$ rpki-client -vvf repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa File: 3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: 7erH5JDWPSrU4QaAH/sB1z+oVnfeMDIwXfaKRWUm7ZY= Subject key identifier: B6:4C:2F:75:A8:64:DB:E0:1B:A6:9B:68:49:F0:11:DD:34:B0:2A:DA Certificate issuer: /CN=292C6CF5F336CE0D758E47F5DF9778633CDCA769 Certificate serial: 7891216A8A38C445B94984A58E6863BF787349CE Authority key identifier: 29:2C:6C:F5:F3:36:CE:0D:75:8E:47:F5:DF:97:78:63:3C:DC:A7:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/292C6CF5F336CE0D758E47F5DF9778633CDCA769.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa Signing time: Fri 01 Sep 2023 10:01:48 +0000 ROA not before: Fri 01 Sep 2023 09:56:48 +0000 ROA not after: Fri 30 Aug 2024 10:01:48 +0000 asID: 17995 IP address blocks: 103.166.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/292C6CF5F336CE0D758E47F5DF9778633CDCA769.crl rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/292C6CF5F336CE0D758E47F5DF9778633CDCA769.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/292C6CF5F336CE0D758E47F5DF9778633CDCA769.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:17:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:91:21:6a:8a:38:c4:45:b9:49:84:a5:8e:68:63:bf:78:73:49:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=292C6CF5F336CE0D758E47F5DF9778633CDCA769 Validity Not Before: Sep 1 09:56:48 2023 GMT Not After : Aug 30 10:01:48 2024 GMT Subject: CN=B64C2F75A864DBE01BA69B6849F011DD34B02ADA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d7:a1:0c:82:ac:5c:6c:55:ff:2f:62:3f:a6: 30:83:2e:8d:e1:ff:e5:db:4b:7a:cd:d6:fc:da:64: 49:b1:dd:06:80:82:34:93:d9:72:bc:bf:29:19:04: ff:43:ee:ad:7f:8e:f9:77:2c:9a:7b:32:cc:82:03: 77:25:4a:04:11:dc:83:e2:cb:b6:82:4e:07:a6:78: 5f:1e:20:27:81:4b:ed:1c:11:46:f2:d2:e8:cf:3d: 4c:97:a2:28:a8:fe:61:67:1f:75:af:5b:53:a4:33: 00:c0:b5:9e:d5:45:d5:10:bc:82:e0:5a:8c:18:fd: 67:9f:1b:f0:b9:27:fd:99:20:33:0c:98:33:88:96: 5d:b8:b1:01:f3:bd:13:be:43:fd:38:b9:5e:16:73: 0b:32:b7:ff:98:66:de:e4:e6:cf:6e:0b:c0:ad:8f: 70:75:7c:27:ad:42:e5:ec:98:97:a1:f3:1d:40:a9: 9a:24:ee:14:f7:6b:f1:23:bd:0d:4c:f6:1f:c1:bd: 68:8a:52:69:5f:89:0e:06:b7:fe:1e:28:89:f6:83: 9e:14:bf:47:0e:dc:77:be:28:45:36:65:43:3c:39: 55:06:70:2b:32:0e:f6:c5:58:9a:69:4f:c0:68:0b: 32:50:55:cb:32:93:20:bc:39:f3:e0:fb:36:e9:b8: 08:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:4C:2F:75:A8:64:DB:E0:1B:A6:9B:68:49:F0:11:DD:34:B0:2A:DA X509v3 Authority Key Identifier: keyid:29:2C:6C:F5:F3:36:CE:0D:75:8E:47:F5:DF:97:78:63:3C:DC:A7:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/292C6CF5F336CE0D758E47F5DF9778633CDCA769.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/292C6CF5F336CE0D758E47F5DF9778633CDCA769.