$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3136382e302f32342d3234203d3e203234323036.roa File: 3131302e34342e3136382e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: EDN8jDEiaaa8Ur1XrnLfNZ/b2oH61vUqmFofbnaEoz0= Subject key identifier: 9A:5D:1C:64:E6:FF:F6:DC:98:60:1D:E4:31:57:DE:73:C5:14:ED:B2 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 61262E82F13B314CDFB7F4F429E93BFBA35BE496 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3136382e302f32342d3234203d3e203234323036.roa Signing time: Fri 29 Sep 2023 15:17:31 +0000 ROA not before: Fri 29 Sep 2023 15:12:31 +0000 ROA not after: Fri 27 Sep 2024 15:17:31 +0000 asID: 24206 IP address blocks: 110.44.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 08:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:26:2e:82:f1:3b:31:4c:df:b7:f4:f4:29:e9:3b:fb:a3:5b:e4:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Sep 29 15:12:31 2023 GMT Not After : Sep 27 15:17:31 2024 GMT Subject: CN=9A5D1C64E6FFF6DC98601DE43157DE73C514EDB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0c:e2:01:f1:98:89:c0:fa:25:95:af:6b:cf: 5f:e8:e9:7f:f8:4d:6e:e3:ad:81:04:e7:66:69:ea: c7:78:72:37:be:df:00:fd:48:e7:e7:ba:56:80:39: 8b:2f:6a:67:77:3d:9c:36:22:9d:59:63:b5:a7:83: e0:35:15:00:a5:51:bd:ed:5d:b5:4d:94:40:61:b0: 02:b2:42:ff:38:45:c0:c2:e9:d3:ec:fb:98:4e:58: 4d:7d:3f:d1:6a:ad:a2:34:b0:9a:3e:0f:94:dc:ba: f2:db:25:f5:31:d5:c4:58:2f:f8:5e:5b:93:15:ea: ea:02:90:60:8b:98:cf:0d:4d:83:3d:fe:31:fd:59: 43:69:b7:04:e7:5c:31:75:3c:9a:2b:73:3e:ea:72: 7b:b1:3e:c3:38:10:b5:13:75:c3:0f:ef:50:be:26: 60:9e:fb:bf:f9:8c:fc:44:8d:56:2c:52:80:c3:bb: 6f:ca:67:93:07:16:49:1a:99:87:45:44:5b:d7:19: e9:3e:0c:22:25:c0:f7:4b:22:88:24:1f:02:76:71: 1b:16:14:71:d4:5e:15:22:3d:e2:cb:42:00:0e:01: 3f:42:45:33:1c:2e:c0:ea:57:47:07:05:ef:2b:80: 22:50:d4:08:ca:5e:b3:79:a8:95:0a:32:da:f4:ae: 64:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5D:1C:64:E6:FF:F6:DC:98:60:1D:E4:31:57:DE:73:C5:14:ED:B2 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3136382e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.44.168.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:38:16:31:27:46:df:74:9f:17:d3:3d:0e:66:7c:79:03:20: 48:73:39:aa:85:0d:1a:23:47:e6:59:01:28:3f:52:bb:33:f9: a1:c5:f3:28:ad:5e:26:06:0a:2b:74:86:f8:17:1e:01:93:46: f3:02:a9:74:43:69:95:8b:38:f0:46:26:86:04:a1:cf:47:35: 82:c0:e5:ff:61:06:e8:57:4e:b3:55:b0:d3:be:50:50:53:b1: 6c:c9:0e:52:4b:d0:2c:8c:0f:22:cc:14:91:fe:78:36:50:4b: f2:91:fc:95:ee:55:47:1a:0f:62:be:50:d0:b1:09:5a:78:ba: 45:aa:80:05:bd:a0:34:e3:b4:50:cc:1c:b5:39:04:bc:f6:ff: 04:14:31:e5:fe:08:3c:c6:3d:b0:9d:16:b0:04:f5:b0:a1:bc: cc:65:fc:86:ad:63:f5:7b:84:b1:93:af:6c:06:72:13:13:15: 41:1b:89:88:26:8a:69:96:38:51:54:3f:81:c7:a1:0f:0a:da: c5:04:4a:5e:e1:7c:77:96:8f:54:f3:46:aa:c2:d1:18:cf:50: d0:eb:75:ef:53:ff:63:3b:86:7c:39:03:87:07:0f:7c:a9:80: b9:1c:9e:04:30:de:b8:eb:e9:68:70:97:77:3f:5c:e4:77:df: dd:da:c4:64 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYSYugvE7MUzft/T0Kek7+6Nb5JYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yMzA5MjkxNTEyMzFaFw0yNDA5MjcxNTE3MzFaMDMxMTAvBgNV BAMTKDlBNUQxQzY0RTZGRkY2REM5ODYwMURFNDMxNTdERTczQzUxNEVEQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMDOIB8ZiJwPolla9rz1/o6X/4 TW7jrYEE52Zp6sd4cje+3wD9SOfnulaAOYsvamd3PZw2Ip1ZY7Wng+A1FQClUb3t XbVNlEBhsAKyQv84RcDC6dPs+5hOWE19P9FqraI0sJo+D5TcuvLbJfUx1cRYL/he W5MV6uoCkGCLmM8NTYM9/jH9WUNptwTnXDF1PJorcz7qcnuxPsM4ELUTdcMP71C+ JmCe+7/5jPxEjVYsUoDDu2/KZ5MHFkkamYdFRFvXGek+DCIlwPdLIogkHwJ2cRsW FHHUXhUiPeLLQgAOAT9CRTMcLsDqV0cHBe8rgCJQ1AjKXrN5qJUKMtr0rmSZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUml0cZOb/9tyYYB3kMVfec8UU7bIwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMxMzEzMDJlMzQzNDJlMzEzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG4sqDANBgkqhkiG 9w0BAQsFAAOCAQEATjgWMSdG33SfF9M9DmZ8eQMgSHM5qoUNGiNH5lkBKD9SuzP5 ocXzKK1eJgYKK3SG+BceAZNG8wKpdENplYs48EYmhgShz0c1gsDl/2EG6FdOs1Ww 075QUFOxbMkOUkvQLIwPIswUkf54NlBL8pH8le5VRxoPYr5Q0LEJWni6RaqABb2g NOO0UMwctTkEvPb/BBQx5f4IPMY9sJ0WsAT1sKG8zGX8hq1j9XuEsZOvbAZyExMV QRuJiCaKaZY4UVQ/gcehDwraxQRKXuF8d5aPVPNGqsLRGM9Q0Ot171P/YzuGfDkD hwcPfKmAuRyeBDDeuOvpaHCXdz9c5Hff3drEZA== -----END CERTIFICATE-----Generated at Thu May 2 10:17:06 2024 by rpki-client on console-ams.rpki-client.org