$ rpki-client -vvf repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36302e302f32322d3232203d3e20313338303739.roa File: 3130332e3133302e36302e302f32322d3232203d3e20313338303739.roa (raw, json) Hash identifier: 8tGJB+mBb7pJEjFKzOgFUizirJ+hMgkUkUVdT/0gOAg= Subject key identifier: 8E:D0:F2:52:0B:4D:E7:93:B3:21:5F:53:B9:C8:F8:D4:5C:93:A4:1A Certificate issuer: /CN=E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52 Certificate serial: 7DC335A11568F20F166402456E9DC7F1C7DA4F63 Authority key identifier: E1:7A:5E:B9:41:56:DE:23:FC:DC:8F:29:B2:10:FC:DE:DC:F0:8F:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer Subject info access: rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36302e302f32322d3232203d3e20313338303739.roa Signing time: Mon 31 Jul 2023 00:07:23 +0000 ROA not before: Mon 31 Jul 2023 00:02:23 +0000 ROA not after: Mon 29 Jul 2024 00:07:23 +0000 asID: 138079 IP address blocks: 103.130.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.crl rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 05:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c3:35:a1:15:68:f2:0f:16:64:02:45:6e:9d:c7:f1:c7:da:4f:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52 Validity Not Before: Jul 31 00:02:23 2023 GMT Not After : Jul 29 00:07:23 2024 GMT Subject: CN=8ED0F2520B4DE793B3215F53B9C8F8D45C93A41A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:19:d3:31:82:20:d7:b6:dd:76:9f:9c:d9:61: 2c:07:3d:5f:c1:23:9d:b3:20:d9:46:4e:da:82:99: 6a:46:fe:0b:45:6a:1b:ee:b7:16:e8:0d:37:7a:d8: 1e:42:45:8f:07:4d:9b:8b:94:4a:71:86:54:c4:e3: c5:24:1c:26:d0:05:da:cb:53:14:4c:c0:af:6f:1d: f5:e0:ae:b7:c1:94:90:93:97:37:17:37:2d:38:83: 70:f4:8f:50:83:0a:2a:a8:db:7f:e8:7b:0c:2a:7d: e2:81:5d:b5:a6:f3:28:65:6d:aa:ae:c6:48:6a:79: 10:be:31:cd:c5:96:e3:ad:1a:9d:33:ec:21:c3:ff: 45:d5:97:fe:a3:2e:cd:a2:16:23:51:cf:3b:72:81: d1:d0:db:f8:07:f4:ed:d8:d9:07:d9:cc:c8:c5:d3: 38:1b:b6:a9:86:2d:3b:05:d7:17:64:09:d2:2d:47: b9:18:b7:c9:35:da:4d:c9:9f:29:28:c7:e0:c5:93: 94:d3:df:d2:a1:4b:c4:24:5b:cf:16:e2:5d:19:1c: 49:64:f5:67:c0:a7:c3:ac:d6:2b:cd:ae:8d:b2:dd: 48:c8:25:d7:5b:be:5d:e4:13:bf:63:31:c1:48:69: 6d:69:c2:c2:ab:88:07:ea:c0:25:7d:d0:0d:bc:d2: 2c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D0:F2:52:0B:4D:E7:93:B3:21:5F:53:B9:C8:F8:D4:5C:93:A4:1A X509v3 Authority Key Identifier: keyid:E1:7A:5E:B9:41:56:DE:23:FC:DC:8F:29:B2:10:FC:DE:DC:F0:8F:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36302e302f32322d3232203d3e20313338303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.60.0/22 Signature Algorithm: sha256WithRSAEncryption 