$ rpki-client -vvf repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa File: 3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa (raw, json) Hash identifier: rb2IFJ3MeCJIjvOV69FRTMNREWhHKTagpz7/NKnpFpQ= Subject key identifier: FB:4E:05:CA:9D:69:7A:78:32:42:90:79:39:78:90:30:31:58:AE:46 Certificate issuer: /CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Certificate serial: 5891791FEC0EF38E16621E90C03B05E732B0BC88 Authority key identifier: BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject info access: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa Signing time: Mon 31 Jul 2023 00:05:42 +0000 ROA not before: Mon 31 Jul 2023 00:00:42 +0000 ROA not after: Mon 29 Jul 2024 00:05:42 +0000 asID: 140404 IP address blocks: 103.151.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 04:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:91:79:1f:ec:0e:f3:8e:16:62:1e:90:c0:3b:05:e7:32:b0:bc:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Validity Not Before: Jul 31 00:00:42 2023 GMT Not After : Jul 29 00:05:42 2024 GMT Subject: CN=FB4E05CA9D697A7832429079397890303158AE46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d1:5f:e0:5f:5b:22:6c:14:92:93:7d:a6:ed: 10:65:64:c2:d2:40:75:c0:f2:a0:c4:32:79:5b:b3: 0c:da:e3:b7:36:5c:ba:b7:22:01:0a:3e:83:4e:4a: 46:57:72:d8:ee:90:5f:f3:7d:51:03:b4:a4:6f:52: 95:16:66:8b:9a:d2:2f:fe:98:15:68:1d:49:0c:ae: 24:02:cc:b9:ab:bd:d1:33:a6:f5:ab:c8:aa:e5:42: a2:a5:90:bf:43:a3:a5:6d:5d:56:95:3c:fd:cd:96: 29:2f:3b:7c:f4:da:d4:9f:45:53:e1:a6:cc:c6:cf: 06:83:31:34:ad:93:f5:f1:b1:eb:aa:28:4c:5a:95: 76:68:74:cc:89:80:60:54:6e:94:86:fc:d2:6e:d1: c8:7b:5c:a6:34:ce:02:7e:94:da:b9:7d:d7:13:f0: 4f:01:26:e8:87:1b:24:bc:1a:5c:28:b0:15:66:69: 67:93:eb:de:3e:b0:e0:9c:66:24:c8:f3:ae:02:c7: 91:91:a4:4c:97:82:46:f4:65:48:96:eb:0c:21:1d: 00:0e:c1:3a:d6:d7:9b:b4:12:f4:bd:ff:f3:61:11: a4:06:80:f2:de:1d:9f:c5:92:d4:15:f9:83:d1:8d: 28:51:71:9b:ea:01:5b:ec:47:e1:dc:a1:c3:fd:76: 53:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4E:05:CA:9D:69:7A:78:32:42:90:79:39:78:90:30:31:58:AE:46 X509v3 Authority Key Identifier: keyid:BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.22.0/23 Signature Algorithm: sha256WithRSAEncryption c7:c3:83:29:72:28:d1:39:a0:16:fa:12:63:5e:e1:bc:29:b8: 70:30:9f:b5:74:a3:a3:d9:ab:5d:e6:bc:35:e2:2f:65:8e:bb: ce:12:cd:b9:01:59:f5:4a:98:ed:79:f4:f1:79:8c:ec:d2:3a: 06:7b:bf:3c:47:3f:27:ec:ec:ae:c5:e1:d5:00:07:ce:4b:a0: d1:0d:c9:f4:60:9f:4f:0f:20:70:fa:9b:59:29:eb:21:4d:4e: 92:18:0e:30:96:79:e4:a1:37:8b:ab:47:a0:9c:f1:d9:50:9a: 78:bc:7a:2a:9f:b5:a7:54:be:54:3c:78:67:5d:1c:49:6e:4b: e0:cc:b9:67:95:31:f7:5a:0d:21:61:93:9e:e9:a2:df:9d:27: 7c:37:46:c1:29:2e:1f:9c:32:23:d0:27:fc:85:b2:2b:88:8f: 52:a3:5f:7e:1c:75:07:76:3d:9c:82:e8:2d:15:0d:49:9a:91: eb:20:02:65:76:30:48:fc:df:a1:10:85:f1:e8:63:0f:19:90: 9e:2f:0a:71:db:13:96:6d:75:7c:96:4d:95:4f:08:9f:ad:b0: 6d:44:23:00:25:45:3b:be:3c:6c:25:47:a1:b9:cb:3d:fd:60: d8:e6:3d:c0:9e:d0:4c:07:c9:b1:eb:76:e2:90:93:c8:cb:1d: 92:6e:a5:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWJF5H+wO844WYh6QwDsF5zKwvIgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5 MDJBRjk5ODAeFw0yMzA3MzEwMDAwNDJaFw0yNDA3MjkwMDA1NDJaMDMxMTAvBgNV BAMTKEZCNEUwNUNBOUQ2OTdBNzgzMjQyOTA3OTM5Nzg5MDMwMzE1OEFFNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq0V/gX1sibBSSk32m7RBlZMLS QHXA8qDEMnlbswza47c2XLq3IgEKPoNOSkZXctjukF/zfVEDtKRvUpUWZoua0i/+ mBVoHUkMriQCzLmrvdEzpvWryKrlQqKlkL9Do6VtXVaVPP3NlikvO3z02tSfRVPh pszGzwaDMTStk/XxseuqKExalXZodMyJgGBUbpSG/NJu0ch7XKY0zgJ+lNq5fdcT 8E8BJuiHGyS8GlwosBVmaWeT694+sOCcZiTI864Cx5GRpEyXgkb0ZUiW6wwhHQAO wTrW15u0EvS9//NhEaQGgPLeHZ/FktQV+YPRjShRcZvqAVvsR+HcocP9dlPXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+04Fyp1pengyQpB5OXiQMDFYrkYwHwYDVR0j BBgwFoAUvrOzW6HD2spZxsUl6pgj/5Aq+ZgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MGNiNWM5Yi1mMzgzLTRlODEtODEyYy0wZTIyN2FkNDZiMWIvMC9CRUIzQjM1QkEx QzNEQUNBNTlDNkM1MjVFQTk4MjNGRjkwMkFGOTk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5MDJB Rjk5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwY2I1YzliLWYzODMtNGU4MS04 MTJjLTBlMjI3YWQ0NmIxYi8wLzMxMzAzMzJlMzEzNTMxMmUzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5cWMA0GCSqG SIb3DQEBCwUAA4IBAQDHw4MpcijROaAW+hJjXuG8KbhwMJ+1dKOj2atd5rw14i9l jrvOEs25AVn1SpjtefTxeYzs0joGe788Rz8n7OyuxeHVAAfOS6DRDcn0YJ9PDyBw +ptZKeshTU6SGA4wlnnkoTeLq0egnPHZUJp4vHoqn7WnVL5UPHhnXRxJbkvgzLln lTH3Wg0hYZOe6aLfnSd8N0bBKS4fnDIj0Cf8hbIriI9So19+HHUHdj2cgugtFQ1J mpHrIAJldjBI/N+hEIXx6GMPGZCeLwpx2xOWbXV8lk2VTwifrbBtRCMAJUU7vjxs JUehucs9/WDY5j3AntBMB8mx63bikJPIyx2SbqVy -----END CERTIFICATE-----Generated at Fri May 17 03:05:46 2024 by rpki-client on console-ams.rpki-client.org