$ rpki-client -vvf repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa File: 3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa (raw, json) Hash identifier: EFYCBr9//5i3XPEonEOz7+19YXInh6wuuTXbjE9oijo= Subject key identifier: 84:57:B0:6C:3C:F1:C9:FC:D5:06:0F:A3:BA:AB:53:B2:5A:7E:77:0B Certificate issuer: /CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Certificate serial: 70ABEC50083F79BF1CC06CB2A367C992F6E2751F Authority key identifier: 2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa Signing time: Mon 02 Oct 2023 12:34:25 +0000 ROA not before: Mon 02 Oct 2023 12:29:25 +0000 ROA not after: Mon 30 Sep 2024 12:34:25 +0000 asID: 139421 IP address blocks: 103.144.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 01:10:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ab:ec:50:08:3f:79:bf:1c:c0:6c:b2:a3:67:c9:92:f6:e2:75:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Validity Not Before: Oct 2 12:29:25 2023 GMT Not After : Sep 30 12:34:25 2024 GMT Subject: CN=8457B06C3CF1C9FCD5060FA3BAAB53B25A7E770B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:de:71:ab:f4:3c:7e:46:e8:54:80:55:81:43: 3b:fc:27:9a:57:ea:3a:6a:05:e7:c0:8d:dd:8e:8e: 75:98:f5:a2:8a:0b:08:81:1c:c6:ed:1f:35:5a:5e: 34:87:87:04:ac:34:98:98:d7:10:98:55:dd:d1:9e: f3:29:33:d7:74:c3:11:5d:ad:a5:d7:89:b1:92:cb: cc:9b:6a:58:ac:f6:c9:3d:25:b5:56:80:d8:46:22: cf:ac:9e:10:9d:22:0b:f1:e7:d9:b6:b7:f1:7b:33: 8b:e8:b9:e4:b6:6d:eb:ca:6d:e1:59:fd:b2:ab:d7: e8:8a:0e:46:8e:69:cd:c0:76:69:3f:fc:f2:06:84: 9b:dc:a2:16:f7:2b:8c:19:26:03:6f:21:92:79:e6: 59:e1:46:f3:6b:ef:d3:4e:5d:24:9b:de:f0:91:f5: 22:bd:a7:98:bc:73:80:dc:50:2d:18:47:15:97:e8: 56:95:27:49:a8:b4:8e:a5:39:c8:96:a3:02:52:a2: 4e:84:cd:a2:b5:2f:f3:a1:4f:ac:31:3f:d6:74:b7: d5:e4:7b:f2:77:36:8e:f2:dd:64:e7:39:7e:88:12: 75:57:81:8d:19:e4:3a:03:d2:8a:7c:60:cd:bb:27: e2:76:dc:53:a6:65:7b:bb:52:0f:d9:4a:cf:af:81: 97:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:57:B0:6C:3C:F1:C9:FC:D5:06:0F:A3:BA:AB:53:B2:5A:7E:77:0B X509v3 Authority Key Identifier: keyid:2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.103.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:34:2f:18:8b:80:f5:18:2f:1c:75:13:4c:3f:c7:dc:2d:65: 7b:f6:51:c1:e7:69:85:29:12:60:ab:59:08:93:22:cd:75:c9: 73:07:c6:33:8a:a7:55:fa:a2:e1:f4:85:25:dd:6e:34:94:f1: c6:c1:72:39:9d:f7:a6:8d:01:bd:40:9c:d8:03:04:8e:3e:70: d4:e0:6b:ba:c8:ec:f2:ea:e1:03:b9:4f:b3:b3:ca:9b:5e:26: db:37:48:fc:6b:19:39:22:31:e5:0d:0c:5f:74:62:c6:79:91: df:23:4f:c4:fc:72:a2:4c:eb:59:a4:81:7c:a0:d7:18:6d:b7: 80:20:a8:77:93:35:f6:ca:d0:25:9a:65:de:f7:9c:a9:90:88: 13:54:52:cd:c2:b9:11:19:66:74:45:96:a5:e8:1a:02:c7:29: 01:bd:76:7b:82:48:7b:39:ac:73:bf:46:5b:07:36:db:2a:62: e8:a3:a5:2f:90:17:92:51:9d:28:4c:44:94:8a:a7:0f:28:da: a8:37:f7:d6:3f:39:77:c6:9d:66:4f:c2:42:15:34:b2:f3:b7: 10:35:d9:c9:92:9e:16:f1:4e:9f:64:44:bb:75:0f:8b:15:86: 51:75:62:2d:04:d1:7e:3d:14:61:4a:29:f9:3b:cd:41:e6:e7: 7b:79:59:38 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcKvsUAg/eb8cwGyyo2fJkvbidR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlB OEM1NDlEOTAeFw0yMzEwMDIxMjI5MjVaFw0yNDA5MzAxMjM0MjVaMDMxMTAvBgNV BAMTKDg0NTdCMDZDM0NGMUM5RkNENTA2MEZBM0JBQUI1M0IyNUE3RTc3MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn3nGr9Dx+RuhUgFWBQzv8J5pX 6jpqBefAjd2OjnWY9aKKCwiBHMbtHzVaXjSHhwSsNJiY1xCYVd3RnvMpM9d0wxFd raXXibGSy8ybalis9sk9JbVWgNhGIs+snhCdIgvx59m2t/F7M4voueS2bevKbeFZ /bKr1+iKDkaOac3Admk//PIGhJvcohb3K4wZJgNvIZJ55lnhRvNr79NOXSSb3vCR 9SK9p5i8c4DcUC0YRxWX6FaVJ0motI6lOciWowJSok6EzaK1L/OhT6wxP9Z0t9Xk e/J3No7y3WTnOX6IEnVXgY0Z5DoD0op8YM27J+J23FOmZXu7Ug/ZSs+vgZfbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhFewbDzxyfzVBg+juqtTslp+dwswHwYDVR0j BBgwFoAULZ2RN9RCep004bFfFsXGiajFSdkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTUzNDFlOC0yMmQ4LTQ0OWMtYTc1My1lNDdiYmZjNDg1MzgvMC8yRDlEOTEzN0Q0 NDI3QTlEMzRFMUIxNUYxNkM1QzY4OUE4QzU0OUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlBOEM1 NDlEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNTM0MWU4LTIyZDgtNDQ5Yy1h NzUzLWU0N2JiZmM0ODUzOC8wLzMxMzAzMzJlMzEzNDM0MmUzMTMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkGcwDQYJ KoZIhvcNAQELBQADggEBACw0LxiLgPUYLxx1E0w/x9wtZXv2UcHnaYUpEmCrWQiT Is11yXMHxjOKp1X6ouH0hSXdbjSU8cbBcjmd96aNAb1AnNgDBI4+cNTga7rI7PLq 4QO5T7OzypteJts3SPxrGTkiMeUNDF90YsZ5kd8jT8T8cqJM61mkgXyg1xhtt4Ag qHeTNfbK0CWaZd73nKmQiBNUUs3CuREZZnRFlqXoGgLHKQG9dnuCSHs5rHO/RlsH NtsqYuijpS+QF5JRnShMRJSKpw8o2qg399Y/OXfGnWZPwkIVNLLztxA12cmSnhbx Tp9kRLt1D4sVhlF1Yi0E0X49FGFKKfk7zUHm53t5WTg= -----END CERTIFICATE-----Generated at Thu May 2 22:27:16 2024 by rpki-client on console-ams.rpki-client.org