$ rpki-client -vvf repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32342d3234203d3e203634333030.roa File: 3130332e3135332e3134382e302f32342d3234203d3e203634333030.roa (raw, json) Hash identifier: /QwBSUcClfdGNxGqPsdGHAdR/dM8K9tfYQRu0jcGTlU= Subject key identifier: 9D:E0:D6:76:4E:5F:22:1D:EA:94:36:85:12:43:1D:BE:71:0F:2F:A2 Certificate issuer: /CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89 Certificate serial: 223BF2D389228B15B8683FE5B4C05E16E085316C Authority key identifier: 92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32342d3234203d3e203634333030.roa Signing time: Mon 31 Jul 2023 00:08:16 +0000 ROA not before: Mon 31 Jul 2023 00:03:16 +0000 ROA not after: Mon 29 Jul 2024 00:08:16 +0000 asID: 64300 IP address blocks: 103.153.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:3b:f2:d3:89:22:8b:15:b8:68:3f:e5:b4:c0:5e:16:e0:85:31:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89 Validity Not Before: Jul 31 00:03:16 2023 GMT Not After : Jul 29 00:08:16 2024 GMT Subject: CN=9DE0D6764E5F221DEA94368512431DBE710F2FA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:81:0f:18:95:84:76:7a:9d:04:86:18:d0:f8: a1:59:f6:6c:df:f4:0b:ed:d8:9e:ce:36:07:b4:bf: ab:00:af:00:20:1f:8e:60:9e:f5:e3:d9:e6:4b:3a: da:be:20:ab:09:1f:c2:8e:30:53:22:53:a0:d4:f8: 2b:64:23:e5:db:e4:1b:89:f4:78:1e:32:27:24:9d: 4e:b6:72:c6:6f:87:f7:f8:31:eb:06:68:c8:7c:b5: 40:05:14:c7:63:77:90:f0:e9:54:d6:d9:d1:f5:c2: 4a:fd:17:42:c2:e4:f2:d9:99:ed:fc:54:58:57:95: 28:70:de:5e:ce:47:59:14:1d:91:53:a9:69:9a:0c: 81:be:38:62:b6:58:a9:0c:a8:df:55:82:bf:e6:23: c8:08:82:bc:13:a4:df:4b:6d:71:90:ee:36:a2:92: 7c:0d:3a:7b:c3:79:79:cd:92:c0:fe:3f:12:28:9c: d8:88:53:e6:1d:b5:cb:21:47:09:d6:da:c1:fa:9f: ac:a2:cc:43:94:e7:0e:2f:88:71:4d:50:0f:a5:a1: 04:c5:9f:17:4b:f8:58:d5:2e:34:59:fe:28:fa:2a: fe:2e:91:18:51:05:68:f1:39:75:2d:12:19:ac:5f: c0:66:16:3a:2b:9d:f7:fd:0b:c8:00:d1:66:88:4a: 28:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E0:D6:76:4E:5F:22:1D:EA:94:36:85:12:43:1D:BE:71:0F:2F:A2 X509v3 Authority Key Identifier: keyid:92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32342d3234203d3e203634333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.148.0/24 Signature Algorithm: sha256WithRSAEncryption 08:43:f4:72:c6:63:09:b4:38:64:dc:52:bc:dc:c0:61:d2:c9: e8:45:1b:37:2e:18:78:3d:90:26:59:4a:d5:94:60:30:36:26: fb:f6:7e:82:6c:ab:de:0d:f7:ab:dc:51:67:cb:b9:7d:0f:c6: 