$ rpki-client -vvf repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa File: 3130332e3135312e39382e302f32342d3234203d3e203137353338.roa (raw, json) Hash identifier: /bHrMl0W07beZ0CaZOhv2DYItyxoNBXk7HdPKk6F5XE= Subject key identifier: EB:03:7D:A9:06:E6:D9:42:AA:98:AB:83:6E:32:5B:DF:70:F8:A6:02 Certificate issuer: /CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Certificate serial: 442ED5F9D6B178B7359F929BCEDCAED215B58191 Authority key identifier: 95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa Signing time: Mon 31 Jul 2023 00:08:37 +0000 ROA not before: Mon 31 Jul 2023 00:03:37 +0000 ROA not after: Mon 29 Jul 2024 00:08:37 +0000 asID: 17538 IP address blocks: 103.151.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 11:38:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:2e:d5:f9:d6:b1:78:b7:35:9f:92:9b:ce:dc:ae:d2:15:b5:81:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Validity Not Before: Jul 31 00:03:37 2023 GMT Not After : Jul 29 00:08:37 2024 GMT Subject: CN=EB037DA906E6D942AA98AB836E325BDF70F8A602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:eb:c7:a3:dd:72:58:84:08:d8:b0:88:57:7f: c9:dd:9a:81:6e:72:51:d1:e5:00:01:bc:f6:61:53: 09:08:85:b6:0e:f0:c6:40:4d:95:34:25:94:2f:5a: 66:1f:2c:c1:69:78:0c:c5:75:03:d2:28:60:a2:bf: cb:c5:ff:4a:55:83:ef:75:e0:c6:3f:f9:a4:e3:f1: 7a:b7:e3:0c:bf:f6:ef:4d:a4:06:0b:b6:dc:2b:ef: ad:b5:0d:5b:e2:98:8c:c5:23:20:d6:56:55:3c:82: d2:2d:a7:d5:a6:7b:db:c6:ee:a1:47:4f:3a:3f:9f: 3f:bf:e0:71:af:0d:5c:70:d4:d4:fe:31:d1:40:bb: 61:52:30:ff:9e:10:a2:c5:2a:50:e2:68:24:19:dc: db:86:62:1e:f8:df:39:29:f5:9a:2c:e6:c3:de:1a: 89:ad:d7:e3:14:c7:4f:a3:38:1e:e3:5d:4e:a1:7b: e3:ee:a2:77:d3:40:30:c8:3f:4a:f1:7d:8d:78:d1: b2:cd:cc:7c:55:be:24:99:f9:07:8e:d3:b2:29:dd: 44:0a:94:a2:c1:5a:f3:61:eb:03:65:b9:bd:5f:0c: eb:8c:10:58:20:7b:c2:5b:b2:f4:f3:b4:df:87:62: c6:28:55:e6:a0:37:e3:ee:3a:43:84:78:12:d4:de: 06:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:03:7D:A9:06:E6:D9:42:AA:98:AB:83:6E:32:5B:DF:70:F8:A6:02 X509v3 Authority Key Identifier: keyid:95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.98.0/24 Signature Algorithm: sha256WithRSAEncryption a5:64:89:18:56:1a:63:06:4a:31:15:61:1e:cc:49:d2:0a:d3: 45:8f:05:95:b5:3a:f7:f1:3b:fd:5e:d4:de:17:ec:84:d5:fa: b1:d8:78:e5:d2:be:04:a4:95:38:56:6b:d6:07:8e:99:b3:22: 65:87:25:59:ff:5b:c1:87:d6:a3:d9:eb:0e:0c:21:97:af:a0: da:da:d1:61:8d:9b:8d:c2:18:b4:02:c3:21:67:29:67:b8:52: 04:87:a7:40:61:07:a7:19:85:4e:74:75:74:46:30:18:7f:dc: 18:1f:c0:47:31:35:10:ca:5a:6a:4b:e5:d9:a4:10:ee:2e:92: bd:b0:53:a7:97:18:3d:ae:01:a7:c9:a1:27:6d:bd:94:58:8e: 5e:ba:b4:f9:da:e7:da:3c:6d:0a:ed:05:d8:2e:19:6a:60:d5: 33:15:bf:67:74:76:ca:63:ab:a5:9f:cb:e2:ef:1f:22:da:56: f6:14:c0:7d:b5:2f:02:02:8d:30:60:f5:42:aa:b4:1f:8c:20: f5:ac:07:2a:68:2e:14:5d:95:60:c2:6d:85:68:d9:f9:1c:97: 78:07:88:a5:41:03:fa:67:b8:f7:9f:b7:44:e4:9f:4b:b7:69: c4:84:ef:7a:00:f0:33:d2:bb:ee:94:95:d5:06:22:de:00:00: 7b:97:b5:85 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURC7V+daxeLc1n5Kbztyu0hW1gZEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0 NjQ2MUFCMzAeFw0yMzA3MzEwMDAzMzdaFw0yNDA3MjkwMDA4MzdaMDMxMTAvBgNV BAMTKEVCMDM3REE5MDZFNkQ5NDJBQTk4QUI4MzZFMzI1QkRGNzBGOEE2MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz68ej3XJYhAjYsIhXf8ndmoFu clHR5QABvPZhUwkIhbYO8MZATZU0JZQvWmYfLMFpeAzFdQPSKGCiv8vF/0pVg+91 4MY/+aTj8Xq34wy/9u9NpAYLttwr7621DVvimIzFIyDWVlU8gtItp9Wme9vG7qFH Tzo/nz+/4HGvDVxw1NT+MdFAu2FSMP+eEKLFKlDiaCQZ3NuGYh743zkp9Zos5sPe Gomt1+MUx0+jOB7jXU6he+PuonfTQDDIP0rxfY140bLNzHxVviSZ+QeO07Ip3UQK lKLBWvNh6wNlub1fDOuMEFgge8JbsvTztN+HYsYoVeagN+PuOkOEeBLU3gabAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6wN9qQbm2UKqmKuDbjJb33D4pgIwHwYDVR0j BBgwFoAUldkTaEX6+geVc11Kmw/590ZGGrMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Mzc4NWU2NS01MWUyLTRiMWItODJmOS1lNzUzYWQ0YjI0MGYvMC85NUQ5MTM2ODQ1 RkFGQTA3OTU3MzVENEE5QjBGRjlGNzQ2NDYxQUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0NjQ2 MUFCMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNzg1ZTY1LTUxZTItNGIxYi04 MmY5LWU3NTNhZDRiMjQwZi8wLzMxMzAzMzJlMzEzNTMxMmUzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXYjANBgkqhkiG 9w0BAQsFAAOCAQEApWSJGFYaYwZKMRVhHsxJ0grTRY8FlbU69/E7/V7U3hfshNX6 sdh45dK+BKSVOFZr1geOmbMiZYclWf9bwYfWo9nrDgwhl6+g2trRYY2bjcIYtALD IWcpZ7hSBIenQGEHpxmFTnR1dEYwGH/cGB/ARzE1EMpaakvl2aQQ7i6SvbBTp5cY Pa4Bp8mhJ229lFiOXrq0+drn2jxtCu0F2C4ZamDVMxW/Z3R2ymOrpZ/L4u8fItpW 9hTAfbUvAgKNMGD1Qqq0H4wg9awHKmguFF2VYMJthWjZ+RyXeAeIpUED+me495+3 ROSfS7dpxITvegDwM9K77pSV1QYi3gAAe5e1hQ== -----END CERTIFICATE-----Generated at Tue May 7 11:41:15 2024 by rpki-client on console-ams.rpki-client.org