$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa File: 3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa (raw, json) Hash identifier: w4wNKXBaokqAYeLvjnBdCI2cxuEtHXR9myt9DmZL5RI= Subject key identifier: 17:FD:23:72:D7:13:E9:0E:58:81:C0:CB:0A:FA:4C:7F:F4:B4:98:17 Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 0A52512AA5D935849956309CD0E2E908777019 Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa Signing time: Wed 29 Nov 2023 10:32:14 +0000 ROA not before: Wed 29 Nov 2023 10:27:14 +0000 ROA not after: Wed 27 Nov 2024 10:32:14 +0000 asID: 24198 IP address blocks: 103.155.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:52:51:2a:a5:d9:35:84:99:56:30:9c:d0:e2:e9:08:77:70:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Nov 29 10:27:14 2023 GMT Not After : Nov 27 10:32:14 2024 GMT Subject: CN=17FD2372D713E90E5881C0CB0AFA4C7FF4B49817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6c:bf:1e:17:a5:62:cf:cc:ff:c6:8c:43:7c: ca:a2:07:13:9c:59:2a:c8:e2:92:d3:5e:11:86:11: dc:4d:84:6d:26:21:3f:18:b3:e4:b6:4c:e6:44:57: 56:4f:53:39:1e:35:93:f8:9b:2f:81:d0:0a:e0:20: 05:4c:3a:b6:f4:9a:9b:30:b4:78:66:14:e4:0a:59: 3b:ac:01:51:26:30:5c:26:a8:d7:f7:dc:9f:21:63: 77:73:77:f9:0e:9d:b1:8e:fe:ba:42:18:21:b5:3c: 14:cf:ac:04:91:6b:80:60:69:3e:fe:1c:ae:a1:51: 47:20:bc:a1:01:b5:0b:48:14:42:2a:b0:29:18:fa: b6:fd:ca:d3:3a:00:30:71:dc:89:b7:e3:dd:ce:b0: 05:d5:a1:4f:ab:08:e2:08:8f:a6:c9:0d:7e:f3:fd: a3:d8:4d:73:77:58:cf:df:1b:fe:b7:df:ff:b2:51: 03:d2:10:72:55:d9:5c:07:47:8f:e2:88:72:2c:5f: 2a:2b:51:fc:bf:01:4d:c1:68:ce:a8:d6:b5:b7:73: f1:ac:29:d1:af:bc:62:fb:1d:03:bc:a4:8e:99:8a: 4c:70:55:3c:ac:16:2a:75:a5:f6:18:1d:3e:fc:0a: 18:05:18:ff:58:f5:ba:b0:0b:e8:dc:ed:65:ae:a4: 8b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:FD:23:72:D7:13:E9:0E:58:81:C0:CB:0A:FA:4C:7F:F4:B4:98:17 X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.186.0/23 Signature Algorithm: sha256WithRSAEncryption 34:0c:07:1d:5c:a5:f3:3a:01:72:50:40:95:bc:f8:25:c8:8c: df:46:8b:cd:26:1c:bc:f2:e9:41:66:56:5b:53:3b:1c:ce:f0: 0f:58:e2:12:0f:e6:7c:66:56:6c:fd:cf:d7:5b:0c:d3:85:93: 80:06:f4:e8:ea:42:5f:38:4b:f8:0a:fc:c8:f2:9b:d9:7a:dd: e6:3e:4c:32:cc:ac:97:f1:21:56:ef:bb:00:3c:43:1d:bd:e6: 98:30:e8:31:0d:9b:c2:59:91:ed:f9:8f:c2:d2:92:ef:05:68: 0f:ef:8e:33:9b:47:39:73:0b:21:3f:6c:2c:95:cd:63:56:d9: 