$ rpki-client -vvf repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132392e302f32342d3234203d3e203137373237.roa File: 3130332e3130352e3132392e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: exIQRrxuLRKeqE4xfRZk9+7GkA+crdT165TAMj6o/vo= Subject key identifier: 23:95:8F:EF:74:87:F0:EE:90:15:BD:E3:C1:3B:6A:3B:7E:FD:3D:CD Certificate issuer: /CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Certificate serial: 141C014A5AFB5736BF6A0743A0904D15A506714B Authority key identifier: FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132392e302f32342d3234203d3e203137373237.roa Signing time: Wed 08 Nov 2023 06:00:02 +0000 ROA not before: Wed 08 Nov 2023 05:55:02 +0000 ROA not after: Wed 06 Nov 2024 06:00:02 +0000 asID: 17727 IP address blocks: 103.105.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:1c:01:4a:5a:fb:57:36:bf:6a:07:43:a0:90:4d:15:a5:06:71:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Validity Not Before: Nov 8 05:55:02 2023 GMT Not After : Nov 6 06:00:02 2024 GMT Subject: CN=23958FEF7487F0EE9015BDE3C13B6A3B7EFD3DCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cb:c7:a9:39:3e:bf:60:7c:51:89:31:52:c8: b8:d9:61:bd:e1:b8:10:b8:a7:29:18:39:ab:03:cb: cf:fd:ea:09:8b:c4:a0:dc:9b:b7:f6:69:7d:06:92: f7:f7:96:b8:b3:9e:17:ba:ad:31:96:91:8a:bf:a0: fe:68:62:dd:ec:af:82:d7:7a:07:a0:0c:ee:60:e1: 5c:85:ff:6a:0f:c3:38:9a:98:c5:8e:7a:2e:22:9b: f8:21:76:ff:c6:78:35:2d:80:b6:a5:8c:ae:3d:29: d9:ba:bc:6f:8e:c3:2c:37:21:d1:db:42:9a:27:09: 7f:e0:4a:40:2e:22:fb:05:d9:94:d0:a5:7f:04:d6: 35:1d:13:62:b7:10:ca:d1:10:e5:36:eb:d4:b1:85: d8:a1:c0:94:77:e8:96:b2:e6:97:67:c3:69:c0:26: fc:f3:01:a7:38:73:10:b0:72:03:7e:32:99:82:b4: 01:b8:7c:76:2f:60:25:21:32:f7:84:c1:7b:a0:a1: 29:1f:19:da:7d:64:9b:29:2b:86:5c:7a:68:5a:99: 94:83:ce:2e:c9:4e:1a:5b:05:8e:dd:9c:d4:e8:18: 49:66:ea:dd:e3:46:e3:0c:b1:d2:51:16:f6:eb:85: 52:2c:c2:1c:08:67:b3:b2:df:12:13:56:15:4c:36: 41:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:95:8F:EF:74:87:F0:EE:90:15:BD:E3:C1:3B:6A:3B:7E:FD:3D:CD X509v3 Authority Key Identifier: keyid:FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132392e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.129.0/24 Signature Algorithm: sha256WithRSAEncryption a8:30:5d:8d:e1:29:16:da:f8:1e:6e:85:f8:cf:b9:20:20:f4: 00:81:4b:7f:dc:d9:5f:56:63:9e:38:3b:54:ae:3d:cd:be:a8: d3:dc:0c:17:34:3f:b6:e7:dc:fe:41:d7:48:96:be:89:a0:2a: e8:dc:a2:76:5b:d8:ce:16:4b:25:53:54:68:be:cc:6f:da:9a: 28:43:a6:ee:e5:8d:b9:07:7d:ae:53:85:b2:4d:37:a9:d2:4e: 23:04:14:b0:aa:ae:48:e2:e7:21:4c:58:b6:f5:1a:fa:ea:f5: 06:ca:5b:08:db:77:4f:22:08:15:06:64:df:1e:98:00:22:c0: ba:66:75:e2:2f:a2:0f:a0:df:96:57:17:21:d6:49:32:6e:a9: 28:18:b5:ef:fe:e5:83:81:4c:1f:c9:7a:44:4a:a7:bc:96:df: 22:da:41:c9:78:78:4d:42:5e:d3:fa:14:13:4e:8e:da:eb:62: f7:47:49:80:24:a2:7e:34:ad:8b:d1:c7:55:de:a0:7e:dd:4d: 33:2a:d4:cb:a1:53:95:3e:1a:8e:cf:9f:d9:55:d5:99:e7:ee: 74:40:58:87:39:88:dd:b9:40:ce:66:ed:eb:34:dd:e8:b2:7a: 9f:fd:7c:65:84:dd:f1:a1:a3:c0:4c:e2:26:c9:d4:b0:c0:12: 80:da:cb:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFBwBSlr7Vza/agdDoJBNFaUGcUswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlG N0VGNDc4NTAeFw0yMzExMDgwNTU1MDJaFw0yNDExMDYwNjAwMDJaMDMxMTAvBgNV BAMTKDIzOTU4RkVGNzQ4N0YwRUU5MDE1QkRFM0MxM0I2QTNCN0VGRDNEQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPy8epOT6/YHxRiTFSyLjZYb3h uBC4pykYOasDy8/96gmLxKDcm7f2aX0Gkvf3lriznhe6rTGWkYq/oP5oYt3sr4LX egegDO5g4VyF/2oPwziamMWOei4im/ghdv/GeDUtgLaljK49Kdm6vG+Owyw3IdHb QponCX/gSkAuIvsF2ZTQpX8E1jUdE2K3EMrREOU269SxhdihwJR36Jay5pdnw2nA JvzzAac4cxCwcgN+MpmCtAG4fHYvYCUhMveEwXugoSkfGdp9ZJspK4ZcemhamZSD zi7JThpbBY7dnNToGElm6t3jRuMMsdJRFvbrhVIswhwIZ7Oy3xITVhVMNkG1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUI5WP73SH8O6QFb3jwTtqO379Pc0wHwYDVR0j BBgwFoAU/thV3VBdJLb+Jb2GVilzKffvR4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYxZDdhNy1hMTFlLTQwMGItOTE3MC1jNzk3ZWQ4OGQ3MDIvMC9GRUQ4NTVERDUw NUQyNEI2RkUyNUJEODY1NjI5NzMyOUY3RUY0Nzg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlGN0VG NDc4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjFkN2E3LWExMWUtNDAwYi05 MTcwLWM3OTdlZDg4ZDcwMi8wLzMxMzAzMzJlMzEzMDM1MmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2mBMA0GCSqG SIb3DQEBCwUAA4IBAQCoMF2N4SkW2vgeboX4z7kgIPQAgUt/3NlfVmOeODtUrj3N vqjT3AwXND+259z+QddIlr6JoCro3KJ2W9jOFkslU1Rovsxv2pooQ6bu5Y25B32u U4WyTTep0k4jBBSwqq5I4uchTFi29Rr66vUGylsI23dPIggVBmTfHpgAIsC6ZnXi L6IPoN+WVxch1kkybqkoGLXv/uWDgUwfyXpESqe8lt8i2kHJeHhNQl7T+hQTTo7a 62L3R0mAJKJ+NK2L0cdV3qB+3U0zKtTLoVOVPhqOz5/ZVdWZ5+50QFiHOYjduUDO Zu3rNN3osnqf/XxlhN3xoaPATOImydSwwBKA2su1 -----END CERTIFICATE-----Generated at Wed May 1 07:05:33 2024 by rpki-client on console-fra.rpki-client.org