$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e32382e3131362e302f32322d3232203d3e203535363939.roa File: 3130332e32382e3131362e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: 0j9NMP9mh+49Cvj5OTe3G03ngkl65elKV+06AJP+TZg= Subject key identifier: 2C:B3:44:89:20:BE:29:38:E2:52:27:1F:B1:84:12:1A:25:55:83:4D Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 0D18A89FB19D1A346CB1F3B1D0D39268D6A14343 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e32382e3131362e302f32322d3232203d3e203535363939.roa Signing time: Thu 14 Sep 2023 12:00:00 +0000 ROA not before: Thu 14 Sep 2023 11:55:00 +0000 ROA not after: Thu 12 Sep 2024 12:00:00 +0000 asID: 55699 IP address blocks: 103.28.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 07:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:18:a8:9f:b1:9d:1a:34:6c:b1:f3:b1:d0:d3:92:68:d6:a1:43:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Sep 14 11:55:00 2023 GMT Not After : Sep 12 12:00:00 2024 GMT Subject: CN=2CB3448920BE2938E252271FB184121A2555834D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:5a:b5:84:91:34:58:89:ec:03:fa:ef:56:97: 2d:50:26:3a:56:55:11:85:53:16:39:3d:93:28:98: 4e:f8:67:da:37:0d:ca:3a:0a:4d:82:4d:06:f3:84: 2a:4d:1d:e9:09:77:28:f2:9c:b5:70:f5:3f:f6:20: bb:a8:73:e5:e5:75:eb:55:ce:88:05:dd:43:28:23: fe:b0:ef:66:be:f3:0f:91:8f:be:1e:df:ee:13:2d: 3e:02:da:90:6a:17:33:2d:df:e4:91:e0:ce:9a:8f: 14:69:d2:f6:d8:f9:d6:58:51:da:f2:8a:79:24:2e: 85:3c:6a:b0:0c:c9:90:b0:3e:f7:09:8a:a5:fe:d2: 03:d4:82:6a:c5:35:72:0d:8c:5d:e9:69:5c:ea:7f: d9:92:df:b1:fb:98:9b:a9:28:8a:eb:6b:1e:5e:3e: bb:cf:a3:ce:98:c3:ca:29:55:d1:e1:eb:27:36:20: 32:14:17:fc:9d:10:48:8f:da:04:4e:9f:b4:7c:00: 12:80:d7:bf:f4:45:79:e4:88:3f:56:65:d3:7f:d7: 42:ab:71:04:37:02:00:41:2f:40:c8:20:e5:f7:f2: ac:e0:af:c2:d1:36:50:60:f0:26:d0:62:4a:77:0d: 32:d4:0a:d2:a2:08:40:a0:91:05:08:24:38:f5:83: a4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B3:44:89:20:BE:29:38:E2:52:27:1F:B1:84:12:1A:25:55:83:4D X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e32382e3131362e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.116.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:36:98:82:ff:9b:77:9f:b7:fe:87:1b:b8:3f:25:25:4a:d7: 85:f1:fa:d3:7d:a1:5c:14:de:af:2f:42:ea:05:f0:8e:ed:cd: 18:90:9a:aa:d9:f0:e1:a4:1b:8e:37:77:32:8f:b2:44:c2:fd: 90:11:18:45:11:14:cb:8c:a9:5f:7b:67:30:62:ce:51:2c:45: 21:3e:9c:58:9c:bf:ee:5f:a3:22:5d:33:8c:59:92:ba:cf:45: 1f:89:5b:2d:11:1a:a9:b7:70:4c:24:34:97:38:82:4f:ae:c0: f6:19:4a:ef:0a:88:17:51:45:58:c7:b5:75:6a:67:63:ea:c6: ec:49:dd:48:6c:1e:c7:5a:10:60:55:ee:43:3c:3f:a3:6c:f5: 1f:2f:14:a6:3e:57:ca:f5:ae:c7:90:65:99:a6:1f:13:3c:ef: db:fb:9d:89:5d:a9:3c:c8:aa:8b:53:da:d4:15:48:a6:f5:7f: c0:37:b9:ad:da:a1:4a:24:31:b0:8a:b8:e8:13:0a:b6:ff:9e: 61:29:10:15:0f:03:64:27:1e:2c:97:03:d0:f8:46:36:02:e3: b9:cc:fb:24:2c:d2:d5:49:7e:f9:71:d7:a7:50:02:49:81:71: 58:ba:e8:b3:00:87:74:da:15:73:db:f8:fe:db:5a:77:cb:c5: 4c:e5:ce:a5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDRion7GdGjRssfOx0NOSaNahQ0MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yMzA5MTQxMTU1MDBaFw0yNDA5MTIxMjAwMDBaMDMxMTAvBgNV BAMTKDJDQjM0NDg5MjBCRTI5MzhFMjUyMjcxRkIxODQxMjFBMjU1NTgzNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwWrWEkTRYiewD+u9Wly1QJjpW VRGFUxY5PZMomE74Z9o3Dco6Ck2CTQbzhCpNHekJdyjynLVw9T/2ILuoc+XldetV zogF3UMoI/6w72a+8w+Rj74e3+4TLT4C2pBqFzMt3+SR4M6ajxRp0vbY+dZYUdry inkkLoU8arAMyZCwPvcJiqX+0gPUgmrFNXINjF3paVzqf9mS37H7mJupKIrrax5e PrvPo86Yw8opVdHh6yc2IDIUF/ydEEiP2gROn7R8ABKA17/0RXnkiD9WZdN/10Kr cQQ3AgBBL0DIIOX38qzgr8LRNlBg8CbQYkp3DTLUCtKiCECgkQUIJDj1g6RlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULLNEiSC+KTjiUicfsYQSGiVVg00wHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzAzMzJlMzIzODJlMzEzMTM2MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmccdDANBgkqhkiG 9w0BAQsFAAOCAQEALzaYgv+bd5+3/ocbuD8lJUrXhfH6032hXBTery9C6gXwju3N GJCaqtnw4aQbjjd3Mo+yRML9kBEYRREUy4ypX3tnMGLOUSxFIT6cWJy/7l+jIl0z jFmSus9FH4lbLREaqbdwTCQ0lziCT67A9hlK7wqIF1FFWMe1dWpnY+rG7EndSGwe x1oQYFXuQzw/o2z1Hy8Upj5XyvWux5BlmaYfEzzv2/udiV2pPMiqi1Pa1BVIpvV/ wDe5rdqhSiQxsIq46BMKtv+eYSkQFQ8DZCceLJcD0PhGNgLjucz7JCzS1Ul++XHX p1ACSYFxWLroswCHdNoVc9v4/ttad8vFTOXOpQ== -----END CERTIFICATE-----Generated at Sat Apr 20 05:45:21 2024 by rpki-client on console-fra.rpki-client.org