$ rpki-client -vvf repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32342d3234203d3e203435333235.roa File: 3130332e3135312e3134302e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: 61hxf4XH14/xTN1dAaTn91xVQ0auHUjg116EWfY8DeA= Subject key identifier: EF:70:DB:2D:5F:FC:FD:65:7E:A1:42:66:F3:2B:6D:D6:01:D7:CB:99 Certificate issuer: /CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Certificate serial: 59CE70C13D40821FE2968FD87FD6B9B53EE0D2B8 Authority key identifier: FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32342d3234203d3e203435333235.roa Signing time: Thu 17 Aug 2023 23:00:00 +0000 ROA not before: Thu 17 Aug 2023 22:55:00 +0000 ROA not after: Thu 15 Aug 2024 23:00:00 +0000 asID: 45325 IP address blocks: 103.151.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ce:70:c1:3d:40:82:1f:e2:96:8f:d8:7f:d6:b9:b5:3e:e0:d2:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Validity Not Before: Aug 17 22:55:00 2023 GMT Not After : Aug 15 23:00:00 2024 GMT Subject: CN=EF70DB2D5FFCFD657EA14266F32B6DD601D7CB99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1e:58:53:3a:3d:69:6c:f4:fd:49:46:31:f3: 1d:c3:3f:ba:1d:e0:4c:3a:f4:ba:bd:10:9d:a9:51: 77:c7:90:2f:26:f0:01:83:f5:c1:57:ad:1d:43:f0: 1d:d8:e2:0f:e5:84:8b:b3:cf:e9:4c:db:a2:e5:93: ef:11:97:12:e4:d1:e1:b6:97:31:f8:bc:a5:98:bd: f0:dc:15:c6:7c:c3:b9:9c:54:45:ad:66:f6:90:12: 0f:01:07:13:31:d4:72:5f:ef:eb:0f:99:6b:2c:cc: 72:2c:13:3b:e2:ea:87:48:87:18:9d:35:80:25:c0: 60:13:a2:15:13:54:86:fb:b8:57:b7:7b:26:dc:45: 7c:be:f0:d5:d2:ec:93:8a:65:f3:af:7d:46:b6:16: 9c:08:9d:73:2f:3f:f9:e0:7b:a7:39:f1:87:37:09: e2:6e:1b:cc:71:a1:2e:94:16:0e:53:48:bf:ae:95: 40:0c:39:fa:a3:12:8f:1d:e2:db:d7:00:af:02:f9: b8:93:09:06:cd:c9:f9:04:48:f9:ab:17:39:7d:3f: ce:c2:77:b7:b9:1f:22:47:37:44:f4:eb:1c:be:fe: 34:7b:8e:ae:03:01:0a:38:80:43:fe:ed:be:a5:1c: d9:14:1b:7d:de:f0:52:37:43:22:39:f0:00:21:fc: 4f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:70:DB:2D:5F:FC:FD:65:7E:A1:42:66:F3:2B:6D:D6:01:D7:CB:99 X509v3 Authority Key Identifier: keyid:FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.140.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:c1:78:ec:45:34:71:e7:81:2e:80:29:24:d9:c3:3f:b0:d3: 89:3d:90:16:c1:15:96:e0:3b:58:7f:ea:e4:58:99:c1:58:9f: 59:de:c1:e1:52:0f:6d:e4:05:10:cd:f6:a1:ed:66:ea:9c:5a: 92:4a:0d:48:94:74:7d:5e:84:60:b3:e4:35:a6:d1:60:f6:19: ac:72:f0:42:cd:41:03:c7:e2:97:62:b2:17:5a:4e:59:28:b4: 29:42:05:2e:ff:9e:1e:48:28:a5:fd:98:9e:13:75:dd:67:a0: f9:d0:01:96:5f:c8:bf:a2:24:db:68:49:b1:f0:85:a8:55:47: ad:75:6c:8f:0b:90:e7:35:fb:6a:1b:84:44:e1:a4:d4:4e:e8: db:f4:43:55:0c:71:55:eb:6e:b0:87:b3:13:a4:fb:c7:d3:ca: e7:24:31:6e:e9:59:98:11:9c:fd:44:b4:41:73:f1:ac:5e:09: 40:c4:93:58:55:e2:df:05:09:3e:17:0e:16:cf:d5:ea:7d:29: 30:13:7b:fe:23:58:e6:3b:92:7b:e8:48:ff:cd:35:19:97:86: 77:a6:a4:3c:58:1f:98:f9:f9:f0:6c:00:d6:e9:d7:34:6a:aa: 3d:27:91:d9:8c:75:1d:fd:66:04:4e:67:b4:64:dd:29:17:ed: 4a:f4:4c:c4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWc5wwT1Agh/ilo/Yf9a5tT7g0rgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZE QjAwNTdCMzAeFw0yMzA4MTcyMjU1MDBaFw0yNDA4MTUyMzAwMDBaMDMxMTAvBgNV BAMTKEVGNzBEQjJENUZGQ0ZENjU3RUExNDI2NkYzMkI2REQ2MDFEN0NCOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpHlhTOj1pbPT9SUYx8x3DP7od 4Ew69Lq9EJ2pUXfHkC8m8AGD9cFXrR1D8B3Y4g/lhIuzz+lM26Llk+8RlxLk0eG2 lzH4vKWYvfDcFcZ8w7mcVEWtZvaQEg8BBxMx1HJf7+sPmWsszHIsEzvi6odIhxid NYAlwGATohUTVIb7uFe3eybcRXy+8NXS7JOKZfOvfUa2FpwInXMvP/nge6c58Yc3 CeJuG8xxoS6UFg5TSL+ulUAMOfqjEo8d4tvXAK8C+biTCQbNyfkESPmrFzl9P87C d7e5HyJHN0T06xy+/jR7jq4DAQo4gEP+7b6lHNkUG33e8FI3QyI58AAh/E95AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU73DbLV/8/WV+oUJm8ytt1gHXy5kwHwYDVR0j BBgwFoAU/NW1Yvrtm51n+d5dtwV4v9sAV7MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NDcwMjZhOS0wYzlhLTRkNzktYWQ2Ny0yYzlkYmQzNjZkMGIvMC9GQ0Q1QjU2MkZB RUQ5QjlENjdGOURFNURCNzA1NzhCRkRCMDA1N0IzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZEQjAw NTdCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0NzAyNmE5LTBjOWEtNGQ3OS1h ZDY3LTJjOWRiZDM2NmQwYi8wLzMxMzAzMzJlMzEzNTMxMmUzMTM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5eMMA0GCSqG SIb3DQEBCwUAA4IBAQBrwXjsRTRx54EugCkk2cM/sNOJPZAWwRWW4DtYf+rkWJnB WJ9Z3sHhUg9t5AUQzfah7WbqnFqSSg1IlHR9XoRgs+Q1ptFg9hmscvBCzUEDx+KX YrIXWk5ZKLQpQgUu/54eSCil/ZieE3XdZ6D50AGWX8i/oiTbaEmx8IWoVUetdWyP C5DnNftqG4RE4aTUTujb9ENVDHFV626wh7MTpPvH08rnJDFu6VmYEZz9RLRBc/Gs XglAxJNYVeLfBQk+Fw4Wz9XqfSkwE3v+I1jmO5J76Ej/zTUZl4Z3pqQ8WB+Y+fnw bADW6dc0aqo9J5HZjHUd/WYETme0ZN0pF+1K9EzE -----END CERTIFICATE-----Generated at Mon May 6 05:55:15 2024 by rpki-client on console-ams.rpki-client.org