997043780256D2C7179897 Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa Signing time: Thu 12 Oct 2023 12:00:02 +0000 ROA not before: Thu 12 Oct 2023 11:55:02 +0000 ROA not after: Thu 10 Oct 2024 12:00:02 +0000 asID: 141137 IP address blocks: 103.158.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 09:07:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:9f:fc:c9:a4:0d:5a:01:00:99:70:43:78:02:56:d2:c7:17:98:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Oct 12 11:55:02 2023 GMT Not After : Oct 10 12:00:02 2024 GMT Subject: CN=02ABF5CCBC35AA1023288B50A96333A5A5C3576A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b0:b5:f3:1a:b4:de:f0:8b:77:5f:87:59:ef: fe:ec:0b:c6:dc:0d:01:5b:25:58:03:e4:90:0c:1a: 14:dd:ab:68:32:a9:0a:c9:08:c5:98:8c:29:aa:74: 33:06:a8:71:bb:ca:35:0f:c7:56:54:11:61:64:60: 2c:78:0a:f0:e1:34:62:50:a0:77:6c:d2:3c:e0:b5: 19:3f:19:be:20:2a:ec:56:42:3e:25:a3:6e:9c:0f: 8e:5d:a9:24:1e:c9:5c:c0:7b:40:43:73:33:16:29: 5c:a2:ea:53:5f:33:61:b0:b1:3c:e9:d0:2a:2e:68: fa:44:80:68:6b:29:15:22:59:29:c8:e8:51:52:81: 22:9e:b0:f3:5b:b5:9e:0f:80:39:ab:1f:fe:5a:db: 81:a3:74:b2:f2:71:a6:16:28:0f:8c:59:db:6e:61: b5:36:f0:24:66:46:0c:9e:29:09:35:b7:16:b3:44: e6:a6:06:2b:57:2d:ab:05:a2:7c:87:09:db:59:f3: 7f:6c:50:4d:cf:6a:54:33:71:89:22:d5:4e:1a:ee: 69:35:2d:75:3a:4f:90:a9:9f:95:2a:a2:52:c4:af: 73:44:91:0a:5b:c0:a2:a9:f9:3c:d3:5a:e8:71:3b: 07:76:0b:a4:19:e5:ea:fe:fe:5b:ca:b3:56:84:df: 40:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:AB:F5:CC:BC:35:AA:10:23:28:8B:50:A9:63:33:A5:A5:C3:57:6A X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.252.0/23 Signature Algorithm: sha256WithRSAEncryption 70:a2:1c:46:3e:29:1d:ad:1a:39:32:00:db:63:cd:93:d5:95: b1:0f:b9:d3:f5:11:37:5d:8b:e9:d5:46:5d:b5:3b:4d:0d:ca: 4a:b5:44:16:d8:6f:ba:b4:de:61:8c:0c:17:cd:d1:0b:a9:52: 16:3c:f6:4a:70:80:34:ec:6c:37:9a:6c:38:65:68:c9:2f:05: 7c:fe:6a:3c:3f:9a:1e:e3:cb:10:af:a3:0b:72:f8:62:8a:cd: dc:91:43:8f:7d:3a:9c:37:98:56:1a:c5:62:04:45:51:a7:e3: 9b:ae:9b:6a:ff:5c:a9:1b:a0:64:4e:0d:b4:15:37:0a:6b:d8: 03:3a:f7:af:fe:d7:03:43:4f:58:d9:fb:f9:46:22:5f:f0:7f: 4f:dc:f3:11:a8:91:8a:7e:77:55:bc:28:b2:49:f1:3d:e7:26: 1f:36:86:13:87:56:77:c6:35:88:0b:9d:dc:06:90:4d:3b:a4: c9:7a:b6:ae:7d:d1:41:ab:ec:20:eb:e0:21:b7:92:3b:86:db: bf:0e:0f:5d:c1:99:c2:88:e9:f9:2d:72:e8:9f:bb:3c:44:55: 4f:f4:af:01:3a:e0:63:c4:a5:2b:61:24:aa:0c:df:00:6f:3d: d2:a6:fa:c6:90:88:60:c9:bf:52:bb:e6:bf:8d:7e:f2:9e:bb: 08:70:01:f2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUap/8yaQNWgEAmXBDeAJW0scXmJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yMzEwMTIxMTU1MDJaFw0yNDEwMTAxMjAwMDJaMDMxMTAvBgNV BAMTKDAyQUJGNUNDQkMzNUFBMTAyMzI4OEI1MEE5NjMzM0E1QTVDMzU3NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDysLXzGrTe8It3X4dZ7/7sC8bc DQFbJVgD5JAMGhTdq2gyqQrJCMWYjCmqdDMGqHG7yjUPx1ZUEWFkYCx4CvDhNGJQ oHds0jzgtRk/Gb4gKuxWQj4lo26cD45dqSQeyVzAe0BDczMWKVyi6lNfM2GwsTzp 0CouaPpEgGhrKRUiWSnI6FFSgSKesPNbtZ4PgDmrH/5a24GjdLLycaYWKA+MWdtu YbU28CRmRgyeKQk1txazROamBitXLasFonyHCdtZ839sUE3PalQzcYki1U4a7mk1 LXU6T5Cpn5UqolLEr3NEkQpbwKKp+TzTWuhxOwd2C6QZ5er+/lvKs1aE30CvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAqv1zLw1qhAjKItQqWMzpaXDV2owHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMxMzAzMzJlMzEzNTM4MmUzMjM1MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnvwwDQYJ KoZIhvcNAQELBQADggEBAHCiHEY+KR2tGjkyANtjzZPVlbEPudP1ETddi+nVRl21 O00Nykq1RBbYb7q03mGMDBfN0QupUhY89kpwgDTsbDeabDhlaMkvBXz+ajw/mh7j yxCvowty+GKKzdyRQ499Opw3mFYaxWIERVGn45uum2r/XKkboGRODbQVNwpr2AM6 96/+1wNDT1jZ+/lGIl/wf0/c8xGokYp+d1W8KLJJ8T3nJh82hhOHVnfGNYgLndwG kE07pMl6tq590UGr7CDr4CG3kjuG278OD13BmcKI6fktcuifuzxEVU/0rwE64GPE pSthJKoM3wBvPdKm+saQiGDJv1K75r+NfvKeuwhwAfI= -----END CERTIFICATE-----Generated at Thu May 2 08:50:10 2024 by rpki-client on console-fra.rpki-client.org