$ rpki-client -vvf repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/3130332e32342e3134382e302f32322d3234203d3e203233393439.roa File: 3130332e32342e3134382e302f32322d3234203d3e203233393439.roa (raw, json) Hash identifier: H0raiqg1bw0H4VM3SFEDSGOFhoJSVF9JvXHHM4EnTlA= Subject key identifier: 9F:9C:71:EE:0C:92:85:EF:F5:9E:63:DF:FB:6E:CF:18:8E:CD:ED:E8 Certificate issuer: /CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Certificate serial: 10ECAD3EF27D51D52811E16EAA2530446DEC3FB6 Authority key identifier: 8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/3130332e32342e3134382e302f32322d3234203d3e203233393439.roa Signing time: Mon 31 Jul 2023 00:03:44 +0000 ROA not before: Sun 30 Jul 2023 23:58:44 +0000 ROA not after: Mon 29 Jul 2024 00:03:44 +0000 asID: 23949 IP address blocks: 103.24.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.crl rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 09:56:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ec:ad:3e:f2:7d:51:d5:28:11:e1:6e:aa:25:30:44:6d:ec:3f:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Validity Not Before: Jul 30 23:58:44 2023 GMT Not After : Jul 29 00:03:44 2024 GMT Subject: CN=9F9C71EE0C9285EFF59E63DFFB6ECF188ECDEDE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:28:92:da:2d:9e:c6:3b:e8:76:6e:8a:96:92: 6f:cf:29:24:f0:67:56:6c:12:c2:b1:04:fe:68:3c: fc:50:f6:60:e0:15:6b:97:91:4d:11:fe:b8:72:d7: 72:44:c7:b2:9b:4d:84:c7:22:fd:02:2d:c3:0d:fa: b6:4a:69:e6:d4:c7:df:e6:83:65:8a:b1:13:7f:73: 25:6b:38:cd:b5:fc:21:db:55:7b:11:c6:67:fb:59: f8:f5:3b:af:e4:d5:cc:da:c8:13:ef:3e:9c:72:6c: da:d2:5d:ea:2c:ea:9d:17:86:7f:f1:7e:5e:11:5b: e1:ca:59:ac:07:e0:33:fc:d9:af:40:ce:5f:a2:1a: 14:cd:60:2f:03:62:3d:77:30:df:f9:c1:d9:b2:4e: 8a:05:9e:a2:15:ff:05:73:8e:ba:88:93:be:92:b9: a8:d9:92:db:48:84:25:29:9f:e7:e8:93:df:62:b7: 58:7f:f3:08:10:a8:b3:b9:01:78:8b:13:a5:1b:93: f8:11:67:f7:e1:6b:d8:62:b8:1a:7b:55:49:2c:ef: 46:42:6e:ea:82:8b:64:08:4d:8c:98:5d:68:c3:69: 64:24:f1:f3:a0:f3:18:60:a1:aa:13:95:1d:93:bd: e6:a7:eb:12:83:da:fc:7d:68:34:37:32:4f:cc:75: 76:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:9C:71:EE:0C:92:85:EF:F5:9E:63:DF:FB:6E:CF:18:8E:CD:ED:E8 X509v3 Authority Key Identifier: keyid:8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/3130332e32342e3134382e302f32322d3234203d3e203233393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.148.