$ rpki-client -vvf repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232302e302f32342d3234203d3e20313338303632.roa File: 3130332e3132392e3232302e302f32342d3234203d3e20313338303632.roa (raw, json) Hash identifier: xT78sjyKZmCyoHQ8sht/n+Zy+GgxqYtl5x4LSZHU11g= Subject key identifier: E8:03:D0:09:6C:33:27:BB:97:C0:70:78:2D:F8:D9:90:D1:C6:8B:56 Certificate issuer: /CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Certificate serial: 71CE4DBD9F5007AFB8F18C95E10C818973A0D59D Authority key identifier: E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232302e302f32342d3234203d3e20313338303632.roa Signing time: Mon 31 Jul 2023 00:03:20 +0000 ROA not before: Sun 30 Jul 2023 23:58:20 +0000 ROA not after: Mon 29 Jul 2024 00:03:20 +0000 asID: 138062 IP address blocks: 103.129.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ce:4d:bd:9f:50:07:af:b8:f1:8c:95:e1:0c:81:89:73:a0:d5:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Validity Not Before: Jul 30 23:58:20 2023 GMT Not After : Jul 29 00:03:20 2024 GMT Subject: CN=E803D0096C3327BB97C070782DF8D990D1C68B56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:46:89:3a:da:0c:2a:4e:52:61:45:31:71:2c: 2e:a4:79:9a:a8:77:7b:0d:6e:2f:3d:d4:91:8a:3e: 8b:c9:98:01:a9:78:4d:3e:ae:1c:c8:e7:17:e9:bc: ba:ab:07:fc:10:7c:55:53:12:d5:51:34:8d:d7:f3: 4d:a1:26:e1:fd:18:08:0f:22:3c:2e:df:5c:38:5f: fc:b1:48:6f:99:0a:bc:0f:ce:4c:70:fa:00:82:ba: 02:ae:dc:40:6c:a5:cf:82:e2:cb:0a:57:f7:f0:5a: 4b:e1:0b:66:a9:f9:6c:da:5e:4b:2a:7e:8d:49:b0: ce:06:eb:4b:c8:a8:80:29:2c:40:0c:df:a9:d8:71: df:b1:23:57:50:ff:1b:d6:26:43:27:1f:0c:d2:e0: 38:e1:a9:60:68:d9:8c:55:8d:da:b1:36:2d:d9:d6: 46:61:de:ea:14:25:79:60:66:8e:cf:c5:82:7d:7c: 89:d2:c6:5b:12:e4:0b:5b:3f:4a:13:fc:83:89:ff: aa:38:c6:c4:dc:6b:65:e7:f9:46:6d:28:38:2f:4b: cc:61:4b:18:82:49:33:ad:59:e6:ac:57:2b:ac:53: 37:c5:be:04:09:2b:af:4c:30:1b:42:b8:0c:1b:02: 6c:41:f4:c6:d4:2c:15:ed:dc:4d:47:dc:fc:85:37: 41:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:03:D0:09:6C:33:27:BB:97:C0:70:78:2D:F8:D9:90:D1:C6:8B:56 X509v3 Authority Key Identifier: keyid:E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232302e302f32342d3234203d3e20313338303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.220.0/24 Signature Algorithm: sha256WithRSAEncryption 09:26:3d:65:d8:de:b3:c1:08:73:19:1f:c9:5a:1c:14:0d:bc: bb:57:e9:27:99:ab:68:5b:23:b3:d0:cb:d9:8f:be:21:9f:90: 