$ rpki-client -vvf repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431383938.roa File: 3130332e3135382e3233352e302f32342d3234203d3e20313431383938.roa (raw, json) Hash identifier: K7NXljMPGrdVFVxGe8/Cc+Ntyj2ZZuOLV9Vhc1Q8nY8= Subject key identifier: 9F:E2:61:A5:5B:2E:02:83:27:1B:75:69:8C:F1:70:01:EE:9E:97:93 Certificate issuer: /CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Certificate serial: 672576EB3927067098234B7336C9521248971CCE Authority key identifier: B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431383938.roa Signing time: Thu 21 Dec 2023 09:24:58 +0000 ROA not before: Thu 21 Dec 2023 09:19:58 +0000 ROA not after: Thu 19 Dec 2024 09:24:58 +0000 asID: 141898 IP address blocks: 103.158.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:25:76:eb:39:27:06:70:98:23:4b:73:36:c9:52:12:48:97:1c:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Validity Not Before: Dec 21 09:19:58 2023 GMT Not After : Dec 19 09:24:58 2024 GMT Subject: CN=9FE261A55B2E0283271B75698CF17001EE9E9793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:af:3c:27:91:63:90:bf:fc:d3:d5:3b:25:37: e9:63:9f:24:d1:79:31:a7:47:cc:77:f9:f0:40:94: 33:e7:66:56:1a:8b:3b:2c:6e:00:94:e2:d1:1b:b5: 7d:fe:59:f4:89:cc:17:be:1c:03:c4:cd:88:59:9e: 4b:66:b1:6d:8b:f0:41:af:80:35:c4:fa:2d:10:f8: 78:a3:c3:fb:5b:85:93:22:e6:b8:65:b5:19:36:ae: a6:ca:47:33:0f:fc:92:1d:b9:38:12:4c:67:e0:4b: 2f:b6:b5:9f:b0:ff:07:11:12:86:f2:65:1f:ee:ab: 23:d4:02:9e:d1:e3:24:3b:99:bc:89:65:7f:6e:4f: bd:ca:cc:13:53:f2:c2:b7:c0:bb:72:b9:f7:5c:4c: 4c:cd:d9:c4:c1:95:bd:72:6f:26:87:5f:78:ea:d1: dd:f6:24:8e:7b:31:86:ad:de:b5:b3:91:de:b8:fd: 1b:f5:b5:01:e7:9d:81:5e:ee:af:7b:50:52:1c:b3: 24:e1:db:8e:01:88:25:f6:b4:bc:26:d7:35:5f:80: 9c:d2:e7:92:00:6c:1f:b3:b0:94:37:64:f1:7f:17: b4:77:fd:5a:20:ab:a2:2c:34:cb:4a:06:5c:96:37: 34:71:f0:4f:7f:20:8c:b4:bc:1f:63:06:af:3b:a1: 32:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E2:61:A5:5B:2E:02:83:27:1B:75:69:8C:F1:70:01:EE:9E:97:93 X509v3 Authority Key Identifier: keyid:B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.235.0/24 Signature Algorithm: sha256WithRSAEncryption 81:c5:36:a3:b3:57:5d:5b:b0:33:da:04:20:62:18:60:5d:4f: 8d:7a:d1:82:83:18:f0:63:33:9d:01:0d:ff:54:ed:42:f6:b4: 26:86:a4:34:f3:6d:32:10:88:8a:4b:50:62:b9:7c:f9:af:95: 79:bb:3f:84:a1:6a:83:9f:0d:30:e9:51:d3:61:7f:8e:40:c0: 88:22:bb:f9:67:4a:56:40:53:74:df:19:c8:48:c1:0f:23:44: a3:5c:a7:eb:24:5e:8d:c0:5b:8a:a2:bb:1b:bc:46:2a:19:c2: fd:ee:a4:88:10:9d:93:29:68:d7:45:35:4c:64:10:b2:2d:a8: dd:4e:bf:c2:10:2a:24:52:39:5e:ef:78:66:92:1f:89:51:40: 43:ad:e9:4a:a5:88:f7:c5:ed:eb:0b:78:68:6a:05:ea:95:91: 39:5e:ee:f7:79:94:56:60:94:67:87:1b:b3:dd:ab:dc:9d:a3: 38:fd:e1:68:d9:1b:d4:3b:a5:08:3d:38:7b:38:13:db:c5:7c: f7:23:e3:ce:f6:71:3f:f5:f2:98:97:03:af:a3:a6:ac:a5:3e: e7:60:2c:f5:d8:30:76:9a:a6:00:9a:1a:51:b0:e3:5f:17:16: 13:b8:57:f9:fc:e0:71:2a:71:7c:c1:af:70:f5:52:8a:1f:80: b2:60:e2:c8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZyV26zknBnCYI0tzNslSEkiXHM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3 OUFCMDQ3MTAeFw0yMzEyMjEwOTE5NThaFw0yNDEyMTkwOTI0NThaMDMxMTAvBgNV BAMTKDlGRTI2MUE1NUIyRTAyODMyNzFCNzU2OThDRjE3MDAxRUU5RTk3OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWrzwnkWOQv/zT1TslN+ljnyTR eTGnR8x3+fBAlDPnZlYaizssbgCU4tEbtX3+WfSJzBe+HAPEzYhZnktmsW2L8EGv gDXE+i0Q+Hijw/tbhZMi5rhltRk2rqbKRzMP/JIduTgSTGfgSy+2tZ+w/wcREoby ZR/uqyPUAp7R4yQ7mbyJZX9uT73KzBNT8sK3wLtyufdcTEzN2cTBlb1ybyaHX3jq 0d32JI57MYat3rWzkd64/Rv1tQHnnYFe7q97UFIcsyTh244BiCX2tLwm1zVfgJzS 55IAbB+zsJQ3ZPF/F7R3/Vogq6IsNMtKBlyWNzRx8E9/IIy0vB9jBq87oTLxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUn+JhpVsuAoMnG3VpjPFwAe6el5MwHwYDVR0j BBgwFoAUtWPXCKCUsk/DYe3RHJHueXmrBHEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDM2ZTA3Yy04MjgzLTQzZDMtOTE2NC0zZTBlNmNhY2Y0OTkvMC9CNTYzRDcwOEEw OTRCMjRGQzM2MUVERDExQzkxRUU3OTc5QUIwNDcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3OUFC MDQ3MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwMzZlMDdjLTgyODMtNDNkMy05 MTY0LTNlMGU2Y2FjZjQ5OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzODM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnuswDQYJ KoZIhvcNAQELBQADggEBAIHFNqOzV11bsDPaBCBiGGBdT4160YKDGPBjM50BDf9U 7UL2tCaGpDTzbTIQiIpLUGK5fPmvlXm7P4ShaoOfDTDpUdNhf45AwIgiu/lnSlZA U3TfGchIwQ8jRKNcp+skXo3AW4qiuxu8RioZwv3upIgQnZMpaNdFNUxkELItqN1O v8IQKiRSOV7veGaSH4lRQEOt6UqliPfF7esLeGhqBeqVkTle7vd5lFZglGeHG7Pd q9ydozj94WjZG9Q7pQg9OHs4E9vFfPcj4872cT/18piXA6+jpqylPudgLPXYMHaa pgCaGlGw418XFhO4V/n84HEqcXzBr3D1UoofgLJg4sg= -----END CERTIFICATE-----Generated at Fri May 3 17:52:32 2024 by rpki-client on console-fra.rpki-client.org