$ rpki-client -vvf repo-rpki.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/3130332e3136362e33362e302f32332d3234203d3e203137393935.roa File: 3130332e3136362e33362e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: z7tO4ewey0aIkD7h9gBTHfswHzxa8568sdtfeDH1p7o= Subject key identifier: 73:49:17:9B:E4:11:96:D2:22:FE:70:2D:DA:78:2E:23:1E:29:32:15 Certificate issuer: /CN=DA3283EBD45CCF7056D92A914183FB7825C66692 Certificate serial: 587F91BAE38D23F855D0422F4DE8711A4E62DE64 Authority key identifier: DA:32:83:EB:D4:5C:CF:70:56:D9:2A:91:41:83:FB:78:25:C6:66:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA3283EBD45CCF7056D92A914183FB7825C66692.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/3130332e3136362e33362e302f32332d3234203d3e203137393935.roa Signing time: Fri 01 Sep 2023 10:01:53 +0000 ROA not before: Fri 01 Sep 2023 09:56:53 +0000 ROA not after: Fri 30 Aug 2024 10:01:53 +0000 asID: 17995 IP address blocks: 103.166.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/DA3283EBD45CCF7056D92A914183FB7825C66692.crl rsync://repo-rpki.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/DA3283EBD45CCF7056D92A914183FB7825C66692.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA3283EBD45CCF7056D92A914183FB7825C66692.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:7f:91:ba:e3:8d:23:f8:55:d0:42:2f:4d:e8:71:1a:4e:62:de:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA3283EBD45CCF7056D92A914183FB7825C66692 Validity Not Before: Sep 1 09:56:53 2023 GMT Not After : Aug 30 10:01:53 2024 GMT Subject: CN=7349179BE41196D222FE702DDA782E231E293215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:36:53:d7:9f:23:a9:68:e8:ae:79:19:b9:cf: 18:6a:8b:7f:64:84:3b:14:f7:f1:2c:24:a4:a8:4f: cd:27:a8:2e:f2:74:b9:85:8d:78:16:07:40:e2:e3: 9f:09:6c:13:2e:6d:78:c4:87:e6:60:4d:07:68:5b: ac:c7:f8:39:34:90:4e:7c:19:fc:39:d9:70:0d:39: 88:ce:ad:88:aa:15:c8:44:24:5c:9d:23:f3:d6:f5: 80:80:99:c0:28:61:7b:36:56:0d:af:7b:9a:d1:3d: 77:47:12:d8:d2:eb:e1:95:68:8d:e8:a1:69:bc:33: 1f:ce:c9:ed:61:37:fb:3c:19:48:e6:c1:cc:38:20: 7e:83:0e:94:ff:e3:33:ce:13:09:f3:4f:cc:18:77: 03:40:d9:e4:79:c9:10:39:6f:fa:db:1c:69:41:07: 0e:e6:01:27:e8:fe:2d:fb:80:c0:83:f1:bb:61:25: 72:1c:87:50:01:27:55:b6:f9:f5:c9:cb:13:26:84: 5d:43:92:81:b6:09:c9:b2:a1:77:bf:26:e1:91:c8: 16:cd:c0:0f:57:02:61:45:e9:22:29:84:6d:98:2f: 72:33:73:b3:ce:05:98:be:12:dc:20:44:1a:74:5c: a2:ac:bc:05:9a:9b:2d:8c:7f:b9:cb:6d:a9:e6:a7: c0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:49:17:9B:E4:11:96:D2:22:FE:70:2D:DA:78:2E:23:1E:29:32:15 X509v3 Authority Key Identifier: keyid:DA:32:83:EB:D4:5C:CF:70:56:D9:2A:91:41:83:FB:78:25:C6:66:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/DA3283EBD45CCF7056D92A914183FB7825C66692.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA3283EBD45CCF7056D92A914183FB7825C66692.