$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33322e302f32342d3234203d3e20313430343037.roa File: 3130332e3135312e33322e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: eHh8ZOAFAedECmGIcg6/2YKU1VtEUJsYY9qrnFeK7pg= Subject key identifier: 73:C1:51:1A:DF:92:BB:12:9C:45:6D:AF:0C:80:2E:D8:07:1D:21:CF Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 31C4657F428FDA92FDF99AD63DEABB5604A3F959 Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33322e302f32342d3234203d3e20313430343037.roa Signing time: Fri 11 Aug 2023 09:00:01 +0000 ROA not before: Fri 11 Aug 2023 08:55:01 +0000 ROA not after: Fri 09 Aug 2024 09:00:01 +0000 asID: 140407 IP address blocks: 103.151.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:c4:65:7f:42:8f:da:92:fd:f9:9a:d6:3d:ea:bb:56:04:a3:f9:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: Aug 11 08:55:01 2023 GMT Not After : Aug 9 09:00:01 2024 GMT Subject: CN=73C1511ADF92BB129C456DAF0C802ED8071D21CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:20:7b:bc:34:ad:e3:af:6a:4c:b5:3b:f2:78: 6d:16:02:3b:71:05:ff:13:13:e7:1a:bf:bc:a5:0e: b9:11:1e:31:a9:ef:1f:e4:5d:90:8f:57:96:bc:5f: 9f:b3:16:1e:40:65:50:2f:16:51:12:1c:37:85:1f: af:41:fd:85:09:fd:00:7d:ea:1a:7a:a5:9f:82:09: 81:0e:4f:22:68:b4:69:de:00:2f:bc:39:23:e7:70: 75:fe:ca:56:4c:d1:ba:3e:e1:40:6d:77:8e:76:bb: 4a:7e:0d:07:2d:5f:61:f8:6e:b9:a6:85:79:78:75: b1:7a:df:db:8e:e5:6d:23:ab:21:96:f9:10:9b:06: db:50:bf:02:b2:68:d5:32:a7:5e:86:24:95:86:e7: 92:60:9d:01:8c:9f:66:ef:36:ed:4b:ef:a9:6a:9b: 23:d7:1d:3a:cd:fd:4e:0a:9c:56:0c:8c:dc:83:78: a5:91:19:ca:a6:e4:9d:8a:af:b3:f3:bd:93:f2:d2: e5:26:f2:0a:3b:d2:03:ea:44:cb:49:62:b5:eb:a8: 96:51:ab:c7:9d:5f:38:85:06:d3:ab:87:3e:f8:a5: 3f:01:33:f1:37:ab:e0:9d:63:04:57:c2:4c:0c:9e: 85:e5:71:23:d7:44:f7:75:b6:7a:16:0c:02:f4:6e: ca:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C1:51:1A:DF:92:BB:12:9C:45:6D:AF:0C:80:2E:D8:07:1D:21:CF X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33322e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.32.0/24 Signature Algorithm: sha256WithRSAEncryption 91:05:71:64:20:2e:6b:cb:29:72:af:73:89:97:43:83:e2:e2: f6:ac:dd:4e:7d:b1:54:e0:7f:01:2b:eb:f3:3c:b7:b8:c3:d4: 6c:af:92:1a:c4:39:51:22:cc:28:a9:a6:fc:3e:2e:fe:6f:19: 5c:79:49:00:dd:9b:6a:be:ce:e2:cb:1c:aa:fe:34:20:24:68: 69:78:a9:79:82:c9:78:cb:2e:32:9c:f7:b0:bf:2a:55:a4:33: aa:f8:6f:1b:1b:9a:71:45:0b:68:3f:e8:1d:aa:e5:f9:03:11: 08:c2:0e:3f:20:c6:da:93:07:31:18:16:89:2b:3e:ba:56:43: 35:46:e2:65:05:4a:fb:7c:ef:2f:ea:f9:6e:a7:50:16:7e:5f: 56:bf:64:f8:fb:69:af:24:e6:76:53:c6:06:52:90:0d:c7:d9: 7a:21:ad:79:09:98:3b:17:a0:76:13:d2:3a:16:b2:f5:af:08: e9:99:61:6b:f9:a5:a2:aa:ea:cc:41:32:da:ed:90:5e:4f:0c: 11:99:f7:d5:0e:00:da:d4:75:60:32:2b:3c:a9:08:8f:ee:a2: 2b:39:88:7a:b9:90:58:76:09:8c:49:b3:bc:42:da:08:2f:1d: 15:7c:e0:be:3b:62:c7:e1:4a:8e:5b:d3:63:86:26:a9:93:01: 97:22:61:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMcRlf0KP2pL9+ZrWPeq7VgSj+VkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yMzA4MTEwODU1MDFaFw0yNDA4MDkwOTAwMDFaMDMxMTAvBgNV BAMTKDczQzE1MTFBREY5MkJCMTI5QzQ1NkRBRjBDODAyRUQ4MDcxRDIxQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOIHu8NK3jr2pMtTvyeG0WAjtx Bf8TE+cav7ylDrkRHjGp7x/kXZCPV5a8X5+zFh5AZVAvFlESHDeFH69B/YUJ/QB9 6hp6pZ+CCYEOTyJotGneAC+8OSPncHX+ylZM0bo+4UBtd452u0p+DQctX2H4brmm hXl4dbF639uO5W0jqyGW+RCbBttQvwKyaNUyp16GJJWG55JgnQGMn2bvNu1L76lq myPXHTrN/U4KnFYMjNyDeKWRGcqm5J2Kr7PzvZPy0uUm8go70gPqRMtJYrXrqJZR q8edXziFBtOrhz74pT8BM/E3q+CdYwRXwkwMnoXlcSPXRPd1tnoWDAL0bsrvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc8FRGt+SuxKcRW2vDIAu2AcdIc8wHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMxMzAzMzJlMzEzNTMxMmUzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5cgMA0GCSqG SIb3DQEBCwUAA4IBAQCRBXFkIC5ryylyr3OJl0OD4uL2rN1OfbFU4H8BK+vzPLe4 w9Rsr5IaxDlRIswoqab8Pi7+bxlceUkA3Ztqvs7iyxyq/jQgJGhpeKl5gsl4yy4y nPewvypVpDOq+G8bG5pxRQtoP+gdquX5AxEIwg4/IMbakwcxGBaJKz66VkM1RuJl BUr7fO8v6vlup1AWfl9Wv2T4+2mvJOZ2U8YGUpANx9l6Ia15CZg7F6B2E9I6FrL1 rwjpmWFr+aWiqurMQTLa7ZBeTwwRmffVDgDa1HVgMis8qQiP7qIrOYh6uZBYdgmM SbO8QtoILx0VfOC+O2LH4UqOW9NjhiapkwGXImFk -----END CERTIFICATE-----Generated at Sat Jun 22 04:48:36 2024 by rpki-client on console-ams.rpki-client.org