$ rpki-client -vvf repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32322d3232203d3e203137373237.roa File: 3130332e3130352e3132382e302f32322d3232203d3e203137373237.roa (raw, json) Hash identifier: kuQpvnhSFjMMRto4cyPzjnw8Q9k25Bs/mgkDx4LdiyM= Subject key identifier: 8C:B4:09:C9:93:21:90:F6:4F:28:5D:93:84:5F:54:4A:18:B9:32:71 Certificate issuer: /CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Certificate serial: 3CB970A1130C1CB9C0F9E0C390405B303870052A Authority key identifier: FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32322d3232203d3e203137373237.roa Signing time: Wed 08 Nov 2023 06:00:02 +0000 ROA not before: Wed 08 Nov 2023 05:55:02 +0000 ROA not after: Wed 06 Nov 2024 06:00:02 +0000 asID: 17727 IP address blocks: 103.105.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:b9:70:a1:13:0c:1c:b9:c0:f9:e0:c3:90:40:5b:30:38:70:05:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Validity Not Before: Nov 8 05:55:02 2023 GMT Not After : Nov 6 06:00:02 2024 GMT Subject: CN=8CB409C9932190F64F285D93845F544A18B93271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:25:27:ff:4a:2e:25:1b:18:86:91:4e:6b:f9: 14:cc:37:7f:37:99:d6:71:f7:c9:f0:1d:47:95:ec: a6:a1:25:a2:95:11:7e:ca:27:0e:50:15:be:06:6d: bd:18:30:12:7a:56:ff:58:09:b1:36:09:4f:bc:6f: e4:1e:24:51:b1:f3:05:75:2b:be:29:ec:2a:d1:21: d0:bc:cd:92:87:5f:36:36:6f:5c:04:47:52:be:74: 49:6c:e1:70:ba:51:be:3b:be:77:fc:f0:2f:89:da: b9:9f:75:cc:29:bc:fb:03:84:84:82:2f:47:26:4d: bf:fb:12:41:3c:91:9f:9d:d2:22:ae:41:f4:cb:4d: 16:a8:d9:90:76:c8:fd:cd:d0:60:dd:b9:56:7e:62: c3:a8:22:90:e3:00:b6:7c:1c:9e:11:e8:85:f8:7b: de:9e:cb:5e:82:d5:3f:e6:00:c1:b3:dd:6d:0e:ac: a2:0f:14:b8:2e:aa:f3:12:94:18:06:39:ac:12:7d: 9d:61:d5:3f:68:9d:46:4c:71:96:93:dd:84:15:22: 45:17:00:6c:94:7a:a2:d6:4e:a9:d1:20:b0:40:f7: ee:8e:13:b5:9c:16:c9:94:2d:ff:03:02:8b:ff:21: ba:07:5b:33:1b:28:6c:6f:ed:42:68:c1:28:5f:01: ed:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B4:09:C9:93:21:90:F6:4F:28:5D:93:84:5F:54:4A:18:B9:32:71 X509v3 Authority Key Identifier: keyid:FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32322d3232203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.128.0/22 Signature Algorithm: sha256WithRSAEncryption 59:79:22:d0:85:a8:81:82:28:f0:86:33:69:db:e1:c3:62:dd: 1f:df:a4:52:e0:e3:0b:95:e8:93:14:7e:4f:3f:c2:f6:31:59: ec:50:27:6c:a5:02:ce:95:3a:e7:58:72:e4:65:ed:b2:e9:60: 5e:30:f9:19:58:99:b3:ac:2a:b0:7f:b7:24:ea:ff:91:2a:e5: 6a:d1:da:d7:10:34:05:4b:c5:dc:55:e2:02:69:7b:79:76:e2: 86:8a:cc:b0:f1:95:f1:d9:85:6e:03:1b:f3:ab:12:57:4d:2b: 8e:fb:42:bb:ff:5d:70:8d:f6:32:c6:c3:7b:8b:30:8e:a0:5c: 55:ba:d0:3f:2c:77:ee:18:1d:86:c7:cd:05:14:62:53:d2:b9: 6b:81:f5:0d:58:ae:6f:b8:48:8c:8b:11:53:80:36:a9:28:d6: 5b:65:08:e1:31:1e:7d:ec:ff:45:68:2e:0d:5c:df:39:5e:05: af:3d:a9:61:e5:fb:b7:24:f9:95:34:b8:47:a5:2b:fd:79:31: da:a3:1d:41:91:db:86:56:ef:5e:cf:8e:76:c2:97:9a:ef:a3: 81:c4:a5:77:69:c9:9d:96:e8:8b:d2:8d:84:5c:88:c3:30:8e: c4:e3:69:fb:54:69:fb:24:f5:90:df:7c:f8:b7:8a:31:f2:39: 83:dd:83:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPLlwoRMMHLnA+eDDkEBbMDhwBSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlG N0VGNDc4NTAeFw0yMzExMDgwNTU1MDJaFw0yNDExMDYwNjAwMDJaMDMxMTAvBgNV BAMTKDhDQjQwOUM5OTMyMTkwRjY0RjI4NUQ5Mzg0NUY1NDRBMThCOTMyNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDJSf/Si4lGxiGkU5r+RTMN383 mdZx98nwHUeV7KahJaKVEX7KJw5QFb4Gbb0YMBJ6Vv9YCbE2CU+8b+QeJFGx8wV1 K74p7CrRIdC8zZKHXzY2b1wER1K+dEls4XC6Ub47vnf88C+J2rmfdcwpvPsDhISC L0cmTb/7EkE8kZ+d0iKuQfTLTRao2ZB2yP3N0GDduVZ+YsOoIpDjALZ8HJ4R6IX4 e96ey16C1T/mAMGz3W0OrKIPFLguqvMSlBgGOawSfZ1h1T9onUZMcZaT3YQVIkUX AGyUeqLWTqnRILBA9+6OE7WcFsmULf8DAov/IboHWzMbKGxv7UJowShfAe0HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjLQJyZMhkPZPKF2ThF9UShi5MnEwHwYDVR0j BBgwFoAU/thV3VBdJLb+Jb2GVilzKffvR4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYxZDdhNy1hMTFlLTQwMGItOTE3MC1jNzk3ZWQ4OGQ3MDIvMC9GRUQ4NTVERDUw NUQyNEI2RkUyNUJEODY1NjI5NzMyOUY3RUY0Nzg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlGN0VG NDc4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjFkN2E3LWExMWUtNDAwYi05 MTcwLWM3OTdlZDg4ZDcwMi8wLzMxMzAzMzJlMzEzMDM1MmUzMTMyMzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2mAMA0GCSqG SIb3DQEBCwUAA4IBAQBZeSLQhaiBgijwhjNp2+HDYt0f36RS4OMLleiTFH5PP8L2 MVnsUCdspQLOlTrnWHLkZe2y6WBeMPkZWJmzrCqwf7ck6v+RKuVq0drXEDQFS8Xc VeICaXt5duKGisyw8ZXx2YVuAxvzqxJXTSuO+0K7/11wjfYyxsN7izCOoFxVutA/ LHfuGB2Gx80FFGJT0rlrgfUNWK5vuEiMixFTgDapKNZbZQjhMR597P9FaC4NXN85 XgWvPalh5fu3JPmVNLhHpSv9eTHaox1BkduGVu9ez452wpea76OBxKV3acmdluiL 0o2EXIjDMI7E42n7VGn7JPWQ33z4t4ox8jmD3YNF -----END CERTIFICATE-----Generated at Wed May 1 07:05:32 2024 by rpki-client on console-fra.rpki-client.org