$ rpki-client -vvf repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa File: 3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa (raw, json) Hash identifier: 94ZWpvU2hiMpkfZsuLJa0wY6wiQVe/HRvIFg+w5uyvo= Subject key identifier: 1D:6B:0F:CE:37:CE:33:52:ED:1A:89:50:B9:B4:E5:D2:17:63:8C:63 Certificate issuer: /CN=D296B71263A794DB76A99329A0A6CD91F03F997C Certificate serial: 4433198FCCFB97A59ACF0665ED37705674C8866A Authority key identifier: D2:96:B7:12:63:A7:94:DB:76:A9:93:29:A0:A6:CD:91:F0:3F:99:7C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D296B71263A794DB76A99329A0A6CD91F03F997C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa Signing time: Mon 31 Jul 2023 00:05:26 +0000 ROA not before: Mon 31 Jul 2023 00:00:26 +0000 ROA not after: Mon 29 Jul 2024 00:05:26 +0000 asID: 18351 IP address blocks: 103.231.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/D296B71263A794DB76A99329A0A6CD91F03F997C.crl rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/D296B71263A794DB76A99329A0A6CD91F03F997C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D296B71263A794DB76A99329A0A6CD91F03F997C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:33:19:8f:cc:fb:97:a5:9a:cf:06:65:ed:37:70:56:74:c8:86:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D296B71263A794DB76A99329A0A6CD91F03F997C Validity Not Before: Jul 31 00:00:26 2023 GMT Not After : Jul 29 00:05:26 2024 GMT Subject: CN=1D6B0FCE37CE3352ED1A8950B9B4E5D217638C63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4b:b5:94:8c:17:50:d2:6d:32:09:91:7e:d4: 06:5a:34:ab:e0:49:52:6f:5c:5a:93:d8:c3:98:53: 7f:1f:85:91:7c:73:ca:b9:dc:3a:0d:04:b3:d0:93: 76:ae:0e:c0:3d:0c:0a:f6:52:f1:be:78:ea:e5:8d: 64:60:a0:a1:74:7e:3c:93:91:14:45:15:26:3a:67: bc:d3:5e:8d:eb:02:fb:80:ac:25:4e:8c:c6:8f:3a: 84:10:e4:b2:bc:c0:ab:cb:bb:36:4b:43:4b:1c:ec: 9f:b7:e1:8d:8b:8f:f7:9d:52:54:27:07:90:06:31: cd:4b:fd:c2:8e:51:4e:38:96:00:52:d7:f4:d4:94: 58:3f:ad:09:dc:71:ed:53:cc:18:a0:0d:7f:b8:20: 15:f8:5f:54:f1:12:7d:3d:f9:60:93:e3:60:8b:a5: ff:66:00:0b:8a:d0:cd:a3:c3:d9:57:0a:f8:d0:2d: 0c:42:92:be:9e:a8:c7:44:9f:1d:0b:b6:2d:b4:24: 73:f9:52:66:2b:4b:c9:eb:82:b8:1d:7b:eb:8a:92: 09:b5:24:cb:5c:04:f2:79:05:48:2c:39:01:af:91: dd:0e:e1:55:b0:6d:a7:4c:6a:07:2f:6f:5f:63:67: bd:6a:c8:bc:18:55:bf:7b:79:39:5e:b4:19:d1:0f: 4b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6B:0F:CE:37:CE:33:52:ED:1A:89:50:B9:B4:E5:D2:17:63:8C:63 X509v3 Authority Key Identifier: keyid:D2:96:B7:12:63:A7:94:DB:76:A9:93:29:A0:A6:CD:91:F0:3F:99:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/D296B71263A794DB76A99329A0A6CD91F03F997C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D296B71263A794DB76A99329A0A6CD91F03F997C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.108.0/22 