$ rpki-client -vvf repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37322e302f32332d3233203d3e20313530343838.roa File: 3130332e33392e37322e302f32332d3233203d3e20313530343838.roa (raw, json) Hash identifier: Wy8k4tXh0TKHvIi28nZSc4mxXZ7J8Q0A2Y/9H0Lybbk= Subject key identifier: 4A:AC:15:7B:62:86:B2:3E:C2:1C:64:FB:67:23:3E:68:CB:E4:40:85 Certificate issuer: /CN=D6E54AF6C437868899B99F4312CD3DBB493B5D29 Certificate serial: 0221B0A5E2F13D7BCCB0FD4A802A15F6F58CBF44 Authority key identifier: D6:E5:4A:F6:C4:37:86:88:99:B9:9F:43:12:CD:3D:BB:49:3B:5D:29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6E54AF6C437868899B99F4312CD3DBB493B5D29.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37322e302f32332d3233203d3e20313530343838.roa Signing time: Wed 10 Jan 2024 04:00:01 +0000 ROA not before: Wed 10 Jan 2024 03:55:01 +0000 ROA not after: Wed 08 Jan 2025 04:00:01 +0000 asID: 150488 IP address blocks: 103.39.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/D6E54AF6C437868899B99F4312CD3DBB493B5D29.crl rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/D6E54AF6C437868899B99F4312CD3DBB493B5D29.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6E54AF6C437868899B99F4312CD3DBB493B5D29.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:21:b0:a5:e2:f1:3d:7b:cc:b0:fd:4a:80:2a:15:f6:f5:8c:bf:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6E54AF6C437868899B99F4312CD3DBB493B5D29 Validity Not Before: Jan 10 03:55:01 2024 GMT Not After : Jan 8 04:00:01 2025 GMT Subject: CN=4AAC157B6286B23EC21C64FB67233E68CBE44085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:88:da:64:0f:6d:73:69:56:44:0a:46:93:b3: 34:6f:8d:1f:69:60:43:33:36:0a:f2:8a:99:09:e9: a5:f8:3b:73:1a:67:80:5f:95:df:4e:24:da:64:61: da:f0:fb:f2:4d:42:78:e8:7e:ba:cf:87:02:f1:19: 1e:80:d0:05:fb:58:05:bb:f7:cc:0f:91:97:6d:87: 6d:ba:05:87:99:1f:90:a2:b6:45:65:b4:9a:ce:6e: d9:ce:fe:e0:01:79:72:a5:41:c2:47:7c:8d:fb:d4: b8:96:9f:f9:cc:bb:63:0a:5f:36:e8:dc:38:0b:9a: 91:10:7c:e0:f8:d4:77:46:ae:18:62:73:ba:c0:c0: 72:30:15:f4:7d:2c:31:a8:2a:1d:3f:2e:a6:03:b9: 8d:19:6b:f7:ad:aa:c3:59:b9:03:4a:b4:67:16:56: 6a:84:6a:f9:31:b9:49:df:c3:dc:ee:85:4e:59:19: e2:ab:83:80:ab:3c:c1:ca:39:02:ec:09:eb:24:8d: 5f:12:6e:50:8d:c4:2b:8c:01:14:6e:e7:4d:d5:1c: 6b:ad:7d:fb:0c:9a:07:0e:3c:21:f2:b4:fe:ba:24: b9:25:df:cd:dc:5b:ff:cc:80:53:99:08:9b:c7:3e: 1c:2c:aa:b8:78:c1:8f:42:f7:24:9c:86:0c:a0:2d: 2b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:AC:15:7B:62:86:B2:3E:C2:1C:64:FB:67:23:3E:68:CB:E4:40:85 X509v3 Authority Key Identifier: keyid:D6:E5:4A:F6:C4:37:86:88:99:B9:9F:43:12:CD:3D:BB:49:3B:5D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/D6E54AF6C437868899B99F4312CD3DBB493B5D29.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6E54AF6C437868899B99F4312CD3DBB493B5D29.