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.136.0/23 Signature Algorithm: sha256WithRSAEncryption 05:ab:de:53:c6:2a:76:00:83:9a:ad:aa:5d:6f:00:0e:e9:ee: 0a:ce:3b:ff:81:e1:d5:9f:ac:d3:bf:43:f5:01:17:d3:4a:67: 02:70:65:c9:3d:3c:df:69:85:28:cf:f7:b3:87:dc:20:7a:b6: 47:01:22:b2:b7:c1:67:ca:ae:79:10:a0:8f:a7:66:fc:d0:f6: 4f:d7:a3:81:90:59:8c:bb:95:22:5b:eb:8d:64:f7:dd:d0:fb: 31:26:fc:ee:3f:c4:2d:85:68:aa:48:03:c7:ce:bf:46:d5:d6: b0:99:b5:38:87:3f:a9:0e:d8:12:24:e9:87:85:30:2d:90:8e: cc:3e:78:c8:c6:65:c2:4a:76:d3:73:18:15:f7:99:80:1a:13: ed:95:c1:b7:50:30:76:7e:f3:bf:76:4f:de:a1:60:65:29:dd: 8b:c7:7c:26:79:a2:50:69:51:35:e5:5e:7e:d8:de:ed:0f:bc: 52:28:71:84:96:2a:6f:26:52:b0:88:45:cf:4a:b1:0b:2c:b2: b9:9b:ad:76:51:11:1c:d9:1d:4b:00:1f:de:b3:2e:21:7f:98: 7b:63:64:09:a7:47:cf:f7:d3:0c:6e:87:ff:a2:31:de:9b:6d: e8:a3:e6:9e:a3:ff:1e:b4:b8:b0:c7:33:c1:f3:45:4e:3c:98: b9:f3:34:04 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeJEhaoo4xEW5SYSljmhjv3hzSc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjkyQzZDRjVGMzM2Q0UwRDc1OEU0N0Y1REY5Nzc4NjMz Q0RDQTc2OTAeFw0yMzA5MDEwOTU2NDhaFw0yNDA4MzAxMDAxNDhaMDMxMTAvBgNV BAMTKEI2NEMyRjc1QTg2NERCRTAxQkE2OUI2ODQ5RjAxMUREMzRCMDJBREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl16EMgqxcbFX/L2I/pjCDLo3h /+XbS3rN1vzaZEmx3QaAgjST2XK8vykZBP9D7q1/jvl3LJp7MsyCA3clSgQR3IPi y7aCTgemeF8eICeBS+0cEUby0ujPPUyXoiio/mFnH3WvW1OkMwDAtZ7VRdUQvILg WowY/WefG/C5J/2ZIDMMmDOIll24sQHzvRO+Q/04uV4Wcwsyt/+YZt7k5s9uC8Ct j3B1fCetQuXsmJeh8x1AqZok7hT3a/EjvQ1M9h/BvWiKUmlfiQ4Gt/4eKIn2g54U v0cO3He+KEU2ZUM8OVUGcCsyDvbFWJppT8BoCzJQVcsykyC8OfPg+zbpuAgfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtkwvdahk2+AbpptoSfAR3TSwKtowHwYDVR0j BBgwFoAUKSxs9fM2zg11jkf135d4Yzzcp2kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjM0YzhkYy04ODUzLTRmNjUtODIwOS00ZmJlZTdhYjQyNTIvMC8yOTJDNkNGNUYz MzZDRTBENzU4RTQ3RjVERjk3Nzg2MzNDRENBNzY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjkyQzZDRjVGMzM2Q0UwRDc1OEU0N0Y1REY5Nzc4NjMzQ0RD QTc2OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MzRjOGRjLTg4NTMtNGY2NS04 MjA5LTRmYmVlN2FiNDI1Mi8wLzMxMzAzMzJlMzEzNjM2MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6aIMA0GCSqG SIb3DQEBCwUAA4IBAQAFq95Txip2AIOarapdbwAO6e4Kzjv/geHVn6zTv0P1ARfT SmcCcGXJPTzfaYUoz/ezh9wgerZHASKyt8Fnyq55EKCPp2b80PZP16OBkFmMu5Ui W+uNZPfd0PsxJvzuP8QthWiqSAPHzr9G1dawmbU4hz+pDtgSJOmHhTAtkI7MPnjI xmXCSnbTcxgV95mAGhPtlcG3UDB2fvO/dk/eoWBlKd2Lx3wmeaJQaVE15V5+2N7t D7xSKHGElipvJlKwiEXPSrELLLK5m612UREc2R1LAB/esy4hf5h7Y2QJp0fP99MM bof/ojHem23oo+aeo/8etLiwxzPB80VOPJi58zQE -----END CERTIFICATE-----Generated at Thu Apr 25 16:39:05 2024 by rpki-client on console-ams.rpki-client.org