$ rpki-client -vvf repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3136332e35332e3139322e302f32342d3234203d3e203538333831.roa File: 3136332e35332e3139322e302f32342d3234203d3e203538333831.roa (raw, json) Hash identifier: 3GPLX8zC50oH8SgHdGu0+Ppo/HOjknB/6wwNzQLVN5w= Subject key identifier: 43:41:A6:F9:A4:BB:1A:16:1D:57:BB:BD:18:E2:3B:47:D3:C7:3F:2F Certificate issuer: /CN=E5A907C4EC6DA6D9342613280CCAF26E98DBEB98 Certificate serial: 0CD00D48178158811EA7F0A7273B79099F8AC683 Authority key identifier: E5:A9:07:C4:EC:6D:A6:D9:34:26:13:28:0C:CA:F2:6E:98:DB:EB:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3136332e35332e3139322e302f32342d3234203d3e203538333831.roa Signing time: Wed 01 May 2024 16:00:02 +0000 ROA not before: Wed 01 May 2024 15:55:02 +0000 ROA not after: Wed 30 Apr 2025 16:00:02 +0000 asID: 58381 IP address blocks: 163.53.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.crl rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 18:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:d0:0d:48:17:81:58:81:1e:a7:f0:a7:27:3b:79:09:9f:8a:c6:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5A907C4EC6DA6D9342613280CCAF26E98DBEB98 Validity Not Before: May 1 15:55:02 2024 GMT Not After : Apr 30 16:00:02 2025 GMT Subject: CN=4341A6F9A4BB1A161D57BBBD18E23B47D3C73F2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ae:ba:b7:81:bf:6c:0e:98:28:51:0c:a2:3a: 6d:b8:84:c8:45:19:7f:4f:1a:fa:0e:58:af:b5:83: a9:7b:d1:99:f1:68:8e:a5:f8:cc:c0:1c:25:91:10: 9b:d0:3a:0d:b3:9b:5c:5e:af:89:ec:e0:4d:d8:4f: c7:87:59:d4:2d:00:1a:18:00:7d:bd:cf:a3:fa:af: 99:8e:c7:63:a8:b4:41:6f:74:de:46:68:c5:5e:14: c3:64:48:14:7a:d7:4d:73:27:14:24:c1:df:ea:7c: ba:f1:1d:63:42:a9:2a:50:8c:e7:f2:03:af:6b:34: 9a:d7:d6:34:88:b3:45:d9:a6:62:02:ff:ae:0e:d7: 59:5d:c2:c0:fa:ab:cd:4a:9c:42:f6:d0:3d:6b:7c: 1f:ab:2d:ad:4d:55:45:f0:8b:28:d1:9d:e7:79:98: ee:95:ff:21:fa:c3:1b:b5:f8:da:7a:1d:7e:18:01: 58:58:e0:3b:fb:d1:a2:10:c7:f9:37:0c:0d:3a:aa: 29:9a:61:e3:27:0d:c8:9e:4a:f6:75:a5:26:c8:2f: 0b:5e:e7:9f:bf:da:3c:b1:c3:cd:b3:61:84:ff:91: bc:fd:38:a5:b5:96:c3:cf:46:6d:1c:ac:ee:9e:d7: af:58:ca:ab:3c:72:39:8e:69:95:3e:eb:bf:80:26: 00:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:41:A6:F9:A4:BB:1A:16:1D:57:BB:BD:18:E2:3B:47:D3:C7:3F:2F X509v3 Authority Key Identifier: keyid:E5:A9:07:C4:EC:6D:A6:D9:34:26:13:28:0C:CA:F2:6E:98:DB:EB:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3136332e35332e3139322e302f32342d3234203d3e203538333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.53.192.0/24 Signature Algorithm: sha256WithRSAEncryption 