$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa File: 3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa (raw, json) Hash identifier: IK9YaeKUkf4FaR7zo9UaJ6sJIm986CDaegOpeUSigw8= Subject key identifier: 8B:B9:4C:C6:81:AE:48:F6:86:A4:C5:A4:7F:D4:3F:5F:C3:21:C8:0E Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 6DC07EC1367AAAAA40D0364F99682AEB903FCFFC Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa Signing time: Fri 08 Sep 2023 08:00:01 +0000 ROA not before: Fri 08 Sep 2023 07:55:01 +0000 ROA not after: Fri 06 Sep 2024 08:00:01 +0000 asID: 133823 IP address blocks: 103.104.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 17:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c0:7e:c1:36:7a:aa:aa:40:d0:36:4f:99:68:2a:eb:90:3f:cf:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Sep 8 07:55:01 2023 GMT Not After : Sep 6 08:00:01 2024 GMT Subject: CN=8BB94CC681AE48F686A4C5A47FD43F5FC321C80E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4a:b7:9b:5d:8e:34:65:88:2c:9c:77:9f:94: 4b:f6:18:b2:62:d0:48:bf:69:f7:62:04:dd:5c:b9: 47:11:d3:50:15:11:3b:f8:e7:6a:40:a1:f6:ae:05: ac:e3:86:0e:57:c1:01:07:d5:0c:18:8b:db:aa:f1: 12:c1:18:93:26:ff:2d:ae:35:98:c3:03:80:8f:37: af:49:16:7c:20:cb:aa:37:2c:22:cc:d0:bd:b4:47: 04:e4:95:96:e4:9a:33:bd:a2:87:f1:18:91:df:27: 56:dc:0b:4d:14:a0:37:70:d9:fd:c1:93:7e:ea:70: b0:a0:fa:9c:a0:22:8f:c2:4c:d7:a8:75:e3:32:56: 15:be:c1:5b:45:32:93:85:87:81:b5:cc:c1:ec:4a: da:20:c8:ab:e7:ba:32:af:6f:52:78:14:22:81:87: ae:1e:20:42:c4:17:54:74:5b:72:30:95:86:c5:f1: fc:72:ae:d5:8e:90:1e:14:24:06:59:47:1f:2d:8b: 9c:c8:fc:fa:a9:3b:ba:58:2d:f3:0b:63:c6:10:2f: 11:9e:2a:a4:e0:63:ff:6c:f9:89:61:fd:f8:b8:0b: f1:2a:b8:b2:ad:51:cc:81:a0:d9:f7:1c:f6:4a:5e: 3e:e0:c8:49:91:ae:53:b1:0c:7f:33:a3:cc:88:1b: 6e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B9:4C:C6:81:AE:48:F6:86:A4:C5:A4:7F:D4:3F:5F:C3:21:C8:0E X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.132.0/22 Signature Algorithm: sha256WithRSAEncryption e3:a1:86:b0:ae:cd:ff:42:cb:c1:33:06:b0:e7:48:5e:df:91: 5e:b2:f6:1e:3f:fa:f8:8c:25:95:d1:dd:fc:22:43:c1:fa:93: 1d:6b:d9:d6:3f:07:4d:8e:98:d2:7f:76:b7:3e:22:4c:9d:fd: ae:7f:b8:23:57:ed:93:88:63:43:c0:e7:dc:fb:8b:d2:c1:2e: a9:17:a8:a2:77:b8:f8:c3:57:9f:a8:f8:bd:e3:ee:50:ae:87: 40:82:41:13:ab:ca:d8:c3:ec:09:27:af:3b:20:96:70:a0:19: 03:e1:e8:7d:a4:08:b2:6d:7f:ac:d5:d7:e9:64:4e:41:0a:bd: f9:b0:02:be:19:99:04:58:ce:93:ca:65:47:92:3e:b7:9d:5d: e5:ed:d6:dc:d3:ea:59:8c:62:8e:54:34:d8:ff:70:3c:7b:6e: 53:b1:ee:80:79:61:0f:f6:90:7e:a0:b9:08:e9:97:61:d5:a5: 63:d5:16:0e:13:ed:ac:3f:eb:81:d6:e9:6b:f2:b0:2d:7f:fb: d3:d1:2d:aa:20:b3:42:e6:a6:3b:b0:3e:5e:50:3f:7f:12:19: aa:68:7a:92:b6:0f:c9:00:05:c7:1d:b7:6a:55:3c:99:22:9f: 2d:7b:ab:46:a5:a4:6e:fd:87:99:24:81:e2:a4:d6:07:fb:35: b6:66:ad:89 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbcB+wTZ6qqpA0DZPmWgq65A/z/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yMzA5MDgwNzU1MDFaFw0yNDA5MDYwODAwMDFaMDMxMTAvBgNV BAMTKDhCQjk0Q0M2ODFBRTQ4RjY4NkE0QzVBNDdGRDQzRjVGQzMyMUM4MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPSrebXY40ZYgsnHeflEv2GLJi 0Ei/afdiBN1cuUcR01AVETv452pAofauBazjhg5XwQEH1QwYi9uq8RLBGJMm/y2u NZjDA4CPN69JFnwgy6o3LCLM0L20RwTklZbkmjO9oofxGJHfJ1bcC00UoDdw2f3B k37qcLCg+pygIo/CTNeodeMyVhW+wVtFMpOFh4G1zMHsStogyKvnujKvb1J4FCKB h64eIELEF1R0W3IwlYbF8fxyrtWOkB4UJAZZRx8ti5zI/PqpO7pYLfMLY8YQLxGe KqTgY/9s+Ylh/fi4C/EquLKtUcyBoNn3HPZKXj7gyEmRrlOxDH8zo8yIG27LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUi7lMxoGuSPaGpMWkf9Q/X8MhyA4wHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMxMzAzMzJlMzEzMDM0MmUzMTMzMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnaIQwDQYJ KoZIhvcNAQELBQADggEBAOOhhrCuzf9Cy8EzBrDnSF7fkV6y9h4/+viMJZXR3fwi Q8H6kx1r2dY/B02OmNJ/drc+Ikyd/a5/uCNX7ZOIY0PA59z7i9LBLqkXqKJ3uPjD V5+o+L3j7lCuh0CCQROrytjD7AknrzsglnCgGQPh6H2kCLJtf6zV1+lkTkEKvfmw Ar4ZmQRYzpPKZUeSPredXeXt1tzT6lmMYo5UNNj/cDx7blOx7oB5YQ/2kH6guQjp l2HVpWPVFg4T7aw/64HW6WvysC1/+9PRLaogs0LmpjuwPl5QP38SGapoepK2D8kA Bccdt2pVPJkiny17q0alpG79h5kkgeKk1gf7NbZmrYk= -----END CERTIFICATE-----Generated at Fri Apr 26 10:57:38 2024 by rpki-client on console-ams.rpki-client.org