$ rpki-client -vvf repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa File: 3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa (raw, json) Hash identifier: TvWHnUKo2xhEgoxAqKm7Plw6YbdrJWdaG/hHqjk5lHQ= Subject key identifier: CD:BC:E0:B3:A6:81:CA:94:B8:70:C4:23:D9:0C:BE:AD:85:4A:42:48 Certificate issuer: /CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Certificate serial: 37AC77E57304B17474DDD5FFA60CA702F45FB8E5 Authority key identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa Signing time: Wed 16 Aug 2023 06:00:01 +0000 ROA not before: Wed 16 Aug 2023 05:55:01 +0000 ROA not after: Wed 14 Aug 2024 06:00:01 +0000 asID: 142396 IP address blocks: 103.172.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:ac:77:e5:73:04:b1:74:74:dd:d5:ff:a6:0c:a7:02:f4:5f:b8:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Validity Not Before: Aug 16 05:55:01 2023 GMT Not After : Aug 14 06:00:01 2024 GMT Subject: CN=CDBCE0B3A681CA94B870C423D90CBEAD854A4248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:93:80:be:24:e6:54:38:45:db:55:ed:78:bb: b0:a9:e2:b1:a4:ad:ed:fa:db:28:4e:43:be:49:dc: 5f:3e:1b:f8:06:5e:aa:1d:5a:be:f3:dc:87:bc:ce: c9:15:cc:6f:c0:94:f6:0b:83:04:60:65:57:60:8c: 47:f3:b9:a7:d9:05:1c:0d:bd:b2:75:b9:86:1c:12: 24:f2:e7:49:5a:cf:96:32:0f:7b:ca:d4:c3:19:8b: 21:d0:52:42:bf:ee:55:b7:f1:72:2c:da:5f:e2:75: 2e:7d:18:ab:3f:d6:36:9d:f5:80:e7:52:39:c3:74: 22:31:98:bc:e8:55:0d:c2:02:43:66:d2:18:e2:6a: 92:2d:e8:b9:a7:93:19:35:b1:23:27:8c:51:92:b3: 14:f2:3d:c2:a9:54:80:5d:90:b6:70:d2:7d:24:86: 0c:12:31:a6:bd:19:b0:74:1a:db:6f:30:1f:9e:d5: 78:1b:9b:48:7f:8a:1c:a1:19:51:50:86:bb:45:2d: ff:2e:c8:c0:19:6e:f8:93:02:ff:60:49:6a:84:8f: 75:8a:6f:f2:ec:d1:c3:8b:e2:a3:86:43:0b:98:0a: 8e:7c:63:97:d2:94:12:ce:ef:24:b9:bf:b7:42:06: b2:de:a6:e3:bb:59:55:12:5f:ed:29:5f:96:64:eb: e4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:BC:E0:B3:A6:81:CA:94:B8:70:C4:23:D9:0C:BE:AD:85:4A:42:48 X509v3 Authority Key Identifier: keyid:9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.170.0/23 Signature Algorithm: sha256WithRSAEncryption 94:e5:bc:b5:66:8a:d8:f7:cc:97:e5:d3:57:d8:b8:79:f8:24: 3c:17:0a:0a:4d:95:98:29:d8:8c:71:b3:ce:78:a9:63:33:62: 7a:63:5c:70:4e:53:14:64:a1:93:36:9e:0f:df:2e:a7:89:24: 07:64:3c:64:02:18:f6:0d:af:64:b7:09:e5:a1:78:de:81:67: df:69:f8:b5:97:bf:e0:f7:11:8c:1d:36:a5:6a:10:22:e5:f4: 59:b2:fa:47:25:c6:aa:b1:6a:1f:f0:7c:f6:00:2b:f0:c1:f3: 38:aa:49:0c:db:f0:78:ba:41:19:43:54:0e:ae:f2:db:5c:e3: e5:05:00:3b:45:da:87:e2:0a:3d:dc:64:01:eb:7b:19:8e:e1: 46:f8:71:c7:4d:a8:87:33:67:79:d6:88:1d:ec:d1:5c:b6:bd: ec:93:75:3c:61:eb:fd:09:82:b1:b1:ca:51:0b:0c:b5:8a:3f: 45:2d:f0:70:36:75:7c:13:c7:77:bd:1b:80:37:70:54:41:b4: 3f:1f:a6:fe:32:40:af:ed:cc:8d:db:22:cf:05:25:8d:18:f2: a6:05:26:60:46:78:eb:d5:85:00:c6:22:9f:bc:6f:3e:32:a8: 7a:a2:69:ea:f0:35:43:fc:19:7c:e8:6b:48:42:65:d1:64:08: f6:05:49:ad -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUN6x35XMEsXR03dX/pgynAvRfuOUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYw NTZERjA5NDAeFw0yMzA4MTYwNTU1MDFaFw0yNDA4MTQwNjAwMDFaMDMxMTAvBgNV BAMTKENEQkNFMEIzQTY4MUNBOTRCODcwQzQyM0Q5MENCRUFEODU0QTQyNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOk4C+JOZUOEXbVe14u7Cp4rGk re362yhOQ75J3F8+G/gGXqodWr7z3Ie8zskVzG/AlPYLgwRgZVdgjEfzuafZBRwN vbJ1uYYcEiTy50laz5YyD3vK1MMZiyHQUkK/7lW38XIs2l/idS59GKs/1jad9YDn UjnDdCIxmLzoVQ3CAkNm0hjiapIt6Lmnkxk1sSMnjFGSsxTyPcKpVIBdkLZw0n0k hgwSMaa9GbB0GttvMB+e1Xgbm0h/ihyhGVFQhrtFLf8uyMAZbviTAv9gSWqEj3WK b/Ls0cOL4qOGQwuYCo58Y5fSlBLO7yS5v7dCBrLepuO7WVUSX+0pX5Zk6+R3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzbzgs6aBypS4cMQj2Qy+rYVKQkgwHwYDVR0j BBgwFoAUm/csi7fKNZvkZ0Grzk62nwVt8JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWRiNmM5Yi1kOGZjLTRkOGMtODBjYi1mZDIyNDEyMDhkZGUvMC85QkY3MkM4QkI3 Q0EzNTlCRTQ2NzQxQUJDRTRFQjY5RjA1NkRGMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYwNTZE RjA5NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxZGI2YzliLWQ4ZmMtNGQ4Yy04 MGNiLWZkMjI0MTIwOGRkZS8wLzMxMzAzMzJlMzEzNzMyMmUzMTM3MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrKowDQYJ KoZIhvcNAQELBQADggEBAJTlvLVmitj3zJfl01fYuHn4JDwXCgpNlZgp2Ixxs854 qWMzYnpjXHBOUxRkoZM2ng/fLqeJJAdkPGQCGPYNr2S3CeWheN6BZ99p+LWXv+D3 EYwdNqVqECLl9Fmy+kclxqqxah/wfPYAK/DB8ziqSQzb8Hi6QRlDVA6u8ttc4+UF ADtF2ofiCj3cZAHrexmO4Ub4ccdNqIczZ3nWiB3s0Vy2veyTdTxh6/0JgrGxylEL DLWKP0Ut8HA2dXwTx3e9G4A3cFRBtD8fpv4yQK/tzI3bIs8FJY0Y8qYFJmBGeOvV hQDGIp+8bz4yqHqiaerwNUP8GXzoa0hCZdFkCPYFSa0= -----END CERTIFICATE-----Generated at Fri May 31 20:32:22 2024 by rpki-client on console-ams.rpki-client.org