$ rpki-client -vvf repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/3130332e3135382e31332e302f32342d3234203d3e20313338303839.roa File: 3130332e3135382e31332e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: bNxPf1dzWdBUgpEZKEqAtUkdw3xDj8W2yBxxwk+QSwY= Subject key identifier: 1A:35:A0:AC:40:3E:23:BD:0C:7B:B2:CA:7C:05:7F:09:1A:BA:15:A3 Certificate issuer: /CN=C8175E7E9E15E565FE697292A37E14BFE067CAF7 Certificate serial: 7F728E53A984CA0D2634161297AEA7DD70B2F26C Authority key identifier: C8:17:5E:7E:9E:15:E5:65:FE:69:72:92:A3:7E:14:BF:E0:67:CA:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8175E7E9E15E565FE697292A37E14BFE067CAF7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/3130332e3135382e31332e302f32342d3234203d3e20313338303839.roa Signing time: Thu 23 Nov 2023 01:00:43 +0000 ROA not before: Thu 23 Nov 2023 00:55:43 +0000 ROA not after: Thu 21 Nov 2024 01:00:43 +0000 asID: 138089 IP address blocks: 103.158.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/C8175E7E9E15E565FE697292A37E14BFE067CAF7.crl rsync://repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/C8175E7E9E15E565FE697292A37E14BFE067CAF7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8175E7E9E15E565FE697292A37E14BFE067CAF7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:72:8e:53:a9:84:ca:0d:26:34:16:12:97:ae:a7:dd:70:b2:f2:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8175E7E9E15E565FE697292A37E14BFE067CAF7 Validity Not Before: Nov 23 00:55:43 2023 GMT Not After : Nov 21 01:00:43 2024 GMT Subject: CN=1A35A0AC403E23BD0C7BB2CA7C057F091ABA15A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:32:9d:16:26:43:10:2f:93:83:a0:35:84:d7: db:b1:8e:9f:d2:67:ec:b2:0d:4f:32:e8:ff:bf:85: 74:e0:92:90:15:c9:38:dd:28:73:e2:1e:e8:49:28: ea:68:39:16:9f:67:78:75:76:80:1e:4e:78:8f:bc: 06:65:60:6c:90:a0:ec:b4:e0:c2:4e:dc:20:8f:d7: 15:65:78:0b:f5:f8:bc:8d:18:db:51:32:bd:4e:9f: 3b:b6:98:be:57:40:3d:19:6c:c8:0a:60:2b:3b:a0: e9:bd:32:30:74:b4:f2:dd:f9:81:72:05:04:5b:a7: 3c:6d:15:e6:76:36:23:cc:6f:d7:95:63:94:66:14: 25:6c:a4:0e:1a:c3:e7:30:35:c2:1d:d0:03:e1:80: a6:5c:1c:27:ba:79:05:a4:75:d5:c1:46:d1:39:3f: c1:11:2e:d0:7f:2d:b2:6f:3d:a2:db:04:7e:4f:a6: 96:ff:9d:ba:d5:2d:d0:00:32:57:f5:b3:0d:ab:62: e1:b9:50:4d:e3:b1:b2:8c:73:2d:66:27:d7:c1:41: 7e:79:90:81:6f:5f:bd:ab:b8:42:87:c9:91:3a:aa: 98:6b:9f:09:02:a9:81:88:53:ea:ed:1f:a6:17:c0: 84:8a:5a:1a:4a:45:a5:9d:4f:38:30:e6:a3:f5:35: b9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:35:A0:AC:40:3E:23:BD:0C:7B:B2:CA:7C:05:7F:09:1A:BA:15:A3 X509v3 Authority Key Identifier: keyid:C8:17:5E:7E:9E:15:E5:65:FE:69:72:92:A3:7E:14:BF:E0:67:CA:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/C8175E7E9E15E565FE697292A37E14BFE067CAF7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8175E7E9E15E565FE697292A37E14BFE067CAF7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/3130332e3135382e31332e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.13.0/24 Signature Algorithm: sha256WithRSAEncryption 56:ed:21:b5:e6:7e:83:73:96:9f:6a:c1:76:91:f2:05:e0:f9: 70:35:72:6a:3c:97:a7:f1:8b:67:34:cc:d7:ba:29:b4:91:82: 66:9b:15:09:27:b1:d3:04:19:b7:ed:d1:65:13:78:ec:75:ea: 75:74:a1:80:2a:68:c9:12:47:3e:11:5b:eb:0f:2e:d4:f3:0c: f1:48:a7:c6:21:20:90:27:26:e1:1e:22:56:f2:89:33:cf:3b: ab:53:c0:5a:3a:85:10:09:51:58:78:19:b8:5d:b5:09:e9:af: 64:4f:5d:95:af:13:d5:23:f8:e0:5e:58:a0:77:75:33:9b:fb: 31:53:3d:a3:ce:a9:a5:a2:81:67:3f:6f:d9:c7:78:77:cf:91: 2d:45:af:0a:56:31:2c:4c:5e:67:b3:2a:1d:23:9e:cb:d0:87: 18:07:cc:0d:55:f9:3b:3d:19:01:86:0a:b2:d0:d1:ed:45:c3: 1b:64:27:7f:c4:fd:ae:d0:90:c2:d1:66:32:ad:6d:14:15:ba: fd:a7:c0:9c:15:16:4a:44:9d:d3:cb:52:1b:19:14:0b:90:8b: 1f:6f:83:12:0e:d8:f9:ad:f5:86:b3:d0:fb:c0:88:18:30:d6: 49:03:0d:ab:cd:71:8e:c8:1a:1e:77:61:ac:b5:34:2d:9c:92: d2:32:18:e0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf3KOU6mEyg0mNBYSl66n3XCy8mwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzgxNzVFN0U5RTE1RTU2NUZFNjk3MjkyQTM3RTE0QkZF MDY3Q0FGNzAeFw0yMzExMjMwMDU1NDNaFw0yNDExMjEwMTAwNDNaMDMxMTAvBgNV BAMTKDFBMzVBMEFDNDAzRTIzQkQwQzdCQjJDQTdDMDU3RjA5MUFCQTE1QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChMp0WJkMQL5ODoDWE19uxjp/S Z+yyDU8y6P+/hXTgkpAVyTjdKHPiHuhJKOpoORafZ3h1doAeTniPvAZlYGyQoOy0 4MJO3CCP1xVleAv1+LyNGNtRMr1Onzu2mL5XQD0ZbMgKYCs7oOm9MjB0tPLd+YFy BQRbpzxtFeZ2NiPMb9eVY5RmFCVspA4aw+cwNcId0APhgKZcHCe6eQWkddXBRtE5 P8ERLtB/LbJvPaLbBH5Pppb/nbrVLdAAMlf1sw2rYuG5UE3jsbKMcy1mJ9fBQX55 kIFvX72ruEKHyZE6qphrnwkCqYGIU+rtH6YXwISKWhpKRaWdTzgw5qP1NbkZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGjWgrEA+I70Me7LKfAV/CRq6FaMwHwYDVR0j BBgwFoAUyBdefp4V5WX+aXKSo34Uv+BnyvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzZmZDU1MS02YWJhLTQyMjItOGEyNi05ODYzNDY4MjViMzgvMC9DODE3NUU3RTlF MTVFNTY1RkU2OTcyOTJBMzdFMTRCRkUwNjdDQUY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzgxNzVFN0U5RTE1RTU2NUZFNjk3MjkyQTM3RTE0QkZFMDY3 Q0FGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzNmZkNTUxLTZhYmEtNDIyMi04 YTI2LTk4NjM0NjgyNWIzOC8wLzMxMzAzMzJlMzEzNTM4MmUzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ54NMA0GCSqG SIb3DQEBCwUAA4IBAQBW7SG15n6Dc5afasF2kfIF4PlwNXJqPJen8YtnNMzXuim0 kYJmmxUJJ7HTBBm37dFlE3jsdep1dKGAKmjJEkc+EVvrDy7U8wzxSKfGISCQJybh HiJW8okzzzurU8BaOoUQCVFYeBm4XbUJ6a9kT12VrxPVI/jgXligd3Uzm/sxUz2j zqmlooFnP2/Zx3h3z5EtRa8KVjEsTF5nsyodI57L0IcYB8wNVfk7PRkBhgqy0NHt RcMbZCd/xP2u0JDC0WYyrW0UFbr9p8CcFRZKRJ3Ty1IbGRQLkIsfb4MSDtj5rfWG s9D7wIgYMNZJAw2rzXGOyBoed2GstTQtnJLSMhjg -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org