$ rpki-client -vvf repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa File: 3130332e39312e35352e302f32342d3234203d3e20313530323538.roa (raw, json) Hash identifier: JdzcGTy9u8LqSWJ2iwra9l0K1rZctoTtawEkznrvhOA= Subject key identifier: 58:BE:57:CC:E5:C9:BD:38:EC:B9:59:4A:73:0A:D5:F9:29:E9:68:2D Certificate issuer: /CN=248C652A73F35EA32B7EC526D977784EB15D2C7D Certificate serial: 2DBDB5C28E65E85063C8011425CFC12FFE3BAFC8 Authority key identifier: 24:8C:65:2A:73:F3:5E:A3:2B:7E:C5:26:D9:77:78:4E:B1:5D:2C:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/248C652A73F35EA32B7EC526D977784EB15D2C7D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa Signing time: Mon 23 Oct 2023 10:24:39 +0000 ROA not before: Mon 23 Oct 2023 10:19:39 +0000 ROA not after: Mon 21 Oct 2024 10:24:39 +0000 asID: 150258 IP address blocks: 103.91.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/248C652A73F35EA32B7EC526D977784EB15D2C7D.crl rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/248C652A73F35EA32B7EC526D977784EB15D2C7D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/248C652A73F35EA32B7EC526D977784EB15D2C7D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 23:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:bd:b5:c2:8e:65:e8:50:63:c8:01:14:25:cf:c1:2f:fe:3b:af:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=248C652A73F35EA32B7EC526D977784EB15D2C7D Validity Not Before: Oct 23 10:19:39 2023 GMT Not After : Oct 21 10:24:39 2024 GMT Subject: CN=58BE57CCE5C9BD38ECB9594A730AD5F929E9682D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2f:84:a8:77:f2:4c:c4:6a:df:c4:52:39:9c: e6:a4:2f:ce:76:70:06:d4:18:37:fe:b4:12:2a:92: 0e:c6:79:f5:e1:e8:c0:44:34:11:0a:66:82:30:22: d1:f8:b1:d7:70:5d:e5:3e:6d:f5:02:af:85:df:77: 92:ee:7e:77:1f:13:57:5d:4a:e3:ab:c8:2e:96:24: d2:7e:ab:3f:67:4b:b1:3b:87:8e:34:58:5b:ec:60: c6:c2:57:d1:45:ec:49:e2:c4:72:12:47:ad:92:0e: 30:10:a0:2d:6c:b7:30:29:9c:61:c9:97:c3:82:72: 70:a9:20:05:12:8c:dd:04:78:ee:6d:21:f4:09:81: 80:13:0d:44:c6:c1:69:cf:8f:bc:0e:6b:cf:33:39: 35:f4:4d:51:d9:c8:c5:d0:06:90:56:c8:9a:8d:9e: 2a:60:9d:09:05:44:64:e5:f1:2e:00:d7:d9:bd:21: 88:3d:3d:41:1c:72:86:d7:e8:ed:70:9f:50:b2:84: e1:db:fc:6c:2d:48:5f:78:42:94:38:b2:08:eb:94: 8e:df:1e:d8:ec:07:a9:2c:df:29:26:3a:23:fa:75: 56:f6:0e:44:31:1e:30:e4:e8:b5:79:ab:9d:43:56: c9:7e:be:91:f1:4d:bb:14:0f:37:ce:37:ef:35:fd: 6d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:BE:57:CC:E5:C9:BD:38:EC:B9:59:4A:73:0A:D5:F9:29:E9:68:2D X509v3 Authority Key Identifier: keyid:24:8C:65:2A:73:F3:5E:A3:2B:7E:C5:26:D9:77:78:4E:B1:5D:2C:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/248C652A73F35EA32B7EC526D977784EB15D2C7D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/248C652A73F35EA32B7EC526D977784EB15D2C7D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.55.0/24 