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37322e302f32332d3233203d3e20313530343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.39.72.0/23 Signature Algorithm: sha256WithRSAEncryption b2:d0:c2:a9:c4:25:82:2d:16:dd:60:ef:c0:74:26:0d:44:31: 95:ac:96:cb:9e:fa:81:7c:22:64:04:5e:55:03:d8:29:bd:42: f0:49:ae:c5:c3:e6:9f:36:56:0d:52:2f:ea:b4:c3:6f:ba:70: 0f:13:b3:5b:8f:b5:c0:ca:10:98:69:f6:ff:a3:e2:d8:f2:e8: 5e:1e:e7:ed:4b:8e:bc:14:da:ad:c4:da:c7:0c:2f:70:f2:39: 86:d9:d5:c9:c2:8e:86:b8:45:e0:9c:38:b5:24:1b:dc:fb:97: 44:52:b7:7f:61:cb:e0:60:6e:52:5f:11:d8:e3:6c:36:ed:dc: da:fd:94:f8:a8:3c:4b:9c:fb:3d:0a:62:b0:ae:32:61:d3:96: f9:67:d3:cc:af:ba:e2:12:01:9b:93:ad:ae:85:72:a2:34:ab: 6e:9e:df:76:60:c6:fe:e2:87:22:2d:c6:97:02:5c:16:5c:40: f6:8d:82:00:49:0f:cc:29:2f:00:27:e6:85:0b:ec:c5:19:c1: 0a:2b:dd:80:25:e5:44:f5:b3:8e:de:bd:29:8a:c8:46:15:bd: 32:60:10:2c:63:c0:77:2a:e1:d7:01:45:09:c6:75:a3:98:bb: c2:40:6c:81:9b:e5:00:bb:6d:63:d0:6b:9a:77:d6:11:6a:94: 1b:7c:05:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAiGwpeLxPXvMsP1KgCoV9vWMv0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDZFNTRBRjZDNDM3ODY4ODk5Qjk5RjQzMTJDRDNEQkI0 OTNCNUQyOTAeFw0yNDAxMTAwMzU1MDFaFw0yNTAxMDgwNDAwMDFaMDMxMTAvBgNV BAMTKDRBQUMxNTdCNjI4NkIyM0VDMjFDNjRGQjY3MjMzRTY4Q0JFNDQwODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6iNpkD21zaVZECkaTszRvjR9p YEMzNgryipkJ6aX4O3MaZ4Bfld9OJNpkYdrw+/JNQnjofrrPhwLxGR6A0AX7WAW7 98wPkZdth226BYeZH5CitkVltJrObtnO/uABeXKlQcJHfI371LiWn/nMu2MKXzbo 3DgLmpEQfOD41HdGrhhic7rAwHIwFfR9LDGoKh0/LqYDuY0Za/etqsNZuQNKtGcW VmqEavkxuUnfw9zuhU5ZGeKrg4CrPMHKOQLsCeskjV8SblCNxCuMARRu503VHGut ffsMmgcOPCHytP66JLkl383cW//MgFOZCJvHPhwsqrh4wY9C9ySchgygLSshAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSqwVe2KGsj7CHGT7ZyM+aMvkQIUwHwYDVR0j BBgwFoAU1uVK9sQ3hoiZuZ9DEs09u0k7XSkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGM3M2FmNS1hMmMwLTQyNGQtODYyZS0xMTJjNThiNzI3MGUvMC9ENkU1NEFGNkM0 Mzc4Njg4OTlCOTlGNDMxMkNEM0RCQjQ5M0I1RDI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDZFNTRBRjZDNDM3ODY4ODk5Qjk5RjQzMTJDRDNEQkI0OTNC NUQyOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwYzczYWY1LWEyYzAtNDI0ZC04 NjJlLTExMmM1OGI3MjcwZS8wLzMxMzAzMzJlMzMzOTJlMzczMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMDM0MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcnSDANBgkqhkiG 9w0BAQsFAAOCAQEAstDCqcQlgi0W3WDvwHQmDUQxlayWy576gXwiZAReVQPYKb1C 8EmuxcPmnzZWDVIv6rTDb7pwDxOzW4+1wMoQmGn2/6Pi2PLoXh7n7UuOvBTarcTa xwwvcPI5htnVycKOhrhF4Jw4tSQb3PuXRFK3f2HL4GBuUl8R2ONsNu3c2v2U+Kg8 S5z7PQpisK4yYdOW+WfTzK+64hIBm5OtroVyojSrbp7fdmDG/uKHIi3GlwJcFlxA 9o2CAEkPzCkvACfmhQvsxRnBCivdgCXlRPWzjt69KYrIRhW9MmAQLGPAdyrh1wFF CcZ1o5i7wkBsgZvlALttY9BrmnfWEWqUG3wF5g== -----END CERTIFICATE-----Generated at Sat Jun 22 14:21:50 2024 by rpki-client on console-ams.rpki-client.org