$ rpki-client -vvf repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa File: 3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa (raw, json) Hash identifier: S2cRmCTnF82DBUIqwgGj0YE0k3UFOJk1wfUK3tYWLEo= Subject key identifier: BA:49:A4:3B:D2:69:D1:C7:FC:55:25:57:A2:43:A1:9A:BE:33:39:3F Certificate issuer: /CN=A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A Certificate serial: 5E92BE03A3AEB0ECA02D28B34B955E962D4F11AC Authority key identifier: A6:6E:6F:78:7B:7D:E2:EA:2F:F1:C1:9F:30:DF:E2:21:5B:0B:EB:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa Signing time: Mon 31 Jul 2023 00:03:59 +0000 ROA not before: Sun 30 Jul 2023 23:58:59 +0000 ROA not after: Mon 29 Jul 2024 00:03:59 +0000 asID: 131745 IP address blocks: 103.30.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.crl rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 04:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:92:be:03:a3:ae:b0:ec:a0:2d:28:b3:4b:95:5e:96:2d:4f:11:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A Validity Not Before: Jul 30 23:58:59 2023 GMT Not After : Jul 29 00:03:59 2024 GMT Subject: CN=BA49A43BD269D1C7FC552557A243A19ABE33393F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:51:e9:7a:54:c8:cd:32:db:00:fa:08:74:5f: 21:78:1d:03:1f:4b:1e:06:7e:ef:33:ef:08:cf:b9: 89:f6:21:5f:ec:9c:ad:a7:89:ab:42:f0:52:a0:ed: 04:0f:00:ce:6e:d4:23:3e:c0:29:ec:e2:af:33:e5: a2:fc:a3:af:b5:95:eb:ce:46:6d:6a:d6:a3:31:82: 25:6c:4b:69:0e:56:19:c5:f4:75:6c:e4:7e:73:13: 1c:a1:09:c4:b1:5e:2e:79:9b:de:91:37:d2:13:f7: dc:1f:3f:4b:68:30:33:5a:09:3a:a1:06:a1:77:8d: 81:c0:a7:71:eb:18:c6:60:9d:2d:42:91:e5:17:f9: d7:92:51:0a:b4:99:43:81:c4:08:1f:f6:63:d5:bd: ac:29:6f:8b:09:a7:10:89:87:22:8b:00:71:a9:72: df:a6:71:69:a9:18:ba:32:32:6c:21:a6:1c:4c:b0: fb:d4:d6:48:d1:9e:98:2d:4e:7e:8b:da:88:7c:58: 4d:55:63:4e:56:29:19:67:0f:c1:0f:6c:48:8b:ef: 2e:4d:aa:7a:85:54:9e:5e:e1:12:bd:70:18:0e:57: f8:07:79:76:05:24:25:6a:d0:38:58:7b:30:40:75: 11:a0:ae:96:87:d3:6e:1e:b7:9d:7a:5e:1d:07:11: 24:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:49:A4:3B:D2:69:D1:C7:FC:55:25:57:A2:43:A1:9A:BE:33:39:3F X509v3 Authority Key Identifier: keyid:A6:6E:6F:78:7B:7D:E2:EA:2F:F1:C1:9F:30:DF:E2:21:5B:0B:EB:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.30.244.0/22 Signature Algorithm: sha256WithRSAEncryption 44:c1:42:72:e7:e8:df:2c:3b:25:de:26:20:10:91:cc:d7:3b: 29:bd:a9:76:4f:65:ca:8a:22:9c:27:fe:65:ea:a7:b1:5c:34: 