65:0d:a6:80:a7:6d:e9:88:7e:df:1f:61:7c:51:ca:f5:06:31: a7:46:0d:46:e6:f7:18:a0:e6:e2:2d:71:ec:60:5e:a8:87:a8: f1:03:d2:02:5b:e0:e4:57:2f:8b:69:39:6c:37:53:3b:e0:dd: 41:15:a0:14:40:73:8c:a3:e1:8c:24:21:40:82:ac:24:5d:a2: f8:ae:26:de:a7:f2:d1:4d:32:35:07:7e:cc:d4:93:8f:e9:98: 44:36:11:b4:32:c8:2f:cf:6f:d0:3f:08:2f:ff:1c:e6:a9:5c: ff:b6:d7:0a:36:e1:39:91:b7:06:d9:b7:98:c1:28:25:46:2d: 52:a9:c6:a4:8d:af:23:fb:28:37:87:a2:26:db:6d:f2:db:b7: 22:3e:32:37:df:79:a9:32:75:d6:84:6d:3d:b2:9a:cb:97:66: 85:d9:9b:ff:de:dc:7d:03:34:7c:18:0d:a4:c6:3f:5b:27:96: 38:78:9e:a6:3f:a1:9b:0b:0e:f4:e3:6c:02:8e:d3:5b:68:60: fd:e1:64:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIjvy04kiixW4aD/ltMBeFuCFMWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTJFNkNBNjgzQUZBMThFQTAzMTlERUMxN0RERjUzRTBE RTE0RkQ4OTAeFw0yMzA3MzEwMDAzMTZaFw0yNDA3MjkwMDA4MTZaMDMxMTAvBgNV BAMTKDlERTBENjc2NEU1RjIyMURFQTk0MzY4NTEyNDMxREJFNzEwRjJGQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhgQ8YlYR2ep0EhhjQ+KFZ9mzf 9Avt2J7ONge0v6sArwAgH45gnvXj2eZLOtq+IKsJH8KOMFMiU6DU+CtkI+Xb5BuJ 9HgeMicknU62csZvh/f4MesGaMh8tUAFFMdjd5Dw6VTW2dH1wkr9F0LC5PLZme38 VFhXlShw3l7OR1kUHZFTqWmaDIG+OGK2WKkMqN9Vgr/mI8gIgrwTpN9LbXGQ7jai knwNOnvDeXnNksD+PxIonNiIU+YdtcshRwnW2sH6n6yizEOU5w4viHFNUA+loQTF nxdL+FjVLjRZ/ij6Kv4ukRhRBWjxOXUtEhmsX8BmFjornff9C8gA0WaISig3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUneDWdk5fIh3qlDaFEkMdvnEPL6IwHwYDVR0j BBgwFoAUkubKaDr6GOoDGd7Bfd9T4N4U/YkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDMwNGI2NC0yODk5LTQ4MzAtOWMzYy0zNzU4NGEzMjdlMWUvMC85MkU2Q0E2ODNB RkExOEVBMDMxOURFQzE3RERGNTNFMERFMTRGRDg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTJFNkNBNjgzQUZBMThFQTAzMTlERUMxN0RERjUzRTBERTE0 RkQ4OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0MzA0YjY0LTI4OTktNDgzMC05 YzNjLTM3NTg0YTMyN2UxZS8wLzMxMzAzMzJlMzEzNTMzMmUzMTM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzMzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5mUMA0GCSqG SIb3DQEBCwUAA4IBAQAIQ/RyxmMJtDhk3FK83MBh0snoRRs3Lhh4PZAmWUrVlGAw Nib79n6CbKveDfer3FFny7l9D8ZlDaaAp23piH7fH2F8Ucr1BjGnRg1G5vcYoObi LXHsYF6oh6jxA9ICW+DkVy+LaTlsN1M74N1BFaAUQHOMo+GMJCFAgqwkXaL4ribe p/LRTTI1B37M1JOP6ZhENhG0Msgvz2/QPwgv/xzmqVz/ttcKNuE5kbcG2beYwSgl Ri1Sqcakja8j+yg3h6Im223y27ciPjI333mpMnXWhG09sprLl2aF2Zv/3tx9AzR8 GA2kxj9bJ5Y4eJ6mP6GbCw7042wCjtNbaGD94WQ4 -----END CERTIFICATE-----Generated at Mon May 6 05:55:15 2024 by rpki-client on console-ams.rpki-client.org