$ rpki-client -vvf repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa File: 3130332e3135312e39352e302f32342d3234203d3e203137353338.roa (raw, json) Hash identifier: nqY4XOsMoDAr1WR4ukixeo4mvX3S0NMyinTULjkRtIY= Subject key identifier: 5C:D4:55:02:99:76:A6:96:0A:A6:EE:05:53:BE:5A:29:42:D7:17:98 Certificate issuer: /CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9 Certificate serial: 5CFFC7DBC27A9462CDE95B1499C789425787DAB7 Authority key identifier: 6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa Signing time: Mon 31 Jul 2023 00:08:29 +0000 ROA not before: Mon 31 Jul 2023 00:03:29 +0000 ROA not after: Mon 29 Jul 2024 00:08:29 +0000 asID: 17538 IP address blocks: 103.151.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ff:c7:db:c2:7a:94:62:cd:e9:5b:14:99:c7:89:42:57:87:da:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9 Validity Not Before: Jul 31 00:03:29 2023 GMT Not After : Jul 29 00:08:29 2024 GMT Subject: CN=5CD455029976A6960AA6EE0553BE5A2942D71798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:4b:71:80:fd:64:0f:20:ee:31:c1:60:44:48: 45:c6:48:0a:db:cd:c6:3e:9c:d4:87:8c:0b:0d:65: b4:55:be:14:c9:ec:a9:b8:d8:14:02:3d:a2:d9:82: 4e:59:5c:49:44:8a:5d:da:da:0b:aa:01:12:8c:f1: 28:2e:2d:59:02:18:bd:68:a4:b0:1d:73:de:8c:e9: 9f:f7:1e:98:54:b2:4c:a1:fe:5c:61:7c:2a:eb:af: ec:d8:65:e8:f6:5a:8b:fe:2a:0f:ea:7a:a4:65:55: f3:45:22:6b:4a:31:93:e0:af:37:d4:98:a3:c0:6f: 55:e6:97:1f:b2:a5:86:2b:f3:77:c9:c1:c8:c8:a9: f2:0d:1c:ac:73:87:89:49:ea:0e:49:ca:ae:71:04: b5:45:cb:ce:c2:21:b8:6c:e2:1c:91:78:34:5c:91: 27:dd:97:f0:0e:99:54:ab:82:3e:84:09:75:78:5b: 1f:f6:c1:33:e2:55:a0:0a:a6:11:a9:99:15:68:93: 17:88:3e:54:db:90:ea:ae:8d:0d:1c:e9:9c:95:c4: eb:11:67:d6:20:99:63:d3:ca:70:a1:87:8e:c2:fe: a2:9a:3e:6c:1a:66:75:c7:47:ea:db:16:28:0e:b2: 59:f7:2f:04:59:4e:9e:20:ec:1f:31:4d:35:3b:87: bb:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D4:55:02:99:76:A6:96:0A:A6:EE:05:53:BE:5A:29:42:D7:17:98 X509v3 Authority Key Identifier: keyid:6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.95.0/24 Signature Algorithm: sha256WithRSAEncryption 40:97:a3:7b:7a:3f:8e:51:b7:d1:03:2e:38:19:33:ab:f3:a2: f0:77:fe:98:39:00:73:b9:56:d5:6d:0e:16:54:4e:88:9d:bf: d0:a3:de:e1:28:be:66:77:ef:ae:49:f3:9e:4e:53:df:3f:35: 1e:9a:07:30:f9:8a:13:f6:14:d0:b6:9b:70:ee:fa:30:ee:f2: f9:e4:e8:78:ea:8b:f1:a1:83:ca:df:12:bc:cc:72:4e:45:c3: 75:40:06:e9:7d:7b:90:1e:39:91:79:e2:4e:9e:a7:bb:f2:18: 9e:b0:72:da:64:d8:6d:99:d8:3e:e6:af:8e:63:9c:dc:e0:d4: 05:15:11:dd:f8:11:88:ed:d3:4b:c0:da:ba:fe:46:44:1c:8e: 67:2f:d1:1d:21:64:5f:bf:36:5e:3d:69:27:fe:86:13:80:8c: ef:e1:db:6a:34:23:d0:66:3c:a1:7c:28:c0:3b:d2:6e:60:1f: 7a:01:24:5a:6c:7a:59:bb:0b:ca:12:20:99:86:64:31:96:fa: a8:6e:c6:be:dc:00:56:50:f2:fc:92:fc:ab:7c:a3:93:a7:0b: de:50:44:25:1c:8d:41:61:26:8f:e3:ff:7e:97:1c:5f:27:eb: b4:70:81:7c:86:33:65:fc:f0:3c:65:0a:80:04:d6:25:16:df: 7e:1c:45:45 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXP/H28J6lGLN6VsUmceJQleH2rcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYz OTRCQThFOTAeFw0yMzA3MzEwMDAzMjlaFw0yNDA3MjkwMDA4MjlaMDMxMTAvBgNV BAMTKDVDRDQ1NTAyOTk3NkE2OTYwQUE2RUUwNTUzQkU1QTI5NDJENzE3OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzS3GA/WQPIO4xwWBESEXGSArb zcY+nNSHjAsNZbRVvhTJ7Km42BQCPaLZgk5ZXElEil3a2guqARKM8SguLVkCGL1o pLAdc96M6Z/3HphUskyh/lxhfCrrr+zYZej2Wov+Kg/qeqRlVfNFImtKMZPgrzfU mKPAb1Xmlx+ypYYr83fJwcjIqfINHKxzh4lJ6g5Jyq5xBLVFy87CIbhs4hyReDRc kSfdl/AOmVSrgj6ECXV4Wx/2wTPiVaAKphGpmRVokxeIPlTbkOqujQ0c6ZyVxOsR Z9YgmWPTynChh47C/qKaPmwaZnXHR+rbFigOsln3LwRZTp4g7B8xTTU7h7u1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXNRVApl2ppYKpu4FU75aKULXF5gwHwYDVR0j BBgwFoAUanX5XqEcP5hMXGEP6SIgJjlLqOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTQzMzkzNC0zODQ0LTQ2NTMtOGZhYy0xODU4YjI4MjNkMWMvMC82QTc1Rjk1RUEx MUMzRjk4NEM1QzYxMEZFOTIyMjAyNjM5NEJBOEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYzOTRC QThFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhNDMzOTM0LTM4NDQtNDY1My04 ZmFjLTE4NThiMjgyM2QxYy8wLzMxMzAzMzJlMzEzNTMxMmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXXzANBgkqhkiG 9w0BAQsFAAOCAQEAQJeje3o/jlG30QMuOBkzq/Oi8Hf+mDkAc7lW1W0OFlROiJ2/ 0KPe4Si+Znfvrknznk5T3z81HpoHMPmKE/YU0LabcO76MO7y+eToeOqL8aGDyt8S vMxyTkXDdUAG6X17kB45kXniTp6nu/IYnrBy2mTYbZnYPuavjmOc3ODUBRUR3fgR iO3TS8Dauv5GRByOZy/RHSFkX782Xj1pJ/6GE4CM7+HbajQj0GY8oXwowDvSbmAf egEkWmx6WbsLyhIgmYZkMZb6qG7GvtwAVlDy/JL8q3yjk6cL3lBEJRyNQWEmj+P/ fpccXyfrtHCBfIYzZfzwPGUKgATWJRbffhxFRQ== -----END CERTIFICATE-----Generated at Sun May 5 23:33:05 2024 by rpki-client on console-fra.rpki-client.org