$ rpki-client -vvf repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/3130332e3135362e3231362e302f32342d3234203d3e203538333639.roa File: 3130332e3135362e3231362e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: yzAbUdtP+shpXPIjsu4LnuFhVuHMWoUzEW4R3EKtLdg= Subject key identifier: 12:45:59:1A:7E:74:2D:C0:7E:6F:C8:FE:A5:3A:50:F0:99:DA:4C:DE Certificate issuer: /CN=5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0 Certificate serial: 128510ED8F43DD96A0D64FCBCAD39DED7BD1A1E9 Authority key identifier: 5E:68:3D:8B:34:5B:B6:E0:F6:3C:D1:A8:F3:2C:3B:5E:CC:B2:B9:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/3130332e3135362e3231362e302f32342d3234203d3e203538333639.roa Signing time: Sat 04 Nov 2023 08:00:02 +0000 ROA not before: Sat 04 Nov 2023 07:55:02 +0000 ROA not after: Sat 02 Nov 2024 08:00:02 +0000 asID: 58369 IP address blocks: 103.156.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.crl rsync://repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 14:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:85:10:ed:8f:43:dd:96:a0:d6:4f:cb:ca:d3:9d:ed:7b:d1:a1:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0 Validity Not Before: Nov 4 07:55:02 2023 GMT Not After : Nov 2 08:00:02 2024 GMT Subject: CN=1245591A7E742DC07E6FC8FEA53A50F099DA4CDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a9:13:54:98:82:58:95:fe:ef:11:71:e3:73: db:d2:07:dd:d3:e8:a9:8a:ce:4d:99:a0:e8:83:a2: d7:e3:05:19:db:5b:cf:71:4c:08:da:8d:70:7e:f2: 22:cc:89:cc:3d:83:30:1f:5f:78:8a:2f:81:9c:18: 01:00:a4:92:ef:2d:8a:be:0c:8b:84:c2:42:cd:c0: d6:bf:6e:ec:f3:eb:8b:47:b7:f5:fb:f6:24:0a:27: 45:a0:d5:4d:e1:c2:22:55:4f:27:19:4c:6d:51:fd: 62:7c:4e:5f:33:9f:bd:f3:b8:81:80:f7:46:2a:c9: 9f:8c:cc:58:89:11:d5:7d:33:1e:de:3f:61:46:d6: f4:40:2a:c5:e3:53:2c:a1:04:43:fb:79:f4:7f:54: f7:1d:2e:a2:1b:95:30:7e:1a:61:18:c6:8c:d4:84: 79:32:81:7c:82:5e:d8:73:80:b9:77:91:1f:2e:b8: 78:9c:24:8d:bc:d3:d7:0c:68:a5:cb:7d:29:29:49: d3:87:59:db:11:1a:c4:51:e9:8e:47:e9:e0:9c:a6: d3:dc:cd:07:02:50:8d:4b:4d:e2:42:5a:75:e4:b5: c9:16:4e:01:31:d3:11:a4:1e:54:53:0a:a7:a1:ab: 35:bb:7a:34:fd:54:1c:a9:6b:d5:be:a3:b1:96:d6: bb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:45:59:1A:7E:74:2D:C0:7E:6F:C8:FE:A5:3A:50:F0:99:DA:4C:DE X509v3 Authority Key Identifier: keyid:5E:68:3D:8B:34:5B:B6:E0:F6:3C:D1:A8:F3:2C:3B:5E:CC:B2:B9:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/3130332e3135362e3231362e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.216.