$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135352e302f32342d3234203d3e20313430343037.roa File: 3130332e3132322e3135352e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: pkM0PP2sYxMdX3s2gcRzF2zptWpkiNS9b7uyROgopV8= Subject key identifier: 27:B7:B3:CB:09:52:5D:B6:FC:FF:E9:69:9F:31:D9:B8:BF:A4:94:BA Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 57432A854A9B2B460AA12B51B687E679FF869F22 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135352e302f32342d3234203d3e20313430343037.roa Signing time: Wed 20 Sep 2023 05:00:01 +0000 ROA not before: Wed 20 Sep 2023 04:55:01 +0000 ROA not after: Wed 18 Sep 2024 05:00:01 +0000 asID: 140407 IP address blocks: 103.122.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:43:2a:85:4a:9b:2b:46:0a:a1:2b:51:b6:87:e6:79:ff:86:9f:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Sep 20 04:55:01 2023 GMT Not After : Sep 18 05:00:01 2024 GMT Subject: CN=27B7B3CB09525DB6FCFFE9699F31D9B8BFA494BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:56:49:a9:e4:0d:d8:b0:7d:c9:b9:69:0a:ef: 29:ec:8a:7e:6a:58:5d:c9:99:ff:0d:4a:e6:d0:37: 43:a9:ec:ed:38:4b:ec:a1:2c:1f:4e:a2:44:35:d2: 19:0e:9c:f7:d3:31:55:d0:d9:49:6c:86:16:1d:c1: c6:15:b0:03:85:98:b6:9a:92:3b:6e:96:57:29:e5: 87:44:5c:f0:84:cb:a9:ca:a9:3b:10:c8:e5:37:92: 1b:e2:11:8b:0c:aa:97:5a:a7:8c:d5:62:75:da:90: 10:8e:a1:2e:50:18:36:02:29:68:54:32:40:a7:cb: 8e:78:25:63:dc:63:57:8d:03:bb:76:b8:7e:34:b4: f5:a4:45:fe:d5:36:51:c5:f6:be:9c:57:02:bf:d8: 36:e9:b1:c5:a0:83:3a:2b:02:fd:49:f7:14:e3:51: 6b:fb:2d:9e:d4:ec:a5:df:2a:9c:81:ea:37:99:17: 93:0d:b4:43:f6:e8:65:b1:4c:7e:8c:2f:69:a5:2a: 66:98:76:ad:0d:af:e9:c9:46:a5:4a:83:84:72:5b: df:29:49:77:06:a6:45:19:38:a3:63:93:f2:1b:5e: 48:89:34:38:37:42:0b:8a:e8:e2:07:93:6a:4e:a1: 26:c3:a9:fa:92:94:72:8f:ac:d6:c4:19:56:3e:b1: 0e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:B7:B3:CB:09:52:5D:B6:FC:FF:E9:69:9F:31:D9:B8:BF:A4:94:BA X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135352e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.155.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:9a:70:c3:3d:b0:81:8a:d9:ef:0b:c8:67:09:69:48:19:dc: 0d:06:f1:01:80:4b:69:e9:36:3c:80:38:90:a2:c6:30:65:f3: a0:d2:92:34:77:97:dd:a2:77:bb:d4:ee:a4:8c:30:aa:53:8c: fa:73:4b:f6:d5:7a:67:1d:82:79:06:db:2f:16:6e:4a:ce:dc: 5f:3d:a0:45:b2:c6:2e:ef:c1:d7:7b:25:ef:c4:1b:16:60:65: 3b:41:fe:9b:8b:cd:5c:0e:be:ed:02:23:d9:49:20:0f:67:9e: 29:8d:20:09:35:9d:f1:69:49:12:b5:41:30:a0:0c:41:d8:e6: 99:b2:71:0c:3e:6d:c5:fe:88:ef:2d:66:bf:d9:27:ac:67:c8: 3f:82:e6:b6:cb:39:ba:f2:43:f7:c5:ce:28:9f:74:b8:a7:74: 66:72:d3:5d:95:d1:8d:66:9b:8d:3d:88:3f:72:3a:01:e8:8f: 1f:97:9d:c7:03:59:88:f6:89:94:de:75:20:81:6f:ee:94:06: 77:b5:3d:63:25:07:41:88:a4:58:ba:63:81:2a:f5:91:1e:46: 8b:1e:23:25:c6:56:00:8d:51:e3:91:0f:67:2b:01:ed:97:90: d5:a8:e8:5b:b1:cd:5e:a9:71:20:35:87:06:de:fb:20:ac:4f: 03:b5:81:25 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUV0MqhUqbK0YKoStRtofmef+GnyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yMzA5MjAwNDU1MDFaFw0yNDA5MTgwNTAwMDFaMDMxMTAvBgNV BAMTKDI3QjdCM0NCMDk1MjVEQjZGQ0ZGRTk2OTlGMzFEOUI4QkZBNDk0QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZVkmp5A3YsH3JuWkK7ynsin5q WF3Jmf8NSubQN0Op7O04S+yhLB9OokQ10hkOnPfTMVXQ2UlshhYdwcYVsAOFmLaa kjtullcp5YdEXPCEy6nKqTsQyOU3khviEYsMqpdap4zVYnXakBCOoS5QGDYCKWhU MkCny454JWPcY1eNA7t2uH40tPWkRf7VNlHF9r6cVwK/2DbpscWggzorAv1J9xTj UWv7LZ7U7KXfKpyB6jeZF5MNtEP26GWxTH6ML2mlKmaYdq0Nr+nJRqVKg4RyW98p SXcGpkUZOKNjk/IbXkiJNDg3QguK6OIHk2pOoSbDqfqSlHKPrNbEGVY+sQ79AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJ7ezywlSXbb8/+lpnzHZuL+klLowHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnepswDQYJ KoZIhvcNAQELBQADggEBAD2acMM9sIGK2e8LyGcJaUgZ3A0G8QGAS2npNjyAOJCi xjBl86DSkjR3l92id7vU7qSMMKpTjPpzS/bVemcdgnkG2y8WbkrO3F89oEWyxi7v wdd7Je/EGxZgZTtB/puLzVwOvu0CI9lJIA9nnimNIAk1nfFpSRK1QTCgDEHY5pmy cQw+bcX+iO8tZr/ZJ6xnyD+C5rbLObryQ/fFziifdLindGZy012V0Y1mm409iD9y OgHojx+XnccDWYj2iZTedSCBb+6UBne1PWMlB0GIpFi6Y4Eq9ZEeRoseIyXGVgCN UeORD2crAe2XkNWo6FuxzV6pcSA1hwbe+yCsTwO1gSU= -----END CERTIFICATE-----Generated at Fri May 31 23:52:40 2024 by rpki-client on console-fra.rpki-client.org