$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa File: 3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: kE35of1HiLWE0i2kR3lik1KvOLsVycQ/ubm1N1Zytv8= Subject key identifier: 30:0D:EF:A4:61:C1:6B:F9:E5:0C:24:27:7A:E4:1D:C1:D4:9D:DA:94 Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 149037F6D2E7E62D81F071EABCB0DB78BB4ABFB3 Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa Signing time: Thu 16 Nov 2023 08:00:00 +0000 ROA not before: Thu 16 Nov 2023 07:55:00 +0000 ROA not after: Thu 14 Nov 2024 08:00:00 +0000 asID: 134658 IP address blocks: 103.210.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:90:37:f6:d2:e7:e6:2d:81:f0:71:ea:bc:b0:db:78:bb:4a:bf:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Nov 16 07:55:00 2023 GMT Not After : Nov 14 08:00:00 2024 GMT Subject: CN=300DEFA461C16BF9E50C24277AE41DC1D49DDA94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:96:fc:ed:00:87:33:c5:b5:84:ff:72:0d:c2: e4:50:fc:4f:ba:34:39:d4:1b:ac:be:71:5b:24:aa: c7:a0:a6:6a:2a:4c:e4:f9:0f:a5:b3:4a:a4:e9:a9: 0c:37:c2:69:3f:30:77:65:72:b1:4f:6d:3e:77:32: 8c:1b:b7:ac:b4:d4:8a:14:7a:f3:f3:02:79:64:d5: d1:8d:63:bd:a8:a6:40:df:48:b7:26:16:3e:d4:e1: 6d:e0:04:9d:eb:d7:a7:04:b2:00:1c:2c:48:43:74: 7c:63:fc:65:9c:09:09:04:75:4a:5e:e8:31:f3:40: f2:8a:3b:d1:e7:cf:49:af:40:73:de:64:20:93:5f: 84:a7:96:a3:7f:d7:09:fb:5d:15:45:97:e7:47:84: 48:85:ca:84:f3:5d:22:3c:87:92:d6:78:5a:bd:a9: aa:fd:9f:c8:c8:eb:a0:46:1f:3d:fb:de:8e:5e:3e: 63:bb:10:44:6e:0c:34:01:6d:58:58:0e:89:bd:0e: ee:9d:88:4a:7a:94:f1:03:1b:ef:c5:81:7f:1f:9e: cb:10:b8:fe:2c:df:8a:eb:b2:d0:5d:f3:db:79:f9: 49:52:0f:f5:c8:5e:91:a4:d0:38:5b:2c:ac:ee:c5: d5:12:55:00:35:5d:5e:a9:e6:b7:86:25:76:10:ed: 97:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:0D:EF:A4:61:C1:6B:F9:E5:0C:24:27:7A:E4:1D:C1:D4:9D:DA:94 X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.123.0/24 Signature Algorithm: sha256WithRSAEncryption 63:79:b5:c4:2f:dc:cf:59:80:f0:3c:9d:f1:51:09:7c:d5:9d: e0:51:ab:d8:b7:1f:79:5b:4c:5b:94:ba:10:31:15:82:f3:7a: 62:a7:1e:8e:30:bb:4d:c8:63:7f:22:9d:8d:f3:ae:50:ec:78: b4:6a:c3:4b:d7:b6:41:5a:ad:26:58:57:17:8b:75:44:63:d5: 69:d3:37:e9:bb:4c:d1:10:c9:0b:c8:97:a0:4e:7f:01:93:25: e1:94:46:3c:e0:c4:8b:6c:19:37:20:6f:cb:56:72:0e:64:d8: 44:93:f0:c8:71:41:d0:f5:5a:5f:0e:cf:3e:e7:44:ad:74:1c: 30:19:3e:a6:a7:0b:80:dd:53:14:e1:f6:ad:b8:eb:08:c5:ca: 7a:52:58:d4:ae:21:4c:a2:06:af:a2:4c:1e:75:cb:5a:cb:4c: 8f:6f:35:1d:07:d6:30:00:dd:85:d1:29:cb:dd:cc:7a:33:a7: 70:d4:fe:a5:56:15:e9:4b:00:87:9d:18:03:54:63:41:5a:9b: 13:14:c9:aa:8f:2f:3f:cd:64:09:64:75:cc:9e:a3:90:2f:b3: c8:de:ab:a2:c8:ac:48:60:c6:de:47:83:62:b8:3f:2a:bb:f5: c6:74:da:f6:f6:ea:cb:93:41:cb:62:a2:2a:0a:b8:34:3c:89: c0:e2:d5:4c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFJA39tLn5i2B8HHqvLDbeLtKv7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yMzExMTYwNzU1MDBaFw0yNDExMTQwODAwMDBaMDMxMTAvBgNV BAMTKDMwMERFRkE0NjFDMTZCRjlFNTBDMjQyNzdBRTQxREMxRDQ5RERBOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWlvztAIczxbWE/3INwuRQ/E+6 NDnUG6y+cVskqsegpmoqTOT5D6WzSqTpqQw3wmk/MHdlcrFPbT53Mowbt6y01IoU evPzAnlk1dGNY72opkDfSLcmFj7U4W3gBJ3r16cEsgAcLEhDdHxj/GWcCQkEdUpe 6DHzQPKKO9Hnz0mvQHPeZCCTX4SnlqN/1wn7XRVFl+dHhEiFyoTzXSI8h5LWeFq9 qar9n8jI66BGHz373o5ePmO7EERuDDQBbVhYDom9Du6diEp6lPEDG+/FgX8fnssQ uP4s34rrstBd89t5+UlSD/XIXpGk0DhbLKzuxdUSVQA1XV6p5reGJXYQ7ZfpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMA3vpGHBa/nlDCQneuQdwdSd2pQwHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0nswDQYJ KoZIhvcNAQELBQADggEBAGN5tcQv3M9ZgPA8nfFRCXzVneBRq9i3H3lbTFuUuhAx FYLzemKnHo4wu03IY38inY3zrlDseLRqw0vXtkFarSZYVxeLdURj1WnTN+m7TNEQ yQvIl6BOfwGTJeGURjzgxItsGTcgb8tWcg5k2EST8MhxQdD1Wl8Ozz7nRK10HDAZ PqanC4DdUxTh9q246wjFynpSWNSuIUyiBq+iTB51y1rLTI9vNR0H1jAA3YXRKcvd zHozp3DU/qVWFelLAIedGANUY0FamxMUyaqPLz/NZAlkdcyeo5Avs8jeq6LIrEhg xt5Hg2K4Pyq79cZ02vb26suTQctioioKuDQ8icDi1Uw= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org