$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa File: 3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa (raw, json) Hash identifier: QVZuPq3BUFL5N2WHZJeGql3KDEfbvUsECXHeyyQQoV0= Subject key identifier: 02:5B:17:92:D2:1F:33:ED:99:9B:90:B8:92:E3:E8:3D:0B:D2:67:F8 Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 1543132E23E2BE091487E5673B6940ADDD7B5CB1 Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa Signing time: Fri 01 Sep 2023 11:00:49 +0000 ROA not before: Fri 01 Sep 2023 10:55:49 +0000 ROA not after: Fri 30 Aug 2024 11:00:49 +0000 asID: 141107 IP address blocks: 103.220.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 05:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:43:13:2e:23:e2:be:09:14:87:e5:67:3b:69:40:ad:dd:7b:5c:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Sep 1 10:55:49 2023 GMT Not After : Aug 30 11:00:49 2024 GMT Subject: CN=025B1792D21F33ED999B90B892E3E83D0BD267F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:53:44:13:3b:25:1b:14:34:22:ab:79:6c:a9: b7:44:73:f2:97:42:15:96:09:9d:a1:9d:ff:b6:c7: f5:11:52:30:a0:39:7a:5a:45:37:68:b0:8a:49:e4: 0a:e6:24:d7:10:60:55:78:de:40:dc:a7:cc:25:df: 70:64:74:9d:06:b8:c2:70:1c:1e:e7:bd:27:7d:51: 20:11:61:63:8f:0a:f9:60:19:1c:d9:59:0e:36:07: eb:7b:17:1a:17:ae:7b:e3:7d:0e:9f:55:92:ac:66: 66:1e:e2:ef:fe:2f:64:04:38:12:64:04:7f:f8:10: be:e7:29:f3:6c:be:06:d2:62:72:f5:1f:96:cf:24: b6:e7:31:60:b9:1b:d2:dc:d9:bb:d3:8f:f9:63:a8: d1:6b:8f:81:4f:f4:82:e9:b3:32:ac:38:15:da:6b: b1:42:f5:02:f1:36:d4:bc:66:d7:b0:9e:96:b1:81: 43:d3:2d:de:9e:44:7a:68:36:ed:75:b5:d5:be:d2: 0f:30:f7:de:3a:84:81:2b:a5:b2:3c:cb:47:1f:cc: d5:95:a9:b3:e7:d7:73:35:7b:3b:f5:12:47:22:fb: 52:a1:65:a3:54:c0:87:f5:a0:69:8f:df:80:64:4f: be:4d:7b:dd:71:f8:7e:ae:dc:ab:c3:a0:b5:1b:8f: fb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:5B:17:92:D2:1F:33:ED:99:9B:90:B8:92:E3:E8:3D:0B:D2:67:F8 X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.47.0/24 Signature Algorithm: sha256WithRSAEncryption 98:a9:27:e7:1e:f2:ad:f0:64:ab:0f:fe:15:92:3d:83:47:37: 5e:18:07:2f:dd:b1:f0:db:b3:a5:de:7e:c2:85:fe:52:9f:1e: 28:fc:17:d9:59:99:20:e0:94:49:11:ef:e2:0b:ab:95:23:dc: c5:f8:8e:83:ac:1b:1d:ae:92:7d:aa:3d:72:37:55:63:91:c0: 32:98:60:e7:1c:a0:34:20:51:8c:72:da:8d:43:ac:47:b1:17: f1:8d:89:12:8b:c4:ce:6e:23:7a:6f:63:5b:ed:34:b2:0e:df: 94:e3:dd:fe:db:d0:e7:10:63:ad:ae:76:5f:cd:2d:57:b1:84: 3f:ae:f2:f7:a9:e5:08:2c:87:5a:e1:ee:74:8b:08:39:33:a9: 5f:54:f6:75:0b:7c:a0:96:71:f4:74:3b:3c:7b:e7:b8:0b:42: ce:66:93:76:76:43:c2:8e:47:0b:00:0a:c1:24:96:d3:1c:53: 75:54:a6:76:24:65:3d:bd:da:60:59:85:7f:e4:bd:99:8e:d3: 7b:70:59:cd:73:15:6d:36:d0:7b:bc:78:75:95:44:98:d2:42: 52:0c:90:f8:66:a1:65:db:28:94:ea:da:8c:23:18:94:f6:83: df:ae:9f:c6:ca:ba:50:89:6e:a0:28:e8:85:9e:c1:5d:28:cd: 69:a6:93:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFUMTLiPivgkUh+VnO2lArd17XLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yMzA5MDExMDU1NDlaFw0yNDA4MzAxMTAwNDlaMDMxMTAvBgNV BAMTKDAyNUIxNzkyRDIxRjMzRUQ5OTlCOTBCODkyRTNFODNEMEJEMjY3RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVU0QTOyUbFDQiq3lsqbdEc/KX QhWWCZ2hnf+2x/URUjCgOXpaRTdosIpJ5ArmJNcQYFV43kDcp8wl33BkdJ0GuMJw HB7nvSd9USARYWOPCvlgGRzZWQ42B+t7FxoXrnvjfQ6fVZKsZmYe4u/+L2QEOBJk BH/4EL7nKfNsvgbSYnL1H5bPJLbnMWC5G9Lc2bvTj/ljqNFrj4FP9ILpszKsOBXa a7FC9QLxNtS8ZtewnpaxgUPTLd6eRHpoNu11tdW+0g8w9946hIErpbI8y0cfzNWV qbPn13M1ezv1Ekci+1KhZaNUwIf1oGmP34BkT75Ne91x+H6u3KvDoLUbj/vzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAlsXktIfM+2Zm5C4kuPoPQvSZ/gwHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OTRkMzc1LWZjN2QtNGRjNy1h MWYxLWUwYjNhNTlmZGY3OC8wLzMxMzAzMzJlMzIzMjMwMmUzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9wvMA0GCSqG SIb3DQEBCwUAA4IBAQCYqSfnHvKt8GSrD/4Vkj2DRzdeGAcv3bHw27Ol3n7Chf5S nx4o/BfZWZkg4JRJEe/iC6uVI9zF+I6DrBsdrpJ9qj1yN1VjkcAymGDnHKA0IFGM ctqNQ6xHsRfxjYkSi8TObiN6b2Nb7TSyDt+U493+29DnEGOtrnZfzS1XsYQ/rvL3 qeUILIda4e50iwg5M6lfVPZ1C3yglnH0dDs8e+e4C0LOZpN2dkPCjkcLAArBJJbT HFN1VKZ2JGU9vdpgWYV/5L2ZjtN7cFnNcxVtNtB7vHh1lUSY0kJSDJD4ZqFl2yiU 6tqMIxiU9oPfrp/GyrpQiW6gKOiFnsFdKM1pppOz -----END CERTIFICATE-----Generated at Thu Apr 18 05:01:04 2024 by rpki-client on console-ams.rpki-client.org