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/3130332e3136362e33362e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.36.0/23 Signature Algorithm: sha256WithRSAEncryption 70:21:95:00:d3:9d:6f:87:5c:b8:7b:9d:7e:57:b5:4b:5d:4e: 93:16:cb:00:70:f6:2f:30:e3:a9:7f:25:82:5b:7b:71:88:4b: 7a:fe:95:a2:7c:74:f2:be:f8:0a:16:02:e6:8f:2e:7a:eb:8f: d4:19:ac:84:9e:96:f0:04:07:74:5d:65:12:a0:a3:01:86:58: 19:2c:02:62:02:a5:89:ef:68:65:41:e1:b0:ef:25:de:5c:da: ea:bd:73:7e:b3:9c:d9:a4:28:e0:17:f6:6f:e0:52:28:b5:fd: 81:e4:38:64:3f:b8:dc:ec:80:fc:65:37:bc:af:77:67:40:06: 72:39:0d:33:d8:df:75:82:b5:ed:8f:aa:de:f4:29:9c:19:30: 7f:9d:43:9d:bb:e3:90:41:96:ef:52:c8:27:a9:07:67:3b:17: 04:07:86:7d:52:44:6f:6e:69:c4:45:6e:97:f6:6a:b7:e7:14: 56:b7:46:7d:fa:a7:24:30:ba:14:c9:51:79:f8:52:bd:1f:d6: 92:d4:11:79:9a:62:9e:f3:38:3d:f5:1d:45:00:de:1b:d0:93: 63:7c:dc:43:ed:30:cf:ed:92:29:bf:ac:09:1c:80:ca:fa:34: a2:c8:43:a5:ae:f5:b2:10:7c:84:21:55:be:86:b0:68:ce:b6: 9c:21:15:5a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWH+RuuONI/hV0EIvTehxGk5i3mQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREEzMjgzRUJENDVDQ0Y3MDU2RDkyQTkxNDE4M0ZCNzgy NUM2NjY5MjAeFw0yMzA5MDEwOTU2NTNaFw0yNDA4MzAxMDAxNTNaMDMxMTAvBgNV BAMTKDczNDkxNzlCRTQxMTk2RDIyMkZFNzAyRERBNzgyRTIzMUUyOTMyMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvNlPXnyOpaOiueRm5zxhqi39k hDsU9/EsJKSoT80nqC7ydLmFjXgWB0Di458JbBMubXjEh+ZgTQdoW6zH+Dk0kE58 Gfw52XANOYjOrYiqFchEJFydI/PW9YCAmcAoYXs2Vg2ve5rRPXdHEtjS6+GVaI3o oWm8Mx/Oye1hN/s8GUjmwcw4IH6DDpT/4zPOEwnzT8wYdwNA2eR5yRA5b/rbHGlB Bw7mASfo/i37gMCD8bthJXIch1ABJ1W2+fXJyxMmhF1DkoG2CcmyoXe/JuGRyBbN wA9XAmFF6SIphG2YL3Izc7POBZi+EtwgRBp0XKKsvAWamy2Mf7nLbanmp8D3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUc0kXm+QRltIi/nAt2nguIx4pMhUwHwYDVR0j BBgwFoAU2jKD69Rcz3BW2SqRQYP7eCXGZpIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Zjc5YTQwMi1kZTViLTQ5ZTUtYTZmNS1lZWFiYWMwODRmNDEvMC9EQTMyODNFQkQ0 NUNDRjcwNTZEOTJBOTE0MTgzRkI3ODI1QzY2NjkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREEzMjgzRUJENDVDQ0Y3MDU2RDkyQTkxNDE4M0ZCNzgyNUM2 NjY5Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmNzlhNDAyLWRlNWItNDllNS1h NmY1LWVlYWJhYzA4NGY0MS8wLzMxMzAzMzJlMzEzNjM2MmUzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWemJDANBgkqhkiG 9w0BAQsFAAOCAQEAcCGVANOdb4dcuHudfle1S11OkxbLAHD2LzDjqX8lglt7cYhL ev6Vonx08r74ChYC5o8ueuuP1BmshJ6W8AQHdF1lEqCjAYZYGSwCYgKlie9oZUHh sO8l3lza6r1zfrOc2aQo4Bf2b+BSKLX9geQ4ZD+43OyA/GU3vK93Z0AGcjkNM9jf dYK17Y+q3vQpnBkwf51DnbvjkEGW71LIJ6kHZzsXBAeGfVJEb25pxEVul/Zqt+cU VrdGffqnJDC6FMlRefhSvR/WktQReZpinvM4PfUdRQDeG9CTY3zcQ+0wz+2SKb+s CRyAyvo0oshDpa71shB8hCFVvoawaM62nCEVWg== -----END CERTIFICATE-----Generated at Sun Apr 28 03:09:22 2024 by rpki-client on console-ams.rpki-client.org