$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32342e302f32342d3234203d3e20313332363733.roa File: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (raw, json) Hash identifier: laYi/Ioje0Un95aRqiZvDytrIdl62SvdSpCkVBVXSbY= Subject key identifier: 8C:78:80:FF:0D:03:7B:00:0F:BC:0E:A2:C0:A4:10:68:79:DC:8E:EB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 4C70E5357D9C7ED4C1194EF9167F0D35392F4BA2 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32342e302f32342d3234203d3e20313332363733.roa Signing time: Sat 18 Nov 2023 08:35:46 +0000 ROA not before: Sat 18 Nov 2023 08:30:46 +0000 ROA not after: Sat 16 Nov 2024 08:35:46 +0000 asID: 132673 IP address blocks: 103.90.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:70:e5:35:7d:9c:7e:d4:c1:19:4e:f9:16:7f:0d:35:39:2f:4b:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Nov 18 08:30:46 2023 GMT Not After : Nov 16 08:35:46 2024 GMT Subject: CN=8C7880FF0D037B000FBC0EA2C0A4106879DC8EEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4f:a8:9b:a2:e2:07:27:91:d0:f0:78:55:3e: ea:e7:b9:c3:3a:30:f9:18:3e:a5:50:76:7f:be:66: a0:d3:2a:b1:10:48:89:03:7b:ef:9d:44:2c:a1:f4: 6e:47:66:8e:84:4f:7a:eb:40:53:26:1a:76:66:fa: 1a:08:90:95:a6:b0:76:a4:a7:6c:bf:eb:cf:e1:81: 3a:53:d5:de:ca:d8:a8:e7:b2:94:00:1c:e9:51:fa: 89:30:f2:d9:58:65:06:a2:82:a6:d1:e5:ae:84:0c: 5f:82:d1:3d:10:c5:81:c9:77:0c:a3:55:c2:df:f4: 01:ea:d3:b4:39:91:62:3c:92:bd:68:dd:35:df:f0: f7:c9:e1:40:bd:ba:2b:ac:d4:a8:99:aa:1b:8a:2c: 13:f8:66:1a:b3:47:b9:25:24:ec:e3:0f:4c:f8:2e: 07:06:61:f9:91:c7:84:75:91:21:05:61:94:d4:ff: b8:13:94:f0:59:8b:24:13:e4:85:82:d4:69:62:a6: a8:ac:73:08:01:b3:c2:cb:ba:28:64:11:dc:82:66: 39:23:94:98:85:dc:27:6e:70:df:82:36:94:6a:4e: 7b:ea:33:33:c7:96:e8:87:e4:28:9c:04:bb:ed:72: da:b8:b7:57:40:3f:bb:29:e3:41:d3:02:06:ed:6c: fb:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:78:80:FF:0D:03:7B:00:0F:BC:0E:A2:C0:A4:10:68:79:DC:8E:EB X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32342e302f32342d3234203d3e20313332363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.24.0/24 Signature Algorithm: sha256WithRSAEncryption 95:4f:67:c9:7d:12:c7:86:03:42:8d:ec:48:73:74:d5:4f:f1: 8e:f5:fa:3a:62:53:47:f0:a1:a5:d2:f0:5d:de:a6:74:7b:54: 66:6a:39:2f:01:24:1e:ea:dd:f4:f8:2e:74:3f:aa:10:4d:38: 59:89:2a:b7:28:7e:9b:76:50:be:15:f2:52:b6:a1:a7:f2:e9: c6:d5:14:47:03:bf:2d:aa:a4:62:38:9d:21:db:eb:97:dd:8c: 71:39:1f:b0:18:a4:c2:65:bd:b3:b3:c0:bf:02:80:14:55:fe: e7:b6:d9:55:9c:3f:f1:19:b7:47:7c:a0:83:4d:91:fd:4b:a6: d0:38:83:2c:1d:89:bc:2d:52:8d:84:52:4e:bc:ef:db:34:95: 12:82:10:b6:9a:37:de:e7:42:31:05:a1:ba:03:7f:0c:73:21: 26:9f:f3:37:b4:93:4e:9d:9a:70:da:36:b7:84:6d:6d:ec:7f: 51:3b:06:d4:8c:f2:c3:f3:04:77:e4:a0:7c:a3:04:0a:70:5b: 32:d3:9a:c5:46:74:a2:05:05:c9:d8:e4:64:70:98:d4:f1:f0: af:e8:c5:57:96:2a:c1:cd:8d:dd:0b:d2:ea:8c:2e:0c:71:b9: 41:cd:23:11:04:f8:2a:28:2d:bd:0c:bd:98:94:47:fb:0a:0a: 3a:62:15:3d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTHDlNX2cftTBGU75Fn8NNTkvS6IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yMzExMTgwODMwNDZaFw0yNDExMTYwODM1NDZaMDMxMTAvBgNV BAMTKDhDNzg4MEZGMEQwMzdCMDAwRkJDMEVBMkMwQTQxMDY4NzlEQzhFRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0T6ibouIHJ5HQ8HhVPurnucM6 MPkYPqVQdn++ZqDTKrEQSIkDe++dRCyh9G5HZo6ET3rrQFMmGnZm+hoIkJWmsHak p2y/68/hgTpT1d7K2KjnspQAHOlR+okw8tlYZQaigqbR5a6EDF+C0T0QxYHJdwyj VcLf9AHq07Q5kWI8kr1o3TXf8PfJ4UC9uius1KiZqhuKLBP4ZhqzR7klJOzjD0z4 LgcGYfmRx4R1kSEFYZTU/7gTlPBZiyQT5IWC1GlipqiscwgBs8LLuihkEdyCZjkj lJiF3CducN+CNpRqTnvqMzPHluiH5CicBLvtctq4t1dAP7sp40HTAgbtbPtPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjHiA/w0DewAPvA6iwKQQaHncjuswHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzkzMDJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdaGDANBgkqhkiG 9w0BAQsFAAOCAQEAlU9nyX0Sx4YDQo3sSHN01U/xjvX6OmJTR/ChpdLwXd6mdHtU Zmo5LwEkHurd9PgudD+qEE04WYkqtyh+m3ZQvhXyUrahp/LpxtUURwO/LaqkYjid Idvrl92McTkfsBikwmW9s7PAvwKAFFX+57bZVZw/8Rm3R3ygg02R/Uum0DiDLB2J vC1SjYRSTrzv2zSVEoIQtpo33udCMQWhugN/DHMhJp/zN7STTp2acNo2t4Rtbex/ UTsG1Izyw/MEd+SgfKMECnBbMtOaxUZ0ogUFydjkZHCY1PHwr+jFV5Yqwc2N3QvS 6owuDHG5Qc0jEQT4KigtvQy9mJRH+woKOmIVPQ== -----END CERTIFICATE-----Generated at Sat May 18 19:15:01 2024 by rpki-client on console-ams.rpki-client.org