Signature Algorithm: sha256WithRSAEncryption 88:86:7f:d7:3c:66:ba:4e:79:85:e3:1d:a1:e6:9c:dd:62:8d: c7:eb:9e:84:65:47:33:c8:42:d4:7a:20:3b:90:d1:f6:dd:65: 7d:51:71:90:0e:28:2a:58:8c:0c:13:be:5e:6b:bd:a5:47:58: 32:9a:30:b2:f2:65:3d:66:ab:77:16:a0:cd:ac:72:fe:5c:56: f9:7a:17:ca:ac:da:1f:be:fe:8e:34:03:96:54:76:f0:17:7a: ad:33:b7:8f:be:04:c2:84:b3:08:21:52:79:37:ad:9b:cb:4c: 0d:b1:d9:23:dd:58:d9:9e:62:ea:ce:bf:c2:80:88:3f:6e:09: 9c:13:f0:9d:fc:22:5a:a2:c4:2f:c6:d9:d8:cb:33:6b:48:6d: 1e:21:62:c8:23:73:85:b1:6c:63:af:d5:f4:01:a9:b4:ed:31: bd:a7:7f:06:95:f9:99:f9:d1:43:2a:67:74:96:64:73:dd:45: 62:3c:5e:58:6d:72:b5:9a:2d:f3:32:63:da:d1:83:5e:3a:22: 07:6e:e5:52:5a:a5:02:56:6a:a1:b7:be:59:6e:85:b2:a0:9a: 5b:5b:4e:45:9b:94:dc:92:96:5f:d2:a9:c3:e3:e6:56:ed:ef: 6a:8b:97:9d:40:79:f3:a5:d6:d7:e8:71:87:df:e3:e2:36:20: 95:4b:7d:b2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULb21wo5l6FBjyAEUJc/BL/47r8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjQ4QzY1MkE3M0YzNUVBMzJCN0VDNTI2RDk3Nzc4NEVC MTVEMkM3RDAeFw0yMzEwMjMxMDE5MzlaFw0yNDEwMjExMDI0MzlaMDMxMTAvBgNV BAMTKDU4QkU1N0NDRTVDOUJEMzhFQ0I5NTk0QTczMEFENUY5MjlFOTY4MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVL4Sod/JMxGrfxFI5nOakL852 cAbUGDf+tBIqkg7GefXh6MBENBEKZoIwItH4sddwXeU+bfUCr4Xfd5LufncfE1dd SuOryC6WJNJ+qz9nS7E7h440WFvsYMbCV9FF7EnixHISR62SDjAQoC1stzApnGHJ l8OCcnCpIAUSjN0EeO5tIfQJgYATDUTGwWnPj7wOa88zOTX0TVHZyMXQBpBWyJqN nipgnQkFRGTl8S4A19m9IYg9PUEccobX6O1wn1CyhOHb/GwtSF94QpQ4sgjrlI7f HtjsB6ks3ykmOiP6dVb2DkQxHjDk6LV5q51DVsl+vpHxTbsUDzfON+81/W2LAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWL5XzOXJvTjsuVlKcwrV+SnpaC0wHwYDVR0j BBgwFoAUJIxlKnPzXqMrfsUm2Xd4TrFdLH0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmZiYWY3MS0yZDU3LTRlNGEtOTFkMC1jYWM4YWIwYWNlZmUvMC8yNDhDNjUyQTcz RjM1RUEzMkI3RUM1MjZEOTc3Nzg0RUIxNUQyQzdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjQ4QzY1MkE3M0YzNUVBMzJCN0VDNTI2RDk3Nzc4NEVCMTVE MkM3RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZmJhZjcxLTJkNTctNGU0YS05 MWQwLWNhYzhhYjBhY2VmZS8wLzMxMzAzMzJlMzkzMTJlMzUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdbNzANBgkqhkiG 9w0BAQsFAAOCAQEAiIZ/1zxmuk55heMdoeac3WKNx+uehGVHM8hC1HogO5DR9t1l fVFxkA4oKliMDBO+Xmu9pUdYMpowsvJlPWardxagzaxy/lxW+XoXyqzaH77+jjQD llR28Bd6rTO3j74EwoSzCCFSeTetm8tMDbHZI91Y2Z5i6s6/woCIP24JnBPwnfwi WqLEL8bZ2Msza0htHiFiyCNzhbFsY6/V9AGptO0xvad/BpX5mfnRQypndJZkc91F YjxeWG1ytZot8zJj2tGDXjoiB27lUlqlAlZqobe+WW6FsqCaW1tORZuU3JKWX9Kp w+PmVu3vaouXnUB586XW1+hxh9/j4jYglUt9sg== -----END CERTIFICATE-----Generated at Thu Jun 20 21:00:27 2024 by rpki-client on console-ams.rpki-client.org