$ rpki-client -vvf repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa File: 3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa (raw, json) Hash identifier: Mfntz4qjc5O8XnZO55ZIrN89IUvKkn7eL1Wx+x76Q10= Subject key identifier: 3C:FF:B8:A0:FF:83:A7:E2:3A:BA:BF:89:B7:3F:F4:A6:72:8C:B5:FF Certificate issuer: /CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Certificate serial: 0F6CE92878146B2C6940DE52805F73E3FCD7A64D Authority key identifier: 4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject info access: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa Signing time: Thu 03 Aug 2023 04:00:25 +0000 ROA not before: Thu 03 Aug 2023 03:55:25 +0000 ROA not after: Thu 01 Aug 2024 04:00:25 +0000 asID: 141126 IP address blocks: 103.158.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:6c:e9:28:78:14:6b:2c:69:40:de:52:80:5f:73:e3:fc:d7:a6:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Validity Not Before: Aug 3 03:55:25 2023 GMT Not After : Aug 1 04:00:25 2024 GMT Subject: CN=3CFFB8A0FF83A7E23ABABF89B73FF4A6728CB5FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:0c:5c:2b:da:12:39:19:98:4e:6c:64:a6:61: 2a:54:84:79:ea:6f:c3:bb:b3:58:5b:9a:45:4d:e9: 01:cf:9a:dc:8b:d5:6e:3c:30:54:c4:1e:6c:56:b8: 2a:2e:3c:74:31:f1:c3:97:7e:68:bb:77:a7:fd:f6: c4:18:97:a6:3c:e7:37:3a:de:2b:2a:7f:ab:5b:c1: 1d:ec:94:b6:74:17:8e:2a:10:99:0c:1b:03:7e:99: 7d:45:ea:d6:5a:e5:e5:39:5a:8c:32:a0:f3:77:62: 7c:73:95:b0:0e:77:3a:f1:8a:6c:66:aa:93:f7:5e: 09:89:32:4a:e5:5c:08:70:16:d1:d9:26:35:96:2d: f9:4c:b1:cf:00:fc:bc:22:36:02:6b:fc:31:68:54: b5:90:5a:7f:11:30:34:a9:f3:04:36:e2:37:10:8e: 08:13:09:d1:66:3d:b7:4c:45:95:04:66:e4:76:e9: c1:f0:ad:96:b5:40:82:04:b2:12:c7:56:12:04:1a: d9:c0:55:76:b1:11:89:9e:07:c3:4e:fb:3e:a9:72: c7:fe:e9:4a:73:c8:c3:e5:66:dd:2d:54:a7:c0:9d: 19:da:9f:d3:fc:8a:5c:88:ec:5d:b7:fe:db:ed:7d: 24:1b:8d:8e:b6:71:81:fa:30:ec:40:15:d3:d6:67: aa:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:FF:B8:A0:FF:83:A7:E2:3A:BA:BF:89:B7:3F:F4:A6:72:8C:B5:FF X509v3 Authority Key Identifier: keyid:4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.154.0/24 Signature Algorithm: sha256WithRSAEncryption 49:11:3a:5e:92:b6:f7:50:f5:db:f1:7f:cf:a6:1d:03:6f:1e: e1:c6:9a:10:5d:61:e1:34:37:62:c0:2d:7f:d5:58:55:cd:4f: e8:f1:44:e1:d0:62:78:78:b9:67:2f:a2:f8:70:21:cd:1d:13: 51:d7:98:33:d7:5e:24:5c:5d:19:dc:a9:e5:eb:5f:0e:ba:c1: 58:dc:d0:25:1e:c0:12:62:1c:7d:08:1e:bb:2f:5d:36:37:60: ec:c2:32:60:f6:d6:36:fd:29:ce:a4:82:ac:b2:89:03:c1:a6: 50:d3:ef:a5:42:03:33:12:d0:74:2a:53:bf:0b:cc:0c:03:e1: 12:48:8b:5a:64:64:0c:3d:9f:40:e0:2e:91:40:fb:b1:0d:14: 54:29:9e:83:09:7f:af:b8:72:52:82:df:00:62:c2:a4:db:13: a9:99:92:f4:02:cb:19:c9:4f:5d:15:6a:41:9f:45:f4:ca:7a: c4:0e:86:b9:3a:b9:8f:ee:b3:9a:33:29:9f:02:a2:9c:e6:52: 5c:d6:e4:a4:2b:cc:09:5e:51:ad:dc:c7:94:8c:42:8b:4e:29: 98:bf:dc:af:a7:df:7d:60:78:ea:f1:a6:df:bc:8d:3f:1f:22: 4c:92:e0:9a:be:bb:0d:f1:fe:fe:48:eb:7e:8c:01:fe:a8:12: bb:3a:ab:8d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUD2zpKHgUayxpQN5SgF9z4/zXpk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2 Q0QyMkYxMzAeFw0yMzA4MDMwMzU1MjVaFw0yNDA4MDEwNDAwMjVaMDMxMTAvBgNV BAMTKDNDRkZCOEEwRkY4M0E3RTIzQUJBQkY4OUI3M0ZGNEE2NzI4Q0I1RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwDFwr2hI5GZhObGSmYSpUhHnq b8O7s1hbmkVN6QHPmtyL1W48MFTEHmxWuCouPHQx8cOXfmi7d6f99sQYl6Y85zc6 3isqf6tbwR3slLZ0F44qEJkMGwN+mX1F6tZa5eU5WowyoPN3YnxzlbAOdzrximxm qpP3XgmJMkrlXAhwFtHZJjWWLflMsc8A/LwiNgJr/DFoVLWQWn8RMDSp8wQ24jcQ jggTCdFmPbdMRZUEZuR26cHwrZa1QIIEshLHVhIEGtnAVXaxEYmeB8NO+z6pcsf+ 6UpzyMPlZt0tVKfAnRnan9P8ilyI7F23/tvtfSQbjY62cYH6MOxAFdPWZ6rlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPP+4oP+Dp+I6ur+Jtz/0pnKMtf8wHwYDVR0j BBgwFoAUTrhSHYQncg9Qo/ZSSfLSbGzSLxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzNmNjBlNi1hZmRkLTRlMTAtODNiNC1lOGNiZDY0MWM1MmYvMC80RUI4NTIxRDg0 Mjc3MjBGNTBBM0Y2NTI0OUYyRDI2QzZDRDIyRjEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2Q0Qy MkYxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzM2Y2MGU2LWFmZGQtNGUxMC04 M2I0LWU4Y2JkNjQxYzUyZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnpowDQYJ KoZIhvcNAQELBQADggEBAEkROl6StvdQ9dvxf8+mHQNvHuHGmhBdYeE0N2LALX/V WFXNT+jxROHQYnh4uWcvovhwIc0dE1HXmDPXXiRcXRncqeXrXw66wVjc0CUewBJi HH0IHrsvXTY3YOzCMmD21jb9Kc6kgqyyiQPBplDT76VCAzMS0HQqU78LzAwD4RJI i1pkZAw9n0DgLpFA+7ENFFQpnoMJf6+4clKC3wBiwqTbE6mZkvQCyxnJT10VakGf RfTKesQOhrk6uY/us5ozKZ8CopzmUlzW5KQrzAleUa3cx5SMQotOKZi/3K+n331g eOrxpt+8jT8fIkyS4Jq+uw3x/v5I636MAf6oErs6q40= -----END CERTIFICATE-----Generated at Mon May 6 10:23:56 2024 by rpki-client on console-ams.rpki-client.org