$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa File: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (raw, json) Hash identifier: xR4A9sZB+TcNk4+A70alpJ8SkoSqR7eK3tdu5bOkUrc= Subject key identifier: A9:34:77:69:66:47:49:EF:D1:41:9E:B1:57:31:A0:AA:52:5B:84:B5 Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 2B0AFBA0FCFF4CD1C7A8F544739568D52D992AA4 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa Signing time: Mon 31 Jul 2023 00:08:10 +0000 ROA not before: Mon 31 Jul 2023 00:03:10 +0000 ROA not after: Mon 29 Jul 2024 00:08:10 +0000 asID: 63497 IP address blocks: 103.232.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 13:51:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:0a:fb:a0:fc:ff:4c:d1:c7:a8:f5:44:73:95:68:d5:2d:99:2a:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jul 31 00:03:10 2023 GMT Not After : Jul 29 00:08:10 2024 GMT Subject: CN=A9347769664749EFD1419EB15731A0AA525B84B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e8:fc:39:9b:6a:ab:76:7b:db:96:99:d5:9c: 6e:f6:9c:02:aa:8b:cc:68:2f:75:55:d9:99:12:05: 00:2c:a2:2f:8b:0a:61:66:f3:b3:0a:1c:ad:f1:d2: 19:03:2f:29:23:dd:38:57:70:45:00:32:9d:95:f3: 78:f0:34:99:2a:63:8e:64:1a:8d:4c:7d:d0:b4:4d: 13:a1:04:9d:6f:af:4a:c6:6c:05:1b:8f:fa:9d:3f: ab:2a:9e:74:a3:6c:1e:75:59:12:1f:f1:78:c3:8a: 16:3c:3f:3b:39:ad:33:32:ae:6e:12:dd:bb:f5:22: 64:d8:bb:89:a7:8c:5d:fb:08:cd:99:32:50:47:38: 16:ca:be:e9:d3:10:14:3c:09:94:6d:f1:41:40:c7: 44:ed:fc:7f:28:ee:82:09:b2:6f:a9:ee:15:c2:38: cd:1e:7d:e9:3d:eb:17:f6:6a:93:a7:3a:56:72:ba: 8c:4c:fa:54:72:be:d2:fb:fe:23:4f:a9:c0:50:e1: 15:29:a6:33:c7:15:2c:2c:4a:1f:f5:18:1d:c5:5c: b1:b3:ea:78:3c:59:1e:9d:ce:c8:72:95:e6:55:db: d8:0c:48:56:90:a8:dc:07:9f:30:ef:a8:39:ae:b3: bd:e0:a7:4b:64:3a:c2:cf:b6:f8:f8:ee:93:de:70: 90:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:34:77:69:66:47:49:EF:D1:41:9E:B1:57:31:A0:AA:52:5B:84:B5 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.242.0/24 Signature Algorithm: sha256WithRSAEncryption 11:fc:c9:13:04:d2:09:74:ec:5b:f9:a9:bb:65:2c:77:30:95: 5b:86:83:d9:2c:19:d3:3c:7a:3b:5e:ed:e6:7e:47:ae:68:8c: 82:7d:79:a5:d8:36:0c:4c:a6:48:48:13:f5:2d:4c:a6:81:de: 7d:6f:62:5d:4c:47:fe:0c:70:94:09:d2:f0:1f:07:b6:63:85: 62:54:89:e2:4e:76:15:aa:b3:30:d4:c1:a4:65:dd:e3:be:8d: 49:28:0c:6b:15:69:cf:37:0d:11:65:44:5c:30:48:ff:5e:ff: f4:6f:59:09:91:6d:0b:b0:e2:0b:21:43:e7:b6:15:4f:89:ed: 7d:e2:49:bd:a1:0b:ae:1a:11:c1:75:10:8c:ae:a3:65:d8:4a: be:85:ec:8b:ed:f8:7e:1c:22:0a:4b:f2:a1:33:ed:77:69:fb: ca:23:51:ac:fb:d4:c2:ce:6e:74:34:6d:1f:18:32:5f:b0:4e: 34:1e:ad:48:dc:c7:87:d2:9c:e4:21:1b:37:d0:a8:2c:d1:39: ff:b4:a1:3a:8f:63:77:16:3b:5c:ee:97:d7:a8:9a:2b:9f:cd: 0b:8e:07:29:61:63:59:fa:40:ba:9c:c8:c1:90:75:b8:b6:56: 08:07:bf:d5:40:62:27:6f:37:e3:51:9b:d8:48:a4:5c:83:07: 9c:7f:71:2a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKwr7oPz/TNHHqPVEc5Vo1S2ZKqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yMzA3MzEwMDAzMTBaFw0yNDA3MjkwMDA4MTBaMDMxMTAvBgNV BAMTKEE5MzQ3NzY5NjY0NzQ5RUZEMTQxOUVCMTU3MzFBMEFBNTI1Qjg0QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn6Pw5m2qrdnvblpnVnG72nAKq i8xoL3VV2ZkSBQAsoi+LCmFm87MKHK3x0hkDLykj3ThXcEUAMp2V83jwNJkqY45k Go1MfdC0TROhBJ1vr0rGbAUbj/qdP6sqnnSjbB51WRIf8XjDihY8Pzs5rTMyrm4S 3bv1ImTYu4mnjF37CM2ZMlBHOBbKvunTEBQ8CZRt8UFAx0Tt/H8o7oIJsm+p7hXC OM0efek96xf2apOnOlZyuoxM+lRyvtL7/iNPqcBQ4RUppjPHFSwsSh/1GB3FXLGz 6ng8WR6dzshyleZV29gMSFaQqNwHnzDvqDmus73gp0tkOsLPtvj47pPecJAlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqTR3aWZHSe/RQZ6xVzGgqlJbhLUwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzIzMzMyMmUzMjM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+jyMA0GCSqG SIb3DQEBCwUAA4IBAQAR/MkTBNIJdOxb+am7ZSx3MJVbhoPZLBnTPHo7Xu3mfkeu aIyCfXml2DYMTKZISBP1LUymgd59b2JdTEf+DHCUCdLwHwe2Y4ViVIniTnYVqrMw 1MGkZd3jvo1JKAxrFWnPNw0RZURcMEj/Xv/0b1kJkW0LsOILIUPnthVPie194km9 oQuuGhHBdRCMrqNl2Eq+heyL7fh+HCIKS/KhM+13afvKI1Gs+9TCzm50NG0fGDJf sE40Hq1I3MeH0pzkIRs30Kgs0Tn/tKE6j2N3Fjtc7pfXqJorn80LjgcpYWNZ+kC6 nMjBkHW4tlYIB7/VQGInbzfjUZvYSKRcgwecf3Eq -----END CERTIFICATE-----Generated at Tue Apr 23 18:36:29 2024 by rpki-client on console-ams.rpki-client.org