$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa File: 3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa (raw, json) Hash identifier: joZaN20RVj6C58TuxjMGymNK7Lv0pgecDFF+jskA6D0= Subject key identifier: 9C:5B:41:E6:5A:0B:F6:75:67:A0:1A:0B:0D:BD:5D:0E:32:3A:E4:EA Certificate issuer: /CN=D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C Certificate serial: 58E9BBA5E07F3B7EE903C31F2BE10393D72AFBFC Authority key identifier: D7:85:2A:F0:5D:FB:B9:7A:CD:46:A3:73:99:F2:0D:EA:19:C2:EF:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa Signing time: Sat 12 Aug 2023 13:00:01 +0000 ROA not before: Sat 12 Aug 2023 12:55:01 +0000 ROA not after: Sat 10 Aug 2024 13:00:01 +0000 asID: 138131 IP address blocks: 103.164.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.crl rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:e9:bb:a5:e0:7f:3b:7e:e9:03:c3:1f:2b:e1:03:93:d7:2a:fb:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C Validity Not Before: Aug 12 12:55:01 2023 GMT Not After : Aug 10 13:00:01 2024 GMT Subject: CN=9C5B41E65A0BF67567A01A0B0DBD5D0E323AE4EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:52:af:c9:33:ec:40:aa:0a:6f:25:69:49:29: d2:1c:3e:28:3a:18:48:01:2c:19:3a:3d:a3:93:ee: 46:5e:01:03:87:ab:fc:3d:4f:6d:d2:5e:5f:67:0b: 24:d8:f4:2e:1d:d0:31:e2:e8:de:99:db:c3:bc:fd: 05:ab:73:c3:13:c8:05:ff:f9:aa:8f:58:68:bf:b9: 24:ef:ce:9f:d9:6b:f5:73:6d:93:d9:ae:9c:90:71: 8a:3c:7f:d0:58:8d:06:5f:50:bf:f4:d7:a0:be:e2: 22:c9:ec:a4:f9:73:05:df:b9:31:a5:60:ea:cf:f9: 21:f6:ac:37:a1:13:fe:9b:1a:34:14:ec:17:34:0b: 94:79:20:45:26:ae:f3:0e:fa:de:7b:e6:12:a4:cb: 4c:67:29:dd:01:b2:6f:d3:14:f3:d9:70:05:66:1b: c1:fe:5d:af:e2:47:57:62:41:f9:0f:b4:4b:27:8f: f3:fb:2a:f7:7d:c8:ac:1f:eb:58:56:f1:39:4e:77: 61:44:a0:04:a7:0a:a9:2d:f6:f9:57:77:fb:4a:d2: 96:b8:ce:a8:f2:df:41:c9:61:4c:ac:b1:b9:18:34: 50:e5:9b:36:15:9a:9b:7b:5a:aa:17:bb:1a:81:d7: 1c:c1:cc:0a:38:d3:c0:af:ec:5c:3b:9a:dc:5c:92: 24:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:5B:41:E6:5A:0B:F6:75:67:A0:1A:0B:0D:BD:5D:0E:32:3A:E4:EA X509v3 Authority Key Identifier: keyid:D7:85:2A:F0:5D:FB:B9:7A:CD:46:A3:73:99:F2:0D:EA:19:C2:EF:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.173.0/24 Signature Algorithm: sha256WithRSAEncryption 44:7e:52:42:40:92:9f:76:fb:b7:4b:ff:36:df:a8:3b:ad:c9: 1f:ce:67:4b:2c:90:83:03:1a:15:c9:e5:5c:ca:9a:82:03:11: ec:1e:34:9f:a9:e6:c2:1a:de:8a:2a:cf:08:8b:46:a8:67:97: 