50:b8:98:85:d9:0e:21:4d:56:16:c0:e0:c7:86:de:99:52:de: 4d:fb:3f:95:21:32:e2:12:5b:b4:71:26:21:3c:e7:df:79:3e: ce:7f:ea:fd:3f:38:e1:2a:dc:90:0c:f6:35:52:24:c3:b5:8f: 96:18:d0:5c:5e:97:db:45:e0:7f:c3:27:9e:df:f6:b1:25:14: 01:b9:26:b1:8c:a2:a1:05:5b:48:f1:ad:9e:61:34:7e:c7:ef: 92:cc:3b:35:af:f7:af:41:65:11:e4:a7:e0:d9:b5:8c:c6:93: 92:51:78:db:0e:4f:7a:54:1e:07:6e:d1:aa:9d:0c:81:e2:ca: 5e:fc:8e:cf:2e:45:8f:4d:bd:68:cf:b0:c0:b7:1d:73:b9:4f: 70:e3:fd:8b:4a:03:57:3d:79:b9:17:b8:b6:2a:a6:ae:42:9a: a4:e6:f8:f6:c9:a4:44:1e:0f:25:ad:59:b7:81:af:f8:54:04: 44:fd:41:0f:81:e3:9b:a9:f9:0c:0a:f3:aa:ed:53:3b:78:05: 33:b6:34:f3:09:ee:ee:41:4f:f4:3c:2a:3e:27:7c:8f:1e:88: ad:c5:ed:27:9c:31:c0:7d:5a:74:32:06:8a:ba:da:9b:10:c0: 6c:9d:63:8b:ac:9f:f6:9e:90:8e:f7:d2:e8:4a:0a:88:ec:1f: fd:d0:88:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfcM1oRVo8g8WZAJFbp3H8cfaT2MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTE3QTVFQjk0MTU2REUyM0ZDREM4RjI5QjIxMEZDREVE Q0YwOEY1MjAeFw0yMzA3MzEwMDAyMjNaFw0yNDA3MjkwMDA3MjNaMDMxMTAvBgNV BAMTKDhFRDBGMjUyMEI0REU3OTNCMzIxNUY1M0I5QzhGOEQ0NUM5M0E0MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3GdMxgiDXtt12n5zZYSwHPV/B I52zINlGTtqCmWpG/gtFahvutxboDTd62B5CRY8HTZuLlEpxhlTE48UkHCbQBdrL UxRMwK9vHfXgrrfBlJCTlzcXNy04g3D0j1CDCiqo23/oewwqfeKBXbWm8yhlbaqu xkhqeRC+Mc3FluOtGp0z7CHD/0XVl/6jLs2iFiNRzztygdHQ2/gH9O3Y2QfZzMjF 0zgbtqmGLTsF1xdkCdItR7kYt8k12k3Jnykox+DFk5TT39KhS8QkW88W4l0ZHElk 9WfAp8Os1ivNro2y3UjIJddbvl3kE79jMcFIaW1pwsKriAfqwCV90A280ix7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjtDyUgtN55OzIV9Tucj41FyTpBowHwYDVR0j BBgwFoAU4XpeuUFW3iP83I8pshD83tzwj1IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTJhM2YyOC04MjczLTRkZDUtODdmYy0xZWYwMGFjYWM5YjYvMC9FMTdBNUVCOTQx NTZERTIzRkNEQzhGMjlCMjEwRkNERURDRjA4RjUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTE3QTVFQjk0MTU2REUyM0ZDREM4RjI5QjIxMEZDREVEQ0Yw OEY1Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMmEzZjI4LTgyNzMtNGRkNS04 N2ZjLTFlZjAwYWNhYzliNi8wLzMxMzAzMzJlMzEzMzMwMmUzNjMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzM4MzAzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4I8MA0GCSqG SIb3DQEBCwUAA4IBAQBQuJiF2Q4hTVYWwODHht6ZUt5N+z+VITLiElu0cSYhPOff eT7Of+r9PzjhKtyQDPY1UiTDtY+WGNBcXpfbReB/wyee3/axJRQBuSaxjKKhBVtI 8a2eYTR+x++SzDs1r/evQWUR5Kfg2bWMxpOSUXjbDk96VB4HbtGqnQyB4spe/I7P LkWPTb1oz7DAtx1zuU9w4/2LSgNXPXm5F7i2KqauQpqk5vj2yaREHg8lrVm3ga/4 VARE/UEPgeObqfkMCvOq7VM7eAUztjTzCe7uQU/0PCo+J3yPHoitxe0nnDHAfVp0 MgaKutqbEMBsnWOLrJ/2npCO99LoSgqI7B/90Ii+ -----END CERTIFICATE-----Generated at Wed Apr 17 22:58:34 2024 by rpki-client on console-ams.rpki-client.org