$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32332d3233203d3e20313430343133.roa File: 3130332e3135312e33342e302f32332d3233203d3e20313430343133.roa (raw, json) Hash identifier: B0T8QZoFWgXfoI/85mXRKKz1qXhl7XbbM2eLzOG8R+0= Subject key identifier: 0C:AB:41:7A:6E:BD:98:08:1D:BD:40:86:F9:AC:35:51:6D:84:24:7A Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 3FA8D87ED57621D3F1263004DA31BE3717573F6E Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32332d3233203d3e20313430343133.roa Signing time: Mon 06 Nov 2023 07:00:00 +0000 ROA not before: Mon 06 Nov 2023 06:55:00 +0000 ROA not after: Mon 04 Nov 2024 07:00:00 +0000 asID: 140413 IP address blocks: 103.151.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 22:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:a8:d8:7e:d5:76:21:d3:f1:26:30:04:da:31:be:37:17:57:3f:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Nov 6 06:55:00 2023 GMT Not After : Nov 4 07:00:00 2024 GMT Subject: CN=0CAB417A6EBD98081DBD4086F9AC35516D84247A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:29:6f:64:db:88:67:a2:5f:d0:64:48:31:a9: 1d:aa:d3:2a:b8:80:e3:96:b6:9e:9d:00:f8:8b:66: 24:40:5a:c0:2c:de:e3:43:d5:a3:af:aa:34:b5:4c: 05:93:6e:f3:f8:cf:0a:1d:e9:1a:5f:65:eb:a9:51: c9:72:85:88:38:8c:64:dc:e2:ef:65:69:f1:81:ef: 15:f6:e6:b5:43:4c:79:14:aa:bc:7a:be:5b:aa:06: 68:9f:60:65:d1:12:8a:a3:1a:7a:bb:75:35:13:09: 1d:06:61:b2:20:d8:ef:6f:30:80:34:68:c3:03:66: 32:c5:62:f8:99:99:96:14:cd:6e:8a:0a:2b:af:d6: 69:6c:0b:fa:9c:7b:3d:61:aa:c6:ef:98:df:d0:ec: 58:9c:6f:a1:50:32:30:7d:97:5e:64:9f:9a:23:49: 28:ee:33:3b:fa:b3:b2:71:fb:dc:67:7d:a1:15:17: 38:0f:a1:8c:0e:91:34:e9:70:60:b1:0a:08:f1:08: e8:78:5e:00:54:e7:ba:d8:ff:bb:5f:b3:a1:b8:fe: 3a:0a:11:19:9b:ac:26:8d:77:54:51:e1:06:6b:47: 02:7d:83:61:b7:87:42:29:00:7f:61:d9:a2:1c:7f: 6d:5b:ed:3d:4d:d7:7c:d2:5e:17:fe:47:4d:bb:9a: 2a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:AB:41:7A:6E:BD:98:08:1D:BD:40:86:F9:AC:35:51:6D:84:24:7A X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32332d3233203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.34.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:47:28:94:00:f8:9a:2e:8c:b0:c1:30:f0:04:07:48:f0:78: 98:20:96:57:dd:95:8c:43:67:f5:4e:37:fe:8c:e6:82:fd:74: e2:5b:f5:a6:9c:18:67:8b:4e:bc:3c:cd:47:e8:67:01:ae:d9: b3:71:50:94:f5:f3:e3:f1:4d:8c:07:0a:44:4e:ba:20:a7:4e: 8f:c0:e8:67:33:d4:a4:7d:8b:43:0e:07:0a:de:5c:a5:a6:dc: 14:0e:3d:ee:7c:6b:5f:a4:8f:1a:86:c1:3a:23:23:7a:fd:a3: 8b:e9:36:07:2c:f8:27:75:90:e8:84:79:e9:88:a4:e0:a3:58: f0:bb:3c:04:c8:ab:42:cc:9a:5b:a6:50:80:fa:5e:d3:82:c6: ac:94:2b:2c:b4:1c:fd:ba:1a:c9:59:7b:6a:72:f3:e4:cf:e9: ac:18:a8:2a:18:e1:b8:3d:69:fc:64:72:f9:8e:23:91:35:01: b9:99:04:f1:ad:a3:6a:ad:da:49:e6:40:00:d9:53:fa:2a:7e: 0a:09:c2:d5:28:c5:8b:09:2e:44:a2:cd:14:d3:3f:b3:e3:f6: e8:24:1e:ca:d9:3d:32:9b:ff:c1:bc:6e:75:c2:07:92:1c:47: de:56:d7:84:bf:09:fd:a1:da:1f:4e:64:f2:48:08:a3:3d:48: d4:43:f5:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP6jYftV2IdPxJjAE2jG+NxdXP24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yMzExMDYwNjU1MDBaFw0yNDExMDQwNzAwMDBaMDMxMTAvBgNV BAMTKDBDQUI0MTdBNkVCRDk4MDgxREJENDA4NkY5QUMzNTUxNkQ4NDI0N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6KW9k24hnol/QZEgxqR2q0yq4 gOOWtp6dAPiLZiRAWsAs3uND1aOvqjS1TAWTbvP4zwod6RpfZeupUclyhYg4jGTc 4u9lafGB7xX25rVDTHkUqrx6vluqBmifYGXREoqjGnq7dTUTCR0GYbIg2O9vMIA0 aMMDZjLFYviZmZYUzW6KCiuv1mlsC/qcez1hqsbvmN/Q7Ficb6FQMjB9l15kn5oj SSjuMzv6s7Jx+9xnfaEVFzgPoYwOkTTpcGCxCgjxCOh4XgBU57rY/7tfs6G4/joK ERmbrCaNd1RR4QZrRwJ9g2G3h0IpAH9h2aIcf21b7T1N13zSXhf+R027miqHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDKtBem69mAgdvUCG+aw1UW2EJHowHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMxMzAzMzJlMzEzNTMxMmUzMzM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5ciMA0GCSqG SIb3DQEBCwUAA4IBAQCKRyiUAPiaLoywwTDwBAdI8HiYIJZX3ZWMQ2f1Tjf+jOaC /XTiW/WmnBhni068PM1H6GcBrtmzcVCU9fPj8U2MBwpETrogp06PwOhnM9SkfYtD DgcK3lylptwUDj3ufGtfpI8ahsE6IyN6/aOL6TYHLPgndZDohHnpiKTgo1jwuzwE yKtCzJpbplCA+l7TgsaslCsstBz9uhrJWXtqcvPkz+msGKgqGOG4PWn8ZHL5jiOR NQG5mQTxraNqrdpJ5kAA2VP6Kn4KCcLVKMWLCS5Eos0U0z+z4/boJB7K2T0ym//B vG51wgeSHEfeVteEvwn9odofTmTySAijPUjUQ/VS -----END CERTIFICATE-----Generated at Thu May 2 01:04:45 2024 by rpki-client on console-fra.rpki-client.org