$ rpki-client -vvf repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133342e302f32332d3233203d3e20313430343634.roa File: 3130332e3135332e3133342e302f32332d3233203d3e20313430343634.roa (raw, json) Hash identifier: WKNn5OyQgh87gI732DEqswLFtWO4fs3+ioZ9A+y2W3g= Subject key identifier: B1:E1:80:FA:2F:BB:22:52:FF:88:CF:09:0D:39:09:39:A3:BD:F1:06 Certificate issuer: /CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Certificate serial: 253943632C1255506ABF4E6BD18D24FACF5C6246 Authority key identifier: B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133342e302f32332d3233203d3e20313430343634.roa Signing time: Tue 17 Oct 2023 11:00:01 +0000 ROA not before: Tue 17 Oct 2023 10:55:01 +0000 ROA not after: Tue 15 Oct 2024 11:00:01 +0000 asID: 140464 IP address blocks: 103.153.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:39:43:63:2c:12:55:50:6a:bf:4e:6b:d1:8d:24:fa:cf:5c:62:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Validity Not Before: Oct 17 10:55:01 2023 GMT Not After : Oct 15 11:00:01 2024 GMT Subject: CN=B1E180FA2FBB2252FF88CF090D390939A3BDF106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:43:ed:2b:84:dd:e1:72:d1:32:a1:50:8c:d0: d1:5d:be:6f:95:ae:a8:75:33:d5:f6:0c:4e:87:90: 2c:c7:c1:1b:db:c9:da:a6:62:48:aa:5a:c2:c7:70: 12:31:12:54:dc:d7:db:dd:4a:6b:87:a3:31:7c:ce: 00:ce:d9:10:9a:2a:dc:84:c5:7e:b2:d2:a6:ff:26: 04:2d:c6:dc:77:fc:ce:e5:6b:c5:12:06:31:00:2e: bb:57:64:e5:62:9d:db:0b:c3:ee:7f:61:4a:2b:c3: d9:0c:dd:34:85:36:12:7a:10:84:7f:b9:98:3f:1a: dc:56:d6:8e:1a:ea:54:35:c7:1e:9b:7e:b5:d7:c7: e9:44:33:23:55:c9:b3:33:63:31:09:51:7e:d7:68: 9f:66:d0:e9:22:43:22:46:e3:dd:bf:57:6d:38:48: 39:07:38:eb:28:14:ce:d2:2c:de:de:ec:75:01:73: 19:19:23:3d:da:f5:a9:2d:61:43:28:ee:fe:82:1b: d9:6a:e7:96:fc:f7:bb:99:8f:16:85:9a:31:55:b7: fd:8a:66:c8:a1:6d:28:19:62:cf:94:87:f3:d8:eb: e9:f5:fe:dd:ed:30:49:19:c4:09:1c:30:fe:8e:e2: 29:2d:11:9e:f2:36:ec:69:d9:d1:bb:79:07:88:47: 13:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:E1:80:FA:2F:BB:22:52:FF:88:CF:09:0D:39:09:39:A3:BD:F1:06 X509v3 Authority Key Identifier: keyid:B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133342e302f32332d3233203d3e20313430343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.134.0/23 Signature Algorithm: sha256WithRSAEncryption b8:6d:db:a6:e5:a7:00:45:43:f3:25:f3:b1:14:9d:61:f3:c2: 7d:c4:94:26:f1:ee:26:e8:a6:2e:a5:15:7e:21:93:be:ca:53: 