$ rpki-client -vvf repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa File: 3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa (raw, json) Hash identifier: prDUxQ3+Z+a0+/+iNJ7oZVv3ljJRDEy07Lny8c5rcis= Subject key identifier: E7:29:4A:87:51:1A:2D:B1:5D:6D:E9:D8:48:50:27:36:5B:DB:7C:FC Certificate issuer: /CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Certificate serial: 6675D5C1147142D78614D9318CD7EBAEAA1B8BB1 Authority key identifier: 8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa Signing time: Fri 22 Dec 2023 19:00:02 +0000 ROA not before: Fri 22 Dec 2023 18:55:02 +0000 ROA not after: Fri 20 Dec 2024 19:00:02 +0000 asID: 137376 IP address blocks: 103.118.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:75:d5:c1:14:71:42:d7:86:14:d9:31:8c:d7:eb:ae:aa:1b:8b:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Validity Not Before: Dec 22 18:55:02 2023 GMT Not After : Dec 20 19:00:02 2024 GMT Subject: CN=E7294A87511A2DB15D6DE9D8485027365BDB7CFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ab:bc:d1:ef:26:bb:ad:09:5e:3c:c7:24:36: 59:10:d3:9c:08:2f:35:05:d1:06:2d:5e:50:6b:00: 13:f8:1d:a5:09:47:99:49:18:6a:79:4a:32:cb:e5: 8f:cb:39:93:d1:b2:8e:41:dc:e5:90:46:e7:6e:36: b6:62:3e:9c:eb:c8:59:5b:32:6b:58:b0:df:ad:66: 97:d8:8d:5e:c4:89:96:d7:ea:bb:cb:a3:7b:03:f0: 38:77:70:05:8d:8f:96:c2:c4:3d:bd:cb:c6:1c:40: 5c:34:30:95:87:71:37:3e:f0:6e:b4:7e:a5:e6:3a: f3:02:8d:47:66:0d:3a:dd:ca:9d:a9:88:9e:31:73: de:32:8c:98:0d:9c:cd:20:aa:77:39:51:ab:8a:9d: b8:d2:4c:85:31:d7:56:7f:2a:82:d1:4b:62:79:cc: 89:f4:1b:2f:0b:e5:6f:34:89:ed:04:ed:74:77:47: f3:1c:54:b3:20:5a:d5:79:7d:bb:cd:57:6a:38:8d: 79:55:f3:84:aa:bb:d5:45:9a:5b:7b:15:01:08:2a: e9:a6:b7:89:e5:e9:cf:db:4d:02:ef:cf:22:3a:72: 98:2c:cd:07:61:d1:24:e3:74:1b:85:e5:5b:10:3f: 73:39:49:ff:66:c9:d4:ed:0a:38:01:b3:38:58:b7: 45:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:29:4A:87:51:1A:2D:B1:5D:6D:E9:D8:48:50:27:36:5B:DB:7C:FC X509v3 Authority Key Identifier: keyid:8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.124.0/22 Signature Algorithm: sha256WithRSAEncryption 97:d3:40:36:b6:17:87:14:e5:e3:c3:b9:11:95:3c:c5:21:d9: 09:40:f3:1c:63:c5:2e:2c:f4:52:c0:be:b3:c7:de:eb:76:fb: 05:bb:3c:ed:24:05:6b:13:fa:ed:a1:c3:d9:8e:e2:22:31:de: d5:7c:14:33:48:dc:fe:fa:d6:29:e4:4d:ba:03:72:17:02:3c: 71:fa:fa:a0:e5:8a:71:9e:c8:d2:f5:62:cc:b6:32:d8:0e:bf: 07:4c:7a:74:9b:ca:69:b9:a8:82:d8:b5:f7:a2:27:5a:e0:d9: 7e:71:03:c0:2c:42:9f:5b:46:39:e8:57:be:ae:4c:d0:2f:81: 02:6e:3a:fb:70:cf:18:f1:dc:68:94:d1:c2:0d:c5:15:f0:85: 27:b0:3f:c8:94:7f:8d:5b:56:65:2e:45:f5:ed:db:6f:d3:66: 82:d6:a8:8b:b0:b9:bf:33:20:c5:fe:ae:73:6a:b0:07:35:8d: 01:0c:e8:90:d1:5d:0a:39:d5:68:71:57:f2:34:41:d6:a1:3d: 1a:56:f8:96:66:43:52:e6:de:ae:50:13:6f:f5:2b:a1:ee:99: a1:c7:36:8a:dc:c9:7b:e3:65:5d:cb:23:f6:5f:eb:1c:af:5b: e2:0f:a7:ee:12:0e:aa:fb:87:8c:b7:8f:c2:78:cf:bc:cf:fb: 25:e1:69:dc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZnXVwRRxQteGFNkxjNfrrqobi7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFB QUUyMEY1NzAeFw0yMzEyMjIxODU1MDJaFw0yNDEyMjAxOTAwMDJaMDMxMTAvBgNV BAMTKEU3Mjk0QTg3NTExQTJEQjE1RDZERTlEODQ4NTAyNzM2NUJEQjdDRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYq7zR7ya7rQlePMckNlkQ05wI LzUF0QYtXlBrABP4HaUJR5lJGGp5SjLL5Y/LOZPRso5B3OWQRuduNrZiPpzryFlb MmtYsN+tZpfYjV7EiZbX6rvLo3sD8Dh3cAWNj5bCxD29y8YcQFw0MJWHcTc+8G60 fqXmOvMCjUdmDTrdyp2piJ4xc94yjJgNnM0gqnc5UauKnbjSTIUx11Z/KoLRS2J5 zIn0Gy8L5W80ie0E7XR3R/McVLMgWtV5fbvNV2o4jXlV84Squ9VFmlt7FQEIKumm t4nl6c/bTQLvzyI6cpgszQdh0STjdBuF5VsQP3M5Sf9mydTtCjgBszhYt0U/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5ylKh1EaLbFdbenYSFAnNlvbfPwwHwYDVR0j BBgwFoAUjF+i69evQDk4g/sI5xvfQariD1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDJhNWI1MS1iYzAwLTRkNmItODc2MS1jN2QwZDNmNmRlMTIvMC84QzVGQTJFQkQ3 QUY0MDM5Mzg4M0ZCMDhFNzFCREY0MUFBRTIwRjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFBQUUy MEY1Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMmE1YjUxLWJjMDAtNGQ2Yi04 NzYxLWM3ZDBkM2Y2ZGUxMi8wLzMxMzAzMzJlMzEzMTM4MmUzMTMyMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJndnwwDQYJ KoZIhvcNAQELBQADggEBAJfTQDa2F4cU5ePDuRGVPMUh2QlA8xxjxS4s9FLAvrPH 3ut2+wW7PO0kBWsT+u2hw9mO4iIx3tV8FDNI3P761inkTboDchcCPHH6+qDlinGe yNL1Ysy2MtgOvwdMenSbymm5qILYtfeiJ1rg2X5xA8AsQp9bRjnoV76uTNAvgQJu Ovtwzxjx3GiU0cINxRXwhSewP8iUf41bVmUuRfXt22/TZoLWqIuwub8zIMX+rnNq sAc1jQEM6JDRXQo51WhxV/I0QdahPRpW+JZmQ1Lm3q5QE2/1K6HumaHHNorcyXvj ZV3LI/Zf6xyvW+IPp+4SDqr7h4y3j8J4z7zP+yXhadw= -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:42 2024 by rpki-client on console-ams.rpki-client.org