$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131392e302f32342d3234203d3e203536323432.roa File: 3130332e3232382e3131392e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: VEg7xHC3MQWHABdDpMKwceTP/8ZGCAuFzi07J291xnI= Subject key identifier: 62:50:0E:91:0C:85:35:28:C8:B6:9A:05:08:C5:7F:11:C0:F5:33:16 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 1660CA972F1619E192B74952B3F402027733EB89 Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131392e302f32342d3234203d3e203536323432.roa Signing time: Sat 10 Feb 2024 07:00:00 +0000 ROA not before: Sat 10 Feb 2024 06:55:00 +0000 ROA not after: Sat 08 Feb 2025 07:00:00 +0000 asID: 56242 IP address blocks: 103.228.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:60:ca:97:2f:16:19:e1:92:b7:49:52:b3:f4:02:02:77:33:eb:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Feb 10 06:55:00 2024 GMT Not After : Feb 8 07:00:00 2025 GMT Subject: CN=62500E910C853528C8B69A0508C57F11C0F53316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7b:03:9b:54:ae:c6:88:14:79:13:e1:71:28: bb:62:5b:c0:31:33:ff:fd:fa:a1:a5:88:04:57:d2: a7:10:6e:83:88:9f:51:52:a0:df:97:12:29:b2:19: c0:f2:ee:78:13:01:c6:38:87:fa:0f:70:2b:4a:41: cd:e8:8a:96:31:49:6b:74:7a:cc:a8:19:1d:26:44: 80:fa:2e:12:9b:87:95:db:13:bc:1b:8f:36:a0:7a: 8a:e7:d5:9c:e0:af:b4:ae:16:9e:13:3b:91:02:ba: fe:a8:51:9e:11:77:d9:81:bc:0f:fa:b0:a4:3b:e9: dd:8c:a3:5c:8e:e0:19:98:73:b6:2b:56:07:61:1d: fa:9f:63:c8:9a:79:4d:82:b0:1d:89:49:2c:ad:86: 9d:65:5a:b8:a9:bb:79:2a:18:2b:78:fc:bf:45:33: af:2f:a2:84:b7:1f:e9:4f:69:bc:32:94:c2:03:d8: c3:a9:71:b4:7f:2d:ae:8c:a3:d8:0b:b8:00:0c:2d: 46:ba:da:2f:14:62:ed:25:f0:b4:0a:fb:0c:93:b3: d9:2c:6f:01:e6:49:79:f7:bb:c9:d5:06:eb:99:ab: 25:42:a1:00:c7:32:ca:31:4c:ae:a7:83:9e:85:65: df:9b:df:1d:9b:2f:f0:6d:98:96:48:82:79:10:5a: 9a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:50:0E:91:0C:85:35:28:C8:B6:9A:05:08:C5:7F:11:C0:F5:33:16 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131392e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.119.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:db:d4:3f:c2:b9:95:99:fb:dd:2e:5a:fd:c7:90:ff:af:38: 06:d7:c8:2e:f8:95:78:1f:6d:21:f1:ee:d6:3e:0f:cb:21:96: b5:82:f2:bc:64:3a:ba:4a:c9:71:5a:3c:19:3b:75:2b:73:43: 27:36:f5:2f:be:ce:86:2c:c9:ec:85:86:ee:48:9e:ae:ac:f3: 2f:d7:08:e1:a9:59:25:15:5d:7e:69:6a:85:97:b4:e7:4c:cb: 21:55:0a:46:57:ef:4a:75:2b:38:8b:a3:f5:13:5e:e4:f1:86: ba:c7:17:7e:e9:93:d5:94:2c:27:e6:1c:dd:3f:1a:38:ce:34: d8:e6:5b:57:7d:3f:08:66:16:81:85:eb:65:64:68:e7:58:3f: 95:75:f6:14:8b:0c:97:c5:21:48:02:bb:5a:40:7e:b0:9d:e0: dd:a0:19:48:ad:d3:0f:05:64:90:2f:97:4c:af:08:1b:d3:a2: dc:3a:e2:0a:50:37:ff:0b:5f:8e:7c:6f:c9:ce:f5:f9:08:3a: 2b:0e:e4:8e:76:c0:68:22:f1:57:b0:e8:ed:2b:c9:93:d0:f7: fa:75:f2:db:cd:86:00:b0:1f:38:f3:2c:49:a3:45:d6:51:a1: e9:ea:21:ea:cd:57:c2:73:aa:a6:44:8c:18:5f:81:4d:39:d4: de:08:37:0e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFmDKly8WGeGSt0lSs/QCAncz64kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNDAyMTAwNjU1MDBaFw0yNTAyMDgwNzAwMDBaMDMxMTAvBgNV BAMTKDYyNTAwRTkxMEM4NTM1MjhDOEI2OUEwNTA4QzU3RjExQzBGNTMzMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvewObVK7GiBR5E+FxKLtiW8Ax M//9+qGliARX0qcQboOIn1FSoN+XEimyGcDy7ngTAcY4h/oPcCtKQc3oipYxSWt0 esyoGR0mRID6LhKbh5XbE7wbjzageorn1Zzgr7SuFp4TO5ECuv6oUZ4Rd9mBvA/6 sKQ76d2Mo1yO4BmYc7YrVgdhHfqfY8iaeU2CsB2JSSythp1lWripu3kqGCt4/L9F M68vooS3H+lPabwylMID2MOpcbR/La6Mo9gLuAAMLUa62i8UYu0l8LQK+wyTs9ks bwHmSXn3u8nVBuuZqyVCoQDHMsoxTK6ng56FZd+b3x2bL/BtmJZIgnkQWpq9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYlAOkQyFNSjItpoFCMV/EcD1MxYwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzAzMzJlMzIzMjM4MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM2MzIzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+R3MA0GCSqG SIb3DQEBCwUAA4IBAQCM29Q/wrmVmfvdLlr9x5D/rzgG18gu+JV4H20h8e7WPg/L IZa1gvK8ZDq6SslxWjwZO3Urc0MnNvUvvs6GLMnshYbuSJ6urPMv1wjhqVklFV1+ aWqFl7TnTMshVQpGV+9KdSs4i6P1E17k8Ya6xxd+6ZPVlCwn5hzdPxo4zjTY5ltX fT8IZhaBhetlZGjnWD+VdfYUiwyXxSFIArtaQH6wneDdoBlIrdMPBWSQL5dMrwgb 06LcOuIKUDf/C1+OfG/JzvX5CDorDuSOdsBoIvFXsOjtK8mT0Pf6dfLbzYYAsB84 8yxJo0XWUaHp6iHqzVfCc6qmRIwYX4FNOdTeCDcO -----END CERTIFICATE-----Generated at Wed May 1 01:36:44 2024 by rpki-client on console-ams.rpki-client.org