$ rpki-client -vvf repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/3130332e32312e38342e302f32322d3234203d3e203435373836.roa File: 3130332e32312e38342e302f32322d3234203d3e203435373836.roa (raw, json) Hash identifier: d/nqfh9KjSCBoSKL5tVi5kebF9CC7pSboNZy1YMrcnw= Subject key identifier: 9A:75:7D:5F:BA:89:C8:4D:6A:5A:96:8B:AC:E8:DC:C3:92:FE:E6:F4 Certificate issuer: /CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Certificate serial: 79C1F80E834BB8C2E51AFB47B95184666990EE07 Authority key identifier: BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/3130332e32312e38342e302f32322d3234203d3e203435373836.roa Signing time: Thu 21 Sep 2023 10:00:00 +0000 ROA not before: Thu 21 Sep 2023 09:55:00 +0000 ROA not after: Thu 19 Sep 2024 10:00:00 +0000 asID: 45786 IP address blocks: 103.21.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 May 2024 15:18:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:c1:f8:0e:83:4b:b8:c2:e5:1a:fb:47:b9:51:84:66:69:90:ee:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Validity Not Before: Sep 21 09:55:00 2023 GMT Not After : Sep 19 10:00:00 2024 GMT Subject: CN=9A757D5FBA89C84D6A5A968BACE8DCC392FEE6F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ff:42:32:3f:9d:8e:b6:11:20:fe:80:01:da: aa:e2:f7:4e:5d:4c:ad:b9:e4:68:78:a1:0c:00:43: 29:11:9e:70:32:d3:6e:94:30:ba:0e:50:a4:8f:6e: 03:54:fa:c5:01:5e:19:38:ef:77:8a:ae:fd:16:d4: be:50:bc:ed:c5:9b:3b:aa:8e:7e:3c:d5:ff:6a:78: e2:b8:00:e6:28:93:60:ef:0c:1c:06:7f:52:eb:f0: 52:4d:b8:e9:d8:a2:a2:f7:54:63:99:69:ac:99:23: bd:00:e4:98:f1:1d:db:43:c3:f5:c4:c6:90:2a:6c: 6d:58:98:c8:85:46:ce:07:b0:e0:03:47:14:c9:fd: 5a:4a:88:e7:64:f5:b3:fc:b1:20:6b:47:27:4f:93: 59:ee:40:cb:56:54:93:9b:69:12:3b:f0:42:1c:95: f7:13:97:08:1e:ee:e3:33:4c:6c:20:8b:ed:b1:0d: 9e:71:d8:fc:53:a2:af:85:f3:5d:32:f7:c2:e4:6c: 7a:e5:5c:2e:44:08:95:0b:a2:31:12:5f:8f:64:1e: 79:fd:8f:1e:30:0f:51:3f:bf:68:36:a0:ae:ca:16: 46:1e:2d:39:3e:69:d9:fc:02:c0:78:57:62:e2:db: d3:b4:6d:c2:38:86:ca:0e:6a:ad:69:8d:a1:c6:3a: 22:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:75:7D:5F:BA:89:C8:4D:6A:5A:96:8B:AC:E8:DC:C3:92:FE:E6:F4 X509v3 Authority Key Identifier: keyid:BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/3130332e32312e38342e302f32322d3234203d3e203435373836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.84.