$ rpki-client -vvf repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa File: 3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: vz9PfC1eycWHxtu+TPX7oQijXYtapmBiHFg0y45Yij0= Subject key identifier: F1:7A:02:2C:84:BA:51:6B:C6:06:B7:BD:E0:A5:17:2F:C4:B2:37:6C Certificate issuer: /CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Certificate serial: 6BFC62B8AC9DCA2D7A79AC15CEBBD7D07D2D73A0 Authority key identifier: B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa Signing time: Mon 31 Jul 2023 00:06:19 +0000 ROA not before: Mon 31 Jul 2023 00:01:19 +0000 ROA not after: Mon 29 Jul 2024 00:06:19 +0000 asID: 138096 IP address blocks: 103.124.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 10:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:fc:62:b8:ac:9d:ca:2d:7a:79:ac:15:ce:bb:d7:d0:7d:2d:73:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Validity Not Before: Jul 31 00:01:19 2023 GMT Not After : Jul 29 00:06:19 2024 GMT Subject: CN=F17A022C84BA516BC606B7BDE0A5172FC4B2376C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:49:5e:5d:4b:bf:cd:42:cd:f5:a5:a8:8b:52: ea:47:f9:cd:31:2c:ee:02:f1:6f:54:11:e7:97:13: 2f:30:e3:ae:01:d8:03:ec:22:ae:c7:51:d3:0b:f6: d8:f3:c1:64:6b:5b:0b:60:9e:98:72:49:90:1c:d4: ec:55:cb:a6:97:c1:da:35:62:ab:65:be:41:b7:65: e0:10:4b:a4:95:f3:2d:f1:b2:1b:94:f1:fa:e2:bd: 7d:37:f3:27:8c:b1:e7:cd:9b:a2:d6:e7:28:c3:05: 52:f9:04:9e:48:67:a5:04:fc:82:2f:c0:c6:c6:7a: c5:d2:a0:98:d5:87:dd:97:77:80:3d:d8:86:38:8a: c0:8b:17:bf:4d:23:17:d4:80:fc:13:78:4b:aa:0f: 25:7c:86:78:bb:6f:49:0c:63:73:52:ad:b2:e6:26: 3b:8c:49:19:82:cf:ba:c3:9d:72:a5:d1:4a:43:f4: bd:c3:aa:63:3f:0f:79:e2:f1:12:c8:d2:de:f0:cc: e3:42:c6:97:06:22:2d:aa:ec:49:37:de:97:af:5c: e8:a3:54:17:14:28:0b:c3:36:56:0a:73:39:89:15: 75:75:98:f6:2f:69:32:0e:4b:e5:c5:5b:ad:a2:d7: 22:e9:6e:69:ce:22:bb:fe:db:98:04:de:f3:54:bf: 30:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:7A:02:2C:84:BA:51:6B:C6:06:B7:BD:E0:A5:17:2F:C4:B2:37:6C X509v3 Authority Key Identifier: keyid:B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.199.0/24 Signature Algorithm: sha256WithRSAEncryption 50:be:2f:35:7f:e6:d1:37:67:d1:b6:9d:cd:58:99:e5:ec:22: f8:4b:b1:f9:48:eb:bf:1f:65:36:51:5d:51:3f:fc:55:16:80: 00:48:23:fa:6f:04:a3:f8:05:43:9a:7c:25:d5:9a:53:3e:a0: ce:5b:6d:0b:1e:0b:91:e9:93:e8:27:dc:1f:f1:4f:20:26:61: e9:a0:c6:60:03:2b:2f:73:55:4b:af:ce:8a:9d:5d:24:2b:40: 21:c5:e5:a8:cb:27:01:04:00:4c:dd:b7:ca:12:3c:09:d2:b2: 03:83:a6:8a:2d:7c:f5:c1:34:e0:01:28:5d:43:f2:49:eb:63: 8b:02:ea:72:50:73:4c:b7:38:10:88:e2:72:f8:c0:60:f7:ca: 60:78:3f:9e:cb:7d:6f:ff:5a:2a:de:5b:5b:1a:ab:18:7e:32: 9f:bd:09:cf:5d:81:3f:eb:0e:71:60:db:2a:3d:dc:01:5e:ce: 55:c7:0d:5a:2e:13:b3:bc:c3:73:76:db:dd:ee:5f:c6:f9:81: 46:a4:8e:ef:b6:59:9a:27:b1:b6:0d:20:d1:11:c9:ae:1f:88: dd:3b:b4:6e:46:c5:8d:8c:76:94:e6:f8:d1:c8:a7:b2:68:b7: b8:13:f4:fd:78:9f:37:0f:4c:f8:66:be:47:03:81:fa:83:a3: 28:57:55:e0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUa/xiuKydyi16eawVzrvX0H0tc6AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEz N0M4M0E4NjAeFw0yMzA3MzEwMDAxMTlaFw0yNDA3MjkwMDA2MTlaMDMxMTAvBgNV BAMTKEYxN0EwMjJDODRCQTUxNkJDNjA2QjdCREUwQTUxNzJGQzRCMjM3NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjSV5dS7/NQs31paiLUupH+c0x LO4C8W9UEeeXEy8w464B2APsIq7HUdML9tjzwWRrWwtgnphySZAc1OxVy6aXwdo1 YqtlvkG3ZeAQS6SV8y3xshuU8frivX038yeMsefNm6LW5yjDBVL5BJ5IZ6UE/IIv wMbGesXSoJjVh92Xd4A92IY4isCLF79NIxfUgPwTeEuqDyV8hni7b0kMY3NSrbLm JjuMSRmCz7rDnXKl0UpD9L3DqmM/D3ni8RLI0t7wzONCxpcGIi2q7Ek33pevXOij VBcUKAvDNlYKczmJFXV1mPYvaTIOS+XFW62i1yLpbmnOIrv+25gE3vNUvzDpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8XoCLIS6UWvGBre94KUXL8SyN2wwHwYDVR0j BBgwFoAUtgXXH+taHb5Wds+ss5SrujfIOoYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NWRmZjliMy05MDQxLTRkZDYtYjdhYi0wMjA2MGQ2NWQwOWEvMC9CNjA1RDcxRkVC NUExREJFNTY3NkNGQUNCMzk0QUJCQTM3QzgzQTg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEzN0M4 M0E4Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1ZGZmOWIzLTkwNDEtNGRkNi1i N2FiLTAyMDYwZDY1ZDA5YS8wLzMxMzAzMzJlMzEzMjM0MmUzMTM5MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfMcwDQYJ KoZIhvcNAQELBQADggEBAFC+LzV/5tE3Z9G2nc1YmeXsIvhLsflI678fZTZRXVE/ /FUWgABII/pvBKP4BUOafCXVmlM+oM5bbQseC5Hpk+gn3B/xTyAmYemgxmADKy9z VUuvzoqdXSQrQCHF5ajLJwEEAEzdt8oSPAnSsgODpootfPXBNOABKF1D8knrY4sC 6nJQc0y3OBCI4nL4wGD3ymB4P57LfW//WireW1saqxh+Mp+9Cc9dgT/rDnFg2yo9 3AFezlXHDVouE7O8w3N2293uX8b5gUakju+2WZonsbYNINERya4fiN07tG5GxY2M dpTm+NHIp7Jot7gT9P14nzcPTPhmvkcDgfqDoyhXVeA= -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:59 2024 by rpki-client on console-ams.rpki-client.org