$ rpki-client -vvf repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/3130332e3133332e3232322e302f32332d3234203d3e20313337333331.roa File: 3130332e3133332e3232322e302f32332d3234203d3e20313337333331.roa (raw, json) Hash identifier: 1YUgeFlg/w0+bilqhHICZfuA4GsQ6FdkIIRgplUeor8= Subject key identifier: 5B:2C:D7:58:47:5F:9B:6A:51:95:03:B5:2A:80:4F:5C:93:18:DE:92 Certificate issuer: /CN=A500108F09BF54E5603B5C1F6E6325A561FE7126 Certificate serial: 1B77D0BF8CD59D730AB411B80CF1075741C9EEC0 Authority key identifier: A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/3130332e3133332e3232322e302f32332d3234203d3e20313337333331.roa Signing time: Mon 31 Jul 2023 00:09:26 +0000 ROA not before: Mon 31 Jul 2023 00:04:26 +0000 ROA not after: Mon 29 Jul 2024 00:09:26 +0000 asID: 137331 IP address blocks: 103.133.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.crl rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:77:d0:bf:8c:d5:9d:73:0a:b4:11:b8:0c:f1:07:57:41:c9:ee:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A500108F09BF54E5603B5C1F6E6325A561FE7126 Validity Not Before: Jul 31 00:04:26 2023 GMT Not After : Jul 29 00:09:26 2024 GMT Subject: CN=5B2CD758475F9B6A519503B52A804F5C9318DE92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8a:c9:ec:78:e1:23:d6:d0:9f:55:c1:cc:55: 7e:0c:0a:e6:25:e6:8a:4f:d1:ce:51:54:f6:7e:10: 8e:dc:d6:e1:8e:27:66:d3:53:98:7c:b4:21:6d:40: 5c:21:c8:0e:f8:d7:9a:2c:d0:47:82:73:d0:e3:6a: 32:c7:2c:66:32:94:bd:f1:26:01:6f:08:28:08:d2: f8:d4:76:50:95:44:3a:9c:bd:86:94:e6:6f:05:b2: 3f:fb:ab:f7:11:da:60:ea:b0:38:d4:1a:13:ee:63: 26:86:33:8a:ac:45:d3:11:d3:0a:90:78:f5:6e:1b: 69:16:82:a4:2e:0d:90:6b:3b:43:2f:49:70:99:d1: 51:2c:e9:a6:20:e9:16:df:b3:eb:94:86:27:c8:09: 5b:41:b8:bc:36:d0:24:ec:06:7f:9c:9b:5c:27:bd: 3e:96:81:b5:4d:6b:fd:fa:9e:49:06:88:e2:73:94: 71:35:8e:65:ef:1c:10:0e:a0:82:6d:3b:c5:c0:b8: 2a:49:2f:14:83:91:d0:38:b6:0b:67:f3:38:a5:5d: 0d:d0:d8:f0:1a:7f:37:8a:1e:cc:aa:e0:2f:2c:cb: 8a:61:93:c3:bc:bd:1b:e4:18:63:b9:72:6b:5c:cf: fc:5c:5d:f2:7e:29:73:be:b3:7e:12:90:99:b2:3e: e3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:2C:D7:58:47:5F:9B:6A:51:95:03:B5:2A:80:4F:5C:93:18:DE:92 X509v3 Authority Key Identifier: keyid:A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/3130332e3133332e3232322e302f32332d3234203d3e20313337333331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.222.0/23 Signature Algorithm: sha256WithRSAEncryption 00:d0:75:de:66:de:3f:02:c8:1c:f3:08:9f:ce:bf:ac:22:b3: