$ rpki-client -vvf repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/3130332e3139382e3132322e302f32342d3234203d3e203436303535.roa File: 3130332e3139382e3132322e302f32342d3234203d3e203436303535.roa (raw, json) Hash identifier: G1S1JsvxyJY1UPJJCn8837WGZKTjh/TSzbDECwItr9I= Subject key identifier: 6E:98:02:2A:5C:21:AA:FE:29:20:98:C7:EC:08:F1:B5:F2:E6:E7:BC Certificate issuer: /CN=FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91 Certificate serial: 1E4CFE6FBD71A3053F715A3C8DC88BEF54E79251 Authority key identifier: FB:D3:B2:8C:90:75:52:9D:EE:81:51:C4:E4:4B:0C:BC:13:FF:DA:91 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.cer Subject info access: rsync://repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/3130332e3139382e3132322e302f32342d3234203d3e203436303535.roa Signing time: Wed 09 Aug 2023 09:00:58 +0000 ROA not before: Wed 09 Aug 2023 08:55:58 +0000 ROA not after: Wed 07 Aug 2024 09:00:58 +0000 asID: 46055 IP address blocks: 103.198.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.crl rsync://repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Apr 2024 23:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:4c:fe:6f:bd:71:a3:05:3f:71:5a:3c:8d:c8:8b:ef:54:e7:92:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91 Validity Not Before: Aug 9 08:55:58 2023 GMT Not After : Aug 7 09:00:58 2024 GMT Subject: CN=6E98022A5C21AAFE292098C7EC08F1B5F2E6E7BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7e:21:d6:b2:70:01:61:27:d7:bc:b8:a7:98: 27:27:f0:c0:c9:58:92:81:61:16:3f:d9:37:87:7f: 79:a0:3a:de:cf:42:9b:df:c9:70:6e:7c:2e:bf:80: e8:8e:71:ac:eb:dc:c8:ef:4e:3a:b9:16:01:cc:18: fb:da:cd:2d:31:78:99:f4:cb:52:68:7e:eb:42:9b: 61:57:91:d7:b7:8c:e9:82:85:f1:69:23:18:e4:c6: e1:b3:88:cc:7b:44:5d:c0:1b:b8:8b:d3:65:2c:57: 33:0c:ff:f1:a2:4f:dc:0b:5e:4c:41:63:ce:be:d5: c8:38:9c:7c:2f:97:28:31:90:a7:b7:7c:e7:21:da: 32:e1:13:52:7b:d4:57:2b:f1:3f:2c:0c:35:9c:87: cb:82:11:36:23:26:2b:37:30:6c:63:7a:12:dc:50: 97:84:b4:53:a4:ca:ab:0c:0e:6c:ca:dd:4e:91:f1: 84:de:0f:87:a2:ac:95:32:4e:ca:76:cf:5a:65:65: 0d:fe:33:b9:e9:a9:06:f7:12:17:64:c9:d1:e5:9d: b8:4e:b5:ee:05:25:17:29:fa:a5:88:bd:6f:08:84: 09:38:5e:cd:42:7a:a4:07:8e:8f:83:f4:57:29:71: 71:c4:06:df:7b:04:05:70:0c:f7:13:95:44:7b:f9: 20:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:98:02:2A:5C:21:AA:FE:29:20:98:C7:EC:08:F1:B5:F2:E6:E7:BC X509v3 Authority Key Identifier: keyid:FB:D3:B2:8C:90:75:52:9D:EE:81:51:C4:E4:4B:0C:BC:13:FF:DA:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/3130332e3139382e3132322e302f32342d3234203d3e203436303535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.198.122.0/24 