$ rpki-client -vvf repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133302e302f32342d3234203d3e203137373237.roa File: 3130332e3130352e3133302e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: qApdpXjbECqo/bEysVzqunCZTU30NmQ49RQymNcd1tI= Subject key identifier: D6:FE:8C:C3:55:6D:C1:3A:78:4F:0B:37:39:EF:AE:7D:0C:3A:8F:F6 Certificate issuer: /CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Certificate serial: 391C93E11229EDAD2A5F437F13DF70B10B53BF42 Authority key identifier: FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133302e302f32342d3234203d3e203137373237.roa Signing time: Wed 08 Nov 2023 05:00:02 +0000 ROA not before: Wed 08 Nov 2023 04:55:02 +0000 ROA not after: Wed 06 Nov 2024 05:00:02 +0000 asID: 17727 IP address blocks: 103.105.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:1c:93:e1:12:29:ed:ad:2a:5f:43:7f:13:df:70:b1:0b:53:bf:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Validity Not Before: Nov 8 04:55:02 2023 GMT Not After : Nov 6 05:00:02 2024 GMT Subject: CN=D6FE8CC3556DC13A784F0B3739EFAE7D0C3A8FF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ad:c6:db:22:a3:66:3d:f4:55:01:a3:a3:2e: 81:9e:a3:1f:cf:c8:86:db:04:97:be:93:81:93:89: d2:3d:88:8a:a9:22:ce:14:67:0b:4b:2e:59:b1:34: 2e:0c:39:c6:11:80:ad:84:e6:ea:e7:6c:93:ab:2c: 0d:fd:cd:30:5b:6a:0b:8e:d0:15:5c:75:2f:69:69: b2:79:41:88:c2:83:14:5b:6d:35:c7:95:c2:f7:70: 9b:66:7a:80:10:fc:b0:b6:80:97:d9:ab:12:41:14: 0e:49:41:1e:89:9d:db:d0:d4:a1:d2:74:27:54:bd: d1:28:66:96:04:dc:9a:74:ae:14:4c:7b:0e:f2:2c: 2f:89:07:3f:89:9a:43:09:c0:e2:39:f0:77:1b:56: 82:c3:74:19:46:0d:30:5e:4d:b3:bf:74:e0:2c:a7: 52:c0:c1:a3:ad:b7:75:a4:62:03:5a:df:4f:63:79: d5:b8:00:9f:62:d8:f6:c8:70:dd:ba:01:f1:ad:ea: 00:30:e0:5f:64:0c:dd:14:a4:89:ca:98:86:bc:57: 5c:63:db:af:55:cf:24:5c:04:90:b6:e6:fd:42:19: ed:18:d5:5e:e7:6f:c4:22:ef:3f:7e:12:d5:f1:53: 11:ad:a4:b1:9f:fc:98:bb:7f:ce:c7:1f:70:ff:2d: 92:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:FE:8C:C3:55:6D:C1:3A:78:4F:0B:37:39:EF:AE:7D:0C:3A:8F:F6 X509v3 Authority Key Identifier: keyid:FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133302e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.130.0/24 Signature Algorithm: sha256WithRSAEncryption a9:2c:f3:e5:59:b2:40:48:33:c8:d4:f8:fe:4d:33:d5:e9:07: d5:ed:d6:88:08:ed:3c:f7:1c:21:ce:70:38:fc:3a:be:cb:72: 37:eb:29:3a:1e:fc:af:9b:a5:6b:52:fc:51:8e:f1:ae:b0:5e: 35:25:13:be:6c:53:ae:4f:9c:b3:e9:a9:5b:a2:71:4b:ed:05: 4f:a5:99:9a:ef:97:77:5b:31:88:a4:27:45:2f:9c:69:63:af: 1c:2e:9d:37:88:c0:53:83:7c:a4:d8:2d:7a:c2:d8:a8:28:63: 06:e6:c9:b3:fc:e8:e8:79:7f:ac:1e:0e:98:48:06:bc:3b:2e: 4a:7d:05:5a:29:33:e1:00:a7:25:4e:04:9e:7e:56:78:3b:be: 80:fa:9b:8d:58:11:dd:3a:e2:1e:a0:d1:33:06:62:7c:69:88: bf:7e:2f:bb:90:f3:d7:d6:5f:a0:aa:bd:f3:3c:46:ec:36:46: b3:27:03:de:08:b0:f2:56:05:d1:ab:ca:ef:25:7c:c6:14:22: 0e:f8:a3:ae:06:fc:f8:8f:1a:1b:c8:2d:32:8c:bd:cb:4b:e1: 45:4d:58:7f:49:b7:60:1b:c0:27:65:b5:73:69:d3:92:fc:fa: e0:43:dd:90:84:2d:cf:49:12:30:a4:ae:21:34:04:5c:4d:80: 4c:cb:23:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUORyT4RIp7a0qX0N/E99wsQtTv0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlG N0VGNDc4NTAeFw0yMzExMDgwNDU1MDJaFw0yNDExMDYwNTAwMDJaMDMxMTAvBgNV BAMTKEQ2RkU4Q0MzNTU2REMxM0E3ODRGMEIzNzM5RUZBRTdEMEMzQThGRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIrcbbIqNmPfRVAaOjLoGeox/P yIbbBJe+k4GTidI9iIqpIs4UZwtLLlmxNC4MOcYRgK2E5urnbJOrLA39zTBbaguO 0BVcdS9pabJ5QYjCgxRbbTXHlcL3cJtmeoAQ/LC2gJfZqxJBFA5JQR6JndvQ1KHS dCdUvdEoZpYE3Jp0rhRMew7yLC+JBz+JmkMJwOI58HcbVoLDdBlGDTBeTbO/dOAs p1LAwaOtt3WkYgNa309jedW4AJ9i2PbIcN26AfGt6gAw4F9kDN0UpInKmIa8V1xj 269VzyRcBJC25v1CGe0Y1V7nb8Qi7z9+EtXxUxGtpLGf/Ji7f87HH3D/LZIHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1v6Mw1VtwTp4Tws3Oe+ufQw6j/YwHwYDVR0j BBgwFoAU/thV3VBdJLb+Jb2GVilzKffvR4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYxZDdhNy1hMTFlLTQwMGItOTE3MC1jNzk3ZWQ4OGQ3MDIvMC9GRUQ4NTVERDUw NUQyNEI2RkUyNUJEODY1NjI5NzMyOUY3RUY0Nzg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlGN0VG NDc4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjFkN2E3LWExMWUtNDAwYi05 MTcwLWM3OTdlZDg4ZDcwMi8wLzMxMzAzMzJlMzEzMDM1MmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2mCMA0GCSqG SIb3DQEBCwUAA4IBAQCpLPPlWbJASDPI1Pj+TTPV6QfV7daICO089xwhznA4/Dq+ y3I36yk6Hvyvm6VrUvxRjvGusF41JRO+bFOuT5yz6albonFL7QVPpZma75d3WzGI pCdFL5xpY68cLp03iMBTg3yk2C16wtioKGMG5smz/OjoeX+sHg6YSAa8Oy5KfQVa KTPhAKclTgSeflZ4O76A+puNWBHdOuIeoNEzBmJ8aYi/fi+7kPPX1l+gqr3zPEbs NkazJwPeCLDyVgXRq8rvJXzGFCIO+KOuBvz4jxobyC0yjL3LS+FFTVh/SbdgG8An ZbVzadOS/PrgQ92QhC3PSRIwpK4hNARcTYBMyyNl -----END CERTIFICATE-----Generated at Wed May 1 06:33:31 2024 by rpki-client on console-ams.rpki-client.org