$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa File: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (raw, json) Hash identifier: Uzl5R9EnEpmpOLqHiqB8DlSZrBRFKmVZJFsQBp0f1Qw= Subject key identifier: 2B:F3:D3:DF:51:85:F2:FF:27:06:9D:A5:31:7B:14:25:D4:5E:2E:35 Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 193B3F0C9CD7A1393FF2D507A6F8EAD56B0D09F8 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa Signing time: Sun 17 Sep 2023 07:00:00 +0000 ROA not before: Sun 17 Sep 2023 06:55:00 +0000 ROA not after: Sun 15 Sep 2024 07:00:00 +0000 asID: 136119 IP address blocks: 103.94.168.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 09:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:3b:3f:0c:9c:d7:a1:39:3f:f2:d5:07:a6:f8:ea:d5:6b:0d:09:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Sep 17 06:55:00 2023 GMT Not After : Sep 15 07:00:00 2024 GMT Subject: CN=2BF3D3DF5185F2FF27069DA5317B1425D45E2E35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d5:42:52:8d:4e:5e:8e:50:6f:f2:47:2a:98: fa:d5:01:45:c3:d0:0e:09:2d:eb:d0:7b:84:15:38: 27:91:e9:42:bf:bd:ef:e4:eb:e3:ef:9b:d2:ad:38: ee:c5:8f:84:28:4b:69:8a:92:b4:12:65:50:55:aa: 6e:c0:e8:df:83:a3:ac:0a:12:12:9b:06:2e:00:92: 20:ff:12:35:41:5f:9d:08:c0:4e:88:38:45:1b:ab: c1:de:35:b3:7b:53:18:a7:75:d5:d2:2f:19:b9:35: 41:d4:ab:b8:2a:46:0b:e6:5e:31:02:ba:f3:7c:76: 7f:5b:0b:22:80:c8:5d:ab:cc:22:a7:42:f0:d3:d3: 4e:94:83:b3:30:9d:ff:33:c5:47:30:ef:56:c8:f3: 08:dd:f4:42:a3:f1:02:a2:cf:b5:8d:63:81:c1:91: 10:93:0f:59:52:80:fc:7e:27:09:af:2a:91:cd:c2: 06:9f:4b:d4:44:73:51:ca:ca:a5:ba:38:07:6e:0d: 48:bc:82:cf:aa:3b:49:36:07:8f:6e:91:57:cd:b5: 56:7a:43:a8:db:15:e8:f7:e4:7f:0c:e2:7c:2d:4e: 46:72:d3:8c:81:db:46:18:42:b9:c1:9a:4f:9f:15: 5d:0c:4e:71:21:8a:6f:d1:b1:1a:e1:50:67:c6:a8: ef:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F3:D3:DF:51:85:F2:FF:27:06:9D:A5:31:7B:14:25:D4:5E:2E:35 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.94.168.0/22 Signature Algorithm: sha256WithRSAEncryption a3:f2:65:b6:7f:f0:87:c3:b3:3c:31:3f:6a:17:69:f1:a9:87: 86:f4:02:f8:85:d3:52:d7:98:3b:88:59:df:8c:46:69:9b:0a: d0:bd:e6:d4:89:11:38:6f:9e:ad:d3:69:70:f1:f4:33:c0:f0: 39:8a:b0:ca:4b:e5:52:13:31:42:da:87:24:cc:3b:fa:17:54: c2:45:61:7c:a4:f4:a6:c0:9e:ba:65:d5:d0:b4:d3:c1:ca:b5: e8:6a:5d:15:83:36:a7:a6:f2:bd:aa:74:0d:be:ad:07:65:3a: 3d:07:df:be:1d:9a:b8:51:62:1d:8b:1d:24:d3:8e:7a:31:fc: 25:7a:13:e7:43:af:44:d2:6d:01:5f:b6:2b:7b:46:b9:b3:b8: 2f:b3:9a:37:7d:c3:68:fa:05:bd:21:d9:a1:97:ee:20:80:3b: 4e:5d:70:b6:7d:e1:33:3c:13:f1:b7:0a:30:ac:22:a8:9c:b1: 86:67:e2:16:47:6e:9c:15:65:42:08:a9:c5:fe:c1:f5:62:87: e6:22:44:1b:63:6f:b9:d5:ec:4d:49:ed:c3:1f:6a:f4:53:1c: 60:25:59:15:a9:2f:31:5a:03:ef:72:0f:35:97:f8:8b:4e:bb: 3e:13:b2:57:2a:6f:4f:3e:12:3f:7d:31:91:c9:fc:d3:0c:b7: 76:35:3a:a5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGTs/DJzXoTk/8tUHpvjq1WsNCfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yMzA5MTcwNjU1MDBaFw0yNDA5MTUwNzAwMDBaMDMxMTAvBgNV BAMTKDJCRjNEM0RGNTE4NUYyRkYyNzA2OURBNTMxN0IxNDI1RDQ1RTJFMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ1UJSjU5ejlBv8kcqmPrVAUXD 0A4JLevQe4QVOCeR6UK/ve/k6+Pvm9KtOO7Fj4QoS2mKkrQSZVBVqm7A6N+Do6wK EhKbBi4AkiD/EjVBX50IwE6IOEUbq8HeNbN7UxinddXSLxm5NUHUq7gqRgvmXjEC uvN8dn9bCyKAyF2rzCKnQvDT006Ug7Mwnf8zxUcw71bI8wjd9EKj8QKiz7WNY4HB kRCTD1lSgPx+JwmvKpHNwgafS9REc1HKyqW6OAduDUi8gs+qO0k2B49ukVfNtVZ6 Q6jbFej35H8M4nwtTkZy04yB20YYQrnBmk+fFV0MTnEhim/RsRrhUGfGqO8LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUK/PT31GF8v8nBp2lMXsUJdReLjUwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMxMzAzMzJlMzkzNDJlMzEzNjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ16oMA0GCSqG SIb3DQEBCwUAA4IBAQCj8mW2f/CHw7M8MT9qF2nxqYeG9AL4hdNS15g7iFnfjEZp mwrQvebUiRE4b56t02lw8fQzwPA5irDKS+VSEzFC2ockzDv6F1TCRWF8pPSmwJ66 ZdXQtNPByrXoal0VgzanpvK9qnQNvq0HZTo9B9++HZq4UWIdix0k0456MfwlehPn Q69E0m0BX7Yre0a5s7gvs5o3fcNo+gW9Idmhl+4ggDtOXXC2feEzPBPxtwowrCKo nLGGZ+IWR26cFWVCCKnF/sH1YofmIkQbY2+51exNSe3DH2r0UxxgJVkVqS8xWgPv cg81l/iLTrs+E7JXKm9PPhI/fTGRyfzTDLd2NTql -----END CERTIFICATE-----Generated at Tue Apr 23 18:36:32 2024 by rpki-client on console-ams.rpki-client.org