$ rpki-client -vvf repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: Lgk4GdneRGkZOUMBiyBObeMivIaxjrMhdmHSNkgOEog= Subject key identifier: 71:C6:0A:A7:C4:3E:7A:40:ED:A2:6F:6C:67:59:98:4F:7D:59:06:A4 Certificate issuer: /CN=FF75AEDDC6059E8A2B830E487D72BE77E330BEEF Certificate serial: 699F580B6E5F676F79BB17C88353334673E7386B Authority key identifier: FF:75:AE:DD:C6:05:9E:8A:2B:83:0E:48:7D:72:BE:77:E3:30:BE:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 07:00:55 +0000 ROA not before: Wed 03 Jan 2024 06:55:55 +0000 ROA not after: Wed 01 Jan 2025 07:00:55 +0000 asID: 135478 IP address blocks: 103.121.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.crl rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:9f:58:0b:6e:5f:67:6f:79:bb:17:c8:83:53:33:46:73:e7:38:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF75AEDDC6059E8A2B830E487D72BE77E330BEEF Validity Not Before: Jan 3 06:55:55 2024 GMT Not After : Jan 1 07:00:55 2025 GMT Subject: CN=71C60AA7C43E7A40EDA26F6C6759984F7D5906A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:03:37:4a:b9:5e:f7:17:c2:b4:87:3b:68:6b: 01:fd:65:de:91:18:bf:ee:c6:dc:d3:79:09:4c:6b: a7:92:b9:75:44:77:58:a2:85:17:38:0e:eb:55:65: 21:de:f6:94:25:96:dd:65:fc:5a:3a:21:bc:e7:ad: c6:be:c6:22:88:0a:dc:be:cd:4b:a4:7a:f8:52:57: 2a:2c:fd:6e:8b:9b:b6:57:10:3f:0f:d1:db:29:3d: e6:4d:f2:75:f7:c8:51:b5:61:5d:97:57:5d:6d:f6: c5:9b:40:0a:06:f7:c0:fa:f7:3c:41:a1:64:6a:01: a4:a8:17:d0:57:99:7f:17:bf:12:14:d5:11:dc:3c: cf:46:0a:35:30:7d:c9:16:ac:85:58:b2:a1:5d:64: 05:72:63:5a:a6:6c:05:cc:86:5f:fa:55:12:3b:ca: 65:e5:00:fa:d3:ff:0b:c3:32:11:13:65:1f:c7:6b: a2:b6:5a:35:20:56:5d:1b:a5:40:44:8d:87:c3:53: a5:2a:67:65:05:72:cb:4a:15:3b:96:05:6e:ca:2d: 8a:f9:6f:bb:02:71:4b:1a:3d:31:13:ac:90:39:61: 5a:db:65:64:d9:fc:f0:19:92:89:a1:89:35:5a:6a: a9:40:0f:6f:55:13:6c:1a:b3:c1:f2:53:f4:58:72: ee:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:C6:0A:A7:C4:3E:7A:40:ED:A2:6F:6C:67:59:98:4F:7D:59:06:A4 X509v3 Authority Key Identifier: keyid:FF:75:AE:DD:C6:05:9E:8A:2B:83:0E:48:7D:72:BE:77:E3:30:BE:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.132.