$ rpki-client -vvf repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132332e302f32342d3234203d3e20313437303936.roa File: 3130332e3137342e3132332e302f32342d3234203d3e20313437303936.roa (raw, json) Hash identifier: qHmdjcv4uoQirMGqe31vIMcRz4Leb1T6/+sE54OTdYI= Subject key identifier: 5F:68:18:84:C7:5D:7C:94:51:EF:D2:A1:29:3C:B5:26:39:D4:43:60 Certificate issuer: /CN=25F283F3EEC39D541DF359689045D2073EBB3FE0 Certificate serial: 7A9B6BB7019DA65067D5AA8A6408472077D5CB7F Authority key identifier: 25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132332e302f32342d3234203d3e20313437303936.roa Signing time: Sat 14 Oct 2023 10:00:00 +0000 ROA not before: Sat 14 Oct 2023 09:55:00 +0000 ROA not after: Sat 12 Oct 2024 10:00:00 +0000 asID: 147096 IP address blocks: 103.174.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.crl rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:9b:6b:b7:01:9d:a6:50:67:d5:aa:8a:64:08:47:20:77:d5:cb:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F283F3EEC39D541DF359689045D2073EBB3FE0 Validity Not Before: Oct 14 09:55:00 2023 GMT Not After : Oct 12 10:00:00 2024 GMT Subject: CN=5F681884C75D7C9451EFD2A1293CB52639D44360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:43:41:c3:d6:ac:6a:72:a6:58:d6:be:3f:59: 89:1a:de:f8:77:c4:95:d7:3d:78:7b:08:df:a9:d9: 42:3a:b2:de:e3:e1:77:0d:af:18:33:9f:fc:6e:98: 89:77:cc:ec:3b:76:f5:1b:68:a7:27:5a:29:19:ad: 79:c1:43:77:54:87:35:da:63:bd:9e:58:0a:d3:2d: 6d:51:d0:71:6a:b5:36:65:ea:83:4a:0a:9b:4e:e3: 3e:40:fb:f6:40:92:1a:ff:37:8f:c9:98:ae:8f:a3: fa:47:41:04:a3:d4:4f:ab:28:1a:3a:42:86:58:dd: d2:95:aa:6b:1c:f9:69:28:1d:3c:bf:db:80:e5:01: cd:5e:ea:4a:25:76:e1:4d:f5:84:b4:12:84:ae:65: 9c:32:28:8f:f8:1b:c2:f8:dd:d3:0a:7a:52:71:11: 6f:4b:b4:b3:41:39:a8:ab:54:0c:44:ba:94:c8:1f: 01:2e:49:a5:bc:0f:17:60:29:ee:7e:c5:1f:4e:30: 1e:e6:8e:e9:bc:77:1b:1c:41:6d:91:99:70:c7:8c: 9b:b2:c1:7a:5d:72:74:c9:c6:2e:54:5e:26:76:39: 61:57:e5:38:bf:9e:1f:5d:6c:df:fc:e7:82:e0:2a: c4:65:79:8a:09:9e:52:9e:d0:24:97:2d:ba:98:eb: 0c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:68:18:84:C7:5D:7C:94:51:EF:D2:A1:29:3C:B5:26:39:D4:43:60 X509v3 Authority Key Identifier: keyid:25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132332e302f32342d3234203d3e20313437303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.123.0/24 Signature Algorithm: sha256WithRSAEncryption 90:52:bf:35:9b:c1:21:d8:98:23:30:9d:71:aa:d8:1b:b4:0e: