$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa File: 3130332e3234372e32302e302f32342d3234203d3e203538343835.roa (raw, json) Hash identifier: nedcS3Y/hFmE7PuZKXetk7LTe0NJ3/BFVQVj/1FG55k= Subject key identifier: 9D:B0:D0:A5:E4:50:4E:E7:30:15:2D:BA:AC:4F:1F:A5:42:CB:28:64 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 59C3B894ED28851E29A489C384E0D26217F26048 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa Signing time: Fri 08 Dec 2023 03:00:00 +0000 ROA not before: Fri 08 Dec 2023 02:55:00 +0000 ROA not after: Fri 06 Dec 2024 03:00:00 +0000 asID: 58485 IP address blocks: 103.247.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c3:b8:94:ed:28:85:1e:29:a4:89:c3:84:e0:d2:62:17:f2:60:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Dec 8 02:55:00 2023 GMT Not After : Dec 6 03:00:00 2024 GMT Subject: CN=9DB0D0A5E4504EE730152DBAAC4F1FA542CB2864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9e:95:d6:0d:08:44:da:b1:88:fe:15:a8:75: 78:76:ad:2c:35:6e:ec:6b:f2:ef:a9:ae:76:af:1d: 3e:24:22:0c:5c:17:01:aa:d5:1c:8e:c5:6d:07:3d: b0:1c:3d:9a:0e:62:be:71:bb:ec:2f:fe:81:dc:f3: 40:84:c4:3e:19:cb:ab:e5:06:81:33:ad:e9:0e:71: 5f:4f:22:67:08:14:36:30:23:06:2e:84:c5:38:50: 14:09:cf:80:62:0e:e1:92:ef:f0:07:06:1a:d5:d7: de:50:4a:18:de:8a:78:69:ec:60:02:8a:b5:14:7b: 0e:d5:4e:43:58:a4:6b:ef:7e:3c:70:44:e2:2f:0a: 3b:76:d7:07:40:6d:aa:1a:a9:b8:9e:a1:93:f6:ec: a4:db:e7:b2:10:5d:0d:91:14:b6:95:01:70:03:d0: 06:67:86:9e:13:f1:df:c8:a6:12:6b:99:19:9d:ab: be:9e:98:40:46:26:a5:9e:64:9d:a6:17:f3:c7:8f: ee:3a:8f:24:53:25:a2:18:89:dd:83:80:52:ec:64: 68:59:db:20:c0:b5:01:0c:83:50:4b:80:8d:8c:96: 2c:75:64:97:65:bd:5b:5e:68:fc:9e:99:aa:6c:70: d5:da:d2:97:34:a9:d1:39:11:96:16:38:08:ec:ef: b2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B0:D0:A5:E4:50:4E:E7:30:15:2D:BA:AC:4F:1F:A5:42:CB:28:64 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.20.0/24 Signature Algorithm: sha256WithRSAEncryption 12:1d:93:c4:51:85:ae:5b:9e:19:75:72:8c:68:5c:2e:75:fb: ab:ec:8e:e7:07:84:d6:ad:d4:38:5c:e0:db:88:a7:b7:80:a4: a8:08:8b:bc:f2:ec:18:9f:ca:45:53:ae:e3:30:e2:d0:83:95: 97:42:9c:00:c0:9e:ac:a2:70:e3:20:c9:f7:b3:cc:4c:18:ec: 03:a3:4f:89:1f:99:68:0d:22:b6:5c:ab:eb:63:89:28:cb:ef: 93:ad:56:34:fa:c9:90:6d:d4:0d:16:6a:af:d5:b5:b2:8b:3b: 30:ff:bd:a3:39:0f:1b:dd:85:b8:0d:51:e2:ce:11:ca:8b:3e: 01:47:9e:16:fb:5d:47:cb:83:09:8f:74:17:1d:50:28:b6:8d: a2:e6:22:63:eb:96:2d:11:a4:01:6d:07:9b:8f:b0:f6:64:e0: 09:82:f0:b5:ae:3b:55:32:66:f0:75:38:2d:ae:db:47:37:d6: 96:ff:04:83:00:e0:59:33:a1:00:f8:ee:a7:da:4d:5b:cc:29: 64:0c:18:35:9d:26:ef:5f:7f:51:60:9d:a7:ee:57:74:96:83: e6:86:7a:d1:04:38:a2:d5:a2:1b:16:b6:b4:21:b9:aa:23:70: 8a:6c:05:0d:db:ad:64:50:35:ed:c2:e6:10:3f:56:28:2c:b3: 34:5f:15:7c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWcO4lO0ohR4ppInDhODSYhfyYEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yMzEyMDgwMjU1MDBaFw0yNDEyMDYwMzAwMDBaMDMxMTAvBgNV BAMTKDlEQjBEMEE1RTQ1MDRFRTczMDE1MkRCQUFDNEYxRkE1NDJDQjI4NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNnpXWDQhE2rGI/hWodXh2rSw1 buxr8u+prnavHT4kIgxcFwGq1RyOxW0HPbAcPZoOYr5xu+wv/oHc80CExD4Zy6vl BoEzrekOcV9PImcIFDYwIwYuhMU4UBQJz4BiDuGS7/AHBhrV195QShjeinhp7GAC irUUew7VTkNYpGvvfjxwROIvCjt21wdAbaoaqbieoZP27KTb57IQXQ2RFLaVAXAD 0AZnhp4T8d/IphJrmRmdq76emEBGJqWeZJ2mF/PHj+46jyRTJaIYid2DgFLsZGhZ 2yDAtQEMg1BLgI2Mlix1ZJdlvVteaPyemapscNXa0pc0qdE5EZYWOAjs77LtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnbDQpeRQTucwFS26rE8fpULLKGQwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3FDANBgkqhkiG 9w0BAQsFAAOCAQEAEh2TxFGFrlueGXVyjGhcLnX7q+yO5weE1q3UOFzg24int4Ck qAiLvPLsGJ/KRVOu4zDi0IOVl0KcAMCerKJw4yDJ97PMTBjsA6NPiR+ZaA0itlyr 62OJKMvvk61WNPrJkG3UDRZqr9W1sos7MP+9ozkPG92FuA1R4s4Ryos+AUeeFvtd R8uDCY90Fx1QKLaNouYiY+uWLRGkAW0Hm4+w9mTgCYLwta47VTJm8HU4La7bRzfW lv8EgwDgWTOhAPjup9pNW8wpZAwYNZ0m719/UWCdp+5XdJaD5oZ60QQ4otWiGxa2 tCG5qiNwimwFDdutZFA17cLmED9WKCyzNF8VfA== -----END CERTIFICATE-----Generated at Fri May 3 00:06:27 2024 by rpki-client on console-ams.rpki-client.org