$ rpki-client -vvf repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa File: 3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa (raw, json) Hash identifier: U39v+Ouklcs+2aJhhj0UseAFP0Of3R+lyp/tFUVAL+g= Subject key identifier: 4D:89:9C:F2:DE:E2:5D:BB:86:51:61:7A:A3:A9:5B:3A:AB:0C:D3:9A Certificate issuer: /CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Certificate serial: 5FA02F07A82AA7D114D4E47D7ACB4AC7D6C93041 Authority key identifier: 4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject info access: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa Signing time: Thu 03 Aug 2023 04:00:25 +0000 ROA not before: Thu 03 Aug 2023 03:55:25 +0000 ROA not after: Thu 01 Aug 2024 04:00:25 +0000 asID: 141126 IP address blocks: 103.158.154.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a0:2f:07:a8:2a:a7:d1:14:d4:e4:7d:7a:cb:4a:c7:d6:c9:30:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Validity Not Before: Aug 3 03:55:25 2023 GMT Not After : Aug 1 04:00:25 2024 GMT Subject: CN=4D899CF2DEE25DBB8651617AA3A95B3AAB0CD39A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:05:01:4f:31:8a:e6:b9:51:9c:20:e3:57:75: 06:46:9a:52:32:ad:9b:50:36:78:1f:bc:4d:07:cf: a8:3c:3f:4f:e4:df:8a:6f:48:7e:88:65:5e:21:f0: 14:1a:2d:6b:7d:04:84:e6:d2:20:49:71:74:ad:c9: 1e:2d:9b:f0:9e:35:cb:cc:f4:41:db:18:54:21:0e: d2:d4:4d:de:b9:38:44:65:d5:e4:c4:78:a4:d0:53: 1e:2a:3e:c2:2b:d3:d2:5b:a3:a6:e9:8b:46:e3:9c: 3f:3c:8c:7f:e4:b3:28:02:2d:08:14:88:eb:4a:06: 6f:50:04:68:c5:8d:17:d5:c5:aa:e6:22:6d:fc:3d: c9:7b:36:5b:37:ea:2e:a8:d7:d5:aa:e9:55:41:47: 85:7d:8a:89:67:a3:97:a4:a3:06:a3:c4:74:dc:13: db:af:90:27:2b:6c:7a:b2:53:2f:15:3c:a6:6a:d2: 64:b1:90:50:8e:7a:bc:ff:95:96:7e:01:be:cb:60: e5:fb:80:93:cc:c6:c2:df:1a:7d:2b:db:47:c2:d8: 9b:d7:dc:a1:2e:dd:69:17:f4:a7:7f:31:34:3d:d4: c7:b6:b0:42:ae:1a:45:0a:53:32:d5:e5:da:65:68: a4:7e:7f:77:50:a6:84:1b:f8:4b:3f:47:23:85:c8: 75:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:89:9C:F2:DE:E2:5D:BB:86:51:61:7A:A3:A9:5B:3A:AB:0C:D3:9A X509v3 Authority Key Identifier: keyid:4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.154.0/23 Signature Algorithm: sha256WithRSAEncryption 82:a0:f3:5b:ef:0b:ec:15:72:96:88:39:19:9e:10:be:ac:5a: 01:91:19:88:2d:40:44:a7:4c:67:97:b9:d2:40:9a:1b:da:06: e8:08:cc:c0:da:b8:a6:b8:c9:c0:f8:50:2d:44:58:be:97:69: 0d:b9:fc:66:f4:26:af:59:51:24:fc:56:3e:a5:53:e9:cf:da: 9f:17:5f:09:7a:80:94:5f:9f:9d:71:be:4f:0d:8f:4e:cc:d7: 75:6b:f3:5a:e1:8d:b6:0e:5e:a0:67:2d:87:e7:cf:1a:4b:f3: 01:29:fa:a4:21:bf:c0:a7:cf:79:9c:52:30:82:be:58:53:b7: 8b:d3:8a:08:0c:8f:16:b6:66:8c:43:d0:ac:c0:8e:eb:36:03: b6:32:69:aa:3d:a1:ba:93:57:97:59:63:d5:4f:29:26:d1:7a: f6:2d:75:79:b1:72:cb:16:10:01:66:79:1c:07:3e:75:7f:70: af:7d:53:0c:11:a8:20:76:7a:a8:cc:4c:69:fa:0d:8b:e0:b2: 97:28:78:96:d6:47:5e:e4:f0:fe:9a:8b:e7:8a:11:58:75:75: 02:c1:0d:7a:da:d8:d7:f0:91:5c:2c:de:86:73:11:a9:07:a5: 3c:de:68:55:6d:05:ba:39:75:fe:1d:6f:6a:6d:1a:09:d5:46: 3d:3f:0f:bf -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX6AvB6gqp9EU1OR9estKx9bJMEEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2 Q0QyMkYxMzAeFw0yMzA4MDMwMzU1MjVaFw0yNDA4MDEwNDAwMjVaMDMxMTAvBgNV BAMTKDREODk5Q0YyREVFMjVEQkI4NjUxNjE3QUEzQTk1QjNBQUIwQ0QzOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/BQFPMYrmuVGcIONXdQZGmlIy rZtQNngfvE0Hz6g8P0/k34pvSH6IZV4h8BQaLWt9BITm0iBJcXStyR4tm/CeNcvM 9EHbGFQhDtLUTd65OERl1eTEeKTQUx4qPsIr09Jbo6bpi0bjnD88jH/ksygCLQgU iOtKBm9QBGjFjRfVxarmIm38Pcl7Nls36i6o19Wq6VVBR4V9iolno5ekowajxHTc E9uvkCcrbHqyUy8VPKZq0mSxkFCOerz/lZZ+Ab7LYOX7gJPMxsLfGn0r20fC2JvX 3KEu3WkX9Kd/MTQ91Me2sEKuGkUKUzLV5dplaKR+f3dQpoQb+Es/RyOFyHW3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTYmc8t7iXbuGUWF6o6lbOqsM05owHwYDVR0j BBgwFoAUTrhSHYQncg9Qo/ZSSfLSbGzSLxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzNmNjBlNi1hZmRkLTRlMTAtODNiNC1lOGNiZDY0MWM1MmYvMC80RUI4NTIxRDg0 Mjc3MjBGNTBBM0Y2NTI0OUYyRDI2QzZDRDIyRjEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2Q0Qy MkYxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzM2Y2MGU2LWFmZGQtNGUxMC04 M2I0LWU4Y2JkNjQxYzUyZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM1MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnpowDQYJ KoZIhvcNAQELBQADggEBAIKg81vvC+wVcpaIORmeEL6sWgGRGYgtQESnTGeXudJA mhvaBugIzMDauKa4ycD4UC1EWL6XaQ25/Gb0Jq9ZUST8Vj6lU+nP2p8XXwl6gJRf n51xvk8Nj07M13Vr81rhjbYOXqBnLYfnzxpL8wEp+qQhv8Cnz3mcUjCCvlhTt4vT iggMjxa2ZoxD0KzAjus2A7Yyaao9obqTV5dZY9VPKSbRevYtdXmxcssWEAFmeRwH PnV/cK99UwwRqCB2eqjMTGn6DYvgspcoeJbWR17k8P6ai+eKEVh1dQLBDXra2Nfw kVws3oZzEakHpTzeaFVtBbo5df4db2ptGgnVRj0/D78= -----END CERTIFICATE-----Generated at Mon May 6 10:23:56 2024 by rpki-client on console-ams.rpki-client.org