$ rpki-client -vvf repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/3130332e3134322e31342e302f32332d3234203d3e20313339333735.roa File: 3130332e3134322e31342e302f32332d3234203d3e20313339333735.roa (raw, json) Hash identifier: DZoK7ntDe2rOvL9sMeNAaHUsLrnxcTgOKLMZqfjIy3I= Subject key identifier: A5:25:FB:B6:04:12:92:D2:A3:C0:06:8E:4D:A3:F2:1A:AB:5C:CD:8E Certificate issuer: /CN=91E7E283422E38A6A6EDB38593EE074DF8FA29C6 Certificate serial: 2ACC1777FE0810CBD60022C84B260295F2A3A804 Authority key identifier: 91:E7:E2:83:42:2E:38:A6:A6:ED:B3:85:93:EE:07:4D:F8:FA:29:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/3130332e3134322e31342e302f32332d3234203d3e20313339333735.roa Signing time: Mon 31 Jul 2023 00:08:25 +0000 ROA not before: Mon 31 Jul 2023 00:03:25 +0000 ROA not after: Mon 29 Jul 2024 00:08:25 +0000 asID: 139375 IP address blocks: 103.142.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.crl rsync://repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 21:43:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:cc:17:77:fe:08:10:cb:d6:00:22:c8:4b:26:02:95:f2:a3:a8:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91E7E283422E38A6A6EDB38593EE074DF8FA29C6 Validity Not Before: Jul 31 00:03:25 2023 GMT Not After : Jul 29 00:08:25 2024 GMT Subject: CN=A525FBB6041292D2A3C0068E4DA3F21AAB5CCD8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4a:05:0d:40:f6:11:36:14:80:71:55:cf:b5: a3:b3:dc:13:0d:9a:7e:a2:b1:08:06:17:fe:d2:64: 01:3a:df:21:f6:3e:e8:34:68:0c:6d:2c:40:f9:aa: e8:9a:7e:61:c1:3f:2b:c3:d6:1d:e4:ef:17:25:a7: d5:89:56:b6:2a:42:da:8d:47:88:b8:c7:f2:55:13: 4c:a4:6e:29:f4:7c:55:9c:79:8d:fa:2f:17:ff:d0: de:22:b7:06:06:89:c8:f1:68:7d:29:78:9c:16:96: 76:40:da:ae:69:8e:40:b0:ac:c2:d8:73:32:8d:0f: f7:df:ed:a1:d1:41:ee:82:36:08:a9:69:3b:de:ca: 3a:d4:01:34:d2:dd:95:a8:38:50:35:4c:ce:fa:04: 28:51:87:31:f5:57:b5:c7:96:03:9f:35:56:a4:c9: f4:4f:4f:4e:60:d4:ec:7c:16:a9:e6:c9:b1:80:22: 64:ef:45:1a:4c:6a:3d:36:94:d5:24:22:46:35:da: 62:d2:73:fc:21:b3:9c:ed:aa:64:dd:50:b1:4a:4d: d6:37:e5:a7:61:f4:c9:98:0b:04:ad:48:5e:ac:ef: 04:a1:c5:d6:af:fa:05:d7:dd:56:a9:c2:64:1f:49: e4:e6:54:7c:c3:28:ae:f2:a2:3f:37:a7:a2:fe:6d: 6c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:25:FB:B6:04:12:92:D2:A3:C0:06:8E:4D:A3:F2:1A:AB:5C:CD:8E X509v3 Authority Key Identifier: keyid:91:E7:E2:83:42:2E:38:A6:A6:ED:B3:85:93:EE:07:4D:F8:FA:29:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/3130332e3134322e31342e302f32332d3234203d3e20313339333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.14.0/23 Signature Algorithm: