$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa File: 3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa (raw, json) Hash identifier: hhGkdV1oNUVn4ZOhG59rIn3WfJKf0XaxA4fIPbGy/eU= Subject key identifier: D6:41:05:33:B6:F6:D3:73:08:CA:5F:BC:FB:55:7F:C2:7F:A0:01:E9 Certificate issuer: /CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Certificate serial: 076FA8F900D51A221AF7751EFDD597D0FC77DED6 Authority key identifier: 04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa Signing time: Sun 25 Jun 2023 21:52:36 +0000 ROA not before: Sun 25 Jun 2023 21:47:36 +0000 ROA not after: Sun 23 Jun 2024 21:52:36 +0000 asID: 140482 IP address blocks: 103.231.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 16:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:6f:a8:f9:00:d5:1a:22:1a:f7:75:1e:fd:d5:97:d0:fc:77:de:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Validity Not Before: Jun 25 21:47:36 2023 GMT Not After : Jun 23 21:52:36 2024 GMT Subject: CN=D6410533B6F6D37308CA5FBCFB557FC27FA001E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:86:e9:78:b5:e0:99:a0:91:7c:2b:31:21:1e: 87:38:9e:d7:48:4b:3a:ba:8a:b3:6b:4a:b8:1a:36: 54:d5:6d:98:ad:2f:80:f1:f4:ba:e0:bc:0b:1f:c1: c1:9e:15:21:97:4a:37:f3:9c:2e:01:20:57:18:c5: 6a:00:c9:a0:82:5d:91:b3:95:28:c2:c7:bd:bb:5d: 1e:f9:0d:1f:ec:5a:f3:4d:e4:50:07:14:ea:d8:70: a3:2c:52:ea:39:6c:36:f2:a0:bf:41:ae:56:11:71: 57:d4:a8:2c:71:41:00:25:f8:35:05:c0:44:8c:f9: 74:83:d0:6c:0a:fd:6e:57:3c:f9:ae:55:03:71:40: 57:12:50:a7:1e:8f:fc:1a:50:bd:2f:25:16:20:25: f2:d2:eb:90:3f:7c:c0:a5:4d:3d:68:27:ec:df:dd: fa:f0:aa:0f:b7:c0:5a:46:8d:d6:03:de:ef:85:ba: 30:6c:af:eb:4b:8f:f8:23:9e:19:d7:97:62:aa:6b: 61:59:79:35:20:36:a1:2b:b4:15:61:52:b5:3e:e6: c4:d7:60:e6:ad:01:2d:fe:7f:1f:dc:98:80:46:d0: 4f:d2:4b:98:ed:17:66:e4:5a:31:40:09:05:45:d0: 81:02:90:c9:42:32:50:e0:41:04:86:9b:13:f6:c8: c6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:41:05:33:B6:F6:D3:73:08:CA:5F:BC:FB:55:7F:C2:7F:A0:01:E9 X509v3 Authority Key Identifier: keyid:04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.171.0/24 Signature Algorithm: sha256WithRSAEncryption 93:bb:51:5d:38:62:12:b3:16:21:c4:40:a4:64:3d:e4:05:bc: 37:2e:50:c7:f8:83:0e:11:48:ae:bd:21:f3:2b:7a:1b:34:4e: 32:b4:d7:2e:17:3c:b3:7f:9b:78:c3:30:a2:52:dc:7a:59:2c: 9d:fa:25:3d:8c:f4:ad:75:2c:b9:db:db:33:a6:92:5c:af:90: db:be:48:f4:31:5a:05:dc:57:37:09:f9:1a:b0:51:1f:71:2e: 39:03:b8:a8:f3:ad:ad:4b:3c:ac:fc:c6:a9:51:bd:8c:8f:5d: 25:02:50:70:6f:14:81:d9:8b:eb:6a:bb:3b:67:fc:4a:ec:c7: ce:fc:c8:2a:05:f8:b6:56:49:a2:34:5a:0b:8d:e7:cc:02:03: 31:e5:72:10:1f:1d:84:64:63:f8:fc:70:09:fb:84:55:7e:6e: f3:ae:f8:7b:4a:0c:f6:0d:e6:16:89:a5:4d:45:05:69:d3:d1: 33:e1:10:9d:6c:71:68:4f:6e:4d:56:d9:84:dd:98:ab:29:ab: f5:c0:ee:29:ab:68:a4:68:83:95:07:63:1c:3d:29:c2:43:71: 1a:7a:82:cf:5e:42:ea:13:18:2a:a6:a2:ee:de:6c:c8:15:a4: a9:29:5d:b1:6b:f8:75:89:36:9b:3b:cc:f4:f5:51:9c:f2:54: 43:35:80:c5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUB2+o+QDVGiIa93Ue/dWX0Px33tYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0 OEIyMjA0NTAeFw0yMzA2MjUyMTQ3MzZaFw0yNDA2MjMyMTUyMzZaMDMxMTAvBgNV BAMTKEQ2NDEwNTMzQjZGNkQzNzMwOENBNUZCQ0ZCNTU3RkMyN0ZBMDAxRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbhul4teCZoJF8KzEhHoc4ntdI Szq6irNrSrgaNlTVbZitL4Dx9LrgvAsfwcGeFSGXSjfznC4BIFcYxWoAyaCCXZGz lSjCx727XR75DR/sWvNN5FAHFOrYcKMsUuo5bDbyoL9BrlYRcVfUqCxxQQAl+DUF wESM+XSD0GwK/W5XPPmuVQNxQFcSUKcej/waUL0vJRYgJfLS65A/fMClTT1oJ+zf 3frwqg+3wFpGjdYD3u+FujBsr+tLj/gjnhnXl2Kqa2FZeTUgNqErtBVhUrU+5sTX YOatAS3+fx/cmIBG0E/SS5jtF2bkWjFACQVF0IECkMlCMlDgQQSGmxP2yMZVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1kEFM7b203MIyl+8+1V/wn+gAekwHwYDVR0j BBgwFoAUBCHKL8W/ZW+PkFsCo9fuRkiyIEUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZmZjM4ZC1lNTQ3LTRmNzMtYmIzMC0yYjE0YzA4Yzg5ZmIvMC8wNDIxQ0EyRkM1 QkY2NTZGOEY5MDVCMDJBM0Q3RUU0NjQ4QjIyMDQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0OEIy MjA0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmZmMzhkLWU1NDctNGY3My1i YjMwLTJiMTRjMDhjODlmYi8wLzMxMzAzMzJlMzIzMzMxMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn56swDQYJ KoZIhvcNAQELBQADggEBAJO7UV04YhKzFiHEQKRkPeQFvDcuUMf4gw4RSK69IfMr ehs0TjK01y4XPLN/m3jDMKJS3HpZLJ36JT2M9K11LLnb2zOmklyvkNu+SPQxWgXc VzcJ+RqwUR9xLjkDuKjzra1LPKz8xqlRvYyPXSUCUHBvFIHZi+tquztn/Ersx878 yCoF+LZWSaI0WguN58wCAzHlchAfHYRkY/j8cAn7hFV+bvOu+HtKDPYN5haJpU1F BWnT0TPhEJ1scWhPbk1W2YTdmKspq/XA7imraKRog5UHYxw9KcJDcRp6gs9eQuoT GCqmou7ebMgVpKkpXbFr+HWJNps7zPT1UZzyVEM1gMU= -----END CERTIFICATE-----Generated at Wed May 1 15:35:30 2024 by rpki-client on console-ams.rpki-client.org