30:43:5a:0c:53:c0:9c:99:21:7b:7c:49:88:d1:65:38:b3:2e: dc:ec:d1:00:a1:2c:2a:6a:81:55:cf:e7:2f:8a:e7:ab:37:14: 42:da:df:ee:f9:63:42:64:d4:0e:3e:5d:1d:c7:f5:83:0f:f8: 4c:a9:28:f4:42:31:ed:e3:1b:81:41:0a:73:1b:4b:84:90:b8: e9:3c:ec:3e:10:39:dd:e1:e8:53:ce:27:ff:cc:81:09:ae:8a: 71:a9:c2:5f:b3:af:41:39:db:92:9e:07:26:4b:ce:20:cb:24: d4:b8:63:fc:9a:fb:56:b0:7d:50:e5:01:b2:c7:68:ac:26:79: e5:ac:63:66:96:4f:fe:bc:db:db:52:8d:10:f2:15:c2:e1:7c: f6:3f:e4:e0:b9:86:c9:4a:2e:e8:c5:04:5b:ef:14:1f:37:29: 9c:30:d7:d3:04:46:50:96:6f:5e:a1:2d:84:6a:77:bf:bb:1a: f9:9d:a7:26:84:cf:84:72:8b:c6:8f:c5:c7:74:a6:68:1d:fe: af:b7:e4:89:2d:04:cc:c2:5e:65:c1:18:02:d6:40:cc:ca:c4: 93:08:a4:dd:80:a6:e8:a8:81:f2:a5:c8:50:25:42:e1:05:87: 49:96:62:7d:fe:c5:94:7d:e7:73:fd:30:d6:d4:e4:ee:6e:37: 02:77:85:93 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDNANSBeBWIEep/CnJzt5CZ+KxoMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTVBOTA3QzRFQzZEQTZEOTM0MjYxMzI4MENDQUYyNkU5 OERCRUI5ODAeFw0yNDA1MDExNTU1MDJaFw0yNTA0MzAxNjAwMDJaMDMxMTAvBgNV BAMTKDQzNDFBNkY5QTRCQjFBMTYxRDU3QkJCRDE4RTIzQjQ3RDNDNzNGMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqrrq3gb9sDpgoUQyiOm24hMhF GX9PGvoOWK+1g6l70ZnxaI6l+MzAHCWREJvQOg2zm1xer4ns4E3YT8eHWdQtABoY AH29z6P6r5mOx2OotEFvdN5GaMVeFMNkSBR6101zJxQkwd/qfLrxHWNCqSpQjOfy A69rNJrX1jSIs0XZpmIC/64O11ldwsD6q81KnEL20D1rfB+rLa1NVUXwiyjRned5 mO6V/yH6wxu1+Np6HX4YAVhY4Dv70aIQx/k3DA06qimaYeMnDcieSvZ1pSbILwte 55+/2jyxw82zYYT/kbz9OKW1lsPPRm0crO6e169Yyqs8cjmOaZU+67+AJgBZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQ0Gm+aS7GhYdV7u9GOI7R9PHPy8wHwYDVR0j BBgwFoAU5akHxOxtptk0JhMoDMrybpjb65gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzhkMjc1NS0zODBkLTQ3N2UtYmYyNS0wYWYyOTAyNmJkNzAvMC9FNUE5MDdDNEVD NkRBNkQ5MzQyNjEzMjgwQ0NBRjI2RTk4REJFQjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTVBOTA3QzRFQzZEQTZEOTM0MjYxMzI4MENDQUYyNkU5OERC RUI5OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzOGQyNzU1LTM4MGQtNDc3ZS1i ZjI1LTBhZjI5MDI2YmQ3MC8wLzMxMzYzMzJlMzUzMzJlMzEzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKM1wDANBgkqhkiG 9w0BAQsFAAOCAQEAMENaDFPAnJkhe3xJiNFlOLMu3OzRAKEsKmqBVc/nL4rnqzcU Qtrf7vljQmTUDj5dHcf1gw/4TKko9EIx7eMbgUEKcxtLhJC46TzsPhA53eHoU84n /8yBCa6KcanCX7OvQTnbkp4HJkvOIMsk1Lhj/Jr7VrB9UOUBssdorCZ55axjZpZP /rzb21KNEPIVwuF89j/k4LmGyUou6MUEW+8UHzcpnDDX0wRGUJZvXqEthGp3v7sa +Z2nJoTPhHKLxo/Fx3SmaB3+r7fkiS0EzMJeZcEYAtZAzMrEkwik3YCm6KiB8qXI UCVC4QWHSZZiff7FlH3nc/0w1tTk7m43AneFkw== -----END CERTIFICATE-----Generated at Wed May 1 18:10:55 2024 by rpki-client on console-ams.rpki-client.org