d9:0f:93:5c:a7:cf:ee:e0:0c:67:8f:30:02:b0:4c:a4:67:af: 9d:3c:c9:fd:21:c4:28:2e:09:cb:38:52:88:65:1f:2b:07:d7: 0d:d6:36:37:0e:58:4f:2a:88:18:a5:55:88:17:ff:20:96:6b: 36:bf:8d:c3:d4:bc:b2:ab:ce:39:06:df:32:25:fa:f0:81:0d: 91:9b:89:4c:94:94:bc:34:f4:0a:2c:ea:0c:15:2a:49:8e:a7: 76:12:62:80:ce:c5:19:69:0f:5b:b9:bd:8c:68:f2:28:60:37: 08:70:16:5c:3a:2c:ee:51:f7:a6:a0:14:f9:8f:ab:7f:45:14: 6b:6e:65:6f:7d:9a:66:dd:7d:90:6e:7a:9a:4d:0e:e0:1a:0d: fb:de:da:d8:70:ab:97:61:85:d9:7b:f6:11:90:e8:15:f4:3e: 92:3a:c6:30:db:7a:79:c2:f0:3b:67:01:8b:d0:ef:e0:44:a4: f0:19:1c:c2:12:a0:27:cc:cc:f3:7b:6d:83:e0:5a:ef:c7:d9: 07:8a:98:ef:28:26:23:7a:f8:af:f8:e9:8a:ea:be:f3:29:13: 75:9f:41:02:ef:50:a7:2d:f0:b6:e8:c2:e6:70:2f:d1:c3:50: 60:ad:94:99 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeptrtwGdplBn1aqKZAhHIHfVy38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGMjgzRjNFRUMzOUQ1NDFERjM1OTY4OTA0NUQyMDcz RUJCM0ZFMDAeFw0yMzEwMTQwOTU1MDBaFw0yNDEwMTIxMDAwMDBaMDMxMTAvBgNV BAMTKDVGNjgxODg0Qzc1RDdDOTQ1MUVGRDJBMTI5M0NCNTI2MzlENDQzNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpQ0HD1qxqcqZY1r4/WYka3vh3 xJXXPXh7CN+p2UI6st7j4XcNrxgzn/xumIl3zOw7dvUbaKcnWikZrXnBQ3dUhzXa Y72eWArTLW1R0HFqtTZl6oNKCptO4z5A+/ZAkhr/N4/JmK6Po/pHQQSj1E+rKBo6 QoZY3dKVqmsc+WkoHTy/24DlAc1e6kolduFN9YS0EoSuZZwyKI/4G8L43dMKelJx EW9LtLNBOairVAxEupTIHwEuSaW8DxdgKe5+xR9OMB7mjum8dxscQW2RmXDHjJuy wXpdcnTJxi5UXiZ2OWFX5Ti/nh9dbN/854LgKsRleYoJnlKe0CSXLbqY6wwvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUX2gYhMddfJRR79KhKTy1JjnUQ2AwHwYDVR0j BBgwFoAUJfKD8+7DnVQd81lokEXSBz67P+AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjczMDI3YS0wOTZiLTRlOTUtYTY1Ni1kYWJlOThhYzZmNmQvMC8yNUYyODNGM0VF QzM5RDU0MURGMzU5Njg5MDQ1RDIwNzNFQkIzRkUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVGMjgzRjNFRUMzOUQ1NDFERjM1OTY4OTA0NUQyMDczRUJC M0ZFMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyNzMwMjdhLTA5NmItNGU5NS1h NjU2LWRhYmU5OGFjNmY2ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrnswDQYJ KoZIhvcNAQELBQADggEBAJBSvzWbwSHYmCMwnXGq2Bu0DtkPk1ynz+7gDGePMAKw TKRnr508yf0hxCguCcs4UohlHysH1w3WNjcOWE8qiBilVYgX/yCWaza/jcPUvLKr zjkG3zIl+vCBDZGbiUyUlLw09Aos6gwVKkmOp3YSYoDOxRlpD1u5vYxo8ihgNwhw Flw6LO5R96agFPmPq39FFGtuZW99mmbdfZBueppNDuAaDfve2thwq5dhhdl79hGQ 6BX0PpI6xjDbennC8DtnAYvQ7+BEpPAZHMISoCfMzPN7bYPgWu/H2QeKmO8oJiN6 +K/46YrqvvMpE3WfQQLvUKct8LbowuZwL9HDUGCtlJk= -----END CERTIFICATE-----Generated at Fri Jun 21 19:32:08 2024 by rpki-client on console-ams.rpki-client.org