$ rpki-client -vvf repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3130332e32322e3234302e302f32322d3234203d3e203234353233.roa File: 3130332e32322e3234302e302f32322d3234203d3e203234353233.roa (raw, json) Hash identifier: EolruLdmy3smhO0Vs3FVfk2w6M0kb6HSRkPTeONxysc= Subject key identifier: BD:09:DB:C8:86:21:B1:1C:20:C0:76:BC:8A:B1:F3:D1:A8:D6:92:46 Certificate issuer: /CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Certificate serial: 3631BD1C94E9CC29713A310606CE7E495D5968B3 Authority key identifier: 11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3130332e32322e3234302e302f32322d3234203d3e203234353233.roa Signing time: Mon 31 Jul 2023 00:06:11 +0000 ROA not before: Mon 31 Jul 2023 00:01:11 +0000 ROA not after: Mon 29 Jul 2024 00:06:11 +0000 asID: 24523 IP address blocks: 103.22.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:31:bd:1c:94:e9:cc:29:71:3a:31:06:06:ce:7e:49:5d:59:68:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Validity Not Before: Jul 31 00:01:11 2023 GMT Not After : Jul 29 00:06:11 2024 GMT Subject: CN=BD09DBC88621B11C20C076BC8AB1F3D1A8D69246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ff:87:fb:df:e0:1b:a3:5a:e4:f6:ab:6f:97: 60:3d:c7:3f:b4:15:45:a8:5d:0f:8d:6c:32:79:0e: 00:3b:c0:00:e5:3d:a5:4b:43:5d:0d:c0:7d:ef:99: 8d:1d:6f:41:0a:ef:ac:b7:00:f4:24:9c:5f:3a:5c: a0:f7:3e:24:66:97:39:41:83:d1:3b:e2:f7:d6:92: e4:87:b0:82:78:4f:8d:95:95:97:87:13:be:f3:31: 37:08:3e:e0:bf:bc:a3:de:90:87:63:89:00:c6:ed: d7:2e:2d:3c:7e:97:d7:e8:4c:d5:8b:4a:0b:ef:9f: 8c:dd:fa:84:88:ca:dc:0d:d4:37:e0:78:7d:6b:a5: 95:e5:0e:25:54:33:36:a8:79:3a:42:90:f3:3d:08: 14:13:e6:c7:28:a3:6a:0a:7d:31:a5:30:15:a6:2c: 63:76:ae:6b:4d:54:e4:6a:54:be:42:46:2f:1b:e1: fe:32:00:56:92:09:a3:e5:6d:34:ad:1c:87:78:92: 02:8e:aa:67:9c:30:bf:6b:5a:66:06:28:6c:52:0a: 0e:38:66:35:60:de:79:a3:0b:2d:a3:3c:e1:05:bf: 36:d3:c2:32:d6:eb:0a:59:de:65:28:4a:9f:73:8d: 9b:8b:23:8a:82:57:64:d7:a6:c4:28:df:09:13:9b: 33:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:09:DB:C8:86:21:B1:1C:20:C0:76:BC:8A:B1:F3:D1:A8:D6:92:46 X509v3 Authority Key Identifier: keyid:11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3130332e32322e3234302e302f32322d3234203d3e203234353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.240.0/22 Signature Algorithm: sha256WithRSAEncryption 75:3b:5b:f2:bc:12:b9:b6:06:4e:f9:1b:41:4e:74:2b:de:b5: 5d:4a:ac:71:00:3e:fc:f5:2f:6a:ff:cc:8b:c6:3f:e0:45:1d: 70:5c:ce:49:f6:8f:49:06:59:08:0d:7a:91:34:19:3a:a3:16: 01:b6:2e:b2:b6:c0:bf:42:a3:f1:5a:e5:7a:fe:63:36:99:6a: 0c:d0:b7:db:52:5d:81:ce:a9:90:f7:27:76:5d:92:a7:a8:8c: 18:b5:3d:1f:ea:f3:7d:55:32:8a:3a:3e:34:ca:13:78:27:3a: 99:42:f1:54:f3:4a:88:a1:4c:08:04:2c:95:7b:f3:4e:21:b3: 87:f0:41:f4:f9:4b:50:42:8f:8b:ea:f4:75:f2:f8:16:84:22: d3:08:04:2d:e6:eb:ab:7c:f0:03:a6:9e:65:ae:ad:48:ac:b5: dd:b1:3c:7c:01:f8:29:94:a1:38:f0:0b:a6:4b:71:88:33:a6: e0:5c:0a:d7:ae:db:8e:81:04:23:97:94:91:25:fb:e9:aa:6c: 6e:57:a6:2a:d7:37:37:20:35:48:8a:fd:69:3c:4e:51:38:66: d8:ff:4c:71:65:7f:73:b8:55:4e:c1:da:d7:b7:5f:84:f6:a9: 98:17:44:8b:81:60:53:38:05:15:c2:39:43:15:59:9a:01:11: 92:13:02:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNjG9HJTpzClxOjEGBs5+SV1ZaLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFC MjUwM0EzODAeFw0yMzA3MzEwMDAxMTFaFw0yNDA3MjkwMDA2MTFaMDMxMTAvBgNV BAMTKEJEMDlEQkM4ODYyMUIxMUMyMEMwNzZCQzhBQjFGM0QxQThENjkyNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu/4f73+Abo1rk9qtvl2A9xz+0 FUWoXQ+NbDJ5DgA7wADlPaVLQ10NwH3vmY0db0EK76y3APQknF86XKD3PiRmlzlB g9E74vfWkuSHsIJ4T42VlZeHE77zMTcIPuC/vKPekIdjiQDG7dcuLTx+l9foTNWL Sgvvn4zd+oSIytwN1DfgeH1rpZXlDiVUMzaoeTpCkPM9CBQT5scoo2oKfTGlMBWm LGN2rmtNVORqVL5CRi8b4f4yAFaSCaPlbTStHId4kgKOqmecML9rWmYGKGxSCg44 ZjVg3nmjCy2jPOEFvzbTwjLW6wpZ3mUoSp9zjZuLI4qCV2TXpsQo3wkTmzOHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvQnbyIYhsRwgwHa8irHz0ajWkkYwHwYDVR0j BBgwFoAUEWsbSTEU5vhyRNpUyrjY6rJQOjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YzY2Nzc2OS04MGRjLTQwOTMtYjVmNy1kZmU3YzU3MjA0ODYvMC8xMTZCMUI0OTMx MTRFNkY4NzI0NERBNTRDQUI4RDhFQUIyNTAzQTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFCMjUw M0EzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i NWY3LWRmZTdjNTcyMDQ4Ni8wLzMxMzAzMzJlMzIzMjJlMzIzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcW8DANBgkqhkiG 9w0BAQsFAAOCAQEAdTtb8rwSubYGTvkbQU50K961XUqscQA+/PUvav/Mi8Y/4EUd cFzOSfaPSQZZCA16kTQZOqMWAbYusrbAv0Kj8Vrlev5jNplqDNC321Jdgc6pkPcn dl2Sp6iMGLU9H+rzfVUyijo+NMoTeCc6mULxVPNKiKFMCAQslXvzTiGzh/BB9PlL UEKPi+r0dfL4FoQi0wgELebrq3zwA6aeZa6tSKy13bE8fAH4KZShOPALpktxiDOm 4FwK167bjoEEI5eUkSX76apsblemKtc3NyA1SIr9aTxOUThm2P9McWV/c7hVTsHa 17dfhPapmBdEi4FgUzgFFcI5QxVZmgERkhMCMg== -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:08 2024 by rpki-client on console-fra.rpki-client.org