$ rpki-client -vvf repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa File: 3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa (raw, json) Hash identifier: jpYthyvRsPel0QDntur81+LYWyeKEnCkBR2a9iUrd4A= Subject key identifier: 12:C5:20:F9:29:B8:16:74:11:7A:66:B8:11:AE:45:BB:55:4B:E6:EA Certificate issuer: /CN=51122991EB0981E672637F95671E74F6E59AAC7B Certificate serial: 74AF860E3960706D2B1595B2335C99BA433D7049 Authority key identifier: 51:12:29:91:EB:09:81:E6:72:63:7F:95:67:1E:74:F6:E5:9A:AC:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/51122991EB0981E672637F95671E74F6E59AAC7B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa Signing time: Mon 31 Jul 2023 00:04:24 +0000 ROA not before: Sun 30 Jul 2023 23:59:24 +0000 ROA not after: Mon 29 Jul 2024 00:04:24 +0000 asID: 133359 IP address blocks: 103.238.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/51122991EB0981E672637F95671E74F6E59AAC7B.crl rsync://repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/51122991EB0981E672637F95671E74F6E59AAC7B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/51122991EB0981E672637F95671E74F6E59AAC7B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:af:86:0e:39:60:70:6d:2b:15:95:b2:33:5c:99:ba:43:3d:70:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51122991EB0981E672637F95671E74F6E59AAC7B Validity Not Before: Jul 30 23:59:24 2023 GMT Not After : Jul 29 00:04:24 2024 GMT Subject: CN=12C520F929B81674117A66B811AE45BB554BE6EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2d:23:4c:4d:ca:c1:1e:57:5a:73:c8:7f:ec: c2:84:64:4f:e7:2d:6d:a8:42:6a:12:3d:ef:97:58: c7:ba:75:53:aa:43:30:d2:6e:36:40:e5:d9:9e:5f: 55:28:5c:0c:47:88:14:69:6c:8e:1c:5e:2c:45:2a: 86:10:53:48:db:00:ea:c7:6b:51:5e:36:dd:70:c0: 36:ab:6e:23:59:34:e1:6c:61:77:72:e2:91:66:04: cc:13:14:90:2e:d7:c9:b5:d7:0b:f5:df:2e:95:a4: 9d:f8:d6:5c:cf:d9:19:47:ae:30:99:ea:a4:b5:0e: 51:61:f0:7c:bd:d0:40:fa:d1:1b:ef:e8:7c:7c:06: b7:62:b5:c9:37:ef:1d:ab:9d:f9:a8:91:cf:cf:4a: 05:e8:68:65:21:6b:78:ca:aa:8e:e9:2a:60:b0:52: f2:0a:f6:75:c2:4b:91:c3:66:06:c3:0b:cd:fc:53: 52:bc:13:33:05:97:29:57:71:c6:0a:4e:9a:9f:25: 87:97:9a:df:ba:15:c5:f3:e1:82:71:7b:b1:19:fa: e7:ef:c2:f3:52:53:2a:0c:04:f0:8b:9e:ad:d2:a9: 14:77:21:b3:96:b9:8d:d5:9a:14:11:31:6c:44:23: 01:a6:27:6c:00:97:24:c3:46:e5:71:a3:ab:cd:48: b1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C5:20:F9:29:B8:16:74:11:7A:66:B8:11:AE:45:BB:55:4B:E6:EA X509v3 Authority Key Identifier: keyid:51:12:29:91:EB:09:81:E6:72:63:7F:95:67:1E:74:F6:E5:9A:AC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/51122991EB0981E672637F95671E74F6E59AAC7B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/51122991EB0981E672637F95671E74F6E59AAC7B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.138.0/23 