$ rpki-client -vvf repo-rpki.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa File: 3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa (raw, json) Hash identifier: FYQoAq+lehVihPzo3uwZdotJGCukYKUvOJWxiqHnuJQ= Subject key identifier: 59:28:D7:A3:FA:4B:BD:89:5A:87:71:32:8E:B9:A3:B5:08:0B:39:8A Certificate issuer: /CN=F075D91933F7B3147C303794D6C498142A2D33C6 Certificate serial: 19F2AA2CB90B7F727CF1C656FBC22A7CD58BBFAD Authority key identifier: F0:75:D9:19:33:F7:B3:14:7C:30:37:94:D6:C4:98:14:2A:2D:33:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F075D91933F7B3147C303794D6C498142A2D33C6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa Signing time: Tue 23 Apr 2024 07:00:00 +0000 ROA not before: Tue 23 Apr 2024 06:55:00 +0000 ROA not after: Tue 22 Apr 2025 07:00:00 +0000 asID: 59142 IP address blocks: 103.253.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/F075D91933F7B3147C303794D6C498142A2D33C6.crl rsync://repo-rpki.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/F075D91933F7B3147C303794D6C498142A2D33C6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F075D91933F7B3147C303794D6C498142A2D33C6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f2:aa:2c:b9:0b:7f:72:7c:f1:c6:56:fb:c2:2a:7c:d5:8b:bf:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F075D91933F7B3147C303794D6C498142A2D33C6 Validity Not Before: Apr 23 06:55:00 2024 GMT Not After : Apr 22 07:00:00 2025 GMT Subject: CN=5928D7A3FA4BBD895A8771328EB9A3B5080B398A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8e:a9:18:7c:a2:73:0d:f1:dd:cc:59:b1:0c: c5:70:62:83:ee:96:49:4c:7a:6c:91:68:57:88:e4: bd:7e:2a:77:fc:31:23:f7:4b:f4:79:98:cb:b7:9b: 5e:b3:52:2d:c5:3a:4c:9d:a1:99:ba:f3:0f:ea:40: 60:cc:91:43:d2:b9:28:3c:e9:b6:b2:24:47:4b:4f: 79:aa:4a:56:ff:c3:e0:1d:d3:fa:25:68:6c:26:f3: 99:a6:f5:f4:50:73:b7:78:49:80:da:cc:7c:8f:d6: a3:ca:e0:6a:9c:44:cc:16:11:e6:bf:ab:55:db:b5: 94:86:61:ae:1b:40:2c:0d:31:ad:91:9b:a2:09:5e: 29:3d:8f:09:eb:5f:34:ee:ad:b8:c8:0b:52:bf:8c: 45:1d:1c:e0:5c:80:e3:6a:e5:bc:12:e3:12:e5:31: ce:f5:80:46:3a:5b:81:7e:50:23:58:fc:9e:53:58: 99:90:0e:0b:bd:61:36:62:6a:5a:6f:d5:bd:af:e1: 8a:a4:be:8a:13:7d:1c:2e:dc:cb:95:e2:cc:1a:5c: 29:04:fa:ae:f4:3e:e9:77:b8:d4:04:8e:ad:6d:9f: 1c:90:f7:ce:a0:70:18:db:e1:8f:e8:a6:7c:b6:26: 8b:92:4b:ec:11:0b:02:a9:b5:99:bd:fe:c7:0e:6a: 67:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:28:D7:A3:FA:4B:BD:89:5A:87:71:32:8E:B9:A3:B5:08:0B:39:8A X509v3 Authority Key Identifier: keyid:F0:75:D9:19:33:F7:B3:14:7C:30:37:94:D6:C4:98:14:2A:2D:33:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/F075D91933F7B3147C303794D6C498142A2D33C6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F075D91933F7B3147C303794D6C498142A2D33C6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.124.0/24 