$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa File: 3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: VAwVeYjx+OA/wwtBId4g3VfNiH0gRCWb56k/T/PmnBY= Subject key identifier: 8D:42:CD:6D:3C:50:41:D9:78:9F:70:27:30:ED:27:03:8E:AE:AF:F0 Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 1E99B2B95B76C7E75186861E1BFFDF70BA3EF21A Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa Signing time: Thu 16 Nov 2023 08:00:00 +0000 ROA not before: Thu 16 Nov 2023 07:55:00 +0000 ROA not after: Thu 14 Nov 2024 08:00:00 +0000 asID: 134658 IP address blocks: 103.210.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:99:b2:b9:5b:76:c7:e7:51:86:86:1e:1b:ff:df:70:ba:3e:f2:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Nov 16 07:55:00 2023 GMT Not After : Nov 14 08:00:00 2024 GMT Subject: CN=8D42CD6D3C5041D9789F702730ED27038EAEAFF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4d:e2:6f:35:ab:0d:5b:4e:81:cf:d0:52:5d: 93:a3:f5:5b:f2:b3:10:9a:dd:b6:7a:66:d0:7b:db: 1c:a5:6d:72:83:80:39:56:d3:31:d4:38:56:ea:cc: 5f:9a:1b:c7:7b:e7:a1:33:92:9d:6f:b4:7c:46:67: 04:76:e7:82:df:fa:f9:25:b6:2f:d7:12:76:04:99: 7a:a7:7f:c3:35:b3:4e:b3:dc:7f:27:4b:2a:11:6a: 6f:d3:a8:3f:c2:ff:72:c9:1f:17:26:aa:45:70:b0: 06:f9:fd:2b:1f:42:bd:a5:65:02:be:b0:e5:56:a6: 33:5d:72:4f:85:46:f0:24:cb:c0:a1:4c:ac:92:aa: dd:25:28:5f:1c:0c:01:ab:34:6d:5f:93:57:0c:e4: 45:24:dd:24:c4:41:1b:75:a6:56:51:42:7d:d9:5f: dd:e4:75:46:e2:6d:6d:bf:f6:5f:7b:42:95:36:2a: 29:40:d2:89:6d:7a:34:0f:8a:7a:c9:6d:28:40:f0: ab:91:ec:f6:08:b0:26:93:03:f3:df:a5:26:38:10: 5b:8a:6c:d1:3a:f5:3f:9f:4b:ee:ba:78:a5:3b:9c: 22:ba:34:5b:cd:8f:ea:44:ad:e6:2d:23:4d:eb:7e: 57:2c:fd:ed:83:3f:b5:09:db:56:6a:d8:ac:d4:60: 37:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:42:CD:6D:3C:50:41:D9:78:9F:70:27:30:ED:27:03:8E:AE:AF:F0 X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.120.0/24 Signature Algorithm: sha256WithRSAEncryption be:87:cb:fa:fe:1d:5d:12:f2:58:cd:48:44:eb:80:52:e8:3a: 44:ca:90:c0:6d:a0:37:76:7d:d8:07:b3:c1:a0:96:c7:1c:a3: e8:69:ae:eb:58:62:93:32:07:2d:7d:62:df:e9:29:49:e2:8b: 8d:66:be:a6:1c:fb:ea:b6:14:38:87:5a:07:70:f1:2f:59:e1: 83:f3:e6:6c:85:69:ab:bc:48:cf:64:84:86:53:0c:3e:61:d0: 55:f1:ab:ea:3d:71:fb:59:cd:15:06:5d:c3:22:7f:a2:e7:3a: 89:04:c8:56:34:56:1e:21:10:6c:a0:2d:a2:2e:59:75:28:50: a1:b8:82:6c:d4:7b:22:cb:8e:1e:4e:2d:2f:53:3a:2c:58:f3: b4:fc:63:01:b2:f5:de:e9:65:0e:c8:25:40:f7:e3:70:ba:6b: c2:bd:55:53:7a:8e:98:40:f2:32:b3:e0:41:7d:82:4b:0a:35: 81:1e:7b:cd:b9:1f:1d:c8:da:5a:cc:f3:c8:4a:35:3a:98:a5: 03:50:f4:73:e3:23:6d:65:a6:06:b6:fc:bc:6b:d5:4e:8a:ca: c9:2e:56:db:30:f3:09:e8:95:d4:78:d3:06:4e:69:6e:e3:04: 00:63:6b:fb:de:85:dc:bd:38:4f:32:17:fd:fd:25:fa:6b:60: 82:08:db:12 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHpmyuVt2x+dRhoYeG//fcLo+8howDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yMzExMTYwNzU1MDBaFw0yNDExMTQwODAwMDBaMDMxMTAvBgNV BAMTKDhENDJDRDZEM0M1MDQxRDk3ODlGNzAyNzMwRUQyNzAzOEVBRUFGRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkTeJvNasNW06Bz9BSXZOj9Vvy sxCa3bZ6ZtB72xylbXKDgDlW0zHUOFbqzF+aG8d756Ezkp1vtHxGZwR254Lf+vkl ti/XEnYEmXqnf8M1s06z3H8nSyoRam/TqD/C/3LJHxcmqkVwsAb5/SsfQr2lZQK+ sOVWpjNdck+FRvAky8ChTKySqt0lKF8cDAGrNG1fk1cM5EUk3STEQRt1plZRQn3Z X93kdUbibW2/9l97QpU2KilA0oltejQPinrJbShA8KuR7PYIsCaTA/PfpSY4EFuK bNE69T+fS+66eKU7nCK6NFvNj+pEreYtI03rflcs/e2DP7UJ21Zq2KzUYDfbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjULNbTxQQdl4n3AnMO0nA46ur/AwHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0ngwDQYJ KoZIhvcNAQELBQADggEBAL6Hy/r+HV0S8ljNSETrgFLoOkTKkMBtoDd2fdgHs8Gg lscco+hprutYYpMyBy19Yt/pKUnii41mvqYc++q2FDiHWgdw8S9Z4YPz5myFaau8 SM9khIZTDD5h0FXxq+o9cftZzRUGXcMif6LnOokEyFY0Vh4hEGygLaIuWXUoUKG4 gmzUeyLLjh5OLS9TOixY87T8YwGy9d7pZQ7IJUD343C6a8K9VVN6jphA8jKz4EF9 gksKNYEee825Hx3I2lrM88hKNTqYpQNQ9HPjI21lpga2/Lxr1U6KyskuVtsw8wno ldR40wZOaW7jBABja/vehdy9OE8yF/39JfprYIII2xI= -----END CERTIFICATE-----Generated at Sun Apr 28 03:09:21 2024 by rpki-client on console-ams.rpki-client.org