$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37322e302f32322d3234203d3e203436303236.roa File: 3130332e3133352e37322e302f32322d3234203d3e203436303236.roa (raw, json) Hash identifier: z25LnBBvBYTSF0vBuvt2PK5r5Md/cWP2W4ZR4kC2I5I= Subject key identifier: 61:1D:20:11:F9:AB:56:4B:8F:0F:17:57:0F:58:53:6F:18:30:1B:E5 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 5A0ABE958B0859525DEC6DB0CF7E3F7F959F60AF Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37322e302f32322d3234203d3e203436303236.roa Signing time: Mon 15 Jan 2024 02:00:00 +0000 ROA not before: Mon 15 Jan 2024 01:55:00 +0000 ROA not after: Mon 13 Jan 2025 02:00:00 +0000 asID: 46026 IP address blocks: 103.135.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:0a:be:95:8b:08:59:52:5d:ec:6d:b0:cf:7e:3f:7f:95:9f:60:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jan 15 01:55:00 2024 GMT Not After : Jan 13 02:00:00 2025 GMT Subject: CN=611D2011F9AB564B8F0F17570F58536F18301BE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fe:52:37:8f:3b:b0:8a:f8:f5:e9:9b:cc:e3: 40:29:12:6f:4f:97:13:fa:d3:d9:25:33:4e:b7:f0: 49:85:92:24:3f:93:6e:81:d6:78:ff:5b:e2:91:82: e7:56:de:1c:78:e0:aa:6d:b4:4d:4c:5d:9c:97:33: 9f:20:2c:fe:5d:52:fd:71:80:f3:82:99:4e:1f:99: 87:ae:44:3c:d2:21:34:c1:df:21:e1:9f:54:1b:70: 22:c0:9a:20:e2:91:32:bd:18:ec:2a:73:d6:2d:2b: a2:c0:e6:7e:d3:dd:b3:d8:c3:9c:fb:ac:d1:53:14: d9:61:87:fe:2b:11:35:e0:9c:f0:3d:ef:40:50:48: 7d:6e:6d:c3:8b:b1:fc:93:f9:1e:4b:63:0e:78:8f: d2:cd:b7:21:af:50:15:cf:33:9d:9c:a2:2c:26:8a: 2c:f1:15:38:83:4e:40:ee:cf:80:5e:16:3b:e3:cd: 32:a1:88:7d:07:c5:64:18:1f:d1:8c:bc:01:ac:dc: 43:9c:33:3c:11:f6:56:23:83:43:5f:54:3a:46:e9: 3d:e3:c7:54:d7:90:88:3d:09:b7:1d:eb:38:3a:b0: ac:28:1d:de:09:54:5f:f7:5c:91:6b:e9:9c:62:5f: bd:5a:32:4e:5b:f8:85:a8:77:00:54:8f:2b:38:78: 89:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:1D:20:11:F9:AB:56:4B:8F:0F:17:57:0F:58:53:6F:18:30:1B:E5 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37322e302f32322d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.72.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:0f:60:27:a6:0f:89:ca:e0:84:7b:bc:74:51:5d:ec:d8:fe: d3:3b:4b:2f:f0:b3:4d:e3:50:a3:1c:f9:1a:f9:2d:86:34:a0: 13:47:2b:c3:8d:b9:6c:76:5e:45:e1:d5:48:d8:1e:f6:bd:b4: 9b:58:63:09:a4:d5:eb:72:2e:de:42:1a:05:75:99:9b:b5:57: bb:1f:b3:5a:e1:22:0e:1e:04:cf:ec:48:56:08:b9:f7:9c:75: 7e:21:44:7f:a2:a4:fd:8b:88:73:2e:3f:e0:0c:f4:18:2e:65: 19:47:f4:7f:c6:6e:47:47:d8:35:aa:0d:63:e3:49:15:98:f8: 95:52:5c:91:ba:12:d0:d7:35:d9:18:58:d0:b2:0e:a2:4e:3a: 88:e1:1b:72:c9:cd:c3:e7:79:24:9c:70:a8:d6:b8:7c:d7:f2: db:4a:01:69:0f:b6:e6:c0:4a:af:ff:ba:d2:52:2c:96:e4:0d: 96:bb:6c:4b:d7:65:a8:f5:cf:e6:6a:76:74:e1:50:a3:bb:f0: a5:3c:39:41:ae:67:dd:5f:1b:72:07:6b:e4:e2:fd:25:82:69: a4:d6:43:14:84:23:a7:db:8b:2d:36:29:78:dd:1d:e9:fd:65: 83:6d:b2:96:99:51:7f:87:76:8d:57:b1:12:5b:ef:7b:90:b5: 8b:0b:bd:23 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWgq+lYsIWVJd7G2wz34/f5WfYK8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNDAxMTUwMTU1MDBaFw0yNTAxMTMwMjAwMDBaMDMxMTAvBgNV BAMTKDYxMUQyMDExRjlBQjU2NEI4RjBGMTc1NzBGNTg1MzZGMTgzMDFCRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl/lI3jzuwivj16ZvM40ApEm9P lxP609klM0638EmFkiQ/k26B1nj/W+KRgudW3hx44KpttE1MXZyXM58gLP5dUv1x gPOCmU4fmYeuRDzSITTB3yHhn1QbcCLAmiDikTK9GOwqc9YtK6LA5n7T3bPYw5z7 rNFTFNlhh/4rETXgnPA970BQSH1ubcOLsfyT+R5LYw54j9LNtyGvUBXPM52coiwm iizxFTiDTkDuz4BeFjvjzTKhiH0HxWQYH9GMvAGs3EOcMzwR9lYjg0NfVDpG6T3j x1TXkIg9Cbcd6zg6sKwoHd4JVF/3XJFr6ZxiX71aMk5b+IWodwBUjys4eIk1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYR0gEfmrVkuPDxdXD1hTbxgwG+UwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzAzMzJlMzEzMzM1MmUzNzMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmeHSDANBgkqhkiG 9w0BAQsFAAOCAQEAKw9gJ6YPicrghHu8dFFd7Nj+0ztLL/CzTeNQoxz5GvkthjSg E0crw425bHZeReHVSNge9r20m1hjCaTV63Iu3kIaBXWZm7VXux+zWuEiDh4Ez+xI Vgi595x1fiFEf6Kk/YuIcy4/4Az0GC5lGUf0f8ZuR0fYNaoNY+NJFZj4lVJckboS 0Nc12RhY0LIOok46iOEbcsnNw+d5JJxwqNa4fNfy20oBaQ+25sBKr/+60lIsluQN lrtsS9dlqPXP5mp2dOFQo7vwpTw5Qa5n3V8bcgdr5OL9JYJppNZDFIQjp9uLLTYp eN0d6f1lg22ylplRf4d2jVexElvve5C1iwu9Iw== -----END CERTIFICATE-----Generated at Fri May 3 04:35:13 2024 by rpki-client on console-ams.rpki-client.org