43:64:11:d6:10:40:36:e4:82:f4:bc:bd:d5:71:21:6e:71:2a: b9:8c:cb:84:55:7b:72:b7:d4:72:cf:f7:12:72:f2:f1:4f:77: 06:15:86:14:d1:94:0a:90:1b:57:f6:9f:2f:1b:62:c7:22:df: f3:0f:97:49:22:26:3f:12:17:9e:dc:7b:c5:88:a3:82:ee:c4: 1d:12:33:98:96:1f:e9:85:0d:d0:55:79:20:d5:e7:76:df:31: cd:84:0e:65:5f:e3:0c:ba:ef:5d:ef:f9:84:b9:99:cd:21:a3: e5:69:1f:89:00:b1:07:5e:35:32:d3:e0:ee:d5:25:04:54:73: a3:1b:86:ad:f2:bc:62:b3:f7:0e:0f:07:d1:da:1c:49:d6:3e: 62:fb:75:0d:a7:ad:04:c5:84:19:06:32:96:64:67:5f:35:f1: 3d:5f:06:24:f4:46:43:e4:2a:7c:7a:c0:24:cd:34:6d:f3:79: 06:73:ed:26:98:a4:3a:a0:44:e8:68:eb:3e:ab:7c:83:c2:04: 3e:d0:de:43:ae:26:e3:c3:af:8e:c8:a3:8b:dc:27:a9:a1:34: 4e:73:40:49 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJTlDYywSVVBqv05r0Y0k+s9cYkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2 NDdCNTM5MDAeFw0yMzEwMTcxMDU1MDFaFw0yNDEwMTUxMTAwMDFaMDMxMTAvBgNV BAMTKEIxRTE4MEZBMkZCQjIyNTJGRjg4Q0YwOTBEMzkwOTM5QTNCREYxMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Q+0rhN3hctEyoVCM0NFdvm+V rqh1M9X2DE6HkCzHwRvbydqmYkiqWsLHcBIxElTc19vdSmuHozF8zgDO2RCaKtyE xX6y0qb/JgQtxtx3/M7la8USBjEALrtXZOVindsLw+5/YUorw9kM3TSFNhJ6EIR/ uZg/GtxW1o4a6lQ1xx6bfrXXx+lEMyNVybMzYzEJUX7XaJ9m0OkiQyJG492/V204 SDkHOOsoFM7SLN7e7HUBcxkZIz3a9aktYUMo7v6CG9lq55b897uZjxaFmjFVt/2K ZsihbSgZYs+Uh/PY6+n1/t3tMEkZxAkcMP6O4iktEZ7yNuxp2dG7eQeIRxOTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUseGA+i+7IlL/iM8JDTkJOaO98QYwHwYDVR0j BBgwFoAUstHL0BWkGQEIReb1bYOFyGR7U5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiZTkwNS1mMjk2LTQ1ZDEtYTg3OS00YTRkZTUyY2IyZDYvMC9CMkQxQ0JEMDE1 QTQxOTAxMDg0NUU2RjU2RDgzODVDODY0N0I1MzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2NDdC NTM5MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJlOTA1LWYyOTYtNDVkMS1h ODc5LTRhNGRlNTJjYjJkNi8wLzMxMzAzMzJlMzEzNTMzMmUzMTMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmYYwDQYJ KoZIhvcNAQELBQADggEBALht26blpwBFQ/Ml87EUnWHzwn3ElCbx7ibopi6lFX4h k77KU0NkEdYQQDbkgvS8vdVxIW5xKrmMy4RVe3K31HLP9xJy8vFPdwYVhhTRlAqQ G1f2ny8bYsci3/MPl0kiJj8SF57ce8WIo4LuxB0SM5iWH+mFDdBVeSDV53bfMc2E DmVf4wy6713v+YS5mc0ho+VpH4kAsQdeNTLT4O7VJQRUc6Mbhq3yvGKz9w4PB9Ha HEnWPmL7dQ2nrQTFhBkGMpZkZ1818T1fBiT0RkPkKnx6wCTNNG3zeQZz7SaYpDqg ROho6z6rfIPCBD7Q3kOuJuPDr47Io4vcJ6mhNE5zQEk= -----END CERTIFICATE-----Generated at Sat Jun 22 13:04:58 2024 by rpki-client on console-ams.rpki-client.org