$ rpki-client -vvf repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa File: 3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa (raw, json) Hash identifier: IBn4LqhfMt7VaUP9HZ2FeB02OFruFaLLmOT8X6hnelQ= Subject key identifier: 31:5A:D5:02:04:CC:29:B7:0F:1E:B7:DF:23:0D:E6:9D:70:BE:AC:76 Certificate issuer: /CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Certificate serial: 7B8FF0D261D8A595F5E97930F28A0B3F72B3FCB8 Authority key identifier: 20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa Signing time: Mon 31 Jul 2023 15:00:02 +0000 ROA not before: Mon 31 Jul 2023 14:55:02 +0000 ROA not after: Mon 29 Jul 2024 15:00:02 +0000 asID: 141093 IP address blocks: 103.156.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:8f:f0:d2:61:d8:a5:95:f5:e9:79:30:f2:8a:0b:3f:72:b3:fc:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Validity Not Before: Jul 31 14:55:02 2023 GMT Not After : Jul 29 15:00:02 2024 GMT Subject: CN=315AD50204CC29B70F1EB7DF230DE69D70BEAC76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:85:c2:1f:ea:c8:e7:20:d9:e9:5a:61:e4:35: 88:90:07:09:b0:1a:9d:bb:cf:bb:e6:52:dd:48:93: 59:52:46:98:e5:78:e9:65:f3:04:23:35:99:f9:dd: 5d:7c:91:75:2a:08:45:9a:07:27:df:26:69:08:e3: e5:d8:36:78:bc:af:e3:4c:49:14:ee:d9:78:66:ca: 8b:00:8e:5d:f4:8a:13:15:b2:99:bd:6e:39:fa:2e: 94:44:3b:fc:c9:f6:c2:33:42:75:d1:8e:b3:e9:90: 9d:b9:9d:b7:a2:b3:7e:d1:34:cd:56:7f:3f:54:c2: 2a:3b:f8:21:bb:a0:c9:5b:48:1d:3e:a0:74:3a:70: 70:6d:72:bf:12:ee:9f:f5:21:1c:3a:e3:fb:80:e5: 7b:9d:e5:f5:34:3c:68:6d:8f:12:aa:26:8d:f3:64: 90:3f:11:67:a2:2e:17:cf:70:7a:55:da:df:6f:6e: 3b:69:40:18:92:8b:76:87:9c:1b:c3:33:ab:ea:d5: 59:ce:23:c1:37:97:7e:17:11:29:90:8c:58:7f:2b: 3b:74:54:8a:f9:aa:3e:7d:eb:6e:64:54:4a:36:d9: b2:6c:04:2d:b9:66:28:a8:11:af:86:7c:74:93:d1: 82:42:69:6b:e7:7c:ad:2c:f0:1e:b7:66:f8:2c:fb: 68:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5A:D5:02:04:CC:29:B7:0F:1E:B7:DF:23:0D:E6:9D:70:BE:AC:76 X509v3 Authority Key Identifier: keyid:20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.146.0/23 Signature Algorithm: sha256WithRSAEncryption bb:7f:e0:83:f1:73:1b:4e:e3:bc:73:ea:e9:ec:37:22:e4:56: 95:21:b8:4b:12:f7:c7:37:9a:a8:01:88:35:d1:e3:dc:17:09: 4d:d4:f6:74:ee:fc:3d:9b:7e:92:1a:04:b1:de:79:70:38:b3: 56:27:aa:1f:9f:fa:d2:96:94:a3:73:bb:d6:89:37:85:18:97: 3d:6e:86:70:96:71:4e:2f:6a:d3:9a:4d:dd:6f:63:2a:a4:4a: 79:55:0f:0d:73:50:39:6c:49:f5:1d:a1:11:51:04:b4:cc:38: e6:85:ff:28:c8:e4:08:88:e3:30:f0:fa:31:a1:9b:52:da:42: bc:f0:3a:ae:b4:b7:95:6c:8e:9c:4d:8b:cd:89:c6:65:c2:7a: b1:f2:ef:eb:91:0b:1a:e7:ca:b3:d4:1f:c4:8d:f8:ab:38:ae: 69:a7:67:e5:35:ac:dc:2b:3e:e5:7e:9a:29:c0:53:18:ce:eb: 3b:5a:4d:61:d0:6f:1e:ef:86:09:51:e0:72:c1:53:3b:48:ea: 14:1a:9c:92:fe:a8:f7:b4:d2:41:30:f9:ec:18:5b:5e:15:37: df:4f:d8:1a:3d:3b:15:27:01:5e:89:b5:cb:e4:92:51:6e:12: 99:f6:54:c2:93:54:31:62:8b:6a:0d:db:a5:e6:17:14:8b:dc: 4f:d6:10:87 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUe4/w0mHYpZX16Xkw8ooLP3Kz/LgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDND NUQ5QUJFRTAeFw0yMzA3MzExNDU1MDJaFw0yNDA3MjkxNTAwMDJaMDMxMTAvBgNV BAMTKDMxNUFENTAyMDRDQzI5QjcwRjFFQjdERjIzMERFNjlENzBCRUFDNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2hcIf6sjnINnpWmHkNYiQBwmw Gp27z7vmUt1Ik1lSRpjleOll8wQjNZn53V18kXUqCEWaByffJmkI4+XYNni8r+NM SRTu2XhmyosAjl30ihMVspm9bjn6LpREO/zJ9sIzQnXRjrPpkJ25nbeis37RNM1W fz9Uwio7+CG7oMlbSB0+oHQ6cHBtcr8S7p/1IRw64/uA5Xud5fU0PGhtjxKqJo3z ZJA/EWeiLhfPcHpV2t9vbjtpQBiSi3aHnBvDM6vq1VnOI8E3l34XESmQjFh/Kzt0 VIr5qj59625kVEo22bJsBC25ZiioEa+GfHST0YJCaWvnfK0s8B63Zvgs+2jlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMVrVAgTMKbcPHrffIw3mnXC+rHYwHwYDVR0j BBgwFoAUIP0WZVA2k1LWxMirjp5CA8XZq+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5YTE1Yi1kNWFlLTQ1ZWMtODAxMi1hNmNhYWIzZGQ4OGIvMC8yMEZEMTY2NTUw MzY5MzUyRDZDNEM4QUI4RTlFNDIwM0M1RDlBQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDNDNUQ5 QUJFRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4OTlhMTViLWQ1YWUtNDVlYy04 MDEyLWE2Y2FhYjNkZDg4Yi8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM5MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnJIwDQYJ KoZIhvcNAQELBQADggEBALt/4IPxcxtO47xz6unsNyLkVpUhuEsS98c3mqgBiDXR 49wXCU3U9nTu/D2bfpIaBLHeeXA4s1Ynqh+f+tKWlKNzu9aJN4UYlz1uhnCWcU4v atOaTd1vYyqkSnlVDw1zUDlsSfUdoRFRBLTMOOaF/yjI5AiI4zDw+jGhm1LaQrzw Oq60t5VsjpxNi82JxmXCerHy7+uRCxrnyrPUH8SN+Ks4rmmnZ+U1rNwrPuV+minA UxjO6ztaTWHQbx7vhglR4HLBUztI6hQanJL+qPe00kEw+ewYW14VN99P2Bo9OxUn AV6JtcvkklFuEpn2VMKTVDFii2oN26XmFxSL3E/WEIc= -----END CERTIFICATE-----Generated at Sun Jun 2 12:44:45 2024 by rpki-client on console-ams.rpki-client.org