$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131372e302f32342d3234203d3e203536323432.roa File: 3130332e3232382e3131372e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: +QW+8Oshb28MQZAQBNetxIvDMI3h2ylzi3qNjA1UTM4= Subject key identifier: BB:AF:58:9C:FA:BF:6C:98:A4:AE:A4:76:03:51:C5:B8:FA:6C:EC:E5 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 113F0C7C1856151D6D3345DACE73F89DE97FD46F Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131372e302f32342d3234203d3e203536323432.roa Signing time: Sat 10 Feb 2024 07:00:00 +0000 ROA not before: Sat 10 Feb 2024 06:55:00 +0000 ROA not after: Sat 08 Feb 2025 07:00:00 +0000 asID: 56242 IP address blocks: 103.228.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:3f:0c:7c:18:56:15:1d:6d:33:45:da:ce:73:f8:9d:e9:7f:d4:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Feb 10 06:55:00 2024 GMT Not After : Feb 8 07:00:00 2025 GMT Subject: CN=BBAF589CFABF6C98A4AEA4760351C5B8FA6CECE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3a:44:95:70:f4:5e:e4:d1:ac:f5:fc:0c:f7: cc:1f:63:c1:37:f1:d7:ae:79:16:d2:2f:a3:56:8c: 74:ac:8a:60:63:7c:90:15:6f:8a:27:a7:6e:f1:14: dc:0f:a4:b4:d9:13:ee:e7:d7:52:da:e2:f1:79:ef: c6:1b:e5:40:f4:04:50:cd:66:21:9a:c1:40:ac:41: b6:49:83:a1:e4:cc:3b:12:0b:ea:a1:76:2a:4b:b8: 8a:c4:71:4a:83:a1:63:31:e3:89:10:77:15:e2:54: 65:13:2f:e8:29:00:24:5d:aa:93:2b:ed:e0:4c:a9: 49:84:90:40:15:5f:2c:e7:58:a2:06:6c:91:52:c9: 66:7d:24:52:a4:1c:c6:c0:ba:ae:e0:d7:23:58:c7: 74:90:72:6d:e6:0f:38:1b:ca:b4:83:b1:b5:47:0e: 53:94:ce:cf:19:a5:c6:c2:35:02:8c:c0:99:e8:e2: a7:75:63:47:2c:4a:23:eb:bc:33:82:fa:7d:44:85: 16:1a:65:52:4f:a2:c0:b4:d3:b1:f3:b0:46:dc:4a: 06:ef:cf:21:52:d9:4e:dd:0d:5b:73:03:d3:f0:17: 28:04:9d:77:4b:87:0f:90:5e:ae:b0:09:54:73:53: 39:b3:56:52:77:b9:e3:10:ef:65:56:15:1c:0f:d8: 2d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:AF:58:9C:FA:BF:6C:98:A4:AE:A4:76:03:51:C5:B8:FA:6C:EC:E5 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131372e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.117.0/24 Signature Algorithm: sha256WithRSAEncryption 63:65:6f:31:9c:e7:4a:a6:c8:a9:0b:7f:d4:45:d1:40:ce:0c: 78:ed:b3:4a:17:57:cf:62:65:d9:cc:57:ff:40:3e:7f:6f:5f: ee:cf:6d:c8:32:ef:02:c1:4b:d1:0a:8e:f8:12:bc:c9:c1:dd: d5:d6:6c:17:49:e4:09:07:06:9a:6f:e7:23:38:e2:be:21:9f: 8e:bf:d9:fc:72:ee:32:ea:16:b7:60:e9:73:0c:53:4c:d3:8b: 28:a6:02:8c:a8:1d:de:c6:20:d2:3f:88:c9:aa:18:9e:a4:43: 1a:ed:0e:9e:a1:59:4e:09:f3:24:52:f4:d6:28:e8:cd:ef:0b: db:d5:70:e0:12:a4:f6:b7:66:d5:cc:ff:ae:dc:2d:70:bd:b8: c2:0e:a8:a9:f8:a2:ac:06:df:f9:60:d7:56:0f:d4:0c:40:6f: 7f:53:b8:24:5d:f3:70:e4:c4:1c:3b:d1:a9:7b:2d:38:c7:ac: 9f:e4:e5:f1:88:f8:26:fb:14:e7:33:21:92:23:7d:4e:40:78: 1f:8c:44:45:df:f7:c8:c0:a8:8f:6c:a5:9a:bf:96:5e:4a:a4: c8:02:ad:2c:d3:6f:6a:25:46:69:bc:0a:2a:58:f9:c9:c4:58: ba:a6:d2:44:44:32:32:ad:ac:39:51:01:bd:5c:76:5c:f0:c0: 61:6f:fb:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUET8MfBhWFR1tM0XaznP4nel/1G8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNDAyMTAwNjU1MDBaFw0yNTAyMDgwNzAwMDBaMDMxMTAvBgNV BAMTKEJCQUY1ODlDRkFCRjZDOThBNEFFQTQ3NjAzNTFDNUI4RkE2Q0VDRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9OkSVcPRe5NGs9fwM98wfY8E3 8deueRbSL6NWjHSsimBjfJAVb4onp27xFNwPpLTZE+7n11La4vF578Yb5UD0BFDN ZiGawUCsQbZJg6HkzDsSC+qhdipLuIrEcUqDoWMx44kQdxXiVGUTL+gpACRdqpMr 7eBMqUmEkEAVXyznWKIGbJFSyWZ9JFKkHMbAuq7g1yNYx3SQcm3mDzgbyrSDsbVH DlOUzs8ZpcbCNQKMwJno4qd1Y0csSiPrvDOC+n1EhRYaZVJPosC007HzsEbcSgbv zyFS2U7dDVtzA9PwFygEnXdLhw+QXq6wCVRzUzmzVlJ3ueMQ72VWFRwP2C3tAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUu69YnPq/bJikrqR2A1HFuPps7OUwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzAzMzJlMzIzMjM4MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM2MzIzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+R1MA0GCSqG SIb3DQEBCwUAA4IBAQBjZW8xnOdKpsipC3/URdFAzgx47bNKF1fPYmXZzFf/QD5/ b1/uz23IMu8CwUvRCo74ErzJwd3V1mwXSeQJBwaab+cjOOK+IZ+Ov9n8cu4y6ha3 YOlzDFNM04sopgKMqB3exiDSP4jJqhiepEMa7Q6eoVlOCfMkUvTWKOjN7wvb1XDg EqT2t2bVzP+u3C1wvbjCDqip+KKsBt/5YNdWD9QMQG9/U7gkXfNw5MQcO9Gpey04 x6yf5OXxiPgm+xTnMyGSI31OQHgfjERF3/fIwKiPbKWav5ZeSqTIAq0s029qJUZp vAoqWPnJxFi6ptJERDIyraw5UQG9XHZc8MBhb/v7 -----END CERTIFICATE-----Generated at Wed May 1 02:06:09 2024 by rpki-client on console-fra.rpki-client.org