Signature Algorithm: sha256WithRSAEncryption 55:d2:5c:cb:7d:ff:a8:78:97:dd:7d:f6:66:59:96:e4:ff:9d: d6:46:c7:51:b9:e9:b4:e6:49:1e:2e:8d:b1:53:a6:44:e0:ab: 1d:bd:eb:06:9f:c7:b0:73:f7:3c:9e:88:55:99:41:58:21:a6: 0f:40:a3:99:aa:5e:cd:3b:75:c2:91:0a:a7:59:4c:12:89:8f: 27:3c:2e:be:2e:f4:f5:8e:be:e8:7e:fd:ba:93:92:f4:9e:3d: 04:01:27:8a:06:f2:2c:41:43:71:62:7d:a1:7a:d3:81:ab:a1: 0e:43:4a:ab:78:13:d4:9a:d9:84:60:91:f6:f0:07:2e:07:04: ac:f6:af:7e:81:b1:22:59:2f:13:d3:8e:10:59:06:ad:83:1b: 8d:23:1b:af:c8:4c:4e:85:3c:14:02:4a:5b:71:ed:23:f1:f3: 5f:e9:25:62:c4:3b:54:a5:8f:db:39:56:66:66:58:51:bd:68: 62:70:66:77:4b:83:1f:ec:85:d0:89:f8:38:48:c4:da:03:6d: 07:3c:18:f6:f9:ed:53:7d:6e:2b:d0:c7:a4:a9:b1:cc:ee:23: 77:3c:56:f1:6a:4f:30:ea:c5:84:76:ec:0c:31:c7:0b:c7:df: b9:41:9c:d6:b9:5e:fc:e3:fb:3f:62:5c:d1:f6:bc:cd:71:e8: b3:71:07:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURDMZj8z7l6WazwZl7TdwVnTIhmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI5NkI3MTI2M0E3OTREQjc2QTk5MzI5QTBBNkNEOTFG MDNGOTk3QzAeFw0yMzA3MzEwMDAwMjZaFw0yNDA3MjkwMDA1MjZaMDMxMTAvBgNV BAMTKDFENkIwRkNFMzdDRTMzNTJFRDFBODk1MEI5QjRFNUQyMTc2MzhDNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1S7WUjBdQ0m0yCZF+1AZaNKvg SVJvXFqT2MOYU38fhZF8c8q53DoNBLPQk3auDsA9DAr2UvG+eOrljWRgoKF0fjyT kRRFFSY6Z7zTXo3rAvuArCVOjMaPOoQQ5LK8wKvLuzZLQ0sc7J+34Y2Lj/edUlQn B5AGMc1L/cKOUU44lgBS1/TUlFg/rQncce1TzBigDX+4IBX4X1TxEn09+WCT42CL pf9mAAuK0M2jw9lXCvjQLQxCkr6eqMdEnx0Lti20JHP5UmYrS8nrgrgde+uKkgm1 JMtcBPJ5BUgsOQGvkd0O4VWwbadMagcvb19jZ71qyLwYVb97eTletBnRD0u7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHWsPzjfOM1LtGolQubTl0hdjjGMwHwYDVR0j BBgwFoAU0pa3EmOnlNt2qZMpoKbNkfA/mXwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 M2Y3NWU5OC0xNGVmLTQ0NTctOTRmMy1lNWI3M2E5MjJmYzUvMC9EMjk2QjcxMjYz QTc5NERCNzZBOTkzMjlBMEE2Q0Q5MUYwM0Y5OTdDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI5NkI3MTI2M0E3OTREQjc2QTk5MzI5QTBBNkNEOTFGMDNG OTk3Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzZjc1ZTk4LTE0ZWYtNDQ1Ny05 NGYzLWU1YjczYTkyMmZjNS8wLzMxMzAzMzJlMzIzMzMxMmUzMTMwMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM4MzMzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+dsMA0GCSqG SIb3DQEBCwUAA4IBAQBV0lzLff+oeJfdffZmWZbk/53WRsdRuem05kkeLo2xU6ZE 4KsdvesGn8ewc/c8nohVmUFYIaYPQKOZql7NO3XCkQqnWUwSiY8nPC6+LvT1jr7o fv26k5L0nj0EASeKBvIsQUNxYn2hetOBq6EOQ0qreBPUmtmEYJH28AcuBwSs9q9+ gbEiWS8T044QWQatgxuNIxuvyExOhTwUAkpbce0j8fNf6SVixDtUpY/bOVZmZlhR vWhicGZ3S4Mf7IXQifg4SMTaA20HPBj2+e1TfW4r0MekqbHM7iN3PFbxak8w6sWE duwMMccLx9+5QZzWuV784/s/YlzR9rzNceizcQeS -----END CERTIFICATE-----Generated at Thu Apr 18 23:07:30 2024 by rpki-client on console-ams.rpki-client.org