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:11:11:6f:5d:2e:6a:b8:ab:af:69:5f:20:af:ff:d0:f8:46: c1:c2:50:bc:a0:68:db:9a:42:13:3b:1e:81:4a:4e:69:58:11: ad:e7:51:1f:a6:da:ed:c7:b1:6c:ad:8a:06:76:e3:df:bf:d8: 0a:4e:f3:86:d3:e1:ec:ef:ff:8c:fe:fa:f0:e7:e9:b8:de:76: b7:31:26:d2:87:f5:e6:49:4b:61:70:c9:fb:d3:d8:bd:e8:c5: bb:0f:59:91:14:e8:2e:e8:3d:e6:de:b9:4d:7b:c4:ab:e4:9f: 7c:84:82:48:55:8a:0e:d4:37:81:b9:9f:1a:be:cf:ce:ad:26: 42:62:80:7e:b7:c0:8f:ed:5d:cf:98:fe:24:ed:6b:96:72:b9: 47:11:b2:83:01:a7:8f:e3:82:b0:02:40:a4:1a:53:a3:ef:9f: d2:3a:92:42:c4:d3:f9:d4:ca:2f:93:09:2b:46:5f:a3:38:11: 90:ce:b3:a9:a7:8a:f0:7c:23:5a:53:05:f6:b9:67:fc:5c:7e: 50:aa:22:93:58:f2:cc:7a:80:17:22:78:da:22:a6:cd:27:4b: 35:47:1a:b1:f1:4b:c1:bc:9c:5e:f1:86:d5:b7:54:f2:58:1c: 25:80:61:b7:e1:2a:32:80:a7:37:f2:ae:c1:03:15:fd:61:42: 90:86:47:ed -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUecH4DoNLuMLlGvtHuVGEZmmQ7gcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJB RkU4QUEyQjAeFw0yMzA5MjEwOTU1MDBaFw0yNDA5MTkxMDAwMDBaMDMxMTAvBgNV BAMTKDlBNzU3RDVGQkE4OUM4NEQ2QTVBOTY4QkFDRThEQ0MzOTJGRUU2RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk/0IyP52OthEg/oAB2qri905d TK255Gh4oQwAQykRnnAy026UMLoOUKSPbgNU+sUBXhk473eKrv0W1L5QvO3Fmzuq jn481f9qeOK4AOYok2DvDBwGf1Lr8FJNuOnYoqL3VGOZaayZI70A5JjxHdtDw/XE xpAqbG1YmMiFRs4HsOADRxTJ/VpKiOdk9bP8sSBrRydPk1nuQMtWVJObaRI78EIc lfcTlwge7uMzTGwgi+2xDZ5x2PxToq+F810y98LkbHrlXC5ECJULojESX49kHnn9 jx4wD1E/v2g2oK7KFkYeLTk+adn8AsB4V2Li29O0bcI4hsoOaq1pjaHGOiJ/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUmnV9X7qJyE1qWpaLrOjcw5L+5vQwHwYDVR0j BBgwFoAUvwduokpozxUsMjx6Pf0/kq/oqiswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTBkYTQ0Ny1hMTM4LTQ2MjUtYTQyMC1hNzExYWMyNDM1MTkvMC9CRjA3NkVBMjRB NjhDRjE1MkMzMjNDN0EzREZEM0Y5MkFGRThBQTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJBRkU4 QUEyQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MGRhNDQ3LWExMzgtNDYyNS1h NDIwLWE3MTFhYzI0MzUxOS8wLzMxMzAzMzJlMzIzMTJlMzgzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM0MzUzNzM4MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnFVQwDQYJKoZIhvcN AQELBQADggEBAF8REW9dLmq4q69pXyCv/9D4RsHCULygaNuaQhM7HoFKTmlYEa3n UR+m2u3HsWytigZ249+/2ApO84bT4ezv/4z++vDn6bjedrcxJtKH9eZJS2FwyfvT 2L3oxbsPWZEU6C7oPebeuU17xKvkn3yEgkhVig7UN4G5nxq+z86tJkJigH63wI/t Xc+Y/iTta5ZyuUcRsoMBp4/jgrACQKQaU6Pvn9I6kkLE0/nUyi+TCStGX6M4EZDO s6mnivB8I1pTBfa5Z/xcflCqIpNY8sx6gBcieNoips0nSzVHGrHxS8G8nF7xhtW3 VPJYHCWAYbfhKjKApzfyrsEDFf1hQpCGR+0= -----END CERTIFICATE-----Generated at Tue May 14 16:58:50 2024 by rpki-client on console-fra.rpki-client.org