$ rpki-client -vvf repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/3130332e3136342e3137302e302f32332d3234203d3e203137393935.roa File: 3130332e3136342e3137302e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: KYQ2qFYOLvXXRwpi7qJpeFGTXfoc6jQamjCZpOn04V4= Subject key identifier: 40:F2:E0:02:34:55:FD:AE:B4:DC:A6:C1:97:72:2F:39:1E:07:5F:27 Certificate issuer: /CN=FB3FCC1A69B1BD92D6A319D7FD820EEECE674245 Certificate serial: 6C0ED80039A485DD2A9122CF5E379DD94EE4F7A5 Authority key identifier: FB:3F:CC:1A:69:B1:BD:92:D6:A3:19:D7:FD:82:0E:EE:CE:67:42:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/3130332e3136342e3137302e302f32332d3234203d3e203137393935.roa Signing time: Fri 01 Sep 2023 10:01:49 +0000 ROA not before: Fri 01 Sep 2023 09:56:49 +0000 ROA not after: Fri 30 Aug 2024 10:01:49 +0000 asID: 17995 IP address blocks: 103.164.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.crl rsync://repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 00:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:0e:d8:00:39:a4:85:dd:2a:91:22:cf:5e:37:9d:d9:4e:e4:f7:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB3FCC1A69B1BD92D6A319D7FD820EEECE674245 Validity Not Before: Sep 1 09:56:49 2023 GMT Not After : Aug 30 10:01:49 2024 GMT Subject: CN=40F2E0023455FDAEB4DCA6C197722F391E075F27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:06:00:bb:7b:42:fb:25:f6:99:1c:fb:76:91: 0d:3d:b5:8a:7e:6b:ca:e1:74:22:6c:bb:5b:c6:24: 11:d1:e9:e9:9c:59:2e:dc:aa:32:ec:11:96:86:36: 6f:19:f4:53:fd:8c:7c:bc:4c:51:88:ae:c7:e6:ad: 1f:56:24:e4:98:5c:c6:53:64:c8:a0:01:16:55:41: 8b:1f:fd:ec:2f:4c:a0:fd:38:3c:b1:40:eb:0b:81: 6e:99:d1:35:5a:b4:7f:02:cf:cd:f0:4f:a0:2f:07: e9:37:13:54:3e:42:05:bd:4a:7a:51:0e:e3:ea:e5: c1:4c:5a:47:6a:13:01:c7:b3:12:8f:5f:fb:64:00: 33:26:32:5e:c1:d7:24:ee:45:3c:9a:40:6b:d8:91: 95:ba:50:36:1b:3f:b0:ef:f2:3f:29:7d:c3:1f:89: af:f9:e1:74:30:34:2f:39:a1:0a:2c:de:55:fe:27: 51:29:5d:3f:f3:ec:81:34:3a:6a:66:f2:d6:06:14: cd:10:b0:64:f5:15:cb:ea:c8:33:57:ee:80:66:51: c1:4f:74:fa:cf:f0:0f:c8:e1:ba:67:b7:96:52:04: 30:06:0e:fb:25:25:1b:d0:84:5e:36:a6:55:db:69: 89:27:f7:b6:a6:0d:d7:4b:87:ce:76:df:3b:d5:87: 87:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:F2:E0:02:34:55:FD:AE:B4:DC:A6:C1:97:72:2F:39:1E:07:5F:27 X509v3 Authority Key Identifier: keyid:FB:3F:CC:1A:69:B1:BD:92:D6:A3:19:D7:FD:82:0E:EE:CE:67:42:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/3130332e3136342e3137302e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.170.0/23 Signature Algorithm: sha256WithRSAEncryption