b3:12:ad:b6:7d:e9:20:3b:b6:33:06:ed:37:16:a8:cd:cc:07: f3:e4:f3:b9:ac:0e:4f:be:eb:f0:08:84:6c:06:58:43:37:49: f4:78:2c:b0:fe:64:a6:aa:3a:f3:fd:67:c0:81:75:81:97:e0: a7:93:da:aa:37:b4:34:1e:69:90:63:f3:b8:1a:e2:89:4b:4f: 40:bd:49:c3:db:d3:1e:3d:c1:94:15:8f:c3:e8:ca:8e:fb:0e: d4:47:aa:b7:c4:09:e0:14:29:52:fc:4f:f9:f3:d1:a8:f9:90: d2:a9:44:9c:86:90:67:63:a8:44:ca:69:5c:20:65:82:32:f0: a6:f2:03:b6:37:69:8a:81:70:2d:ff:62:b3:13:59:8a:99:3c: ec:f8:6f:87:d4:24:b2:ff:db:c1:76:cf:74:b3:09:e7:2e:be: 86:fe:82:db:07:99:77:5a:1b:af:03:e7:f5:9f:ad:87:0c:7c: 15:03:a8:55:40:3e:2b:05:51:27:e0:43:55:5c:ac:f0:76:e4: 44:bc:69:6b:97:3c:d2:95:3d:0e:58:09:b8:00:af:3f:18:9e: 3f:fb:92:fc:ef:76:36:9c:4e:df:41:55:dd:4b:19:cc:72:94: 4f:13:5e:b7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG3fQv4zVnXMKtBG4DPEHV0HJ7sAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUwMDEwOEYwOUJGNTRFNTYwM0I1QzFGNkU2MzI1QTU2 MUZFNzEyNjAeFw0yMzA3MzEwMDA0MjZaFw0yNDA3MjkwMDA5MjZaMDMxMTAvBgNV BAMTKDVCMkNENzU4NDc1RjlCNkE1MTk1MDNCNTJBODA0RjVDOTMxOERFOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvisnseOEj1tCfVcHMVX4MCuYl 5opP0c5RVPZ+EI7c1uGOJ2bTU5h8tCFtQFwhyA7415os0EeCc9DjajLHLGYylL3x JgFvCCgI0vjUdlCVRDqcvYaU5m8Fsj/7q/cR2mDqsDjUGhPuYyaGM4qsRdMR0wqQ ePVuG2kWgqQuDZBrO0MvSXCZ0VEs6aYg6Rbfs+uUhifICVtBuLw20CTsBn+cm1wn vT6WgbVNa/36nkkGiOJzlHE1jmXvHBAOoIJtO8XAuCpJLxSDkdA4tgtn8zilXQ3Q 2PAafzeKHsyq4C8sy4phk8O8vRvkGGO5cmtcz/xcXfJ+KXO+s34SkJmyPuOJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWyzXWEdfm2pRlQO1KoBPXJMY3pIwHwYDVR0j BBgwFoAUpQAQjwm/VOVgO1wfbmMlpWH+cSYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmQ4MGQ5Ni1lZjFiLTQ0YjItOTAzYS03ZjZkYTk0MWE4MzYvMC9BNTAwMTA4RjA5 QkY1NEU1NjAzQjVDMUY2RTYzMjVBNTYxRkU3MTI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUwMDEwOEYwOUJGNTRFNTYwM0I1QzFGNkU2MzI1QTU2MUZF NzEyNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZDgwZDk2LWVmMWItNDRiMi05 MDNhLTdmNmRhOTQxYTgzNi8wLzMxMzAzMzJlMzEzMzMzMmUzMjMyMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnhd4wDQYJ KoZIhvcNAQELBQADggEBAADQdd5m3j8CyBzzCJ/Ov6wis7MSrbZ96SA7tjMG7TcW qM3MB/Pk87msDk++6/AIhGwGWEM3SfR4LLD+ZKaqOvP9Z8CBdYGX4KeT2qo3tDQe aZBj87ga4olLT0C9ScPb0x49wZQVj8Poyo77DtRHqrfECeAUKVL8T/nz0aj5kNKp RJyGkGdjqETKaVwgZYIy8KbyA7Y3aYqBcC3/YrMTWYqZPOz4b4fUJLL/28F2z3Sz Cecuvob+gtsHmXdaG68D5/WfrYcMfBUDqFVAPisFUSfgQ1VcrPB25ES8aWuXPNKV PQ5YCbgArz8Ynj/7kvzvdjacTt9BVd1LGcxylE8TXrc= -----END CERTIFICATE-----Generated at Thu Apr 18 23:07:29 2024 by rpki-client on console-ams.rpki-client.org