$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa File: 3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: fAIovrjTlexnPzz9bt2VOgLm39n1pWPGDarcks+BA0Q= Subject key identifier: 25:C0:F2:45:A7:3F:5F:84:2C:B5:88:7B:49:27:C4:AF:30:BF:1D:69 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 4369040985967015994A89CA2F874FC4CEFCCBC6 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa Signing time: Mon 31 Jul 2023 00:03:14 +0000 ROA not before: Sun 30 Jul 2023 23:58:14 +0000 ROA not after: Mon 29 Jul 2024 00:03:14 +0000 asID: 131717 IP address blocks: 103.25.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 22:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:69:04:09:85:96:70:15:99:4a:89:ca:2f:87:4f:c4:ce:fc:cb:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 30 23:58:14 2023 GMT Not After : Jul 29 00:03:14 2024 GMT Subject: CN=25C0F245A73F5F842CB5887B4927C4AF30BF1D69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ae:84:98:45:29:b7:72:b4:00:76:2d:ae:af: ac:d6:97:e0:8f:53:0b:d8:60:6e:8b:0e:4d:4c:1d: 04:d9:f1:39:ef:bb:12:6a:f0:cd:ae:f0:ef:87:9e: 68:d4:79:f8:a3:03:e8:04:ba:33:b7:49:ab:e7:37: 77:05:09:b5:13:43:af:5d:17:c6:cb:c6:92:c6:f9: ce:64:b2:c0:54:98:d3:06:b2:35:3a:4e:53:d3:3c: 9a:1b:97:40:67:a1:53:1a:0f:30:1a:2b:cf:04:73: 65:e4:d4:b1:38:d5:34:6c:5a:ff:ff:e2:f3:89:b8: a9:65:ca:fa:b4:e9:c5:b6:6e:00:ac:d6:f5:5a:a6: 06:da:37:28:35:f1:67:66:8c:93:40:8e:47:4f:ed: f1:d5:a6:84:cf:93:a8:7e:81:0c:0b:e0:75:2f:38: c1:48:b2:e4:7a:99:76:ef:f6:42:0a:cf:71:00:86: de:25:6f:d3:7c:fc:5b:19:37:1a:d9:dd:34:fe:ed: 43:18:de:6e:b0:a5:63:bd:ec:33:3d:c1:22:7a:07: 95:c4:0d:37:d1:11:8b:4c:f2:84:77:52:c2:9b:d0: a9:99:50:a1:dd:aa:1d:2f:b9:c9:0e:63:be:c2:2c: 42:06:6c:24:01:c9:6d:00:c2:c2:fe:4b:38:b9:b6: 46:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C0:F2:45:A7:3F:5F:84:2C:B5:88:7B:49:27:C4:AF:30:BF:1D:69 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.166.0/24 Signature Algorithm: sha256WithRSAEncryption a9:9d:c8:bd:3d:95:ab:15:a1:d1:c5:ff:02:87:47:d9:88:a0: d9:cf:39:6a:e4:c2:fe:c2:80:0d:ba:0b:4a:88:c8:2b:6b:61: e4:4a:0d:4a:70:b4:f7:64:c3:2b:3f:79:5e:ce:49:97:b3:d7: a6:ca:9b:eb:bf:07:f7:e7:5d:bb:a2:3f:a7:8d:4a:83:da:92: fc:56:70:40:ff:b4:9e:7b:f6:58:aa:3a:07:82:cc:ce:a7:73: 53:17:57:d9:4a:5c:14:dd:20:cc:14:a9:c2:66:8b:74:c2:30: 4e:e1:90:dc:0b:11:25:b8:9c:22:97:e7:79:cb:fb:cf:3d:ae: 10:3f:19:34:fd:b5:17:1e:33:a6:fb:b1:4f:ab:1b:24:2e:76: 34:f1:e7:b0:62:0d:d7:91:d8:8e:a8:5d:66:28:2b:29:9b:b3: 99:e0:3c:3f:6c:bf:28:bc:04:40:0c:1b:a3:6b:b9:86:dc:a2: 9a:b5:8e:b8:a5:ec:b7:b3:f7:0f:67:55:ef:ef:3c:b9:e2:48: 0e:0f:a8:56:27:f7:28:cf:ab:37:e5:91:dd:72:17:4a:e8:05: dd:5f:74:47:36:89:78:72:d6:d4:2a:0a:97:33:f5:af:a3:bd: f7:c6:22:c9:f1:09:b6:e5:d2:f3:e6:26:29:1d:4a:5f:b8:92: 9d:86:f4:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ2kECYWWcBWZSonKL4dPxM78y8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yMzA3MzAyMzU4MTRaFw0yNDA3MjkwMDAzMTRaMDMxMTAvBgNV BAMTKDI1QzBGMjQ1QTczRjVGODQyQ0I1ODg3QjQ5MjdDNEFGMzBCRjFENjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsroSYRSm3crQAdi2ur6zWl+CP UwvYYG6LDk1MHQTZ8TnvuxJq8M2u8O+HnmjUefijA+gEujO3SavnN3cFCbUTQ69d F8bLxpLG+c5kssBUmNMGsjU6TlPTPJobl0BnoVMaDzAaK88Ec2Xk1LE41TRsWv// 4vOJuKllyvq06cW2bgCs1vVapgbaNyg18WdmjJNAjkdP7fHVpoTPk6h+gQwL4HUv OMFIsuR6mXbv9kIKz3EAht4lb9N8/FsZNxrZ3TT+7UMY3m6wpWO97DM9wSJ6B5XE DTfREYtM8oR3UsKb0KmZUKHdqh0vuckOY77CLEIGbCQByW0AwsL+Szi5tkapAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJcDyRac/X4QstYh7SSfErzC/HWkwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMxMzAzMzJlMzIzNTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxmmMA0GCSqG SIb3DQEBCwUAA4IBAQCpnci9PZWrFaHRxf8Ch0fZiKDZzzlq5ML+woANugtKiMgr a2HkSg1KcLT3ZMMrP3lezkmXs9emypvrvwf35127oj+njUqD2pL8VnBA/7See/ZY qjoHgszOp3NTF1fZSlwU3SDMFKnCZot0wjBO4ZDcCxEluJwil+d5y/vPPa4QPxk0 /bUXHjOm+7FPqxskLnY08eewYg3XkdiOqF1mKCspm7OZ4Dw/bL8ovARADBuja7mG 3KKatY64pey3s/cPZ1Xv7zy54kgOD6hWJ/coz6s35ZHdchdK6AXdX3RHNol4ctbU KgqXM/Wvo733xiLJ8Qm25dLz5iYpHUpfuJKdhvSL -----END CERTIFICATE-----Generated at Tue Apr 23 18:36:33 2024 by rpki-client on console-ams.rpki-client.org