$ rpki-client -vvf repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32332d3233203d3e20313431383938.roa File: 3130332e3135382e3233342e302f32332d3233203d3e20313431383938.roa (raw, json) Hash identifier: U1WXLVreMWt9qdLbUhn04UY3/+PqS+C2V+TNMtPmlPg= Subject key identifier: B2:86:7F:61:7C:D6:3E:5E:6D:2F:7A:DE:7D:66:CA:79:EE:0C:1A:26 Certificate issuer: /CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Certificate serial: 4CE54E6F36E7294D696CE2984595D65C32E6706D Authority key identifier: B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32332d3233203d3e20313431383938.roa Signing time: Thu 21 Dec 2023 09:24:25 +0000 ROA not before: Thu 21 Dec 2023 09:19:25 +0000 ROA not after: Thu 19 Dec 2024 09:24:25 +0000 asID: 141898 IP address blocks: 103.158.234.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:e5:4e:6f:36:e7:29:4d:69:6c:e2:98:45:95:d6:5c:32:e6:70:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Validity Not Before: Dec 21 09:19:25 2023 GMT Not After : Dec 19 09:24:25 2024 GMT Subject: CN=B2867F617CD63E5E6D2F7ADE7D66CA79EE0C1A26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:93:9f:0e:8a:27:6b:65:09:55:29:47:99:d9: 65:6b:89:6a:a9:ee:8e:75:dc:5c:51:b8:3d:3d:dc: 94:e9:e5:5d:80:91:11:04:4a:69:67:1d:a9:f4:d6: 6d:a0:31:73:73:e5:d1:5d:f7:af:19:1a:73:78:89: 68:d6:86:53:b8:7d:d4:b1:47:89:bf:7d:f0:2c:6a: fe:c2:c6:da:67:cc:68:13:91:71:88:c1:23:fb:01: b9:67:87:22:a4:60:38:5a:0e:2a:0c:3c:97:bf:9e: dd:1d:0d:03:0d:e1:3d:cc:23:10:5b:7e:84:4f:25: 2b:54:c0:46:30:76:f6:e9:56:88:91:ef:b9:27:ef: d9:f4:3b:34:61:e2:f6:eb:e9:01:01:92:1d:a5:4b: 7a:6c:67:1a:2d:8c:55:3e:02:6c:6a:3f:51:73:b7: 8e:17:35:65:89:ac:21:98:7d:e4:5b:1a:ba:44:5b: db:d8:c5:35:2f:21:40:0b:15:8e:de:85:83:7e:6a: 5a:a3:24:bd:57:43:64:e2:39:f8:ad:ae:a0:68:b0: 61:f8:13:23:be:a2:de:a7:6d:dd:fd:49:50:69:68: 48:b7:e8:9e:f3:46:c2:f0:c5:0c:43:71:84:6e:e6: 7a:8a:85:ea:6e:8f:75:ae:f4:37:f7:59:34:4a:28: 9b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:86:7F:61:7C:D6:3E:5E:6D:2F:7A:DE:7D:66:CA:79:EE:0C:1A:26 X509v3 Authority Key Identifier: keyid:B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32332d3233203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.234.0/23 Signature Algorithm: sha256WithRSAEncryption a0:ed:ee:77:ef:1e:36:a9:aa:cf:d2:62:63:02:a0:c6:c6:6e: 0f:6c:b6:b3:c4:a6:e6:a2:07:1d:0a:69:ba:dd:b9:ba:af:32: b7:a5:cf:75:42:7c:4d:3e:f0:3b:36:ef:ee:5d:59:77:04:25: 6a:7b:e6:4e:22:9f:85:6e:60:f5:cf:97:03:89:5c:78:5e:a1: c2:ce:bb:ed:be:e9:ff:87:e9:f2:77:4a:e8:42:73:e1:c4:46: c4:f6:b9:55:e5:7b:2a:e6:6c:f3:55:99:5c:a1:c3:7a:1e:12: 41:b7:15:98:61:24:dc:c3:55:8f:68:4b:09:9e:1d:53:d7:95: 09:2e:0d:60:44:c2:2a:7a:2c:63:19:6e:d5:99:7a:95:17:e2: cf:94:d7:60:95:1b:7a:6b:30:22:81:c2:0a:a3:3a:4d:36:0a: 20:9b:7f:d0:d3:3b:82:5f:84:73:32:88:b7:db:1d:24:c6:72: 03:4e:d5:01:7f:09:3b:ec:ec:d6:cb:25:21:54:bd:30:ad:f0: b0:60:00:5d:f3:95:bf:ef:bf:58:b0:71:ed:39:ee:56:10:e4: 79:ec:05:c5:f4:a6:3b:91:f5:68:0c:fd:02:80:16:9d:02:c9: 5b:95:31:43:fe:a3:23:21:88:5e:49:5b:89:1c:2f:3e:e9:b5: 6c:26:b3:32 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTOVObzbnKU1pbOKYRZXWXDLmcG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3 OUFCMDQ3MTAeFw0yMzEyMjEwOTE5MjVaFw0yNDEyMTkwOTI0MjVaMDMxMTAvBgNV BAMTKEIyODY3RjYxN0NENjNFNUU2RDJGN0FERTdENjZDQTc5RUUwQzFBMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtk58OiidrZQlVKUeZ2WVriWqp 7o513FxRuD093JTp5V2AkREESmlnHan01m2gMXNz5dFd968ZGnN4iWjWhlO4fdSx R4m/ffAsav7CxtpnzGgTkXGIwSP7AblnhyKkYDhaDioMPJe/nt0dDQMN4T3MIxBb foRPJStUwEYwdvbpVoiR77kn79n0OzRh4vbr6QEBkh2lS3psZxotjFU+AmxqP1Fz t44XNWWJrCGYfeRbGrpEW9vYxTUvIUALFY7ehYN+alqjJL1XQ2TiOfitrqBosGH4 EyO+ot6nbd39SVBpaEi36J7zRsLwxQxDcYRu5nqKhepuj3Wu9Df3WTRKKJu1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUsoZ/YXzWPl5tL3refWbKee4MGiYwHwYDVR0j BBgwFoAUtWPXCKCUsk/DYe3RHJHueXmrBHEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDM2ZTA3Yy04MjgzLTQzZDMtOTE2NC0zZTBlNmNhY2Y0OTkvMC9CNTYzRDcwOEEw OTRCMjRGQzM2MUVERDExQzkxRUU3OTc5QUIwNDcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3OUFC MDQ3MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwMzZlMDdjLTgyODMtNDNkMy05 MTY0LTNlMGU2Y2FjZjQ5OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzODM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnuowDQYJ KoZIhvcNAQELBQADggEBAKDt7nfvHjapqs/SYmMCoMbGbg9strPEpuaiBx0Kabrd ubqvMrelz3VCfE0+8Ds27+5dWXcEJWp75k4in4VuYPXPlwOJXHheocLOu+2+6f+H 6fJ3SuhCc+HERsT2uVXleyrmbPNVmVyhw3oeEkG3FZhhJNzDVY9oSwmeHVPXlQku DWBEwip6LGMZbtWZepUX4s+U12CVG3prMCKBwgqjOk02CiCbf9DTO4JfhHMyiLfb HSTGcgNO1QF/CTvs7NbLJSFUvTCt8LBgAF3zlb/vv1iwce057lYQ5HnsBcX0pjuR 9WgM/QKAFp0CyVuVMUP+oyMhiF5JW4kcLz7ptWwmszI= -----END CERTIFICATE-----Generated at Fri May 3 17:55:18 2024 by rpki-client on console-ams.rpki-client.org