$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139382e302f32342d3234203d3e20313331373735.roa File: 3130332e31362e3139382e302f32342d3234203d3e20313331373735.roa (raw, json) Hash identifier: KYcyChrxD8pq7JF3XB9f0D34mYdZF/uG242CtA9X8kA= Subject key identifier: 27:87:EF:23:03:BD:28:06:8E:CE:43:9D:17:AC:B5:07:6E:F0:D1:5B Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 4C569013583E9474B10EBFD5ADFCBF3A9A04A011 Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139382e302f32342d3234203d3e20313331373735.roa Signing time: Mon 31 Jul 2023 00:05:39 +0000 ROA not before: Mon 31 Jul 2023 00:00:39 +0000 ROA not after: Mon 29 Jul 2024 00:05:39 +0000 asID: 131775 IP address blocks: 103.16.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 05:49:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:56:90:13:58:3e:94:74:b1:0e:bf:d5:ad:fc:bf:3a:9a:04:a0:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jul 31 00:00:39 2023 GMT Not After : Jul 29 00:05:39 2024 GMT Subject: CN=2787EF2303BD28068ECE439D17ACB5076EF0D15B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fe:34:1b:bb:95:48:61:bf:00:5a:9e:50:aa: a2:14:a2:65:cd:67:b2:bf:5f:0b:4d:f2:3a:78:03: 9f:ec:f4:4f:9b:f5:d2:a9:d8:13:c0:6c:44:ab:1f: 30:e1:f3:26:0a:fb:41:1e:da:a3:0d:0d:22:f4:28: 43:27:4d:e4:34:07:98:16:ae:ce:84:91:c0:49:8f: 40:72:2a:cc:c4:82:e8:75:e0:a6:a3:7d:9c:b7:c6: 6e:92:f2:5b:fc:11:c8:a8:f1:b8:e8:77:9e:a2:59: bc:f8:a3:aa:4a:9e:fc:ce:fc:14:c1:21:24:99:20: bb:a4:41:0c:20:af:b7:57:41:c7:03:8c:d1:2f:b7: cb:a7:4c:d8:1a:5e:b7:53:f9:69:02:b0:3d:e4:db: 90:09:0b:41:4b:b6:ec:5c:b1:02:98:66:e3:49:e3: dc:70:a2:0a:25:22:f3:18:63:8a:d0:eb:26:22:95: 00:70:93:ec:05:a8:e2:ed:20:ab:f9:96:f8:86:27: f8:ab:7c:9b:6d:47:04:88:7b:f6:37:af:73:13:f9: 82:09:c4:e5:0d:b1:46:af:27:dc:a6:ae:d2:d6:27: bc:cb:d7:b2:13:0a:9e:16:01:76:43:e7:3e:7d:82: f4:69:f0:8f:37:98:54:bb:3d:fe:da:30:05:af:e0: bf:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:87:EF:23:03:BD:28:06:8E:CE:43:9D:17:AC:B5:07:6E:F0:D1:5B X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139382e302f32342d3234203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.198.0/24 Signature Algorithm: sha256WithRSAEncryption 71:57:82:0c:d8:f3:64:74:c6:ac:8b:ba:17:7c:99:6b:6f:90: 74:c1:3c:b2:a6:05:1b:ac:ed:02:55:28:f3:a9:bb:03:20:1e: 03:23:32:e7:64:51:41:21:30:f0:7e:03:dc:34:c0:c2:99:d7: d5:d8:3c:e0:bb:08:7d:2b:2c:41:aa:93:2e:70:1d:51:c8:d8: 1f:eb:e8:08:9c:e6:34:4e:dd:ba:c2:0a:d3:16:e3:bc:14:ac: 3d:02:a3:c5:42:3c:7f:23:60:0a:c9:78:37:5b:6f:86:2d:ff: 15:38:37:5d:fe:4b:5b:f4:0e:89:a0:a8:75:7e:ca:a8:4c:52: 27:62:aa:51:b2:2a:b1:79:cb:87:73:c4:42:22:66:3a:e5:9c: e6:50:8b:eb:07:15:ef:69:56:a3:c6:0b:9e:fa:e7:ba:e3:bc: d8:8e:8a:ce:16:ae:21:08:8f:e1:33:eb:a7:c4:a3:1c:9d:ce: 56:92:ea:19:68:95:66:62:30:70:22:55:fc:a4:69:42:cc:85: 5c:cc:b1:6b:77:4e:97:3d:3e:c0:3d:e8:f8:5d:e2:57:fd:a1: 78:36:d1:d0:4e:de:8d:54:4c:87:83:ab:12:b6:75:b5:7e:5b: de:7f:d0:8f:a6:9f:58:b7:24:84:66:0a:6f:97:14:96:9b:12: ad:cd:78:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTFaQE1g+lHSxDr/Vrfy/OpoEoBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yMzA3MzEwMDAwMzlaFw0yNDA3MjkwMDA1MzlaMDMxMTAvBgNV BAMTKDI3ODdFRjIzMDNCRDI4MDY4RUNFNDM5RDE3QUNCNTA3NkVGMEQxNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9/jQbu5VIYb8AWp5QqqIUomXN Z7K/XwtN8jp4A5/s9E+b9dKp2BPAbESrHzDh8yYK+0Ee2qMNDSL0KEMnTeQ0B5gW rs6EkcBJj0ByKszEguh14KajfZy3xm6S8lv8Ecio8bjod56iWbz4o6pKnvzO/BTB ISSZILukQQwgr7dXQccDjNEvt8unTNgaXrdT+WkCsD3k25AJC0FLtuxcsQKYZuNJ 49xwogolIvMYY4rQ6yYilQBwk+wFqOLtIKv5lviGJ/irfJttRwSIe/Y3r3MT+YIJ xOUNsUavJ9ymrtLWJ7zL17ITCp4WAXZD5z59gvRp8I83mFS7Pf7aMAWv4L/RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ4fvIwO9KAaOzkOdF6y1B27w0VswHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMxMzAzMzJlMzEzNjJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxDGMA0GCSqG SIb3DQEBCwUAA4IBAQBxV4IM2PNkdMasi7oXfJlrb5B0wTyypgUbrO0CVSjzqbsD IB4DIzLnZFFBITDwfgPcNMDCmdfV2Dzguwh9KyxBqpMucB1RyNgf6+gInOY0Tt26 wgrTFuO8FKw9AqPFQjx/I2AKyXg3W2+GLf8VODdd/ktb9A6JoKh1fsqoTFInYqpR siqxecuHc8RCImY65ZzmUIvrBxXvaVajxgue+ue647zYjorOFq4hCI/hM+unxKMc nc5WkuoZaJVmYjBwIlX8pGlCzIVczLFrd06XPT7APej4XeJX/aF4NtHQTt6NVEyH g6sStnW1flvef9CPpp9YtySEZgpvlxSWmxKtzXjI -----END CERTIFICATE-----Generated at Wed May 1 05:54:35 2024 by rpki-client on console-ams.rpki-client.org