$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa File: 3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: xXkDe4p69ALHzitFwVC5Qh9QSqkdrL+gsflIwbmEguo= Subject key identifier: 67:00:5A:E4:FA:E9:51:0E:18:CC:D2:A4:20:A7:BC:BB:E8:1A:31:9A Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 440717895E82F8B0EDD4B1F701A77A9391087160 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa Signing time: Wed 20 Sep 2023 05:00:01 +0000 ROA not before: Wed 20 Sep 2023 04:55:01 +0000 ROA not after: Wed 18 Sep 2024 05:00:01 +0000 asID: 140407 IP address blocks: 103.122.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:07:17:89:5e:82:f8:b0:ed:d4:b1:f7:01:a7:7a:93:91:08:71:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Sep 20 04:55:01 2023 GMT Not After : Sep 18 05:00:01 2024 GMT Subject: CN=67005AE4FAE9510E18CCD2A420A7BCBBE81A319A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d3:bd:a6:aa:3c:88:ae:48:dd:73:66:da:9c: e4:18:55:a9:f1:29:86:3f:22:d0:0f:93:15:78:50: 09:ea:86:c0:07:1f:e3:49:6e:d0:e9:df:fb:2c:3e: 78:89:59:cc:f9:1e:3e:30:43:d4:a6:5c:bd:5a:b4: 8f:73:ed:3d:d1:0e:5d:70:0c:2d:48:b4:9e:96:49: 36:4d:6e:61:32:56:a1:99:43:cd:be:fb:de:5b:ff: df:d0:65:d5:4e:3a:84:24:a3:d5:cb:3a:bf:ee:00: 83:94:a9:96:99:39:9d:f5:d5:fb:7b:67:cd:c6:a6: c5:c5:f4:df:fd:21:d9:59:b4:e6:1a:c3:04:bc:95: 88:8f:b3:d3:c3:e0:55:73:8a:ef:86:3a:7a:8a:5c: ee:ec:88:b7:fb:c9:77:7e:04:5d:55:b8:92:fb:7f: 7b:84:fd:99:af:9e:ed:ab:cb:13:a4:d9:1c:8f:38: df:31:77:77:cd:84:99:86:87:24:a1:04:c6:ff:c7: 77:91:95:c9:9b:86:53:ba:98:11:3e:57:cc:2c:8b: 23:42:a6:d2:01:53:bb:e1:79:6e:ab:5c:84:38:c6: a9:21:14:42:c7:51:1c:13:7f:75:8c:42:84:71:c7: b2:7b:97:7c:f2:42:07:9a:ef:15:f5:2c:d2:c1:f4: 4e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:00:5A:E4:FA:E9:51:0E:18:CC:D2:A4:20:A7:BC:BB:E8:1A:31:9A X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.152.0/24 Signature Algorithm: sha256WithRSAEncryption 92:73:8d:cb:ea:38:4f:5e:fe:5f:ed:1f:81:7c:8c:4b:05:c0: bc:9c:82:6b:b4:0e:df:c2:b1:04:83:be:97:58:b6:f1:b6:ac: 78:f3:eb:51:d0:fb:9d:3c:e1:1d:3c:86:02:3d:98:ab:2c:57: 36:51:fa:13:f3:f2:34:14:43:62:dd:12:8e:ac:9a:f3:77:4f: 12:d5:74:16:e0:07:a9:e7:d1:20:56:f8:f0:2b:ef:12:b1:11: b5:82:b6:80:75:0a:f6:bc:6c:57:37:57:c6:db:65:c2:b2:68: 40:f3:f9:65:e2:92:c2:58:ab:b5:bf:72:2b:ed:ca:d4:ed:61: 47:f2:39:90:85:28:72:f9:9b:7a:ee:4e:75:95:aa:6b:9e:ad: 8f:da:29:1e:c8:94:dd:b6:18:6d:8d:00:3a:33:c3:66:85:71: 36:41:a2:a8:92:94:6f:e5:53:09:97:06:b6:ea:87:90:96:97: 61:54:04:eb:32:e9:ff:9b:74:c0:73:52:8f:28:67:d7:9c:99: 1f:96:be:fe:20:04:ae:bb:b9:59:74:2d:dd:a0:63:04:02:1f: 07:fe:47:63:c8:74:8d:b7:d6:89:33:35:4f:71:ce:45:9b:4a: 7e:28:b9:e0:5d:e8:15:1c:c8:ae:0f:04:bb:9c:02:45:c5:83: e7:d9:b7:88 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURAcXiV6C+LDt1LH3Aad6k5EIcWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yMzA5MjAwNDU1MDFaFw0yNDA5MTgwNTAwMDFaMDMxMTAvBgNV BAMTKDY3MDA1QUU0RkFFOTUxMEUxOENDRDJBNDIwQTdCQ0JCRTgxQTMxOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC072mqjyIrkjdc2banOQYVanx KYY/ItAPkxV4UAnqhsAHH+NJbtDp3/ssPniJWcz5Hj4wQ9SmXL1atI9z7T3RDl1w DC1ItJ6WSTZNbmEyVqGZQ82++95b/9/QZdVOOoQko9XLOr/uAIOUqZaZOZ311ft7 Z83GpsXF9N/9IdlZtOYawwS8lYiPs9PD4FVziu+GOnqKXO7siLf7yXd+BF1VuJL7 f3uE/Zmvnu2ryxOk2RyPON8xd3fNhJmGhyShBMb/x3eRlcmbhlO6mBE+V8wsiyNC ptIBU7vheW6rXIQ4xqkhFELHURwTf3WMQoRxx7J7l3zyQgea7xX1LNLB9E5RAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZwBa5PrpUQ4YzNKkIKe8u+gaMZowHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnepgwDQYJ KoZIhvcNAQELBQADggEBAJJzjcvqOE9e/l/tH4F8jEsFwLycgmu0Dt/CsQSDvpdY tvG2rHjz61HQ+5084R08hgI9mKssVzZR+hPz8jQUQ2LdEo6smvN3TxLVdBbgB6nn 0SBW+PAr7xKxEbWCtoB1Cva8bFc3V8bbZcKyaEDz+WXiksJYq7W/civtytTtYUfy OZCFKHL5m3ruTnWVqmuerY/aKR7IlN22GG2NADozw2aFcTZBoqiSlG/lUwmXBrbq h5CWl2FUBOsy6f+bdMBzUo8oZ9ecmR+Wvv4gBK67uVl0Ld2gYwQCHwf+R2PIdI23 1okzNU9xzkWbSn4oueBd6BUcyK4PBLucAkXFg+fZt4g= -----END CERTIFICATE-----Generated at Fri May 31 23:52:40 2024 by rpki-client on console-fra.rpki-client.org