3e:89:b1:26:98:63:fa:c7:d9:6d:1d:b1:ac:69:c8:8e:d5:44: af:d4:cd:23:83:86:4e:1a:c9:78:dd:75:df:40:c7:6c:f5:b7: 3a:38:56:bd:4c:df:43:d1:41:23:b0:c1:9e:e7:e7:69:83:d3: ef:cd:08:90:b1:38:14:ba:fa:c3:78:15:2f:54:81:97:3a:40: b6:b4:49:86:08:a9:13:57:ba:be:e2:d0:6b:73:f4:a5:43:3d: 2a:eb:18:d0:ed:fe:af:ca:9e:72:e9:9c:d2:c9:f3:cb:8a:7f: 59:6f:f2:2f:18:79:d7:ba:d8:36:a7:32:4b:98:ee:73:85:b2: b0:cf:21:44:ab:bc:c1:48:3d:65:1c:d2:26:fb:17:57:93:0b: 6b:09:7d:15:5f:82:1d:63:ea:fc:24:46:c0:66:e1:84:1b:b1: a6:ab:1e:9a:bb:28:a5:a7:07:ec:c8:d8:2b:60:80:13:9a:c5: 80:3f:43:c8:21:d0:c9:85:68:df:2f:93:6f:93:39:3f:1f:55: 7d:eb:f1:4a:fa:9a:66:cc:30:05:ab:ff:f7:62:5a:74:6b:16: b2:16:ab:7e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcc5NvZ9QB6+48YyV4QyBiXOg1Z0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0Qw MThEMEFERDAeFw0yMzA3MzAyMzU4MjBaFw0yNDA3MjkwMDAzMjBaMDMxMTAvBgNV BAMTKEU4MDNEMDA5NkMzMzI3QkI5N0MwNzA3ODJERjhEOTkwRDFDNjhCNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkRok62gwqTlJhRTFxLC6keZqo d3sNbi891JGKPovJmAGpeE0+rhzI5xfpvLqrB/wQfFVTEtVRNI3X802hJuH9GAgP Ijwu31w4X/yxSG+ZCrwPzkxw+gCCugKu3EBspc+C4ssKV/fwWkvhC2ap+WzaXksq fo1JsM4G60vIqIApLEAM36nYcd+xI1dQ/xvWJkMnHwzS4DjhqWBo2YxVjdqxNi3Z 1kZh3uoUJXlgZo7PxYJ9fInSxlsS5AtbP0oT/IOJ/6o4xsTca2Xn+UZtKDgvS8xh SxiCSTOtWeasVyusUzfFvgQJK69MMBtCuAwbAmxB9MbULBXt3E1H3PyFN0HhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6APQCWwzJ7uXwHB4LfjZkNHGi1YwHwYDVR0j BBgwFoAU4n8HCyfqsJbis1I/GhrNfQGNCt0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NmEwMDJkZS0wY2RlLTQ2MmUtOTQwNC00NmJjNjI3MGUwNGYvMC9FMjdGMDcwQjI3 RUFCMDk2RTJCMzUyM0YxQTFBQ0Q3RDAxOEQwQURELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0QwMThE MEFERC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2YTAwMmRlLTBjZGUtNDYyZS05 NDA0LTQ2YmM2MjcwZTA0Zi8wLzMxMzAzMzJlMzEzMjM5MmUzMjMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngdwwDQYJ KoZIhvcNAQELBQADggEBAAkmPWXY3rPBCHMZH8laHBQNvLtX6SeZq2hbI7PQy9mP viGfkD6JsSaYY/rH2W0dsaxpyI7VRK/UzSODhk4ayXjddd9Ax2z1tzo4Vr1M30PR QSOwwZ7n52mD0+/NCJCxOBS6+sN4FS9UgZc6QLa0SYYIqRNXur7i0Gtz9KVDPSrr GNDt/q/KnnLpnNLJ88uKf1lv8i8Yede62DanMkuY7nOFsrDPIUSrvMFIPWUc0ib7 F1eTC2sJfRVfgh1j6vwkRsBm4YQbsaarHpq7KKWnB+zI2CtggBOaxYA/Q8gh0MmF aN8vk2+TOT8fVX3r8Ur6mmbMMAWr//diWnRrFrIWq34= -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:08 2024 by rpki-client on console-fra.rpki-client.org