b5:0b:f6:64:ed:80:09:79:54:1b:04:b7:8e:d3:46:c7:a9:a3: b9:e9:8d:85:e2:b2:b6:11:07:df:37:b5:62:3e:b7:78:65:1e: 10:eb:41:1a:82:0e:e9:c3:78:1a:54:43:08:93:5d:3f:73:72: 1a:2d:78:a2:02:98:61:4a:4c:d5:a6:90:14:39:76:dc:58:b0: 65:e2:bf:1f:b3:db:f2:f3:2e:38:cf:4f:c4:2f:2b:2c:ad:41: e9:3e:d2:d1:40:d6:27:5e:c8:67:e7:4b:fd:75:2e:bd:65:c8: d4:6b:54:bb:4c:0a:13:21:1a:74:58:ee:66:62:30:f6:7d:96: 77:e2:9d:a4:c6:f2:d9:01:82:ba:12:e2:2f:6f:46:00:8f:60: 24:85:41:f1:80:a0:88:02:48:3a:33:74:f4:76:7b:2a:00:f6: 0e:a3:2f:5c:06:75:54:86:c3:7b:96:ce:3d:9f:43:9a:6c:87: 40:28:b7:c8:76:5a:8a:05:7a:b0:9e:e4:23:7a:29:da:f5:28: ea:02:94:fa:17:df:de:17:dd:54:91:d5:40:31:c0:ca:e2:45: a4:a0:6b:82:6c:05:a7:8a:dc:41:f3:7c:27:f0:54:92:e9:bd: f1:25:c6:21:d4:53:1f:97:6b:09:df:02:53:ca:51:57:ed:59: 97:2a:2c:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbA7YADmkhd0qkSLPXjed2U7k96UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIzRkNDMUE2OUIxQkQ5MkQ2QTMxOUQ3RkQ4MjBFRUVD RTY3NDI0NTAeFw0yMzA5MDEwOTU2NDlaFw0yNDA4MzAxMDAxNDlaMDMxMTAvBgNV BAMTKDQwRjJFMDAyMzQ1NUZEQUVCNERDQTZDMTk3NzIyRjM5MUUwNzVGMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNBgC7e0L7JfaZHPt2kQ09tYp+ a8rhdCJsu1vGJBHR6emcWS7cqjLsEZaGNm8Z9FP9jHy8TFGIrsfmrR9WJOSYXMZT ZMigARZVQYsf/ewvTKD9ODyxQOsLgW6Z0TVatH8Cz83wT6AvB+k3E1Q+QgW9SnpR DuPq5cFMWkdqEwHHsxKPX/tkADMmMl7B1yTuRTyaQGvYkZW6UDYbP7Dv8j8pfcMf ia/54XQwNC85oQos3lX+J1EpXT/z7IE0Ompm8tYGFM0QsGT1FcvqyDNX7oBmUcFP dPrP8A/I4bpnt5ZSBDAGDvslJRvQhF42plXbaYkn97amDddLh8523zvVh4dPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQPLgAjRV/a603KbBl3IvOR4HXycwHwYDVR0j BBgwFoAU+z/MGmmxvZLWoxnX/YIO7s5nQkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDg3YmVlZC02MzMwLTRmMzMtOTEwNS04NzcyMmNkZjJkZDAvMC9GQjNGQ0MxQTY5 QjFCRDkyRDZBMzE5RDdGRDgyMEVFRUNFNjc0MjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkIzRkNDMUE2OUIxQkQ5MkQ2QTMxOUQ3RkQ4MjBFRUVDRTY3 NDI0NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkODdiZWVkLTYzMzAtNGYzMy05 MTA1LTg3NzIyY2RmMmRkMC8wLzMxMzAzMzJlMzEzNjM0MmUzMTM3MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6SqMA0GCSqG SIb3DQEBCwUAA4IBAQC1C/Zk7YAJeVQbBLeO00bHqaO56Y2F4rK2EQffN7ViPrd4 ZR4Q60Eagg7pw3gaVEMIk10/c3IaLXiiAphhSkzVppAUOXbcWLBl4r8fs9vy8y44 z0/ELyssrUHpPtLRQNYnXshn50v9dS69ZcjUa1S7TAoTIRp0WO5mYjD2fZZ34p2k xvLZAYK6EuIvb0YAj2AkhUHxgKCIAkg6M3T0dnsqAPYOoy9cBnVUhsN7ls49n0Oa bIdAKLfIdlqKBXqwnuQjeina9SjqApT6F9/eF91UkdVAMcDK4kWkoGuCbAWnitxB 83wn8FSS6b3xJcYh1FMfl2sJ3wJTylFX7VmXKiyc -----END CERTIFICATE-----Generated at Sat Apr 27 17:53:16 2024 by rpki-client on console-ams.rpki-client.org