$ rpki-client -vvf repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa File: 3130332e3135312e39392e302f32342d3234203d3e203137353338.roa (raw, json) Hash identifier: dthX6KCsa5SBHytTXuYP8cR/gxsChjNKaGwIvw51LyY= Subject key identifier: B3:21:6C:12:3F:5E:ED:E0:07:78:00:4A:F6:4C:66:C6:1A:F3:2A:EA Certificate issuer: /CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Certificate serial: 3C021209E1C61E1720D135C1508C89514480D235 Authority key identifier: 95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa Signing time: Mon 31 Jul 2023 00:08:36 +0000 ROA not before: Mon 31 Jul 2023 00:03:36 +0000 ROA not after: Mon 29 Jul 2024 00:08:36 +0000 asID: 17538 IP address blocks: 103.151.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:02:12:09:e1:c6:1e:17:20:d1:35:c1:50:8c:89:51:44:80:d2:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Validity Not Before: Jul 31 00:03:36 2023 GMT Not After : Jul 29 00:08:36 2024 GMT Subject: CN=B3216C123F5EEDE00778004AF64C66C61AF32AEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:99:d0:4c:63:2a:fa:4f:97:19:93:c6:74:be: be:ad:2b:62:4d:71:68:de:32:6e:cc:ac:81:da:6e: f8:8d:b0:c9:5f:30:70:7c:47:4b:cc:39:16:ed:67: b9:ad:a2:c0:6f:23:f7:e1:bf:90:f0:de:c2:07:69: ea:5a:cf:f4:ce:50:89:2c:b9:c3:4d:bd:5e:59:26: 1e:8a:75:5b:3b:54:16:d7:0f:2d:23:e6:6b:cc:80: df:42:cf:af:00:36:2d:a9:a1:50:e3:f5:46:10:13: e2:65:ee:dc:98:12:0e:7a:6c:32:b0:5f:f9:ff:d6: 17:2d:03:61:61:44:75:95:31:2e:be:19:17:2b:57: 88:6a:a4:cd:47:0d:aa:2d:e0:e9:7f:8e:32:1c:4c: c0:c2:9e:39:84:e1:34:ab:c1:83:d3:ec:fc:af:5f: 38:df:f3:a4:16:92:c5:29:5f:99:94:87:2f:ad:38: 75:ba:07:d5:9c:e6:29:35:d1:37:47:b2:5a:42:23: da:b0:4b:fa:dd:dd:eb:4f:2e:49:11:ff:a0:f1:52: 55:35:d9:88:af:8d:76:7f:0a:7d:11:ce:f2:5d:88: 56:c4:26:01:07:a7:75:6c:9f:ae:3d:d6:57:79:93: 90:c8:70:71:6a:7c:02:c7:ca:11:ba:f8:47:f0:4e: 86:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:21:6C:12:3F:5E:ED:E0:07:78:00:4A:F6:4C:66:C6:1A:F3:2A:EA X509v3 Authority Key Identifier: keyid:95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.99.0/24 Signature Algorithm: sha256WithRSAEncryption 66:d7:d6:5a:3a:83:da:07:e9:8e:0e:0a:ec:ec:79:bd:d1:42: ac:18:cf:03:29:15:48:68:8f:ee:f7:41:32:c6:a7:62:4e:4e: bc:76:af:69:43:15:08:0b:ab:76:87:ec:14:c0:63:a8:bf:7b: f0:01:f1:9a:2b:17:96:9f:1b:b3:1d:3a:0d:86:91:dd:36:d3: 3d:14:74:6a:23:64:8a:e3:f0:92:b9:0b:91:21:59:50:36:5d: 1e:a3:d9:ba:66:5e:58:1f:93:0c:0e:9a:46:f7:2e:b8:25:aa: 8e:78:8b:b0:b9:e2:9d:69:f8:21:63:7d:e9:39:9a:3b:a2:0a: e5:11:bf:9c:bf:d7:70:f8:af:59:e1:9c:0c:1d:8b:aa:15:5e: 03:a2:e1:95:02:ea:bb:00:6c:bf:28:52:a2:51:f4:9e:ef:2d: 61:68:33:57:e5:bb:df:32:0a:1b:4a:b0:73:e9:49:56:d2:7d: e5:a3:ff:79:0e:7e:81:4e:9e:b5:4f:26:24:ac:8a:0a:67:6b: 6e:b4:4a:e1:ec:36:f7:e9:1c:56:17:a6:b8:00:03:74:53:34: 0c:3f:25:65:06:da:96:06:0e:10:fb:9c:00:e8:29:ce:24:31: 94:27:c3:06:2f:c7:f4:af:1d:74:74:0b:d3:e0:75:f0:e1:52: d5:90:59:18 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPAISCeHGHhcg0TXBUIyJUUSA0jUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0 NjQ2MUFCMzAeFw0yMzA3MzEwMDAzMzZaFw0yNDA3MjkwMDA4MzZaMDMxMTAvBgNV BAMTKEIzMjE2QzEyM0Y1RUVERTAwNzc4MDA0QUY2NEM2NkM2MUFGMzJBRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCimdBMYyr6T5cZk8Z0vr6tK2JN cWjeMm7MrIHabviNsMlfMHB8R0vMORbtZ7mtosBvI/fhv5Dw3sIHaepaz/TOUIks ucNNvV5ZJh6KdVs7VBbXDy0j5mvMgN9Cz68ANi2poVDj9UYQE+Jl7tyYEg56bDKw X/n/1hctA2FhRHWVMS6+GRcrV4hqpM1HDaot4Ol/jjIcTMDCnjmE4TSrwYPT7Pyv Xzjf86QWksUpX5mUhy+tOHW6B9Wc5ik10TdHslpCI9qwS/rd3etPLkkR/6DxUlU1 2YivjXZ/Cn0RzvJdiFbEJgEHp3Vsn6491ld5k5DIcHFqfALHyhG6+EfwToYrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsyFsEj9e7eAHeABK9kxmxhrzKuowHwYDVR0j BBgwFoAUldkTaEX6+geVc11Kmw/590ZGGrMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Mzc4NWU2NS01MWUyLTRiMWItODJmOS1lNzUzYWQ0YjI0MGYvMC85NUQ5MTM2ODQ1 RkFGQTA3OTU3MzVENEE5QjBGRjlGNzQ2NDYxQUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0NjQ2 MUFCMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNzg1ZTY1LTUxZTItNGIxYi04 MmY5LWU3NTNhZDRiMjQwZi8wLzMxMzAzMzJlMzEzNTMxMmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXYzANBgkqhkiG 9w0BAQsFAAOCAQEAZtfWWjqD2gfpjg4K7Ox5vdFCrBjPAykVSGiP7vdBMsanYk5O vHavaUMVCAurdofsFMBjqL978AHxmisXlp8bsx06DYaR3TbTPRR0aiNkiuPwkrkL kSFZUDZdHqPZumZeWB+TDA6aRvcuuCWqjniLsLninWn4IWN96TmaO6IK5RG/nL/X cPivWeGcDB2LqhVeA6LhlQLquwBsvyhSolH0nu8tYWgzV+W73zIKG0qwc+lJVtJ9 5aP/eQ5+gU6etU8mJKyKCmdrbrRK4ew29+kcVhemuAADdFM0DD8lZQbalgYOEPuc AOgpziQxlCfDBi/H9K8ddHQL0+B18OFS1ZBZGA== -----END CERTIFICATE-----Generated at Sun May 5 01:11:42 2024 by rpki-client on console-ams.rpki-client.org