05:8f:3f:6d:14:cc:5e:17:08:9e:6a:fd:cf:c7:4f:c5:d8:8f: a6:9c:ba:0b:2d:de:6c:a2:b5:7d:19:df:d4:21:95:0f:36:b7: 90:5e:a4:c2:4c:38:59:55:0a:e7:d6:2b:0c:50:09:48:3c:52: ee:e3:61:77:63:94:fb:14:7d:e0:9d:f1:ce:cd:67:94:af:e7: 91:f7:18:22:1b:c0:4e:15:7a:be:84:d7:c9:34:c3:9d:85:83: 44:ba:7a:5a:d5:19:81:95:8e:41:10:d0:50:9f:20:71:2d:90: 0d:aa:09:b5:87:9a:06:fd:27:0d:36:cf:e4:98:e0:fb:f0:1f: 93:3a:82:6e:0c:63:bc:60:31:00:3a:2d:60:63:ca:e5:9b:33: 4f:62:b8:9b:c2:46:bb:db:16:18:8d:d0:c2:ee:5a:0a:70:0a: d3:c6:c7:f7:1f:20:a7:50:d4:66:fb:ca:a7:bc:54:8c:17:8c: cd:ae:c5:3e:af:a0:bd:7b:4e:eb:84:2b:75:e5:86:56:a9:40: b3:98:74:71 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWOm7peB/O37pA8MfK+EDk9cq+/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc4NTJBRjA1REZCQjk3QUNENDZBMzczOTlGMjBERUEx OUMyRUYyQzAeFw0yMzA4MTIxMjU1MDFaFw0yNDA4MTAxMzAwMDFaMDMxMTAvBgNV BAMTKDlDNUI0MUU2NUEwQkY2NzU2N0EwMUEwQjBEQkQ1RDBFMzIzQUU0RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEUq/JM+xAqgpvJWlJKdIcPig6 GEgBLBk6PaOT7kZeAQOHq/w9T23SXl9nCyTY9C4d0DHi6N6Z28O8/QWrc8MTyAX/ +aqPWGi/uSTvzp/Za/VzbZPZrpyQcYo8f9BYjQZfUL/016C+4iLJ7KT5cwXfuTGl YOrP+SH2rDehE/6bGjQU7Bc0C5R5IEUmrvMO+t575hKky0xnKd0Bsm/TFPPZcAVm G8H+Xa/iR1diQfkPtEsnj/P7Kvd9yKwf61hW8TlOd2FEoASnCqkt9vlXd/tK0pa4 zqjy30HJYUyssbkYNFDlmzYVmpt7WqoXuxqB1xzBzAo408Cv7Fw7mtxckiQLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnFtB5loL9nVnoBoLDb1dDjI65OowHwYDVR0j BBgwFoAU14Uq8F37uXrNRqNzmfIN6hnC7ywwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg5ZjFiNC1lZjYzLTQ1MzktODQ1NS05OGM2NzE5OTVjY2YvMC9ENzg1MkFGMDVE RkJCOTdBQ0Q0NkEzNzM5OUYyMERFQTE5QzJFRjJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDc4NTJBRjA1REZCQjk3QUNENDZBMzczOTlGMjBERUExOUMy RUYyQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODlmMWI0LWVmNjMtNDUzOS04 NDU1LTk4YzY3MTk5NWNjZi8wLzMxMzAzMzJlMzEzNjM0MmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpK0wDQYJ KoZIhvcNAQELBQADggEBAER+UkJAkp92+7dL/zbfqDutyR/OZ0sskIMDGhXJ5VzK moIDEeweNJ+p5sIa3ooqzwiLRqhnlwWPP20UzF4XCJ5q/c/HT8XYj6acugst3myi tX0Z39QhlQ82t5BepMJMOFlVCufWKwxQCUg8Uu7jYXdjlPsUfeCd8c7NZ5Sv55H3 GCIbwE4Ver6E18k0w52Fg0S6elrVGYGVjkEQ0FCfIHEtkA2qCbWHmgb9Jw02z+SY 4PvwH5M6gm4MY7xgMQA6LWBjyuWbM09iuJvCRrvbFhiN0MLuWgpwCtPGx/cfIKdQ 1Gb7yqe8VIwXjM2uxT6voL17TuuEK3XlhlapQLOYdHE= -----END CERTIFICATE-----Generated at Mon May 6 22:39:56 2024 by rpki-client on console-ams.rpki-client.org