$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa File: 3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa (raw, json) Hash identifier: mjV3eHLDBgcMrCYWOyAc6X27ANSDXKQSMLSP2kmbGrs= Subject key identifier: FC:06:72:22:1A:31:90:54:A4:63:6D:D5:5F:C4:61:71:7A:CE:DB:42 Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 639BC6779236C55F9AB172D27ED3B54D91D446E9 Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa Signing time: Mon 09 Oct 2023 08:00:01 +0000 ROA not before: Mon 09 Oct 2023 07:55:01 +0000 ROA not after: Mon 07 Oct 2024 08:00:01 +0000 asID: 59149 IP address blocks: 103.254.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:9b:c6:77:92:36:c5:5f:9a:b1:72:d2:7e:d3:b5:4d:91:d4:46:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: Oct 9 07:55:01 2023 GMT Not After : Oct 7 08:00:01 2024 GMT Subject: CN=FC0672221A319054A4636DD55FC461717ACEDB42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e7:01:91:f7:41:c8:21:58:f0:08:1e:7e:90: 7a:90:45:d1:f9:e5:a4:93:ec:bc:26:d5:ff:2e:95: 57:12:95:04:26:c4:d0:4d:55:62:df:44:93:99:30: 0b:ef:bc:31:88:85:61:0c:a4:0b:6f:f1:18:ee:c9: 1c:12:ce:3e:b6:24:7d:5a:63:e0:69:6b:d6:40:57: 6c:44:e6:db:3e:75:ab:de:eb:7e:73:42:0d:da:e5: 2d:0a:b6:ea:82:25:1d:07:08:ca:32:2b:71:37:3b: c6:7b:e5:c9:fe:72:1f:3c:1b:f4:80:37:e1:2c:09: d4:3d:b5:ad:6e:83:bc:16:05:bd:49:e3:28:f1:62: a2:47:13:9d:14:ba:ed:eb:b3:80:de:1e:58:18:13: b9:17:71:31:94:f1:df:b2:34:b0:52:5e:d0:de:ea: 3d:01:0a:23:97:e8:88:e6:f8:2e:52:f0:ce:b8:d6: 20:4e:86:51:04:a6:02:02:62:7f:af:be:ae:f7:62: 83:60:8a:28:cc:31:2f:f0:bd:e0:63:64:a2:74:29: 62:ab:5f:10:a8:97:5c:50:32:5d:f8:09:48:a5:1e: 09:ec:94:f3:a7:04:11:b9:5e:51:0c:7d:64:25:16: ce:0a:5c:8b:43:e2:ca:3a:1e:f9:95:4f:e8:66:ef: 92:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:06:72:22:1A:31:90:54:A4:63:6D:D5:5F:C4:61:71:7A:CE:DB:42 X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.170.0/24 Signature Algorithm: sha256WithRSAEncryption 86:ae:2a:bb:7d:ea:31:ea:cc:d0:af:4a:36:3d:73:4f:57:94: f9:f8:94:f4:d4:22:99:3c:84:1c:8c:82:93:29:06:28:56:0b: 61:cf:56:48:6a:32:58:00:cf:f5:4a:75:50:a4:9a:6c:d4:d7: fe:6d:fd:08:65:9f:d2:07:08:bb:2f:87:9e:a6:8c:4f:0c:e4: 99:5b:c9:29:05:bf:78:ec:c6:32:97:da:02:39:c1:bc:5c:57: 7d:6b:3e:e3:ab:ea:4f:4f:6b:3a:6e:ce:db:63:cf:73:fd:f8: 9e:ce:ed:a8:ca:6e:61:fc:df:66:0e:25:e0:95:b8:0b:51:9b: 9f:25:ca:d0:27:b8:e6:e6:af:b2:4b:4e:af:a5:55:40:9b:0d: 6b:93:09:98:d5:c4:0d:19:dd:f0:18:83:0b:07:5a:e1:b0:1d: ae:5b:09:e8:1e:59:c7:5c:74:a8:f0:86:64:5e:0a:27:60:e9: 5d:58:71:6c:fa:f8:f1:22:d2:0c:2d:51:6d:0c:fb:fe:32:a8: 81:a9:8b:49:31:52:d4:6f:b8:ae:55:e3:b9:09:42:fa:3b:ca: 35:e5:a8:d2:f1:e2:d1:37:6c:c1:00:2d:e5:04:29:e6:19:b2: ce:51:75:01:fb:c3:c3:8c:fb:7a:a1:32:65:de:4f:28:90:fe: 54:c0:05:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY5vGd5I2xV+asXLSftO1TZHURukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yMzEwMDkwNzU1MDFaFw0yNDEwMDcwODAwMDFaMDMxMTAvBgNV BAMTKEZDMDY3MjIyMUEzMTkwNTRBNDYzNkRENTVGQzQ2MTcxN0FDRURCNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC85wGR90HIIVjwCB5+kHqQRdH5 5aST7Lwm1f8ulVcSlQQmxNBNVWLfRJOZMAvvvDGIhWEMpAtv8RjuyRwSzj62JH1a Y+Bpa9ZAV2xE5ts+dave635zQg3a5S0KtuqCJR0HCMoyK3E3O8Z75cn+ch88G/SA N+EsCdQ9ta1ug7wWBb1J4yjxYqJHE50Uuu3rs4DeHlgYE7kXcTGU8d+yNLBSXtDe 6j0BCiOX6Ijm+C5S8M641iBOhlEEpgICYn+vvq73YoNgiijMMS/wveBjZKJ0KWKr XxCol1xQMl34CUilHgnslPOnBBG5XlEMfWQlFs4KXItD4so6HvmVT+hm75IfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/AZyIhoxkFSkY23VX8RhcXrO20IwHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/6qMA0GCSqG SIb3DQEBCwUAA4IBAQCGriq7feox6szQr0o2PXNPV5T5+JT01CKZPIQcjIKTKQYo Vgthz1ZIajJYAM/1SnVQpJps1Nf+bf0IZZ/SBwi7L4eepoxPDOSZW8kpBb947MYy l9oCOcG8XFd9az7jq+pPT2s6bs7bY89z/fiezu2oym5h/N9mDiXglbgLUZufJcrQ J7jm5q+yS06vpVVAmw1rkwmY1cQNGd3wGIMLB1rhsB2uWwnoHlnHXHSo8IZkXgon YOldWHFs+vjxItIMLVFtDPv+MqiBqYtJMVLUb7iuVeO5CUL6O8o15ajS8eLRN2zB AC3lBCnmGbLOUXUB+8PDjPt6oTJl3k8okP5UwAWF -----END CERTIFICATE-----Generated at Sat Jun 1 23:00:04 2024 by rpki-client on console-ams.rpki-client.org