$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e35352e33362e302f32322d3234203d3e20313336303532.roa File: 3130332e35352e33362e302f32322d3234203d3e20313336303532.roa (raw, json) Hash identifier: 8O7G6XeriXEgTx2RYSguXINiEEUaQhtNKti+QFwHliA= Subject key identifier: 74:6A:6D:29:80:7A:D9:DE:56:6B:95:51:24:EF:8E:92:97:F8:48:15 Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 33F2B211523AEA468F1CB7940E10481C646470DE Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e35352e33362e302f32322d3234203d3e20313336303532.roa Signing time: Tue 19 Sep 2023 06:00:01 +0000 ROA not before: Tue 19 Sep 2023 05:55:01 +0000 ROA not after: Tue 17 Sep 2024 06:00:01 +0000 asID: 136052 IP address blocks: 103.55.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f2:b2:11:52:3a:ea:46:8f:1c:b7:94:0e:10:48:1c:64:64:70:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Sep 19 05:55:01 2023 GMT Not After : Sep 17 06:00:01 2024 GMT Subject: CN=746A6D29807AD9DE566B955124EF8E9297F84815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a5:52:a2:71:7b:eb:f3:ae:02:7e:90:90:1a: 9a:4f:97:2c:d6:f3:ec:40:d4:2f:49:2a:f2:32:d3: d9:71:40:7b:58:9c:89:a7:1f:2c:6a:2e:31:49:dc: c5:26:81:ff:fe:0e:c2:8f:25:b9:e6:2e:0e:e2:d5: 33:e3:bf:70:a7:88:e9:5c:ce:1b:ae:ae:47:a9:2b: c7:ca:1f:48:98:31:41:56:94:32:68:ec:45:0d:dd: a0:5e:09:0b:8b:49:8e:64:4a:5d:f7:60:65:71:47: 25:b7:09:35:3e:56:97:a9:5b:a3:be:1a:93:ef:e3: 18:3b:79:b5:08:33:e1:e3:d6:4c:59:29:ef:9d:08: 1e:fa:aa:2b:35:ee:24:90:1f:c8:ad:b8:78:da:40: d5:39:49:b4:73:ec:09:c0:13:fe:c4:0a:42:fd:ed: 96:76:0e:fc:3e:d4:ae:73:e1:5d:90:34:d1:30:b0: 32:bd:8a:84:c3:20:88:f2:6b:af:ef:cc:76:5a:e7: a9:a9:66:36:2a:f6:60:75:c0:0d:06:85:d7:d4:6e: 02:9b:67:7f:e0:34:77:28:2c:fd:c0:00:a6:e7:be: 68:c0:e4:f5:35:1b:3e:b0:2b:81:6f:7a:75:31:a2: 2c:ae:a5:51:0b:d4:6d:87:53:21:ef:ce:85:57:f0: fe:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:6A:6D:29:80:7A:D9:DE:56:6B:95:51:24:EF:8E:92:97:F8:48:15 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e35352e33362e302f32322d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.36.0/22 Signature Algorithm: sha256WithRSAEncryption aa:50:26:94:6f:00:f8:79:bb:a8:ad:a5:9c:3e:15:17:45:f8: 30:6c:8b:b8:00:fb:45:34:d3:a5:a3:b0:11:de:90:56:74:ea: 03:81:b4:af:06:18:49:85:2a:23:d7:a2:3d:c4:08:9f:6b:de: 19:ba:6f:2a:bd:f0:c0:4d:30:a5:c4:5f:06:ba:5c:28:58:38: 05:28:f4:fe:0e:b8:3e:a9:a3:f1:21:cd:26:75:11:11:55:bb: 0e:4b:8b:53:bf:23:5e:ed:1b:82:3d:6d:70:e2:79:42:b3:9a: 50:1d:94:7a:fd:36:b9:8e:ec:4c:85:bd:aa:bc:74:cd:70:92: 68:98:be:77:ef:fb:6e:ac:ce:c1:e6:45:3e:16:52:db:09:68: 3e:dd:d6:39:51:34:a4:0c:78:fa:41:c7:14:84:77:81:54:c2: 09:c1:76:9b:24:9e:e4:db:b6:eb:42:0c:75:4e:81:3e:07:23: e6:be:7f:88:bb:5d:21:0d:4a:22:2a:61:74:ef:2a:cd:fd:29: 8e:95:88:35:34:12:b5:d0:a5:d5:fe:b0:7e:0c:0c:4b:b7:b3: 94:0f:a3:6e:86:47:08:a4:cf:a4:63:c8:73:b9:6f:41:62:1e: 26:48:04:4b:0d:75:0d:ad:e6:0a:ad:59:b6:d9:c2:96:38:e5: 4c:68:60:d2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM/KyEVI66kaPHLeUDhBIHGRkcN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yMzA5MTkwNTU1MDFaFw0yNDA5MTcwNjAwMDFaMDMxMTAvBgNV BAMTKDc0NkE2RDI5ODA3QUQ5REU1NjZCOTU1MTI0RUY4RTkyOTdGODQ4MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRpVKicXvr864CfpCQGppPlyzW 8+xA1C9JKvIy09lxQHtYnImnHyxqLjFJ3MUmgf/+DsKPJbnmLg7i1TPjv3CniOlc zhuurkepK8fKH0iYMUFWlDJo7EUN3aBeCQuLSY5kSl33YGVxRyW3CTU+VpepW6O+ GpPv4xg7ebUIM+Hj1kxZKe+dCB76qis17iSQH8ituHjaQNU5SbRz7AnAE/7ECkL9 7ZZ2Dvw+1K5z4V2QNNEwsDK9ioTDIIjya6/vzHZa56mpZjYq9mB1wA0GhdfUbgKb Z3/gNHcoLP3AAKbnvmjA5PU1Gz6wK4FvenUxoiyupVEL1G2HUyHvzoVX8P51AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdGptKYB62d5Wa5VRJO+Okpf4SBUwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMxMzAzMzJlMzUzNTJlMzMzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc3JDANBgkqhkiG 9w0BAQsFAAOCAQEAqlAmlG8A+Hm7qK2lnD4VF0X4MGyLuAD7RTTTpaOwEd6QVnTq A4G0rwYYSYUqI9eiPcQIn2veGbpvKr3wwE0wpcRfBrpcKFg4BSj0/g64Pqmj8SHN JnUREVW7DkuLU78jXu0bgj1tcOJ5QrOaUB2Uev02uY7sTIW9qrx0zXCSaJi+d+/7 bqzOweZFPhZS2wloPt3WOVE0pAx4+kHHFIR3gVTCCcF2mySe5Nu260IMdU6BPgcj 5r5/iLtdIQ1KIiphdO8qzf0pjpWINTQStdCl1f6wfgwMS7ezlA+jboZHCKTPpGPI c7lvQWIeJkgESw11Da3mCq1ZttnCljjlTGhg0g== -----END CERTIFICATE-----Generated at Fri May 3 17:55:17 2024 by rpki-client on console-ams.rpki-client.org