$ rpki-client -vvf repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34352e302f32342d3234203d3e20313338383831.roa File: 3130332e35392e34352e302f32342d3234203d3e20313338383831.roa (raw, json) Hash identifier: CXip5HZWHq4Z06qt+SqUdhuk3DvcxlsyB9CHoztPl1k= Subject key identifier: 59:15:11:70:48:5D:E6:8C:A6:87:E1:F4:F9:A2:82:B5:E6:EC:B9:24 Certificate issuer: /CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Certificate serial: 2C42767AFCAA9A6FC544CA7C2D55408C0D5BFA89 Authority key identifier: 9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34352e302f32342d3234203d3e20313338383831.roa Signing time: Tue 28 Nov 2023 10:00:01 +0000 ROA not before: Tue 28 Nov 2023 09:55:01 +0000 ROA not after: Tue 26 Nov 2024 10:00:01 +0000 asID: 138881 IP address blocks: 103.59.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:42:76:7a:fc:aa:9a:6f:c5:44:ca:7c:2d:55:40:8c:0d:5b:fa:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Validity Not Before: Nov 28 09:55:01 2023 GMT Not After : Nov 26 10:00:01 2024 GMT Subject: CN=59151170485DE68CA687E1F4F9A282B5E6ECB924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:46:f4:74:20:d1:e4:c2:20:8d:7b:f4:90:6d: e4:c1:c1:75:69:3e:dd:6d:6a:d8:04:38:0a:6e:3c: f5:d8:80:78:d9:ba:f3:71:fc:db:4c:69:6e:a7:1c: 4a:dd:3f:dd:4b:7e:2d:dc:aa:42:71:ea:94:c6:7a: db:b8:66:97:e6:0d:ff:cf:49:6c:65:52:30:ce:51: 0a:d2:af:66:37:1c:e5:50:07:f9:53:59:9f:03:e5: f4:e7:8e:e8:79:dd:83:17:f6:14:4b:6b:7c:da:ef: 33:10:bc:f5:a8:36:1f:b1:48:c2:a3:3e:d9:29:db: 4b:ce:79:0b:dd:74:71:e3:4b:0a:25:15:1c:88:26: da:31:0a:e9:e2:22:30:f3:04:14:a8:f6:31:35:fd: c4:0f:23:a2:04:71:61:82:0b:3b:fa:8f:ad:2f:43: 48:c8:66:28:03:8a:dc:e1:e6:0b:90:2a:7c:8d:41: 71:89:88:b4:1f:bb:40:05:f7:e6:ac:fa:e7:79:dd: b3:ed:5d:4f:b6:d6:12:88:e6:cd:67:24:98:57:bf: 4f:65:01:c7:20:a9:19:53:12:2a:0b:3e:46:55:e6: 63:a9:56:d5:a0:1f:f4:64:46:33:5f:e9:12:58:a3: 15:b1:06:f2:2e:2b:c3:74:a0:73:7e:88:95:5a:40: 92:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:15:11:70:48:5D:E6:8C:A6:87:E1:F4:F9:A2:82:B5:E6:EC:B9:24 X509v3 Authority Key Identifier: keyid:9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34352e302f32342d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.45.0/24 Signature Algorithm: sha256WithRSAEncryption 17:16:09:93:78:35:c1:2a:17:dc:f8:52:30:2d:85:52:48:19: 3a:8c:8a:74:80:2c:ad:6e:44:c4:25:52:6b:cb:37:9b:c1:87: ef:ef:d9:8c:af:f5:88:b6:7e:d4:5c:54:43:57:d2:0d:9c:bd: 9a:78:41:74:63:20:12:9b:8a:fa:0b:16:10:d2:3a:27:09:8a: a5:07:f3:20:e6:8e:52:d9:a4:a0:69:6a:00:5b:0b:15:f3:aa: 08:f6:32:3d:79:ea:7a:2f:58:26:59:3d:a8:78:d0:45:73:20: ea:37:31:8c:6f:79:22:cf:6c:14:aa:30:4d:32:2d:fc:24:7d: 4e:95:cb:93:23:34:64:62:f5:57:d3:73:05:14:b9:98:a5:f1: a5:04:83:f7:8f:cf:15:0f:5b:0a:59:be:68:24:51:60:c9:2e: ba:01:6e:31:cc:bb:86:dd:74:f7:66:2c:57:a9:95:31:02:22: 3f:fc:43:43:48:b4:3a:24:42:24:06:f6:d7:62:e4:d0:a0:35: bf:c3:9b:da:f2:78:4c:97:98:33:7b:b3:6f:23:25:48:d4:a1: 1d:09:ee:1b:27:3d:4e:e1:91:eb:2e:4e:e7:e9:e6:5a:12:ef: d1:d3:7f:ed:0a:82:5f:3c:51:8a:20:28:1b:87:49:c1:d8:f9: f7:8d:cb:3f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULEJ2evyqmm/FRMp8LVVAjA1b+okwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgy NzI4QUU5NTAeFw0yMzExMjgwOTU1MDFaFw0yNDExMjYxMDAwMDFaMDMxMTAvBgNV BAMTKDU5MTUxMTcwNDg1REU2OENBNjg3RTFGNEY5QTI4MkI1RTZFQ0I5MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvRvR0INHkwiCNe/SQbeTBwXVp Pt1tatgEOApuPPXYgHjZuvNx/NtMaW6nHErdP91Lfi3cqkJx6pTGetu4ZpfmDf/P SWxlUjDOUQrSr2Y3HOVQB/lTWZ8D5fTnjuh53YMX9hRLa3za7zMQvPWoNh+xSMKj Ptkp20vOeQvddHHjSwolFRyIJtoxCuniIjDzBBSo9jE1/cQPI6IEcWGCCzv6j60v Q0jIZigDitzh5guQKnyNQXGJiLQfu0AF9+as+ud53bPtXU+21hKI5s1nJJhXv09l AccgqRlTEioLPkZV5mOpVtWgH/RkRjNf6RJYoxWxBvIuK8N0oHN+iJVaQJKdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWRURcEhd5oymh+H0+aKCtebsuSQwHwYDVR0j BBgwFoAUmlqHYK3mi/00KMwG/m2smCcorpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTc1OThlNC0yMDY0LTRlY2ItOThmNi1iMjU5YTc0OTk2YTEvMC85QTVBODc2MEFE RTY4QkZEMzQyOENDMDZGRTZEQUM5ODI3MjhBRTk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgyNzI4 QUU5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNzU5OGU0LTIwNjQtNGVjYi05 OGY2LWIyNTlhNzQ5OTZhMS8wLzMxMzAzMzJlMzUzOTJlMzQzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc7LTANBgkqhkiG 9w0BAQsFAAOCAQEAFxYJk3g1wSoX3PhSMC2FUkgZOoyKdIAsrW5ExCVSa8s3m8GH 7+/ZjK/1iLZ+1FxUQ1fSDZy9mnhBdGMgEpuK+gsWENI6JwmKpQfzIOaOUtmkoGlq AFsLFfOqCPYyPXnqei9YJlk9qHjQRXMg6jcxjG95Is9sFKowTTIt/CR9TpXLkyM0 ZGL1V9NzBRS5mKXxpQSD94/PFQ9bClm+aCRRYMkuugFuMcy7ht1092YsV6mVMQIi P/xDQ0i0OiRCJAb212Lk0KA1v8Ob2vJ4TJeYM3uzbyMlSNShHQnuGyc9TuGR6y5O 5+nmWhLv0dN/7QqCXzxRiiAoG4dJwdj5943LPw== -----END CERTIFICATE-----Generated at Tue May 7 01:55:34 2024 by rpki-client on console-fra.rpki-client.org