sha256WithRSAEncryption 46:96:b1:e6:7c:3a:40:e2:5b:a4:8c:97:b8:a7:ea:20:a5:c0: 76:e0:36:ba:68:1f:74:e3:84:8e:c5:ef:7a:a8:fa:8d:88:d3: bb:39:67:64:af:28:0c:9d:3c:ee:a3:0b:de:6e:87:25:f2:41: 31:7f:5e:5e:30:9d:93:14:ad:64:c6:4b:ed:5c:06:64:5d:ae: 45:17:88:f1:6b:50:31:02:01:14:98:08:21:c9:6c:1a:fd:3b: 59:19:78:9b:4e:58:ed:4a:88:a4:7c:90:5c:a0:8a:c9:02:d0: 31:d8:ab:d7:18:a6:a3:97:1c:52:ca:8b:fd:76:c5:d9:b6:d6: d2:3c:16:19:28:39:09:b0:15:4a:35:79:04:36:49:d4:65:f1: 39:a5:15:5a:b6:ea:22:89:78:ed:bd:40:81:4f:03:86:02:a1: d6:75:40:40:b4:91:e5:17:9f:22:93:52:d2:4f:cd:fa:43:8f: 85:2e:42:34:19:3b:11:76:c0:eb:7d:98:37:a4:38:e3:53:d9: fb:b8:4b:90:f9:ad:94:2b:d1:61:33:91:5f:be:ac:f8:cd:3c: 4b:f7:b9:39:9d:05:22:71:b9:b1:bc:de:98:3f:43:c4:0e:9d: f9:b2:35:b5:1e:f9:a7:f6:b3:a2:2e:6b:cd:eb:5c:25:ce:10: 26:ec:f4:0b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKswXd/4IEMvWACLISyYClfKjqAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFFN0UyODM0MjJFMzhBNkE2RURCMzg1OTNFRTA3NERG OEZBMjlDNjAeFw0yMzA3MzEwMDAzMjVaFw0yNDA3MjkwMDA4MjVaMDMxMTAvBgNV BAMTKEE1MjVGQkI2MDQxMjkyRDJBM0MwMDY4RTREQTNGMjFBQUI1Q0NEOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCySgUNQPYRNhSAcVXPtaOz3BMN mn6isQgGF/7SZAE63yH2Pug0aAxtLED5quiafmHBPyvD1h3k7xclp9WJVrYqQtqN R4i4x/JVE0ykbin0fFWceY36Lxf/0N4itwYGicjxaH0peJwWlnZA2q5pjkCwrMLY czKND/ff7aHRQe6CNgipaTveyjrUATTS3ZWoOFA1TM76BChRhzH1V7XHlgOfNVak yfRPT05g1Ox8FqnmybGAImTvRRpMaj02lNUkIkY12mLSc/whs5ztqmTdULFKTdY3 5adh9MmYCwStSF6s7wShxdav+gXX3VapwmQfSeTmVHzDKK7yoj83p6L+bWz5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpSX7tgQSktKjwAaOTaPyGqtczY4wHwYDVR0j BBgwFoAUkefig0IuOKam7bOFk+4HTfj6KcYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWNiYzkyNy1mNGUyLTQxNTMtYjY2Yi1jZTFlYzAyZDc0MTAvMC85MUU3RTI4MzQy MkUzOEE2QTZFREIzODU5M0VFMDc0REY4RkEyOUM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTFFN0UyODM0MjJFMzhBNkE2RURCMzg1OTNFRTA3NERGOEZB MjlDNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxY2JjOTI3LWY0ZTItNDE1My1i NjZiLWNlMWVjMDJkNzQxMC8wLzMxMzAzMzJlMzEzNDMyMmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ44OMA0GCSqG SIb3DQEBCwUAA4IBAQBGlrHmfDpA4lukjJe4p+ogpcB24Da6aB9044SOxe96qPqN iNO7OWdkrygMnTzuowvebocl8kExf15eMJ2TFK1kxkvtXAZkXa5FF4jxa1AxAgEU mAghyWwa/TtZGXibTljtSoikfJBcoIrJAtAx2KvXGKajlxxSyov9dsXZttbSPBYZ KDkJsBVKNXkENknUZfE5pRVatuoiiXjtvUCBTwOGAqHWdUBAtJHlF58ik1LST836 Q4+FLkI0GTsRdsDrfZg3pDjjU9n7uEuQ+a2UK9FhM5Ffvqz4zTxL97k5nQUicbmx vN6YP0PEDp35sjW1Hvmn9rOiLmvN61wlzhAm7PQL -----END CERTIFICATE-----Generated at Wed Apr 17 01:25:00 2024 by rpki-client on console-ams.rpki-client.org