$ rpki-client -vvf repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: CxmbpeGRUXBwRHuCGIHQF5EsvPNbKt/KQD3xLRkDNZA= Subject key identifier: 9D:DC:06:56:6F:6E:52:54:1E:E4:00:28:4D:F8:2D:0B:8B:EC:5D:34 Certificate issuer: /CN=957CC5B55223EC29F2E71324C678334C4348BE02 Certificate serial: 3B9D0172507586CEEF76F5C17D3AC3DCEE0C1D28 Authority key identifier: 95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa Signing time: Tue 31 Oct 2023 04:02:34 +0000 ROA not before: Tue 31 Oct 2023 03:57:34 +0000 ROA not after: Tue 29 Oct 2024 04:02:34 +0000 asID: 17769 IP address blocks: 103.147.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:9d:01:72:50:75:86:ce:ef:76:f5:c1:7d:3a:c3:dc:ee:0c:1d:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=957CC5B55223EC29F2E71324C678334C4348BE02 Validity Not Before: Oct 31 03:57:34 2023 GMT Not After : Oct 29 04:02:34 2024 GMT Subject: CN=9DDC06566F6E52541EE400284DF82D0B8BEC5D34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:18:20:7f:5d:f9:92:09:5b:f1:00:c2:ae:fc: f7:21:94:a9:b4:0c:ed:f1:a5:a8:f5:06:05:d5:63: 4d:6a:ec:4c:cc:59:ba:82:1c:9d:d8:05:3e:43:d7: 02:86:31:1c:dc:47:97:04:09:7b:e9:4c:d2:75:8c: 91:3b:7c:33:55:c1:09:53:da:86:17:f8:3d:67:5b: ea:5d:bb:df:e0:09:62:e9:1f:1e:3d:72:ce:a0:98: 7d:4b:24:5f:d5:75:f1:5f:52:b1:8e:e3:c1:d9:a3: ff:a7:8c:5a:0e:7c:d3:d1:d0:03:94:4c:c0:b2:5c: eb:ea:91:6b:b4:f9:cf:e1:df:f9:93:67:8c:11:04: 07:d1:50:e5:69:ab:58:f2:a7:c9:7b:55:1b:3f:fc: a8:fd:09:a0:1e:42:6d:c5:b3:ca:37:d4:5c:53:21: b7:2a:d9:c2:89:6c:02:0b:2d:21:56:a8:45:cf:6c: f6:67:69:93:e2:8d:a3:ba:01:f5:ae:bb:fc:4b:16: 29:78:39:b2:12:f9:0a:4f:8d:e7:8d:d9:9c:34:a9: 94:89:df:dd:9c:4f:07:52:c3:3b:87:3c:63:50:dd: 7f:a1:cc:5e:85:4d:f9:b3:e2:4a:46:e5:e0:ce:d8: 93:ef:50:85:d0:b5:26:c2:62:0c:fd:16:48:d6:d5: 91:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:DC:06:56:6F:6E:52:54:1E:E4:00:28:4D:F8:2D:0B:8B:EC:5D:34 X509v3 Authority Key Identifier: keyid:95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.116.0/23 Signature Algorithm: sha256WithRSAEncryption 07:88:a5:c9:37:b8:d4:2e:cf:04:f5:69:a1:c6:f2:79:62:34: c8:e1:81:ec:4a:dc:f9:fb:72:fd:99:b5:8b:a4:9d:5e:b6:e2: 6b:25:36:17:ad:9b:e9:65:35:9d:a8:96:ef:af:09:63:47:3b: 3f:69:80:24:cc:aa:8a:b7:3b:4e:91:38:c0:88:01:c1:3b:30: fd:7f:47:0f:6e:4d:ab:87:c1:d1:bc:ee:29:44:91:77:fc:4e: 9d:bb:40:09:39:21:4e:53:52:0e:7e:a9:80:25:0d:e1:ea:62: 1f:2d:0d:7a:e8:68:57:55:b0:6d:ec:da:77:8f:21:b0:be:24: 86:9c:93:1d:ac:70:d4:26:9d:ac:8e:19:2b:bb:01:47:db:f2: 1d:28:fe:cf:b6:01:53:ee:4e:be:aa:2f:90:84:bc:d0:51:ad: 26:16:0b:99:d7:9e:b2:c1:fa:5c:ed:ef:a4:99:d2:f8:74:d7: 10:63:58:08:97:88:64:03:ed:23:74:75:14:9f:40:54:2e:74: c0:91:47:f0:e9:1d:a7:45:9a:23:34:3d:bb:db:91:eb:a1:dc: 78:aa:4d:db:6c:8e:aa:aa:72:c7:87:16:ad:6e:5a:4f:66:e5: 5a:09:de:dc:e8:4f:19:27:81:7a:43:bb:5b:15:84:d1:91:1e: d2:44:24:b0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO50BclB1hs7vdvXBfTrD3O4MHSgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0 MzQ4QkUwMjAeFw0yMzEwMzEwMzU3MzRaFw0yNDEwMjkwNDAyMzRaMDMxMTAvBgNV BAMTKDlEREMwNjU2NkY2RTUyNTQxRUU0MDAyODRERjgyRDBCOEJFQzVEMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQGCB/XfmSCVvxAMKu/PchlKm0 DO3xpaj1BgXVY01q7EzMWbqCHJ3YBT5D1wKGMRzcR5cECXvpTNJ1jJE7fDNVwQlT 2oYX+D1nW+pdu9/gCWLpHx49cs6gmH1LJF/VdfFfUrGO48HZo/+njFoOfNPR0AOU TMCyXOvqkWu0+c/h3/mTZ4wRBAfRUOVpq1jyp8l7VRs//Kj9CaAeQm3Fs8o31FxT Ibcq2cKJbAILLSFWqEXPbPZnaZPijaO6AfWuu/xLFil4ObIS+QpPjeeN2Zw0qZSJ 392cTwdSwzuHPGNQ3X+hzF6FTfmz4kpG5eDO2JPvUIXQtSbCYgz9FkjW1ZGFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUndwGVm9uUlQe5AAoTfgtC4vsXTQwHwYDVR0j BBgwFoAUlXzFtVIj7Cny5xMkxngzTENIvgIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE3OGMwNi0xZDZlLTQzYjYtYmYzMC04NjBjZWJkZGZiMzIvMC85NTdDQzVCNTUy MjNFQzI5RjJFNzEzMjRDNjc4MzM0QzQzNDhCRTAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0MzQ4 QkUwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYTc4YzA2LTFkNmUtNDNiNi1i ZjMwLTg2MGNlYmRkZmIzMi8wLzMxMzAzMzJlMzEzNDM3MmUzMTMxMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5N0MA0GCSqG SIb3DQEBCwUAA4IBAQAHiKXJN7jULs8E9WmhxvJ5YjTI4YHsStz5+3L9mbWLpJ1e tuJrJTYXrZvpZTWdqJbvrwljRzs/aYAkzKqKtztOkTjAiAHBOzD9f0cPbk2rh8HR vO4pRJF3/E6du0AJOSFOU1IOfqmAJQ3h6mIfLQ166GhXVbBt7Np3jyGwviSGnJMd rHDUJp2sjhkruwFH2/IdKP7PtgFT7k6+qi+QhLzQUa0mFguZ156ywfpc7e+kmdL4 dNcQY1gIl4hkA+0jdHUUn0BULnTAkUfw6R2nRZojND2725Hrodx4qk3bbI6qqnLH hxatblpPZuVaCd7c6E8ZJ4F6Q7tbFYTRkR7SRCSw -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:30 2024 by rpki-client on console-ams.rpki-client.org