$ rpki-client -vvf repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa File: 3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa (raw, json) Hash identifier: YA5E9Om21qeU7/AWnaaPUL0uSrmqqw7vWYdqxr8e0d8= Subject key identifier: A9:0F:78:E7:79:9A:FD:19:56:2C:B9:D1:A9:B2:7B:99:E2:9A:9E:21 Certificate issuer: /CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3 Certificate serial: 308665C530EFDC5053E12D22C62FEFD711BD3476 Authority key identifier: 80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa Signing time: Mon 06 Nov 2023 04:07:48 +0000 ROA not before: Mon 06 Nov 2023 04:02:48 +0000 ROA not after: Mon 04 Nov 2024 04:07:48 +0000 asID: 134651 IP address blocks: 103.208.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.crl rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 18:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:86:65:c5:30:ef:dc:50:53:e1:2d:22:c6:2f:ef:d7:11:bd:34:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3 Validity Not Before: Nov 6 04:02:48 2023 GMT Not After : Nov 4 04:07:48 2024 GMT Subject: CN=A90F78E7799AFD19562CB9D1A9B27B99E29A9E21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:31:0c:c0:11:53:55:c1:d3:3b:22:14:e6:fd: a3:30:d1:e7:df:06:d7:1d:0e:6f:ae:0b:5b:f9:73: 97:6d:2d:a4:a8:1a:b6:40:6a:fc:21:72:ae:f7:cb: 28:8a:6c:c4:8d:e7:93:2d:56:c5:c9:53:22:fc:b8: 42:af:e3:80:f2:ea:7f:50:31:3e:d2:e4:6f:ee:a3: 45:99:c6:2e:18:1a:b1:5c:98:16:6e:81:8c:11:7f: 5a:f3:04:59:a0:0d:71:51:6e:f0:f4:40:5d:d5:92: 6c:c1:f4:5c:22:0b:39:3a:d8:ef:e1:f6:6e:d9:b4: c4:83:e8:71:12:df:43:b6:69:16:94:76:17:bf:79: 14:70:27:ea:0b:a2:e6:bc:8c:5d:17:df:80:b0:b4: 34:5f:65:22:e1:7c:f1:85:5a:f9:7c:9f:9d:a9:c7: b3:f7:f7:a0:00:04:c7:51:ac:9f:6c:f4:00:8e:f0: 0f:aa:e0:16:d5:f9:d4:1e:8f:24:77:ae:00:90:ea: 44:f3:2d:54:32:5d:9a:9b:f3:56:b8:7f:37:92:3a: c4:33:e5:c6:28:59:09:79:ee:67:80:5f:72:da:e4: b8:60:3f:c9:d7:fb:5e:06:63:d0:b6:35:bb:39:fd: cb:79:85:a8:a5:54:38:26:f9:ae:e4:b3:7e:96:23: 75:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:0F:78:E7:79:9A:FD:19:56:2C:B9:D1:A9:B2:7B:99:E2:9A:9E:21 X509v3 Authority Key Identifier: keyid:80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.204.0/22 Signature Algorithm: sha256WithRSAEncryption d9:ec:28:68:4b:0d:24:0f:0c:96:a6:45:89:0e:ce:b0:0d:10: b8:d6:13:04:ec:a7:88:a2:5b:50:e7:ab:59:dd:fb:84:7d:31: 81:59:b0:5d:5c:c5:c5:43:8f:63:a6:af:13:1d:f9:bc:ab:c9: