$ rpki-client -vvf repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/3130332e3235332e3232392e302f32342d3234203d3e20313531353532.roa File: 3130332e3235332e3232392e302f32342d3234203d3e20313531353532.roa (raw, json) Hash identifier: fIXo7Q2L05p+/AHzx56vi3xHCfHWLwjjwbQo8BN8NyI= Subject key identifier: DD:AE:72:5A:92:ED:01:EE:5F:39:E1:BE:49:C9:34:54:5F:9E:88:0F Certificate issuer: /CN=9E6AD12E8763F68692055BC4EE5A1741D489D240 Certificate serial: 56073B4145B37103C63CE1937FB36918DD442E0A Authority key identifier: 9E:6A:D1:2E:87:63:F6:86:92:05:5B:C4:EE:5A:17:41:D4:89:D2:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6AD12E8763F68692055BC4EE5A1741D489D240.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/3130332e3235332e3232392e302f32342d3234203d3e20313531353532.roa Signing time: Mon 11 Dec 2023 04:23:00 +0000 ROA not before: Mon 11 Dec 2023 04:18:00 +0000 ROA not after: Mon 09 Dec 2024 04:23:00 +0000 asID: 151552 IP address blocks: 103.253.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/9E6AD12E8763F68692055BC4EE5A1741D489D240.crl rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/9E6AD12E8763F68692055BC4EE5A1741D489D240.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6AD12E8763F68692055BC4EE5A1741D489D240.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 06:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:07:3b:41:45:b3:71:03:c6:3c:e1:93:7f:b3:69:18:dd:44:2e:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6AD12E8763F68692055BC4EE5A1741D489D240 Validity Not Before: Dec 11 04:18:00 2023 GMT Not After : Dec 9 04:23:00 2024 GMT Subject: CN=DDAE725A92ED01EE5F39E1BE49C934545F9E880F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:55:37:af:ad:f3:5d:44:d6:f5:b1:d6:0e:68: f3:bd:b2:32:8b:7c:2d:13:03:cf:fe:f8:33:8e:6e: 9e:9e:08:07:34:0e:7a:c3:1e:3d:90:7e:b8:13:2b: e1:36:a8:bf:0b:5a:96:f6:69:c0:dd:30:00:26:34: d2:0a:65:62:06:85:c7:de:82:8b:61:b8:98:f7:04: 7b:2d:96:8b:b3:bb:e9:52:3a:e2:32:22:9e:63:5a: 3c:e0:d6:b2:6c:bd:f0:df:88:ec:a6:28:2e:62:04: 1f:7e:22:63:4e:8d:a8:31:da:85:46:33:c5:a6:4d: 4d:e0:a4:bb:5e:c0:93:e6:56:99:67:ff:a0:40:64: 0d:63:65:ac:e9:74:6e:db:8c:07:49:1e:6d:25:f3: 08:0a:fa:0c:34:03:a2:64:fd:0f:c0:9a:01:a8:90: d9:d0:04:d8:fc:cb:0e:d1:29:71:67:77:6a:6b:e4: dc:7c:a6:43:f3:fc:ab:20:84:10:31:23:b1:61:c1: 8a:a3:cc:ab:6b:40:d1:72:80:6b:a6:ca:8b:08:68: 52:1d:2c:cc:05:b9:7a:e9:3b:ad:c0:02:0d:a5:f5: d1:b5:a4:83:1d:91:00:e3:1a:c3:c9:c4:e9:b1:b0: 45:fa:f9:86:90:b4:23:df:cd:2c:58:56:35:af:75: 8a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:AE:72:5A:92:ED:01:EE:5F:39:E1:BE:49:C9:34:54:5F:9E:88:0F X509v3 Authority Key Identifier: keyid:9E:6A:D1:2E:87:63:F6:86:92:05:5B:C4:EE:5A:17:41:D4:89:D2:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/9E6AD12E8763F68692055BC4EE5A1741D489D240.