6e:b2:ef:22:ce:ac:d9:70:41:f6:c7:65:8e:59:dd:3b:fb:4c: 84:38:92:94:af:3c:58:9a:28:7b:e4:f3:29:cf:1a:50:52:6f: 39:f1:77:69:0c:e9:26:0e:62:68:06:7c:78:fd:ba:02:75:cc: 49:bc:d7:7d:33:4b:aa:04:b7:cf:c5:b5:d9:93:5c:d3:cb:38: c1:d7:33:ab:21:7e:90:75:09:c7:a7:72:83:63:ff:a1:a4:7f: 8c:ff:97:7d:b8:7b:3d:54:a5:1a:2d:9e:a1:98:33:ce:c0:73: b6:7d:3d:18:69:72:eb:ad:18:b9:e8:be:d3:ed:e4:b0:8a:8d: dd:88:7c:7f -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgITClJRKqXZNYSZVjCc0OLpCHdwGTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhGMzhERkYwOTRFMTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3 ODA5RDAyMB4XDTIzMTEyOTEwMjcxNFoXDTI0MTEyNzEwMzIxNFowMzExMC8GA1UE AxMoMTdGRDIzNzJENzEzRTkwRTU4ODFDMENCMEFGQTRDN0ZGNEI0OTgxNzCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM5svx4XpWLPzP/GjEN8yqIHE5xZ KsjiktNeEYYR3E2EbSYhPxiz5LZM5kRXVk9TOR41k/ibL4HQCuAgBUw6tvSamzC0 eGYU5ApZO6wBUSYwXCao1/fcnyFjd3N3+Q6dsY7+ukIYIbU8FM+sBJFrgGBpPv4c rqFRRyC8oQG1C0gUQiqwKRj6tv3K0zoAMHHcibfj3c6wBdWhT6sI4giPpskNfvP9 o9hNc3dYz98b/rff/7JRA9IQclXZXAdHj+KIcixfKitR/L8BTcFozqjWtbdz8awp 0a+8YvsdA7ykjpmKTHBVPKwWKnWl9hgdPvwKGAUY/1j1urAL6NztZa6kixUCAwEA AaOCAjQwggIwMB0GA1UdDgQWBBQX/SNy1xPpDliBwMsK+kx/9LSYFzAfBgNVHSME GDAWgBTzjf8JThaEOFTqwUA8af1/d4CdAjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVh ZDZkY2M5LTE3MDAtNDhlYi05MDk5LTY2NzhmOTFiZjQ0ZS8wL0YzOERGRjA5NEUx Njg0Mzg1NEVBQzE0MDNDNjlGRDdGNzc4MDlEMDIuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9GMzhERkYwOTRFMTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5 RDAyLmNlcjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUFBzALhoGEcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFkNmRjYzktMTcwMC00OGViLTkw OTktNjY3OGY5MWJmNDRlLzAvMzEzMDMzMmUzMTM1MzUyZTMxMzgzNjJlMzAyZjMy MzMyZDMyMzQyMDNkM2UyMDMyMzQzMTM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm7owDQYJKoZI hvcNAQELBQADggEBADQMBx1cpfM6AXJQQJW8+CXIjN9Gi80mHLzy6UFmVltTOxzO 8A9Y4hIP5nxmVmz9z9dbDNOFk4AG9OjqQl84S/gK/Mjym9l63eY+TDLMrJfxIVbv uwA8Qx295pgw6DENm8JZke35j8LSku8FaA/vjjObRzlzCyE/bCyVzWNW2W6y7yLO rNlwQfbHZY5Z3Tv7TIQ4kpSvPFiaKHvk8ynPGlBSbznxd2kM6SYOYmgGfHj9ugJ1 zEm8130zS6oEt8/FtdmTXNPLOMHXM6shfpB1CcencoNj/6Gkf4z/l324ez1UpRot nqGYM87Ac7Z9PRhpcuutGLnovtPt5LCKjd2IfH8= -----END CERTIFICATE-----Generated at Fri May 3 04:42:12 2024 by rpki-client on console-fra.rpki-client.org