Signature Algorithm: sha256WithRSAEncryption c1:9e:99:c6:e3:82:ef:43:b5:65:0e:cb:49:59:12:a3:c0:d6: 95:3e:65:7a:fa:5d:e3:16:91:71:7d:d0:b6:47:54:81:68:28: 0a:57:78:e0:61:c0:c2:64:b1:f1:7e:ca:c5:b2:ca:58:d0:38: bc:14:3d:f9:c3:a1:45:37:07:01:15:08:08:81:96:57:7a:03: 98:7c:65:05:24:fb:e8:e1:2b:11:54:1e:a2:a8:f9:6b:6f:22: 9f:2d:b8:58:bb:1d:0d:6d:9c:4b:d3:ce:9b:34:65:83:a3:b0: 6d:55:00:64:76:84:97:d5:f1:40:9a:25:b4:dd:46:c4:8a:0d: 7c:a9:e1:36:b4:46:74:ba:ac:4e:ac:d4:52:98:4c:96:cc:1e: d9:af:3e:fd:67:e9:65:dd:69:98:ec:6d:48:80:07:48:1d:9b: bb:ef:fa:5f:51:7d:ac:c5:b1:40:f3:c7:ea:84:92:72:de:62: 33:e7:a8:cc:05:5a:97:eb:d9:f3:c4:95:4f:46:15:d1:0e:8d: e8:17:53:3b:ee:d0:bf:6a:f7:f6:7d:68:f8:b4:26:27:92:fb: ae:2e:d5:0f:de:95:cd:c0:1e:c2:88:a4:a8:04:d6:8c:cc:fd: 06:6d:f9:c7:cc:5d:35:c7:82:1b:69:1b:54:bb:0a:d8:11:e5: 61:d5:3d:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGfKqLLkLf3J88cZW+8IqfNWLv60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA3NUQ5MTkzM0Y3QjMxNDdDMzAzNzk0RDZDNDk4MTQy QTJEMzNDNjAeFw0yNDA0MjMwNjU1MDBaFw0yNTA0MjIwNzAwMDBaMDMxMTAvBgNV BAMTKDU5MjhEN0EzRkE0QkJEODk1QTg3NzEzMjhFQjlBM0I1MDgwQjM5OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGjqkYfKJzDfHdzFmxDMVwYoPu lklMemyRaFeI5L1+Knf8MSP3S/R5mMu3m16zUi3FOkydoZm68w/qQGDMkUPSuSg8 6bayJEdLT3mqSlb/w+Ad0/olaGwm85mm9fRQc7d4SYDazHyP1qPK4GqcRMwWEea/ q1XbtZSGYa4bQCwNMa2Rm6IJXik9jwnrXzTurbjIC1K/jEUdHOBcgONq5bwS4xLl Mc71gEY6W4F+UCNY/J5TWJmQDgu9YTZialpv1b2v4YqkvooTfRwu3MuV4swaXCkE +q70Pul3uNQEjq1tnxyQ986gcBjb4Y/opny2JouSS+wRCwKptZm9/scOamexAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWSjXo/pLvYlah3EyjrmjtQgLOYowHwYDVR0j BBgwFoAU8HXZGTP3sxR8MDeU1sSYFCotM8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzJjNTEyMS1mNzQ5LTRhNTQtYTllYy1mNmMzNDlmMzQzMTAvMC9GMDc1RDkxOTMz RjdCMzE0N0MzMDM3OTRENkM0OTgxNDJBMkQzM0M2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA3NUQ5MTkzM0Y3QjMxNDdDMzAzNzk0RDZDNDk4MTQyQTJE MzNDNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzMmM1MTIxLWY3NDktNGE1NC1h OWVjLWY2YzM0OWYzNDMxMC8wLzMxMzAzMzJlMzIzNTMzMmUzMTMyMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/18MA0GCSqG SIb3DQEBCwUAA4IBAQDBnpnG44LvQ7VlDstJWRKjwNaVPmV6+l3jFpFxfdC2R1SB aCgKV3jgYcDCZLHxfsrFsspY0Di8FD35w6FFNwcBFQgIgZZXegOYfGUFJPvo4SsR VB6iqPlrbyKfLbhYux0NbZxL086bNGWDo7BtVQBkdoSX1fFAmiW03UbEig18qeE2 tEZ0uqxOrNRSmEyWzB7Zrz79Z+ll3WmY7G1IgAdIHZu77/pfUX2sxbFA88fqhJJy 3mIz56jMBVqX69nzxJVPRhXRDo3oF1M77tC/avf2fWj4tCYnkvuuLtUP3pXNwB7C iKSoBNaMzP0GbfnHzF01x4IbaRtUuwrYEeVh1T2j -----END CERTIFICATE-----Generated at Sat Jun 1 11:46:15 2024 by rpki-client on console-ams.rpki-client.org