$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa File: 3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: Ajs0oeSJ1F5XaSlVUwLmLLfBLVeTSCV1U28fgOh9WpM= Subject key identifier: D3:F7:EA:B6:58:DB:9B:60:10:15:C6:1E:46:BB:AD:3C:7F:12:BE:12 Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 23B8153FD9EB00D28F324BAF5900EA78E0D2EC1D Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa Signing time: Fri 11 Aug 2023 09:00:01 +0000 ROA not before: Fri 11 Aug 2023 08:55:01 +0000 ROA not after: Fri 09 Aug 2024 09:00:01 +0000 asID: 140407 IP address blocks: 103.151.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:b8:15:3f:d9:eb:00:d2:8f:32:4b:af:59:00:ea:78:e0:d2:ec:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: Aug 11 08:55:01 2023 GMT Not After : Aug 9 09:00:01 2024 GMT Subject: CN=D3F7EAB658DB9B601015C61E46BBAD3C7F12BE12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:20:9b:5d:63:45:96:ff:c2:59:61:9c:09:0f: 86:6d:a9:2c:9f:23:dd:2d:43:e6:1e:42:7f:f5:b3: c6:7f:1d:a7:14:b2:9e:c7:28:c0:28:d7:04:12:ed: 3a:4f:0a:60:74:28:ba:6f:8e:6a:ed:5d:38:fe:30: 2a:47:9f:73:ed:e4:14:39:00:96:f3:fb:a8:9f:cf: 29:a7:74:f0:ff:14:f4:0c:17:e3:2c:6c:c5:78:26: 58:d0:69:96:0b:8f:db:ca:75:7c:ab:19:82:f5:ba: eb:c8:df:fe:c9:f5:bf:a7:27:fd:52:f8:7d:27:23: e0:bb:e3:cf:9d:59:c3:f1:dc:77:d8:2a:bf:b3:3f: 6d:b8:53:4c:42:4f:9d:a0:a6:e6:af:d9:c2:e9:95: 5c:9c:ad:b8:ea:d9:9b:90:b8:45:53:97:34:3a:2c: c2:08:6c:d5:3a:d4:7a:cb:3b:88:33:bd:87:58:05: 54:3d:97:58:b2:36:68:7b:48:f7:c0:46:ca:df:ac: 02:80:3a:05:cc:83:ea:2f:c9:a3:7c:b7:1e:05:c8: 9e:ea:96:09:70:57:8a:13:f0:b3:4a:fe:0d:b8:f9: d0:9e:9e:9f:95:4b:88:ff:11:b1:13:82:cf:06:7d: a6:55:9f:1e:70:a0:0a:20:dc:f8:95:09:c4:c6:4a: b6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F7:EA:B6:58:DB:9B:60:10:15:C6:1E:46:BB:AD:3C:7F:12:BE:12 X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.33.0/24 Signature Algorithm: sha256WithRSAEncryption 54:fb:00:ed:da:17:14:83:ae:83:83:48:4f:bf:39:c3:d0:70: f2:ff:b4:ec:be:30:db:5c:e2:4e:fd:26:db:dc:00:22:1a:d7: b9:0d:37:e0:c4:f6:fb:47:fa:ca:ed:42:79:d7:17:c0:3f:4a: cc:bc:6e:37:c8:d8:be:b2:96:ae:e2:b0:90:02:d7:91:e5:46: 94:4e:74:e4:94:74:47:6d:c1:18:f2:45:9e:06:3a:5f:85:cf: 36:a3:79:24:c2:00:be:44:f0:7b:ec:e8:d1:66:41:3e:31:82: 59:37:7c:ef:a4:79:6e:52:c7:fc:85:4e:00:99:db:c4:95:90: c0:c9:9f:59:98:e0:7a:a6:7b:81:af:93:83:ee:0a:c2:c2:64: db:b7:a2:a7:b5:f7:7c:50:db:67:69:1f:d2:54:52:18:76:1d: 1c:7b:bf:b3:37:50:a8:74:99:54:4b:cc:04:8d:27:62:e6:8d: f0:a0:6c:11:c3:61:e1:75:cf:9a:76:8d:c0:82:e7:a1:a4:be: 47:3e:bd:3c:48:92:46:05:db:13:f9:fe:08:e9:40:b3:ae:bf: 46:f9:de:15:58:e8:26:35:d3:37:bb:a9:02:50:f0:8f:32:bf: d8:12:79:34:9c:27:92:b6:21:49:42:d7:92:2b:93:cf:cd:54: 93:32:d6:9e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI7gVP9nrANKPMkuvWQDqeODS7B0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yMzA4MTEwODU1MDFaFw0yNDA4MDkwOTAwMDFaMDMxMTAvBgNV BAMTKEQzRjdFQUI2NThEQjlCNjAxMDE1QzYxRTQ2QkJBRDNDN0YxMkJFMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpIJtdY0WW/8JZYZwJD4ZtqSyf I90tQ+YeQn/1s8Z/HacUsp7HKMAo1wQS7TpPCmB0KLpvjmrtXTj+MCpHn3Pt5BQ5 AJbz+6ifzymndPD/FPQMF+MsbMV4JljQaZYLj9vKdXyrGYL1uuvI3/7J9b+nJ/1S +H0nI+C748+dWcPx3HfYKr+zP224U0xCT52gpuav2cLplVycrbjq2ZuQuEVTlzQ6 LMIIbNU61HrLO4gzvYdYBVQ9l1iyNmh7SPfARsrfrAKAOgXMg+ovyaN8tx4FyJ7q lglwV4oT8LNK/g24+dCenp+VS4j/EbETgs8GfaZVnx5woAog3PiVCcTGSrY7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0/fqtljbm2AQFcYeRrutPH8SvhIwHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMxMzAzMzJlMzEzNTMxMmUzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5chMA0GCSqG SIb3DQEBCwUAA4IBAQBU+wDt2hcUg66Dg0hPvznD0HDy/7TsvjDbXOJO/Sbb3AAi Gte5DTfgxPb7R/rK7UJ51xfAP0rMvG43yNi+spau4rCQAteR5UaUTnTklHRHbcEY 8kWeBjpfhc82o3kkwgC+RPB77OjRZkE+MYJZN3zvpHluUsf8hU4AmdvElZDAyZ9Z mOB6pnuBr5OD7grCwmTbt6Kntfd8UNtnaR/SVFIYdh0ce7+zN1CodJlUS8wEjSdi 5o3woGwRw2Hhdc+ado3AguehpL5HPr08SJJGBdsT+f4I6UCzrr9G+d4VWOgmNdM3 u6kCUPCPMr/YEnk0nCeStiFJQteSK5PPzVSTMtae -----END CERTIFICATE-----Generated at Sat Jun 22 05:13:18 2024 by rpki-client on console-fra.rpki-client.org