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:0b:d4:5f:95:f0:a6:5f:ba:dd:ea:91:f9:07:53:71:c0:22: 21:75:7a:31:1e:d8:e6:38:57:7e:9b:a2:ca:bd:b6:a5:6c:2a: 5e:b9:a3:39:64:50:fc:81:df:d0:08:52:b0:e5:26:6f:02:11: 40:8f:89:6f:f7:ce:0d:74:3e:1b:54:18:4f:31:51:bd:40:c1: ca:95:81:18:68:e5:b5:63:98:34:83:08:2b:33:00:31:46:b9: 98:cb:bc:8a:7b:b0:d9:76:55:f1:68:8d:9f:9c:79:3d:99:d4: 56:b7:b5:ee:c3:ad:03:55:a2:b6:a1:f2:9b:43:1f:ae:e1:e2: bb:26:8c:c1:4e:a2:1c:b5:02:80:2c:66:de:d1:ad:07:93:54: f8:8b:31:ff:f6:d8:ba:77:a7:f3:3d:4d:6b:bb:85:98:15:30: 32:33:b9:3f:e7:49:8e:43:be:07:e1:b0:3f:09:6b:2a:06:f2: 48:ea:24:87:4f:7b:c9:71:e6:87:2e:05:2f:92:d5:5b:a9:d1: a4:1c:ae:a5:fd:96:c6:0b:2c:a7:67:0f:1c:9f:d8:a2:32:ff: 7f:4c:ff:f5:9e:09:94:30:f7:0c:70:ce:20:fc:07:b6:bf:97: 55:cd:46:4a:b1:72:a9:60:2a:69:4c:86:09:63:eb:74:13:f0: cd:7d:c1:26 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEOytPvJ9UdUoEeFuqiUwRG3sP7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZCMTc3QUU4MzUyNkQ3MTNDMTI0MEQ1Q0VGQUY3Mzg0 NEY3RjRFNTAeFw0yMzA3MzAyMzU4NDRaFw0yNDA3MjkwMDAzNDRaMDMxMTAvBgNV BAMTKDlGOUM3MUVFMEM5Mjg1RUZGNTlFNjNERkZCNkVDRjE4OEVDREVERTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoKJLaLZ7GO+h2boqWkm/PKSTw Z1ZsEsKxBP5oPPxQ9mDgFWuXkU0R/rhy13JEx7KbTYTHIv0CLcMN+rZKaebUx9/m g2WKsRN/cyVrOM21/CHbVXsRxmf7Wfj1O6/k1czayBPvPpxybNrSXeos6p0Xhn/x fl4RW+HKWawH4DP82a9Azl+iGhTNYC8DYj13MN/5wdmyTooFnqIV/wVzjrqIk76S uajZkttIhCUpn+fok99it1h/8wgQqLO5AXiLE6Ubk/gRZ/fha9hiuBp7VUks70ZC buqCi2QITYyYXWjDaWQk8fOg8xhgoaoTlR2Tvean6xKD2vx9aDQ3Mk/MdXahAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUn5xx7gyShe/1nmPf+27PGI7N7egwHwYDVR0j BBgwFoAUj7F3roNSbXE8EkDVzvr3OET39OUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YjY5ODIyYy0yZTIyLTQ4YmUtOGJhMi02MzRmNTgyYzJlY2IvMC84RkIxNzdBRTgz NTI2RDcxM0MxMjQwRDVDRUZBRjczODQ0RjdGNEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZCMTc3QUU4MzUyNkQ3MTNDMTI0MEQ1Q0VGQUY3Mzg0NEY3 RjRFNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiNjk4MjJjLTJlMjItNDhiZS04 YmEyLTYzNGY1ODJjMmVjYi8wLzMxMzAzMzJlMzIzNDJlMzEzNDM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzIzMzM5MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcYlDANBgkqhkiG 9w0BAQsFAAOCAQEAWwvUX5Xwpl+63eqR+QdTccAiIXV6MR7Y5jhXfpuiyr22pWwq XrmjOWRQ/IHf0AhSsOUmbwIRQI+Jb/fODXQ+G1QYTzFRvUDBypWBGGjltWOYNIMI KzMAMUa5mMu8inuw2XZV8WiNn5x5PZnUVre17sOtA1WitqHym0MfruHiuyaMwU6i HLUCgCxm3tGtB5NU+Isx//bYunen8z1Na7uFmBUwMjO5P+dJjkO+B+GwPwlrKgby SOokh097yXHmhy4FL5LVW6nRpByupf2Wxgssp2cPHJ/YojL/f0z/9Z4JlDD3DHDO IPwHtr+XVc1GSrFyqWAqaUyGCWPrdBPwzX3BJg== -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:52 2024 by rpki-client on console-ams.rpki-client.org