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6AD12E8763F68692055BC4EE5A1741D489D240.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/3130332e3235332e3232392e302f32342d3234203d3e20313531353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.229.0/24 Signature Algorithm: sha256WithRSAEncryption 55:78:27:e5:56:79:f3:62:c9:04:fa:7a:1f:d7:b6:c6:9c:1f: df:2c:ee:04:b7:c1:c5:ed:6c:13:6d:b5:f9:12:a3:e9:ca:bb: 8c:36:50:b4:a9:9d:31:8a:d6:a6:4e:54:22:ce:3c:cb:35:e4: bf:ea:3e:fa:2a:93:3c:f9:71:b8:da:1c:75:b2:0f:2b:47:d1: cf:b3:59:56:61:c2:dd:4e:b6:72:a1:37:3e:e4:d0:7f:af:94: 8a:c2:4e:24:36:c4:4f:3a:1c:a9:a3:15:2c:d3:e6:4e:2a:79: cf:23:be:ff:bb:45:b0:32:55:ab:a3:f1:93:fa:34:e3:03:53: b6:bd:19:52:c2:4a:82:7c:b9:b6:7f:94:69:24:42:04:c0:bd: 19:2f:63:ee:6e:e4:1b:2d:93:f4:91:dc:a7:0e:b0:e8:88:61: 20:aa:66:fb:24:c0:88:27:0c:f3:0a:01:2b:3e:98:70:24:ea: a0:d7:43:5f:7b:68:74:a2:58:76:48:a5:29:36:3c:16:d5:1c: 85:c4:9e:2a:49:e6:6b:19:17:7b:72:c1:08:f9:f3:b9:15:db: c1:0f:27:c3:4e:f8:6d:17:bc:84:e3:75:e9:62:76:82:28:73: e2:93:58:04:54:a1:30:37:9b:b8:85:76:8c:75:e6:a6:ba:24: 1b:b0:da:04 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVgc7QUWzcQPGPOGTf7NpGN1ELgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2QUQxMkU4NzYzRjY4NjkyMDU1QkM0RUU1QTE3NDFE NDg5RDI0MDAeFw0yMzEyMTEwNDE4MDBaFw0yNDEyMDkwNDIzMDBaMDMxMTAvBgNV BAMTKEREQUU3MjVBOTJFRDAxRUU1RjM5RTFCRTQ5QzkzNDU0NUY5RTg4MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkVTevrfNdRNb1sdYOaPO9sjKL fC0TA8/++DOObp6eCAc0DnrDHj2QfrgTK+E2qL8LWpb2acDdMAAmNNIKZWIGhcfe gothuJj3BHstlouzu+lSOuIyIp5jWjzg1rJsvfDfiOymKC5iBB9+ImNOjagx2oVG M8WmTU3gpLtewJPmVpln/6BAZA1jZazpdG7bjAdJHm0l8wgK+gw0A6Jk/Q/AmgGo kNnQBNj8yw7RKXFnd2pr5Nx8pkPz/KsghBAxI7FhwYqjzKtrQNFygGumyosIaFId LMwFuXrpO63AAg2l9dG1pIMdkQDjGsPJxOmxsEX6+YaQtCPfzSxYVjWvdYo3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3a5yWpLtAe5fOeG+Sck0VF+eiA8wHwYDVR0j BBgwFoAUnmrRLodj9oaSBVvE7loXQdSJ0kAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2QxNWQ1My1hNGI0LTQ0MzUtYTFkYS01MmQwMjEyZWYzM2QvMC85RTZBRDEyRTg3 NjNGNjg2OTIwNTVCQzRFRTVBMTc0MUQ0ODlEMjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2QUQxMkU4NzYzRjY4NjkyMDU1QkM0RUU1QTE3NDFENDg5 RDI0MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZDE1ZDUzLWE0YjQtNDQzNS1h MWRhLTUyZDAyMTJlZjMzZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn/eUwDQYJ KoZIhvcNAQELBQADggEBAFV4J+VWefNiyQT6eh/XtsacH98s7gS3wcXtbBNttfkS o+nKu4w2ULSpnTGK1qZOVCLOPMs15L/qPvoqkzz5cbjaHHWyDytH0c+zWVZhwt1O tnKhNz7k0H+vlIrCTiQ2xE86HKmjFSzT5k4qec8jvv+7RbAyVauj8ZP6NOMDU7a9 GVLCSoJ8ubZ/lGkkQgTAvRkvY+5u5Bstk/SR3KcOsOiIYSCqZvskwIgnDPMKASs+ mHAk6qDXQ197aHSiWHZIpSk2PBbVHIXEnipJ5msZF3tywQj587kV28EPJ8NO+G0X vITjdelidoIoc+KTWARUoTA3m7iFdox15qa6JBuw2gQ= -----END CERTIFICATE-----Generated at Sat Jun 1 01:58:23 2024 by rpki-client on console-ams.rpki-client.org