09:90:52:81:aa:95:3f:89:b3:c5:e7:8e:f8:e8:ba:2f:1a:9c: ae:24:f2:4b:91:8d:7f:fb:7f:bd:05:a7:75:5f:92:53:05:15: 52:61:1d:88:85:53:78:fb:7b:10:c2:9d:64:72:d8:f0:5f:67: 0d:48:6e:61:39:80:51:ef:2b:3d:18:ff:65:1a:45:3e:f2:2f: a7:0e:8d:47:44:f0:e9:ba:83:18:cc:4a:f1:aa:d4:4e:7e:69: 77:32:0d:ca:e8:a2:b7:6b:a5:4f:b7:b4:e5:ed:48:6b:8e:a7: 58:a4:42:8a:a8:bf:ba:b7:89:3f:c3:3e:ef:b1:d9:c8:8e:39: 7c:53:45:6e:c6:5a:39:4a:b4:d0:ca:52:09:6f:e5:38:25:d5: 0a:09:82:17:cc:e3:e4:13:fe:ad:8b:db:93:93:b2:3b:aa:d2: fc:4e:4e:13:c5:84:63:bd:14:4a:b0:13:5e:9c:13:06:ff:0d: 31:42:f7:5e:30:63:e3:26:82:01:6b:36:a9:f5:5c:19:09:d5: 5a:36:f0:87:a9:cc:59:90:74:b6:65:2c:2d:0d:45:0e:33:c9: de:23:14:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXpK+A6OusOygLSizS5Veli1PEawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTY2RTZGNzg3QjdERTJFQTJGRjFDMTlGMzBERkUyMjE1 QjBCRUI0QTAeFw0yMzA3MzAyMzU4NTlaFw0yNDA3MjkwMDAzNTlaMDMxMTAvBgNV BAMTKEJBNDlBNDNCRDI2OUQxQzdGQzU1MjU1N0EyNDNBMTlBQkUzMzM5M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrUel6VMjNMtsA+gh0XyF4HQMf Sx4Gfu8z7wjPuYn2IV/snK2niatC8FKg7QQPAM5u1CM+wCns4q8z5aL8o6+1levO Rm1q1qMxgiVsS2kOVhnF9HVs5H5zExyhCcSxXi55m96RN9IT99wfP0toMDNaCTqh BqF3jYHAp3HrGMZgnS1CkeUX+deSUQq0mUOBxAgf9mPVvawpb4sJpxCJhyKLAHGp ct+mcWmpGLoyMmwhphxMsPvU1kjRnpgtTn6L2oh8WE1VY05WKRlnD8EPbEiL7y5N qnqFVJ5e4RK9cBgOV/gHeXYFJCVq0DhYezBAdRGgrpaH024et516Xh0HESRlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUukmkO9Jp0cf8VSVXokOhmr4zOT8wHwYDVR0j BBgwFoAUpm5veHt94uov8cGfMN/iIVsL60owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzhjNjIxZC0wNWJjLTRiY2QtOTY1Ny1jZGYzMzg2MGYyMWEvMC9BNjZFNkY3ODdC N0RFMkVBMkZGMUMxOUYzMERGRTIyMTVCMEJFQjRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTY2RTZGNzg3QjdERTJFQTJGRjFDMTlGMzBERkUyMjE1QjBC RUI0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzOGM2MjFkLTA1YmMtNGJjZC05 NjU3LWNkZjMzODYwZjIxYS8wLzMxMzAzMzJlMzMzMDJlMzIzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZx70MA0GCSqG SIb3DQEBCwUAA4IBAQBEwUJy5+jfLDsl3iYgEJHM1zspval2T2XKiiKcJ/5l6qex XDQJkFKBqpU/ibPF54746LovGpyuJPJLkY1/+3+9Bad1X5JTBRVSYR2IhVN4+3sQ wp1kctjwX2cNSG5hOYBR7ys9GP9lGkU+8i+nDo1HRPDpuoMYzErxqtROfml3Mg3K 6KK3a6VPt7Tl7UhrjqdYpEKKqL+6t4k/wz7vsdnIjjl8U0Vuxlo5SrTQylIJb+U4 JdUKCYIXzOPkE/6ti9uTk7I7qtL8Tk4TxYRjvRRKsBNenBMG/w0xQvdeMGPjJoIB azap9VwZCdVaNvCHqcxZkHS2ZSwtDUUOM8neIxSZ -----END CERTIFICATE-----Generated at Wed Apr 24 05:31:33 2024 by rpki-client on console-fra.rpki-client.org