ef:94:12:01:4c:6e:bc:88:a5:23:2a:14:8e:17:6b:0a:9f:19: 03:a5:d1:ce:83:c4:ad:49:c7:1b:10:a9:92:7f:3d:01:99:2a: 6f:62:86:8e:a6:5a:5a:65:89:df:90:3c:b6:7e:28:b9:98:dd: e0:f8:e9:5a:01:6c:be:02:39:f0:b6:30:f6:6e:99:76:b8:a7: b3:cb:52:01:cb:45:4f:a0:82:0d:8a:89:20:fc:18:62:de:4d: ed:d6:11:41:2f:67:17:a0:2a:9f:8b:3d:51:11:9c:0d:27:64: b6:9a:2e:98:04:57:c7:69:04:fd:88:8a:12:44:4b:f1:89:02: 6e:f8:47:1e:6f:f9:e9:02:ea:d6:55:cc:b0:e5:a5:ed:6f:4d: 53:5f:55:b5:e5:3c:69:87:2b:49:04:c8:bc:c2:5d:dd:28:ec: 8c:77:75:ee:09:f1:10:f3:6c:69:77:27:08:f9:cf:bb:52:6e: 7c:ec:55:9f:6f:db:d0:69:3e:88:61:d0:29:f3:b5:19:0c:9a: a4:98:c9:25 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMIZlxTDv3FBT4S0ixi/v1xG9NHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODAzQzlGRjEwMjgzNkNFQzhDRUM0OUYwMUZDRkFBMEU5 MkUyNkFGMzAeFw0yMzExMDYwNDAyNDhaFw0yNDExMDQwNDA3NDhaMDMxMTAvBgNV BAMTKEE5MEY3OEU3Nzk5QUZEMTk1NjJDQjlEMUE5QjI3Qjk5RTI5QTlFMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhMQzAEVNVwdM7IhTm/aMw0eff BtcdDm+uC1v5c5dtLaSoGrZAavwhcq73yyiKbMSN55MtVsXJUyL8uEKv44Dy6n9Q MT7S5G/uo0WZxi4YGrFcmBZugYwRf1rzBFmgDXFRbvD0QF3VkmzB9FwiCzk62O/h 9m7ZtMSD6HES30O2aRaUdhe/eRRwJ+oLoua8jF0X34CwtDRfZSLhfPGFWvl8n52p x7P396AABMdRrJ9s9ACO8A+q4BbV+dQejyR3rgCQ6kTzLVQyXZqb81a4fzeSOsQz 5cYoWQl57meAX3La5LhgP8nX+14GY9C2Nbs5/ct5hailVDgm+a7ks36WI3VfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqQ9453ma/RlWLLnRqbJ7meKaniEwHwYDVR0j BBgwFoAUgDyf8QKDbOyM7EnwH8+qDpLiavMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NzcyN2MzZS05YzFhLTQ2ZGUtYTJiOC1jODhiOTAzOTlmM2QvMC84MDNDOUZGMTAy ODM2Q0VDOENFQzQ5RjAxRkNGQUEwRTkyRTI2QUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODAzQzlGRjEwMjgzNkNFQzhDRUM0OUYwMUZDRkFBMEU5MkUy NkFGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3NzI3YzNlLTljMWEtNDZkZS1h MmI4LWM4OGI5MDM5OWYzZC8wLzMxMzAzMzJlMzIzMDM4MmUzMjMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn0MwwDQYJ KoZIhvcNAQELBQADggEBANnsKGhLDSQPDJamRYkOzrANELjWEwTsp4iiW1Dnq1nd +4R9MYFZsF1cxcVDj2OmrxMd+byrye+UEgFMbryIpSMqFI4XawqfGQOl0c6DxK1J xxsQqZJ/PQGZKm9iho6mWlplid+QPLZ+KLmY3eD46VoBbL4COfC2MPZumXa4p7PL UgHLRU+ggg2KiSD8GGLeTe3WEUEvZxegKp+LPVERnA0nZLaaLpgEV8dpBP2IihJE S/GJAm74Rx5v+ekC6tZVzLDlpe1vTVNfVbXlPGmHK0kEyLzCXd0o7Ix3de4J8RDz bGl3Jwj5z7tSbnzsVZ9v29BpPohh0CnztRkMmqSYySU= -----END CERTIFICATE-----Generated at Fri Apr 26 10:57:38 2024 by rpki-client on console-ams.rpki-client.org