Signature Algorithm: sha256WithRSAEncryption 39:11:dc:1f:a4:26:44:95:c7:d0:21:68:18:de:cf:25:19:bd: dc:01:61:c4:4e:80:f8:94:90:87:f4:6a:8b:32:32:d6:b2:0f: 1f:99:31:a4:2f:d7:26:c5:18:18:a0:2c:c8:a5:30:98:b6:8b: 89:f3:1c:ca:61:cd:1d:f1:1c:66:15:11:3b:d1:f8:a1:84:3a: 7d:4c:d7:59:17:e7:1c:50:5c:7c:95:2e:22:be:62:f9:ca:d4: ae:77:15:f9:0e:24:63:02:34:e7:99:bf:69:bf:8b:6b:c3:67: f8:b0:52:68:45:a6:be:e2:ee:84:de:f0:03:32:84:1b:15:c7: b6:67:4d:80:0a:d1:76:ab:ef:ee:e5:e2:41:c8:f1:c2:c5:e3: 9f:aa:c9:bb:4c:11:55:07:87:6e:aa:62:ba:16:d8:9a:c0:0d: 0f:b0:7a:e2:95:8e:f8:bb:4e:5e:22:c6:37:a3:c5:f3:0a:8a: b0:f9:68:d1:ff:c9:c9:d6:33:c0:45:bd:d9:ee:ce:02:7a:76: 63:34:9e:80:d3:1f:63:36:b5:ff:b3:b9:c3:5d:58:00:61:99: d0:cc:08:ff:9f:ce:4c:71:2f:13:26:ac:4e:60:95:89:91:d4: e1:67:53:7f:2a:40:64:41:40:38:f9:6f:dc:a0:83:c0:07:80: 41:e9:d5:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHkz+b71xowU/cVo8jciL71TnklEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJEM0IyOEM5MDc1NTI5REVFODE1MUM0RTQ0QjBDQkMx M0ZGREE5MTAeFw0yMzA4MDkwODU1NThaFw0yNDA4MDcwOTAwNThaMDMxMTAvBgNV BAMTKDZFOTgwMjJBNUMyMUFBRkUyOTIwOThDN0VDMDhGMUI1RjJFNkU3QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMfiHWsnABYSfXvLinmCcn8MDJ WJKBYRY/2TeHf3mgOt7PQpvfyXBufC6/gOiOcazr3MjvTjq5FgHMGPvazS0xeJn0 y1JofutCm2FXkde3jOmChfFpIxjkxuGziMx7RF3AG7iL02UsVzMM//GiT9wLXkxB Y86+1cg4nHwvlygxkKe3fOch2jLhE1J71Fcr8T8sDDWch8uCETYjJis3MGxjehLc UJeEtFOkyqsMDmzK3U6R8YTeD4eirJUyTsp2z1plZQ3+M7npqQb3EhdkydHlnbhO te4FJRcp+qWIvW8IhAk4Xs1CeqQHjo+D9FcpcXHEBt97BAVwDPcTlUR7+SANAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbpgCKlwhqv4pIJjH7AjxtfLm57wwHwYDVR0j BBgwFoAU+9OyjJB1Up3ugVHE5EsMvBP/2pEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ODM5NzdmNC04YzJkLTRlYjEtYjRjZC0zNWI0OTIxNmUwNzMvMC9GQkQzQjI4Qzkw NzU1MjlERUU4MTUxQzRFNDRCMENCQzEzRkZEQTkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkJEM0IyOEM5MDc1NTI5REVFODE1MUM0RTQ0QjBDQkMxM0ZG REE5MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA4Mzk3N2Y0LThjMmQtNGViMS1i NGNkLTM1YjQ5MjE2ZTA3My8wLzMxMzAzMzJlMzEzOTM4MmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8Z6MA0GCSqG SIb3DQEBCwUAA4IBAQA5EdwfpCZElcfQIWgY3s8lGb3cAWHEToD4lJCH9GqLMjLW sg8fmTGkL9cmxRgYoCzIpTCYtouJ8xzKYc0d8RxmFRE70fihhDp9TNdZF+ccUFx8 lS4ivmL5ytSudxX5DiRjAjTnmb9pv4trw2f4sFJoRaa+4u6E3vADMoQbFce2Z02A CtF2q+/u5eJByPHCxeOfqsm7TBFVB4duqmK6FtiawA0PsHrilY74u05eIsY3o8Xz Coqw+WjR/8nJ1jPARb3Z7s4CenZjNJ6A0x9jNrX/s7nDXVgAYZnQzAj/n85McS8T JqxOYJWJkdThZ1N/KkBkQUA4+W/coIPAB4BB6dW1 -----END CERTIFICATE-----Generated at Wed Apr 17 21:09:50 2024 by rpki-client on console-ams.rpki-client.org