$ rpki-client -vvf repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa File: 3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa (raw, json) Hash identifier: 7XjlgPH/QUr++4fKJ/QjXAzunyikJuexW9jiFwH1jLQ= Subject key identifier: 15:65:96:3E:7F:DD:D7:49:9A:3F:0F:B9:C3:89:15:B3:88:F8:D5:81 Certificate issuer: /CN=771D0AB9C445B28C887FD7BA18DEC515D8BA3862 Certificate serial: 0849E504DC920DFB5546C09C76B3A1159FFC3236 Authority key identifier: 77:1D:0A:B9:C4:45:B2:8C:88:7F:D7:BA:18:DE:C5:15:D8:BA:38:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa Signing time: Thu 02 Nov 2023 11:00:00 +0000 ROA not before: Thu 02 Nov 2023 10:55:00 +0000 ROA not after: Thu 31 Oct 2024 11:00:00 +0000 asID: 141607 IP address blocks: 103.220.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.crl rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:49:e5:04:dc:92:0d:fb:55:46:c0:9c:76:b3:a1:15:9f:fc:32:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=771D0AB9C445B28C887FD7BA18DEC515D8BA3862 Validity Not Before: Nov 2 10:55:00 2023 GMT Not After : Oct 31 11:00:00 2024 GMT Subject: CN=1565963E7FDDD7499A3F0FB9C38915B388F8D581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:38:13:67:1c:82:6e:26:38:34:1a:90:a4:27: 97:6b:6f:99:6a:f4:65:36:fa:9e:09:b3:a2:68:d5: 28:de:3e:14:79:f1:e1:3d:50:f5:d9:f5:8c:a5:56: 62:8b:f6:c8:9d:66:17:f6:13:2b:8e:ac:d9:7c:d2: d5:7d:a0:ff:b3:9b:36:24:5d:1f:13:16:a8:cc:b7: 38:86:b4:34:72:b6:02:ae:88:e6:75:33:a2:86:44: 43:4b:c2:f2:76:45:ec:10:2c:44:e0:c6:33:3f:9c: 64:e5:a1:2a:58:de:db:7f:67:98:b0:7e:01:7e:d1: bc:09:5d:06:f7:fa:43:c7:61:08:3b:09:7f:28:a3: 39:d2:ad:07:5d:af:6c:39:6f:a6:59:ce:d6:14:ef: f3:f8:75:e6:3b:84:ee:c2:26:34:2c:b0:2f:ff:6f: 61:3d:a2:27:44:12:1a:6f:80:cd:d5:f0:a2:0c:59: 79:55:8b:c3:d4:a3:12:2a:c9:39:e4:45:35:8b:40: b7:38:9c:c7:69:5a:b0:99:fe:24:8a:1d:a7:77:7f: d3:b4:42:36:57:39:d4:0f:0e:3e:cb:fd:aa:f9:ce: 97:d4:92:0b:3e:ce:1a:85:0e:10:5b:85:ea:82:9e: ea:ee:0b:ad:86:94:d4:ed:01:66:ac:dd:cc:f6:79: 43:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:65:96:3E:7F:DD:D7:49:9A:3F:0F:B9:C3:89:15:B3:88:F8:D5:81 X509v3 Authority Key Identifier: keyid:77:1D:0A:B9:C4:45:B2:8C:88:7F:D7:BA:18:DE:C5:15:D8:BA:38:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.23.0/24 Signature Algorithm: sha256WithRSAEncryption 73:91:45:cb:d3:d2:f7:e5:1f:eb:33:c9:bb:91:ec:80:7e:7c: 0a:80:36:57:2e:a3:4c:8d:ef:60:80:4b:9b:58:ca:47:1c:14: 