$ rpki-client -vvf repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32322e302f32332d3234203d3e20313431363037.roa File: 3130332e3232302e32322e302f32332d3234203d3e20313431363037.roa (raw, json) Hash identifier: QXAStynJ8kv4UfexseU0ib9C76DR7GFYfBYKRNvv414= Subject key identifier: 3F:FB:01:FD:9A:E4:97:C3:99:BB:0C:D1:67:99:67:AF:BE:E3:73:55 Certificate issuer: /CN=771D0AB9C445B28C887FD7BA18DEC515D8BA3862 Certificate serial: 4AD8536EC885C40F2E1DAA2A291C51E16370924F Authority key identifier: 77:1D:0A:B9:C4:45:B2:8C:88:7F:D7:BA:18:DE:C5:15:D8:BA:38:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32322e302f32332d3234203d3e20313431363037.roa Signing time: Fri 25 Aug 2023 12:00:00 +0000 ROA not before: Fri 25 Aug 2023 11:55:00 +0000 ROA not after: Fri 23 Aug 2024 12:00:00 +0000 asID: 141607 IP address blocks: 103.220.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.crl rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d8:53:6e:c8:85:c4:0f:2e:1d:aa:2a:29:1c:51:e1:63:70:92:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=771D0AB9C445B28C887FD7BA18DEC515D8BA3862 Validity Not Before: Aug 25 11:55:00 2023 GMT Not After : Aug 23 12:00:00 2024 GMT Subject: CN=3FFB01FD9AE497C399BB0CD1679967AFBEE37355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fe:ce:f9:a3:5f:88:98:f3:b7:d2:e8:44:2e: f0:df:cb:8e:17:8a:fa:af:c5:53:4b:07:93:fe:b4: dc:fa:bc:d7:6b:43:cf:68:a0:51:63:3c:e0:79:51: b0:8b:20:14:cc:d8:0f:9a:48:59:83:0a:05:9e:33: b2:77:f2:d7:04:d8:0d:52:c0:16:ed:b6:7c:e6:4e: 64:e3:c2:f0:b1:0c:03:cf:32:a5:c9:61:35:38:77: 4e:a0:bc:82:dd:4e:c6:37:d3:ab:1e:d5:33:dc:17: c4:73:88:73:ab:52:04:1e:f2:1f:9c:ee:cb:fb:b5: e4:a4:5a:92:31:2b:c1:31:ed:22:a5:a1:98:8e:2d: 7a:71:26:4d:3f:24:f8:2a:ea:07:a2:a4:39:ed:69: ba:af:a6:15:84:b1:6e:ac:21:d1:af:92:13:38:5b: a9:d8:0b:22:99:d7:68:80:5f:86:f0:1c:f7:76:ef: 16:c0:c5:59:85:df:5b:72:d7:39:93:e6:b3:63:fd: c2:c1:7a:a8:53:43:10:2a:6a:6a:19:37:ae:79:3f: ee:61:72:a2:b8:68:26:ea:75:a7:d1:4a:a8:63:1a: e2:4d:b5:30:0c:54:5d:41:bc:d6:5e:c4:b6:14:14: f3:ae:72:64:20:75:09:a6:da:12:42:87:3a:58:4c: d7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:FB:01:FD:9A:E4:97:C3:99:BB:0C:D1:67:99:67:AF:BE:E3:73:55 X509v3 Authority Key Identifier: keyid:77:1D:0A:B9:C4:45:B2:8C:88:7F:D7:BA:18:DE:C5:15:D8:BA:38:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32322e302f32332d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.22.0/23 Signature Algorithm: sha256WithRSAEncryption 69:1d:32:4f:93:15:de:9e:a5:05:5d:79:9a:79:8a:ea:37:38: 