$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa File: 3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa (raw, json) Hash identifier: fjlKLkqO1GxwSPpv/2WrD8bBOxVderRxMM3d7ncEZ/g= Subject key identifier: B6:BB:9F:91:62:41:0F:5B:FA:9A:BF:ED:3D:BF:8E:F6:09:1C:01:B8 Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 6B8563FEC96B97FA0DD54362BFAFEEC3AE7A3154 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa Signing time: Wed 20 Sep 2023 05:00:00 +0000 ROA not before: Wed 20 Sep 2023 04:55:00 +0000 ROA not after: Wed 18 Sep 2024 05:00:00 +0000 asID: 140407 IP address blocks: 103.122.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:85:63:fe:c9:6b:97:fa:0d:d5:43:62:bf:af:ee:c3:ae:7a:31:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Sep 20 04:55:00 2023 GMT Not After : Sep 18 05:00:00 2024 GMT Subject: CN=B6BB9F9162410F5BFA9ABFED3DBF8EF6091C01B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:16:ab:3b:2c:47:76:a0:74:b0:8c:39:05: 68:82:23:e1:58:b6:c7:12:52:f3:af:c1:a8:e6:d0: 95:af:5d:6e:d5:ca:55:95:74:f0:80:1e:b8:14:97: ca:c9:a3:9d:eb:b5:ae:27:76:2e:6d:fb:ba:b0:6c: 0b:6d:01:18:4d:f5:5c:e3:8b:1a:95:c0:10:59:3c: 66:65:d8:3b:6a:af:03:e3:a4:79:44:2c:4d:16:9d: ef:0c:a4:c6:1d:1b:f1:ca:db:e6:bd:df:d5:c2:d7: ee:88:e1:d4:fb:09:83:d7:8b:18:88:a1:0d:12:3c: 3d:47:48:10:ac:84:bd:bc:52:cd:7a:9b:2c:d8:8d: 2e:c6:9c:88:0f:cb:5a:27:ae:9a:82:26:2d:6b:f5: 6c:5e:24:f6:a7:58:92:75:ee:60:fc:b0:a7:6c:53: 07:76:02:3c:8a:1e:a4:11:bf:f8:d2:7e:5a:61:5f: 9d:a8:0b:f0:f3:be:de:10:85:3c:0f:54:8d:67:97: f6:26:62:c9:3f:ed:61:00:8b:0c:76:f7:22:15:db: 83:a4:ad:03:22:ea:71:0e:f4:f7:ba:93:d0:8c:73: 06:ef:58:e5:2c:b9:e6:c9:c6:7e:76:ba:07:07:7a: c1:0d:53:f3:82:fb:52:00:e1:71:f1:c3:9f:44:88: 4a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:BB:9F:91:62:41:0F:5B:FA:9A:BF:ED:3D:BF:8E:F6:09:1C:01:B8 X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.152.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:41:3e:2c:8d:bc:51:cf:b2:5a:2e:66:49:61:d7:6e:91:69: e4:7e:25:ad:d8:14:51:c2:74:61:10:5c:17:2a:fc:80:ee:69: f3:78:12:ec:37:ef:73:f7:38:c2:00:29:38:2e:af:a7:c3:bf: 68:5f:c1:f9:be:8d:2c:fb:fe:0a:da:af:7f:08:29:b3:f2:22: cd:b4:16:b5:43:a9:31:6e:a0:b2:6a:04:be:cb:ac:1a:da:45: 88:5b:69:39:2b:1e:64:89:c8:8d:e1:bf:fc:74:42:86:4d:81: f4:4b:70:eb:e2:e9:59:f7:08:44:c7:32:09:0a:42:5e:43:f1: 1c:c1:28:9e:e0:50:98:e5:ab:aa:1c:c2:c5:97:3d:dd:8c:97: 06:19:66:4d:5e:fb:50:98:cf:50:b7:4a:01:3b:b7:b8:a2:b0: 9a:ed:34:9a:d4:06:1e:d4:7b:1a:5e:2c:4d:cb:a3:33:6a:9b: a8:10:5d:f7:7c:98:f0:f3:8e:21:ff:6d:ca:0e:3d:13:4e:1f: 47:8d:49:ab:fe:dd:26:6a:29:9f:11:bc:06:1c:14:25:4b:cb: 14:e6:52:1a:35:d3:da:e5:a3:6e:99:d1:5c:67:bc:7c:d6:1a: 4a:e5:4a:ae:bb:dc:9a:20:58:3c:f3:a1:67:9d:f0:41:48:ae: 32:47:83:9f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUa4Vj/slrl/oN1UNiv6/uw656MVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yMzA5MjAwNDU1MDBaFw0yNDA5MTgwNTAwMDBaMDMxMTAvBgNV BAMTKEI2QkI5RjkxNjI0MTBGNUJGQTlBQkZFRDNEQkY4RUY2MDkxQzAxQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG1RarOyxHdqB0sIw5BWiCI+FY tscSUvOvwajm0JWvXW7VylWVdPCAHrgUl8rJo53rta4ndi5t+7qwbAttARhN9Vzj ixqVwBBZPGZl2DtqrwPjpHlELE0Wne8MpMYdG/HK2+a939XC1+6I4dT7CYPXixiI oQ0SPD1HSBCshL28Us16myzYjS7GnIgPy1onrpqCJi1r9WxeJPanWJJ17mD8sKds Uwd2AjyKHqQRv/jSflphX52oC/Dzvt4QhTwPVI1nl/YmYsk/7WEAiwx29yIV24Ok rQMi6nEO9Pe6k9CMcwbvWOUsuebJxn52ugcHesENU/OC+1IA4XHxw59EiErPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtrufkWJBD1v6mr/tPb+O9gkcAbgwHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnepgwDQYJ KoZIhvcNAQELBQADggEBAH1BPiyNvFHPslouZklh126RaeR+Ja3YFFHCdGEQXBcq /IDuafN4Euw373P3OMIAKTgur6fDv2hfwfm+jSz7/grar38IKbPyIs20FrVDqTFu oLJqBL7LrBraRYhbaTkrHmSJyI3hv/x0QoZNgfRLcOvi6Vn3CETHMgkKQl5D8RzB KJ7gUJjlq6ocwsWXPd2MlwYZZk1e+1CYz1C3SgE7t7iisJrtNJrUBh7UexpeLE3L ozNqm6gQXfd8mPDzjiH/bcoOPRNOH0eNSav+3SZqKZ8RvAYcFCVLyxTmUho109rl o26Z0VxnvHzWGkrlSq673JogWDzzoWed8EFIrjJHg58= -----END CERTIFICATE-----Generated at Sat Jun 1 00:11:41 2024 by rpki-client on console-ams.rpki-client.org