20:e6:44:b5:6d:e1:b7:b7:80:db:b3:0b:85:ce:ae:e4:2b:62: b7:ae:6a:36:13:3f:1a:83:ce:80:af:d2:c8:db:af:98:d2:75: 12:0a:bd:f2:7a:f8:f2:f9:c3:9a:1e:0c:8d:ee:af:ca:86:f8: ef:9b:c2:87:57:05:2b:ba:13:9b:96:7b:70:54:38:7e:90:03: d4:91:1a:d0:97:ef:c3:3f:dc:1b:79:e6:94:2d:8e:d2:16:c4: 8e:11:47:21:06:74:ec:4c:a2:22:b9:af:14:97:f6:de:53:f4: 5a:7d:75:fd:3a:9f:1b:cd:c9:5b:29:a1:65:b2:be:24:7b:b6: 51:82:fa:8d:df:8f:3b:1b:6a:e6:5e:59:75:48:18:28:16:f1: dd:35:5e:0b:08:98:57:84:af:54:44:64:cb:1d:92:35:b2:49: e9:56:f3:3f:96:b8:fb:87:ed:21:f7:90:99:3e:d0:c1:27:d5: ab:38:8b:df:43:c2:c4:6a:20:3a:6f:fe:0e:05:ce:9b:52:31: 23:1f:eb:ef:80:cb:e3:9e:ab:bc:b9:09:bb:f9:c1:3a:2c:e3: 46:ec:83:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCEnlBNySDftVRsCcdrOhFZ/8MjYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzcxRDBBQjlDNDQ1QjI4Qzg4N0ZEN0JBMThERUM1MTVE OEJBMzg2MjAeFw0yMzExMDIxMDU1MDBaFw0yNDEwMzExMTAwMDBaMDMxMTAvBgNV BAMTKDE1NjU5NjNFN0ZEREQ3NDk5QTNGMEZCOUMzODkxNUIzODhGOEQ1ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFOBNnHIJuJjg0GpCkJ5drb5lq 9GU2+p4Js6Jo1SjePhR58eE9UPXZ9YylVmKL9sidZhf2EyuOrNl80tV9oP+zmzYk XR8TFqjMtziGtDRytgKuiOZ1M6KGRENLwvJ2RewQLETgxjM/nGTloSpY3tt/Z5iw fgF+0bwJXQb3+kPHYQg7CX8ooznSrQddr2w5b6ZZztYU7/P4deY7hO7CJjQssC// b2E9oidEEhpvgM3V8KIMWXlVi8PUoxIqyTnkRTWLQLc4nMdpWrCZ/iSKHad3f9O0 QjZXOdQPDj7L/ar5zpfUkgs+zhqFDhBbheqCnuruC62GlNTtAWas3cz2eUM7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFWWWPn/d10maPw+5w4kVs4j41YEwHwYDVR0j BBgwFoAUdx0KucRFsoyIf9e6GN7FFdi6OGIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWFkNmEzZi02Y2EwLTQ2NjktOThmNy02ZjM0ODM3ZmFhNjIvMC83NzFEMEFCOUM0 NDVCMjhDODg3RkQ3QkExOERFQzUxNUQ4QkEzODYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzcxRDBBQjlDNDQ1QjI4Qzg4N0ZEN0JBMThERUM1MTVEOEJB Mzg2Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhYWQ2YTNmLTZjYTAtNDY2OS05 OGY3LTZmMzQ4MzdmYWE2Mi8wLzMxMzAzMzJlMzIzMjMwMmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9wXMA0GCSqG SIb3DQEBCwUAA4IBAQBzkUXL09L35R/rM8m7keyAfnwKgDZXLqNMje9ggEubWMpH HBQg5kS1beG3t4DbswuFzq7kK2K3rmo2Ez8ag86Ar9LI26+Y0nUSCr3yevjy+cOa HgyN7q/Khvjvm8KHVwUruhOblntwVDh+kAPUkRrQl+/DP9wbeeaULY7SFsSOEUch BnTsTKIiua8Ul/beU/RafXX9Op8bzclbKaFlsr4ke7ZRgvqN3487G2rmXll1SBgo FvHdNV4LCJhXhK9URGTLHZI1sknpVvM/lrj7h+0h95CZPtDBJ9WrOIvfQ8LEaiA6 b/4OBc6bUjEjH+vvgMvjnqu8uQm7+cE6LONG7INN -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:50 2024 by rpki-client on console-ams.rpki-client.org