46:9d:c3:ee:96:69:32:2f:53:6b:ee:11:15:30:ef:b9:d9:ae: 38:70:35:5e:80:22:84:6c:11:71:f5:51:f6:1a:1c:77:87:01: b4:97:4f:a1:35:5e:9d:33:b6:ab:e8:04:5f:b4:93:0b:40:59: 68:34:93:fe:ef:fe:86:0f:94:cb:f2:6b:3a:68:0c:76:8f:d0: ab:9c:ae:32:52:5d:7c:94:8c:89:e4:86:6e:69:01:77:8d:23: 99:9b:74:24:f0:d0:16:de:15:14:44:c9:4f:ba:76:9b:93:6e: a5:43:12:71:23:7d:df:e0:67:1f:4b:65:12:51:f2:22:4a:da: 11:0e:2e:53:e3:21:8a:f5:4e:e7:ad:65:a9:95:aa:f3:81:aa: 54:58:8a:c3:da:47:64:5b:57:d1:ba:5b:b2:0c:b7:f7:fe:84: 7e:16:75:c6:d1:ec:7c:b5:95:e1:dd:d8:62:79:29:0e:e8:27: c3:c1:b2:46:ea:ce:72:85:ed:a6:23:9c:a4:9c:ee:23:14:9f: 9e:cf:be:51:8b:85:38:4e:18:97:27:7e:e5:c5:3e:34:f5:d0: ee:07:70:94:11:14:e1:8b:ff:63:fc:85:e9:ab:2e:d5:a0:06: 8c:a9:b2:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSthTbsiFxA8uHaoqKRxR4WNwkk8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzcxRDBBQjlDNDQ1QjI4Qzg4N0ZEN0JBMThERUM1MTVE OEJBMzg2MjAeFw0yMzA4MjUxMTU1MDBaFw0yNDA4MjMxMjAwMDBaMDMxMTAvBgNV BAMTKDNGRkIwMUZEOUFFNDk3QzM5OUJCMENEMTY3OTk2N0FGQkVFMzczNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3/s75o1+ImPO30uhELvDfy44X ivqvxVNLB5P+tNz6vNdrQ89ooFFjPOB5UbCLIBTM2A+aSFmDCgWeM7J38tcE2A1S wBbttnzmTmTjwvCxDAPPMqXJYTU4d06gvILdTsY306se1TPcF8RziHOrUgQe8h+c 7sv7teSkWpIxK8Ex7SKloZiOLXpxJk0/JPgq6geipDntabqvphWEsW6sIdGvkhM4 W6nYCyKZ12iAX4bwHPd27xbAxVmF31ty1zmT5rNj/cLBeqhTQxAqamoZN655P+5h cqK4aCbqdafRSqhjGuJNtTAMVF1BvNZexLYUFPOucmQgdQmm2hJChzpYTNfBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUP/sB/Zrkl8OZuwzRZ5lnr77jc1UwHwYDVR0j BBgwFoAUdx0KucRFsoyIf9e6GN7FFdi6OGIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWFkNmEzZi02Y2EwLTQ2NjktOThmNy02ZjM0ODM3ZmFhNjIvMC83NzFEMEFCOUM0 NDVCMjhDODg3RkQ3QkExOERFQzUxNUQ4QkEzODYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzcxRDBBQjlDNDQ1QjI4Qzg4N0ZEN0JBMThERUM1MTVEOEJB Mzg2Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhYWQ2YTNmLTZjYTAtNDY2OS05 OGY3LTZmMzQ4MzdmYWE2Mi8wLzMxMzAzMzJlMzIzMjMwMmUzMjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9wWMA0GCSqG SIb3DQEBCwUAA4IBAQBpHTJPkxXenqUFXXmaeYrqNzhGncPulmkyL1Nr7hEVMO+5 2a44cDVegCKEbBFx9VH2Ghx3hwG0l0+hNV6dM7ar6ARftJMLQFloNJP+7/6GD5TL 8ms6aAx2j9CrnK4yUl18lIyJ5IZuaQF3jSOZm3Qk8NAW3hUURMlPunabk26lQxJx I33f4GcfS2USUfIiStoRDi5T4yGK9U7nrWWplarzgapUWIrD2kdkW1fRuluyDLf3 /oR+FnXG0ex8tZXh3dhieSkO6CfDwbJG6s5yhe2mI5yknO4jFJ+ez75Ri4U4ThiX J37lxT409dDuB3CUERThi/9j/IXpqy7VoAaMqbL7 -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:50 2024 by rpki-client on console-ams.rpki-client.org