$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133372e302f32342d3234203d3e20313337333330.roa File: 3130332e3131322e3133372e302f32342d3234203d3e20313337333330.roa (raw, json) Hash identifier: xKoS+BqCrf1wxQvQ20MUZ+HeajL1hL7jeTBBd1K3YKw= Subject key identifier: 32:8C:98:DF:F5:50:92:4E:6E:D4:04:10:1B:7E:00:59:3F:B4:5D:D4 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 4290276A4A7D43AC161EB2C416D39F5F0E3BA4E0 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133372e302f32342d3234203d3e20313337333330.roa Signing time: Fri 25 Aug 2023 01:00:00 +0000 ROA not before: Fri 25 Aug 2023 00:55:00 +0000 ROA not after: Fri 23 Aug 2024 01:00:00 +0000 asID: 137330 IP address blocks: 103.112.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 16:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:90:27:6a:4a:7d:43:ac:16:1e:b2:c4:16:d3:9f:5f:0e:3b:a4:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Aug 25 00:55:00 2023 GMT Not After : Aug 23 01:00:00 2024 GMT Subject: CN=328C98DFF550924E6ED404101B7E00593FB45DD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6c:7c:33:d1:89:d4:d5:4c:60:22:74:fe:cc: 9b:00:27:0d:ee:e7:4a:a3:c2:f6:fc:d0:96:1e:2d: ef:10:e6:d1:78:e1:20:92:a4:20:45:e2:c7:b0:74: 9d:3f:b2:4b:31:9a:a9:6b:af:98:9b:93:15:39:2b: c7:e6:a3:51:ed:b7:f5:44:53:cf:9e:bc:f9:0c:29: bd:fb:83:40:2b:6e:af:03:be:7a:06:7f:8a:cc:1a: 85:96:69:e6:86:f8:35:06:37:55:e9:0a:d1:f1:43: e6:5b:f6:9f:93:28:02:52:f1:42:01:49:11:71:7d: 67:8a:8b:ca:25:7f:cf:47:8b:3b:d0:97:be:32:1a: 9d:7f:01:4f:9a:f1:04:08:a7:fc:5f:ac:fc:42:5f: 02:30:f0:ec:2e:9d:9f:51:50:df:2e:c2:7d:c0:c8: d3:38:0e:14:dd:c0:ab:b9:ba:5e:0a:e9:62:10:bd: 78:23:72:52:2f:a7:44:a5:75:69:d5:15:85:e1:21: ab:fd:0e:2f:98:a4:b2:bc:09:5a:55:9f:10:56:1b: c6:ab:c3:87:c4:92:d3:6b:ce:c7:32:3b:e0:fd:0d: b0:56:41:b8:df:e2:80:2b:22:9d:79:6a:6a:f7:b4: ca:b6:c9:4f:73:af:3b:64:bb:c7:4b:ab:99:46:18: 36:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:8C:98:DF:F5:50:92:4E:6E:D4:04:10:1B:7E:00:59:3F:B4:5D:D4 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133372e302f32342d3234203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.137.0/24 Signature Algorithm: sha256WithRSAEncryption 12:26:aa:81:03:b3:6f:18:6f:88:f6:fa:7e:38:8d:c7:9c:80: ea:cc:18:5c:a0:05:8a:6e:0b:20:3f:84:0e:79:c9:9b:4f:f4: 2e:eb:6a:75:72:f0:fe:65:94:74:e2:48:98:55:bf:b3:1f:29: 04:45:f6:5c:5a:fa:aa:a9:ec:d2:7c:95:d0:f1:66:38:ed:a4: b8:03:f9:88:15:0f:b2:30:46:e9:0e:2c:b6:51:26:5a:4d:32: 0b:d3:8e:e3:39:c6:78:67:16:12:cb:7f:ac:8a:0f:2a:e3:cb: a6:62:0c:f3:64:db:e5:f5:a4:37:28:e1:72:22:f5:9e:b1:e8: 75:1d:85:0c:31:38:30:6d:b7:d0:fc:96:a8:81:78:92:43:e5: 0b:05:54:b7:f4:b3:70:a6:d4:36:7e:b7:d7:dc:96:1d:d6:2b: ce:22:a9:ee:f0:a4:6d:82:87:43:69:fd:f0:da:f8:50:eb:a6: bc:74:77:1f:39:f0:bd:9a:cf:ba:0e:65:64:05:bf:8a:3a:b7: e1:56:7c:03:ef:ec:ba:f2:dd:0e:9e:f8:42:f8:3b:c5:19:38: e0:d1:08:42:c4:af:a3:4b:b4:86:17:8b:95:d8:5e:8c:8b:32: f7:9e:b5:27:10:8f:ac:3f:30:f1:93:a2:07:ca:35:73:07:4a: 72:1c:39:f7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQpAnakp9Q6wWHrLEFtOfXw47pOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA4MjUwMDU1MDBaFw0yNDA4MjMwMTAwMDBaMDMxMTAvBgNV BAMTKDMyOEM5OERGRjU1MDkyNEU2RUQ0MDQxMDFCN0UwMDU5M0ZCNDVERDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmbHwz0YnU1UxgInT+zJsAJw3u 50qjwvb80JYeLe8Q5tF44SCSpCBF4sewdJ0/sksxmqlrr5ibkxU5K8fmo1Htt/VE U8+evPkMKb37g0Arbq8DvnoGf4rMGoWWaeaG+DUGN1XpCtHxQ+Zb9p+TKAJS8UIB SRFxfWeKi8olf89HizvQl74yGp1/AU+a8QQIp/xfrPxCXwIw8OwunZ9RUN8uwn3A yNM4DhTdwKu5ul4K6WIQvXgjclIvp0SldWnVFYXhIav9Di+YpLK8CVpVnxBWG8ar w4fEktNrzscyO+D9DbBWQbjf4oArIp15amr3tMq2yU9zrztku8dLq5lGGDZHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMoyY3/VQkk5u1AQQG34AWT+0XdQwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncIkwDQYJ KoZIhvcNAQELBQADggEBABImqoEDs28Yb4j2+n44jcecgOrMGFygBYpuCyA/hA55 yZtP9C7ranVy8P5llHTiSJhVv7MfKQRF9lxa+qqp7NJ8ldDxZjjtpLgD+YgVD7Iw RukOLLZRJlpNMgvTjuM5xnhnFhLLf6yKDyrjy6ZiDPNk2+X1pDco4XIi9Z6x6HUd hQwxODBtt9D8lqiBeJJD5QsFVLf0s3Cm1DZ+t9fclh3WK84iqe7wpG2Ch0Np/fDa +FDrprx0dx858L2az7oOZWQFv4o6t+FWfAPv7Lry3Q6e+EL4O8UZOODRCELEr6NL tIYXi5XYXoyLMveetScQj6w/MPGTogfKNXMHSnIcOfc= -----END CERTIFICATE-----Generated at Fri Apr 26 10:57:37 2024 by rpki-client on console-ams.rpki-client.org