Signature Algorithm: sha256WithRSAEncryption a1:ac:94:cd:4d:7e:b4:36:69:1e:b5:ed:19:97:bb:20:7a:21: 52:0a:e5:db:aa:ad:36:2d:76:47:4f:d6:c2:7e:32:c8:4e:6e: 38:42:7d:21:f4:be:c3:98:0c:95:69:3e:38:64:f5:e0:35:67: f0:bd:e1:7b:b8:e6:2c:5b:f3:bf:aa:f6:06:36:6e:ad:be:4a: 1e:e6:a2:57:6c:0c:73:67:a8:ee:2e:a0:fa:8c:a8:f2:49:18: b6:bc:3a:9c:32:13:e2:dd:b8:35:57:48:32:1a:c5:e9:be:29: 8d:0c:e3:fc:2c:44:76:eb:7c:1e:b9:25:e0:8a:61:02:6e:42: 1c:12:58:c8:9b:82:97:a8:ba:ae:0c:43:67:b8:c6:76:95:96: 55:7a:39:91:49:cf:ac:a5:0e:13:05:fb:c5:79:33:a3:b2:3e: de:c8:5f:29:71:c3:47:a9:6b:ed:8a:d7:c9:82:bd:84:bd:dd: b9:78:78:d7:2c:46:61:23:0d:d0:57:0c:13:c0:09:4b:32:89: 7a:30:e0:da:81:d4:bd:5b:cf:5f:ce:cf:fa:fa:95:35:f1:81: d4:cc:4f:d4:06:5b:68:54:a7:27:1c:c6:32:d2:8e:73:cb:7d: d3:08:3c:1d:af:48:5f:c7:26:b6:40:0c:c8:cf:bd:e8:a5:1a: b4:d3:15:53 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdK+GDjlgcG0rFZWyM1yZukM9cEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTExMjI5OTFFQjA5ODFFNjcyNjM3Rjk1NjcxRTc0RjZF NTlBQUM3QjAeFw0yMzA3MzAyMzU5MjRaFw0yNDA3MjkwMDA0MjRaMDMxMTAvBgNV BAMTKDEyQzUyMEY5MjlCODE2NzQxMTdBNjZCODExQUU0NUJCNTU0QkU2RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOLSNMTcrBHldac8h/7MKEZE/n LW2oQmoSPe+XWMe6dVOqQzDSbjZA5dmeX1UoXAxHiBRpbI4cXixFKoYQU0jbAOrH a1FeNt1wwDarbiNZNOFsYXdy4pFmBMwTFJAu18m11wv13y6VpJ341lzP2RlHrjCZ 6qS1DlFh8Hy90ED60Rvv6Hx8Brditck37x2rnfmokc/PSgXoaGUha3jKqo7pKmCw UvIK9nXCS5HDZgbDC838U1K8EzMFlylXccYKTpqfJYeXmt+6FcXz4YJxe7EZ+ufv wvNSUyoMBPCLnq3SqRR3IbOWuY3VmhQRMWxEIwGmJ2wAlyTDRuVxo6vNSLF1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEsUg+Sm4FnQRema4Ea5Fu1VL5uowHwYDVR0j BBgwFoAUURIpkesJgeZyY3+VZx509uWarHswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzIxOTI1OS1lZDFhLTRkMTgtYmQ5Mi05NGI2MDY3MmU2YTEvMC81MTEyMjk5MUVC MDk4MUU2NzI2MzdGOTU2NzFFNzRGNkU1OUFBQzdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTExMjI5OTFFQjA5ODFFNjcyNjM3Rjk1NjcxRTc0RjZFNTlB QUM3Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMjE5MjU5LWVkMWEtNGQxOC1i ZDkyLTk0YjYwNjcyZTZhMS8wLzMxMzAzMzJlMzIzMzM4MmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn7oowDQYJ KoZIhvcNAQELBQADggEBAKGslM1NfrQ2aR617RmXuyB6IVIK5duqrTYtdkdP1sJ+ MshObjhCfSH0vsOYDJVpPjhk9eA1Z/C94Xu45ixb87+q9gY2bq2+Sh7moldsDHNn qO4uoPqMqPJJGLa8OpwyE+LduDVXSDIaxem+KY0M4/wsRHbrfB65JeCKYQJuQhwS WMibgpeouq4MQ2e4xnaVllV6OZFJz6ylDhMF+8V5M6OyPt7IXylxw0epa+2K18mC vYS93bl4eNcsRmEjDdBXDBPACUsyiXow4NqB1L1bz1/Oz/r6lTXxgdTMT9QGW2hU pyccxjLSjnPLfdMIPB2vSF/HJrZADMjPveilGrTTFVM= -----END CERTIFICATE-----Generated at Fri May 3 09:07:39 2024 by rpki-client on console-fra.rpki-client.org