$ rpki-client -vvf repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134312e302f32342d3234203d3e203435333235.roa File: 3130332e3135312e3134312e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: aLyobDR5Pw85zlwbOE9VbFfTEvGpMCEKEcsHbj2VKh4= Subject key identifier: 1F:87:A9:C9:9A:7F:D5:E3:2A:8E:AA:56:C8:43:C4:FD:5F:D6:0F:82 Certificate issuer: /CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Certificate serial: 74891E69B5C680AC21287BECBB80E67B32A3B1C5 Authority key identifier: FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134312e302f32342d3234203d3e203435333235.roa Signing time: Wed 26 Jul 2023 09:00:00 +0000 ROA not before: Wed 26 Jul 2023 08:55:00 +0000 ROA not after: Wed 24 Jul 2024 09:00:00 +0000 asID: 45325 IP address blocks: 103.151.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:89:1e:69:b5:c6:80:ac:21:28:7b:ec:bb:80:e6:7b:32:a3:b1:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Validity Not Before: Jul 26 08:55:00 2023 GMT Not After : Jul 24 09:00:00 2024 GMT Subject: CN=1F87A9C99A7FD5E32A8EAA56C843C4FD5FD60F82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:61:fe:7a:26:d3:cd:41:f3:b2:4c:01:7f:cb: 50:0e:c9:cd:9d:09:90:5b:80:a8:e5:f6:0b:a5:3a: 07:6b:bc:e0:f4:c0:c3:53:e3:d2:74:0f:36:ef:43: 66:b4:7b:76:23:4b:c2:25:4a:e0:7b:4d:05:b4:71: 5d:79:b6:95:51:8a:9f:62:1e:88:1e:ba:82:e2:07: a9:63:ca:14:15:61:8b:a7:ba:14:4d:4b:52:8b:bc: ba:9c:16:a4:73:d3:d5:a3:0c:4e:60:18:bc:32:93: bd:50:74:f8:ef:7f:9c:c1:f7:dd:a1:12:ae:34:0e: 2a:a5:d1:0d:60:a7:5b:f7:98:2e:6d:5b:b9:0a:bb: c3:12:6b:01:de:38:1f:05:8c:bc:4a:a7:4e:95:a3: b3:8a:c1:d4:9a:d7:23:91:a5:88:49:03:b6:c0:20: 2f:9f:26:d3:9c:fd:fa:2e:a8:a8:6c:a3:24:79:2f: 58:3c:45:40:c3:50:92:0c:33:47:0f:19:d0:23:d0: 57:a6:37:d5:11:1c:2e:71:50:ad:ca:8e:e9:11:9b: e0:24:48:d1:e2:6a:af:19:8b:6e:20:8e:98:fb:e0: 37:95:30:86:b0:c2:f5:82:1c:5e:74:cc:32:b2:2b: 53:c4:9c:3e:69:e1:19:e3:98:63:54:cb:22:1c:81: 28:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:87:A9:C9:9A:7F:D5:E3:2A:8E:AA:56:C8:43:C4:FD:5F:D6:0F:82 X509v3 Authority Key Identifier: keyid:FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134312e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.141.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:75:7a:97:a2:1a:45:5a:0f:b5:2e:13:d9:ef:ad:02:55:46: 3d:09:78:58:dd:23:49:0f:b3:9c:ad:fd:99:22:53:45:98:80: 9e:17:7a:a2:26:e6:d7:04:3a:b9:5d:a9:36:69:a0:f5:22:c8: 8e:7b:43:23:9a:0d:db:db:42:49:16:ca:42:ef:70:7e:81:17: a0:30:66:38:f6:7d:de:01:02:bb:63:98:a8:6e:27:fd:28:05: ce:ad:f7:3d:f0:54:c8:a6:2c:af:42:77:36:da:0e:54:50:b2: 84:a7:b6:fa:08:05:90:d7:8d:c5:22:f0:5a:25:f0:b1:95:e3: fc:ea:b7:f7:92:37:8f:a4:d1:21:c2:eb:db:f8:30:9f:b2:c5: 53:78:17:19:cb:7c:c9:0e:4d:e0:00:a2:4f:6b:7b:c8:88:27: f1:73:b0:ab:43:e9:5a:ee:7c:e4:03:29:d4:6b:60:e3:21:0b: 81:26:e4:21:3d:d0:cc:04:f4:66:45:c5:c7:4d:de:5c:7b:5a: 0e:98:d6:65:f7:1c:9a:d8:59:6b:b0:d9:3d:98:8b:5c:e4:40: b9:d9:9d:98:6e:2f:4d:7b:c7:30:9e:e8:00:03:28:39:5c:84: 88:6b:86:20:4a:d7:08:1b:8f:a2:30:03:ed:ae:8d:57:c5:4c: 5f:49:8f:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdIkeabXGgKwhKHvsu4DmezKjscUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZE QjAwNTdCMzAeFw0yMzA3MjYwODU1MDBaFw0yNDA3MjQwOTAwMDBaMDMxMTAvBgNV BAMTKDFGODdBOUM5OUE3RkQ1RTMyQThFQUE1NkM4NDNDNEZENUZENjBGODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTYf56JtPNQfOyTAF/y1AOyc2d CZBbgKjl9gulOgdrvOD0wMNT49J0DzbvQ2a0e3YjS8IlSuB7TQW0cV15tpVRip9i HogeuoLiB6ljyhQVYYunuhRNS1KLvLqcFqRz09WjDE5gGLwyk71QdPjvf5zB992h Eq40Diql0Q1gp1v3mC5tW7kKu8MSawHeOB8FjLxKp06Vo7OKwdSa1yORpYhJA7bA IC+fJtOc/fouqKhsoyR5L1g8RUDDUJIMM0cPGdAj0FemN9URHC5xUK3KjukRm+Ak SNHiaq8Zi24gjpj74DeVMIawwvWCHF50zDKyK1PEnD5p4RnjmGNUyyIcgShXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH4epyZp/1eMqjqpWyEPE/V/WD4IwHwYDVR0j BBgwFoAU/NW1Yvrtm51n+d5dtwV4v9sAV7MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NDcwMjZhOS0wYzlhLTRkNzktYWQ2Ny0yYzlkYmQzNjZkMGIvMC9GQ0Q1QjU2MkZB RUQ5QjlENjdGOURFNURCNzA1NzhCRkRCMDA1N0IzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZEQjAw NTdCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0NzAyNmE5LTBjOWEtNGQ3OS1h ZDY3LTJjOWRiZDM2NmQwYi8wLzMxMzAzMzJlMzEzNTMxMmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5eNMA0GCSqG SIb3DQEBCwUAA4IBAQBbdXqXohpFWg+1LhPZ760CVUY9CXhY3SNJD7Ocrf2ZIlNF mICeF3qiJubXBDq5Xak2aaD1IsiOe0Mjmg3b20JJFspC73B+gRegMGY49n3eAQK7 Y5iobif9KAXOrfc98FTIpiyvQnc22g5UULKEp7b6CAWQ143FIvBaJfCxleP86rf3 kjePpNEhwuvb+DCfssVTeBcZy3zJDk3gAKJPa3vIiCfxc7CrQ+la7nzkAynUa2Dj IQuBJuQhPdDMBPRmRcXHTd5ce1oOmNZl9xya2FlrsNk9mItc5EC52Z2Ybi9Ne8cw nugAAyg5XISIa4YgStcIG4+iMAPtro1XxUxfSY+m -----END CERTIFICATE-----Generated at Fri May 3 23:52:42 2024 by rpki-client on console-ams.rpki-client.org