$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32332d3233203d3e203536323436.roa File: 3130332e31302e3132302e302f32332d3233203d3e203536323436.roa (raw, json) Hash identifier: tkfiufnw1VB2mSodJCM9Uie13oNwtbyUK3KjHk9zkr8= Subject key identifier: 02:87:D8:05:E0:CD:B0:28:07:4B:77:8E:FC:C4:1B:F4:4E:A0:D0:BF Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 716F92FF4317B641E8355C38526B62B528856CA0 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32332d3233203d3e203536323436.roa Signing time: Mon 31 Jul 2023 00:03:57 +0000 ROA not before: Sun 30 Jul 2023 23:58:57 +0000 ROA not after: Mon 29 Jul 2024 00:03:57 +0000 asID: 56246 IP address blocks: 103.10.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 18:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:6f:92:ff:43:17:b6:41:e8:35:5c:38:52:6b:62:b5:28:85:6c:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 30 23:58:57 2023 GMT Not After : Jul 29 00:03:57 2024 GMT Subject: CN=0287D805E0CDB028074B778EFCC41BF44EA0D0BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0c:e7:c6:7f:c0:fa:2e:bc:3c:71:cc:b9:04: b2:d9:1f:b7:15:2f:3a:8f:cd:d2:40:fa:19:16:cd: 02:88:b6:e2:bd:4d:0d:15:01:09:b0:14:c2:a6:95: d5:8a:ae:74:10:1c:d1:e3:66:e2:14:4e:21:a6:9c: e2:8d:80:fb:d2:7c:e2:1b:6f:8b:60:4c:99:ed:12: 68:da:ec:07:93:52:92:48:46:75:5e:21:e3:a9:5e: d8:b2:3f:70:c3:8f:52:b0:a9:ac:07:16:f4:84:2e: a8:35:b7:c6:d1:c6:6c:aa:64:10:ca:5a:1a:de:41: 41:d6:14:e2:16:cf:f5:b7:5a:b9:dc:38:e4:e5:5b: 4b:f9:e3:e2:18:9c:b2:27:8d:38:d7:2e:8f:28:49: fe:cb:45:73:b4:a7:51:1d:22:f8:8b:69:4d:5f:47: c2:aa:b6:6c:d1:11:5d:3c:d4:73:f3:da:e8:92:0b: 8f:e1:fa:3b:1f:52:40:14:bf:d6:e5:07:85:33:0e: 94:85:17:61:f7:aa:d7:b6:e3:f3:11:39:d5:5e:1c: 3c:27:65:48:cd:5d:74:e8:11:f7:72:c0:56:5d:74: 97:f0:89:d0:d8:c7:1a:f6:21:70:89:4e:81:26:fe: 05:13:a3:22:ef:67:d4:27:9d:8e:d8:3a:97:01:88: 92:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:87:D8:05:E0:CD:B0:28:07:4B:77:8E:FC:C4:1B:F4:4E:A0:D0:BF X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32332d3233203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.120.0/23 Signature Algorithm: sha256WithRSAEncryption 74:5d:68:97:df:3b:a9:5d:02:87:fb:53:75:e1:44:2b:26:eb: f1:4c:44:76:45:b4:35:b7:fc:9e:c9:24:41:0d:c6:3a:fa:68: 5d:b7:cf:45:6d:26:f5:df:fa:60:30:dd:5d:82:a7:74:7d:16: 8d:14:7b:7a:04:c7:fb:3b:a9:2b:e2:8e:17:f3:a5:b6:88:2b: a8:ed:70:3a:59:b6:36:5f:df:56:d3:66:13:81:c8:bd:45:5b: 9b:4c:0f:cf:a1:7e:d6:66:cd:09:a7:53:db:b4:d7:ac:e2:6b: 83:ad:c2:b1:32:e9:ef:28:0e:8c:07:c7:f8:c6:c4:47:e6:f9: 29:a8:01:cd:08:41:7e:f8:1b:03:fd:43:af:1f:e6:b3:c4:87: 88:e9:27:77:13:61:b2:17:42:85:9f:15:08:58:e5:6f:55:c6: b8:02:3c:06:7b:3a:36:4c:bf:f4:6a:d3:30:03:ea:14:e4:f0: 27:ae:08:bb:40:36:aa:fd:e9:36:fc:61:8e:b8:d9:30:0a:40: a2:5c:97:37:39:d1:04:46:b5:02:79:72:19:e1:79:ca:cc:59: 2a:b7:91:d7:a0:33:99:19:58:a0:24:08:69:0e:2b:b8:88:50: 3d:6d:95:ba:dc:2e:60:da:af:22:77:86:9d:5a:cd:a1:1b:d9: d9:42:0c:64 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcW+S/0MXtkHoNVw4UmtitSiFbKAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzA3MzAyMzU4NTdaFw0yNDA3MjkwMDAzNTdaMDMxMTAvBgNV BAMTKDAyODdEODA1RTBDREIwMjgwNzRCNzc4RUZDQzQxQkY0NEVBMEQwQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxDOfGf8D6Lrw8ccy5BLLZH7cV LzqPzdJA+hkWzQKItuK9TQ0VAQmwFMKmldWKrnQQHNHjZuIUTiGmnOKNgPvSfOIb b4tgTJntEmja7AeTUpJIRnVeIeOpXtiyP3DDj1KwqawHFvSELqg1t8bRxmyqZBDK WhreQUHWFOIWz/W3WrncOOTlW0v54+IYnLInjTjXLo8oSf7LRXO0p1EdIviLaU1f R8KqtmzREV081HPz2uiSC4/h+jsfUkAUv9blB4UzDpSFF2H3qte24/MROdVeHDwn ZUjNXXToEfdywFZddJfwidDYxxr2IXCJToEm/gUToyLvZ9QnnY7YOpcBiJLZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAofYBeDNsCgHS3eO/MQb9E6g0L8wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMDJlMzEzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcKeDANBgkqhkiG 9w0BAQsFAAOCAQEAdF1ol987qV0Ch/tTdeFEKybr8UxEdkW0Nbf8nskkQQ3GOvpo XbfPRW0m9d/6YDDdXYKndH0WjRR7egTH+zupK+KOF/OltogrqO1wOlm2Nl/fVtNm E4HIvUVbm0wPz6F+1mbNCadT27TXrOJrg63CsTLp7ygOjAfH+MbER+b5KagBzQhB fvgbA/1Drx/ms8SHiOkndxNhshdChZ8VCFjlb1XGuAI8Bns6Nky/9GrTMAPqFOTw J64Iu0A2qv3pNvxhjrjZMApAolyXNznRBEa1AnlyGeF5ysxZKreR16AzmRlYoCQI aQ4ruIhQPW2VutwuYNqvIneGnVrNoRvZ2UIMZA== -----END CERTIFICATE-----Generated at Fri Apr 19 10:26:10 2024 by rpki-client on console-ams.rpki-client.org