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:e3:b7:3e:58:7c:38:48:3d:65:a3:5e:09:b7:25:c1:84:ee: c8:86:97:3c:74:2b:90:bb:0d:4c:85:69:89:7f:ae:e3:49:3e: c0:40:e9:4e:22:c0:13:b3:00:dc:b8:41:7a:69:e3:19:52:21: 44:53:a1:71:aa:81:d3:ff:76:83:31:25:a1:fb:85:a6:c8:67: d5:02:6b:aa:56:ac:99:e7:0d:4b:7b:f3:9a:3c:0a:2a:a0:e7: 0c:2b:71:ec:9b:b9:a9:6f:5f:c8:41:88:0f:ab:61:5f:4d:da: 8d:31:86:c1:d2:20:ea:d7:04:78:53:af:a1:4c:b0:d0:e2:5d: ef:76:71:73:da:af:6e:96:1c:c7:e4:89:57:d0:bd:ec:f9:29: d6:f9:86:ae:99:f0:72:c4:26:ea:4d:3a:b1:67:8a:0c:3e:88: 07:2d:b2:31:22:67:07:4a:f9:28:09:18:86:44:84:99:38:e4: ce:07:13:c6:98:68:88:28:1a:cd:e9:84:36:df:ef:d3:e0:15: cb:55:2f:b8:d3:12:1c:3a:98:6e:c6:06:eb:d4:50:32:b3:e6: 4a:18:c3:15:f8:7e:d9:38:af:1c:02:42:ea:3e:20:1c:83:0b: eb:79:db:65:64:fd:55:03:3d:7e:9b:16:2b:62:be:7a:e6:ee: 79:90:a2:63 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEoUQ7Y9D3Zag1k/LytOd7XvRoekwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU2ODNEOEIzNDVCQjZFMEY2M0NEMUE4RjMyQzNCNUVD Q0IyQjlCMDAeFw0yMzExMDQwNzU1MDJaFw0yNDExMDIwODAwMDJaMDMxMTAvBgNV BAMTKDEyNDU1OTFBN0U3NDJEQzA3RTZGQzhGRUE1M0E1MEYwOTlEQTRDREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClqRNUmIJYlf7vEXHjc9vSB93T 6KmKzk2ZoOiDotfjBRnbW89xTAjajXB+8iLMicw9gzAfX3iKL4GcGAEApJLvLYq+ DIuEwkLNwNa/buzz64tHt/X79iQKJ0Wg1U3hwiJVTycZTG1R/WJ8Tl8zn73zuIGA 90YqyZ+MzFiJEdV9Mx7eP2FG1vRAKsXjUyyhBEP7efR/VPcdLqIblTB+GmEYxozU hHkygXyCXthzgLl3kR8uuHicJI2809cMaKXLfSkpSdOHWdsRGsRR6Y5H6eCcptPc zQcCUI1LTeJCWnXktckWTgEx0xGkHlRTCqehqzW7ejT9VBypa9W+o7GW1rvrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEkVZGn50LcB+b8j+pTpQ8JnaTN4wHwYDVR0j BBgwFoAUXmg9izRbtuD2PNGo8yw7XsyyubAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 M2E3ZjM0Yy02M2I4LTQ5NzMtODIyNi1lMTA2OTViMjVkOTQvMC81RTY4M0Q4QjM0 NUJCNkUwRjYzQ0QxQThGMzJDM0I1RUNDQjJCOUIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU2ODNEOEIzNDVCQjZFMEY2M0NEMUE4RjMyQzNCNUVDQ0Iy QjlCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzYTdmMzRjLTYzYjgtNDk3My04 MjI2LWUxMDY5NWIyNWQ5NC8wLzMxMzAzMzJlMzEzNTM2MmUzMjMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5zYMA0GCSqG SIb3DQEBCwUAA4IBAQCe47c+WHw4SD1lo14JtyXBhO7Ihpc8dCuQuw1MhWmJf67j ST7AQOlOIsATswDcuEF6aeMZUiFEU6FxqoHT/3aDMSWh+4WmyGfVAmuqVqyZ5w1L e/OaPAoqoOcMK3Hsm7mpb1/IQYgPq2FfTdqNMYbB0iDq1wR4U6+hTLDQ4l3vdnFz 2q9ulhzH5IlX0L3s+SnW+YaumfByxCbqTTqxZ4oMPogHLbIxImcHSvkoCRiGRISZ OOTOBxPGmGiIKBrN6YQ23+/T4BXLVS+40xIcOphuxgbr1FAys+ZKGMMV+H7ZOK8c AkLqPiAcgwvredtlZP1VAz1+mxYrYr565u55kKJj -----END CERTIFICATE-----Generated at Tue Apr 30 15:50:31 2024 by rpki-client on console-fra.rpki-client.org