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:54:2f:ea:7e:b5:78:b9:ae:70:f2:df:c1:19:56:27:7b:57: d6:87:04:08:b5:d8:d4:e6:9d:3e:71:98:5d:f0:7b:63:90:c2: eb:ab:ee:96:bb:e6:6c:32:4c:10:67:50:5b:f6:b8:55:3a:b2: f6:7a:23:fa:6f:6f:4a:ac:e4:8a:49:cf:03:a4:76:9e:b1:a3: 3e:2d:11:2e:f5:d6:56:7a:fb:69:4f:49:1d:f0:ec:98:d2:f3: 17:f5:d9:fb:a3:a9:28:0a:3c:a8:3f:c1:df:fe:ef:89:de:5e: 6a:85:49:17:2b:00:dc:a4:02:c9:10:49:25:cf:c0:1f:43:8a: 5a:f4:b7:b4:59:f9:f2:a1:48:8f:74:68:60:d6:dd:3c:8b:dc: d9:95:08:03:08:3a:2f:09:03:f6:8e:e5:ee:39:a5:7c:48:9d: d1:e9:9e:9b:57:cd:b7:17:70:54:77:2d:64:61:4f:8f:65:14: dc:4d:f6:89:2c:2e:b5:54:5d:4f:c3:21:fd:b5:f6:d1:44:36: ac:18:5e:32:86:57:d2:7c:58:a6:e4:be:a0:f9:9a:4d:97:5f: 6a:34:39:aa:6b:82:d4:c5:db:1a:54:ae:71:65:4e:d1:16:c8: c0:11:55:4d:e6:db:c7:1a:90:96:da:5c:c9:a0:5b:2f:ce:f8: 72:83:99:78 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaZ9YC25fZ295uxfIg1MzRnPnOGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY3NUFFRERDNjA1OUU4QTJCODMwRTQ4N0Q3MkJFNzdF MzMwQkVFRjAeFw0yNDAxMDMwNjU1NTVaFw0yNTAxMDEwNzAwNTVaMDMxMTAvBgNV BAMTKDcxQzYwQUE3QzQzRTdBNDBFREEyNkY2QzY3NTk5ODRGN0Q1OTA2QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAAzdKuV73F8K0hztoawH9Zd6R GL/uxtzTeQlMa6eSuXVEd1iihRc4DutVZSHe9pQllt1l/Fo6Ibznrca+xiKICty+ zUukevhSVyos/W6Lm7ZXED8P0dspPeZN8nX3yFG1YV2XV11t9sWbQAoG98D69zxB oWRqAaSoF9BXmX8XvxIU1RHcPM9GCjUwfckWrIVYsqFdZAVyY1qmbAXMhl/6VRI7 ymXlAPrT/wvDMhETZR/Ha6K2WjUgVl0bpUBEjYfDU6UqZ2UFcstKFTuWBW7KLYr5 b7sCcUsaPTETrJA5YVrbZWTZ/PAZkomhiTVaaqlAD29VE2was8HyU/RYcu5BAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUccYKp8Q+ekDtom9sZ1mYT31ZBqQwHwYDVR0j BBgwFoAU/3Wu3cYFnoorgw5IfXK+d+Mwvu8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YjM3ODRmZS1mOWZlLTRjYmUtODc2OC0yNjNhNzY5ODZhM2EvMC9GRjc1QUVEREM2 MDU5RThBMkI4MzBFNDg3RDcyQkU3N0UzMzBCRUVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY3NUFFRERDNjA1OUU4QTJCODMwRTQ4N0Q3MkJFNzdFMzMw QkVFRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzliMzc4NGZlLWY5ZmUtNGNiZS04 NzY4LTI2M2E3Njk4NmEzYS8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYQwDQYJ KoZIhvcNAQELBQADggEBAEpUL+p+tXi5rnDy38EZVid7V9aHBAi12NTmnT5xmF3w e2OQwuur7pa75mwyTBBnUFv2uFU6svZ6I/pvb0qs5IpJzwOkdp6xoz4tES711lZ6 +2lPSR3w7JjS8xf12fujqSgKPKg/wd/+74neXmqFSRcrANykAskQSSXPwB9Dilr0 t7RZ+fKhSI90aGDW3TyL3NmVCAMIOi8JA/aO5e45pXxIndHpnptXzbcXcFR3LWRh T49lFNxN9oksLrVUXU/DIf219tFENqwYXjKGV9J8WKbkvqD5mk2XX2o0OaprgtTF 2xpUrnFlTtEWyMARVU3m28cakJbaXMmgWy/O+HKDmXg= -----END CERTIFICATE-----Generated at Tue Apr 30 18:54:27 2024 by rpki-client on console-fra.rpki-client.org