$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa File: 3130332e3234372e32322e302f32342d3234203d3e203538343835.roa (raw, json) Hash identifier: ub7w4YuJ9Pf0hJ0RRJDfJ8qsTZodyU2OcUIX/lwiIWA= Subject key identifier: 1A:3D:59:E4:99:7E:70:C8:97:3E:0B:DE:D2:42:97:E5:B4:3A:A8:66 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 46EE256433A8D82108634CFFCC55DA01D11523A2 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa Signing time: Thu 02 Nov 2023 19:00:00 +0000 ROA not before: Thu 02 Nov 2023 18:55:00 +0000 ROA not after: Thu 31 Oct 2024 19:00:00 +0000 asID: 58485 IP address blocks: 103.247.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:ee:25:64:33:a8:d8:21:08:63:4c:ff:cc:55:da:01:d1:15:23:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 2 18:55:00 2023 GMT Not After : Oct 31 19:00:00 2024 GMT Subject: CN=1A3D59E4997E70C8973E0BDED24297E5B43AA866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:66:98:c6:23:7f:d0:67:25:67:fc:6a:80:47: 52:f9:b4:95:6c:c9:16:d5:68:40:f2:d5:a5:72:83: c0:87:94:8c:ca:1b:92:73:6b:08:0c:f8:be:29:d0: d7:9d:bc:83:6a:d3:41:cf:d7:f3:e5:65:9e:67:af: 34:f6:aa:cb:23:8e:44:b2:6b:9c:99:fd:ed:e4:4f: 88:04:08:bf:6f:d1:ab:44:1c:ba:08:d3:0d:d0:e2: bf:41:e2:78:7a:d8:30:0e:4e:00:3a:42:33:3b:a8: db:0a:08:ff:cf:3b:6b:5a:78:72:9f:8c:f2:2a:b4: a3:3c:7e:ad:75:aa:66:38:fe:58:89:52:1e:83:7f: ed:ae:17:81:ca:7f:f2:87:08:01:f3:40:56:c1:52: 0c:b1:d5:46:74:a3:05:6a:f6:9e:d8:95:40:7c:fa: 5e:0c:6c:0b:1c:06:01:ca:26:0a:5e:1d:53:55:65: c0:55:b8:70:a4:2e:bb:e8:65:15:76:ae:cd:6a:31: 93:0f:b0:66:fc:a0:8e:07:5f:e0:7b:d0:9f:94:ca: c2:ce:9e:1f:09:10:88:ae:64:f5:20:1b:60:7d:3a: 7a:f9:a9:c0:8e:20:7f:c0:25:5c:e6:39:41:37:79: 4b:91:8c:cd:f5:d9:9c:a0:44:26:18:2f:7f:4b:1b: 47:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:3D:59:E4:99:7E:70:C8:97:3E:0B:DE:D2:42:97:E5:B4:3A:A8:66 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.22.0/24 Signature Algorithm: sha256WithRSAEncryption c6:a9:57:7f:cf:6b:7b:0a:ad:2c:12:0a:51:15:45:58:9d:66: 81:e9:86:12:95:7d:d1:ed:31:35:24:cf:72:6b:93:3b:b2:70: 15:ab:63:54:ca:d0:ca:57:ff:73:db:3e:51:12:30:cb:29:b2: b9:66:d7:72:cb:a7:93:a4:68:e2:b2:29:6f:91:56:7b:e2:70: e7:dc:6c:95:77:3c:37:d8:a8:fc:9a:92:10:d1:8d:1b:fa:48: 93:67:07:f3:1c:cd:5b:ea:d7:23:81:98:5f:85:ef:f3:4e:1c: 5c:f9:1d:15:24:13:8b:a7:b9:ab:96:21:ec:a1:e7:ab:a4:99: 0b:37:7a:5c:32:a5:01:ba:30:0c:16:1c:f6:f3:ae:91:ad:4b: 27:98:17:dd:1c:25:e3:65:b7:a0:1f:1a:8c:ec:18:b9:b5:b6: fc:99:50:8a:f8:03:d7:09:9b:9a:54:c8:01:63:1d:b9:c5:f4: ce:ce:df:a5:af:05:c3:56:a7:22:0a:f1:2f:2d:0f:a2:e3:ca: cc:cb:5d:04:0e:82:01:e7:64:38:ab:3b:11:ad:dc:0d:c5:21: a1:e8:35:44:cc:55:c3:a2:60:c7:ba:f3:83:ca:3b:a4:4d:30: 28:b1:e7:68:13:6a:36:0d:14:5e:db:81:8d:1d:27:43:f2:42: 11:75:2d:b5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURu4lZDOo2CEIY0z/zFXaAdEVI6IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yMzExMDIxODU1MDBaFw0yNDEwMzExOTAwMDBaMDMxMTAvBgNV BAMTKDFBM0Q1OUU0OTk3RTcwQzg5NzNFMEJERUQyNDI5N0U1QjQzQUE4NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQZpjGI3/QZyVn/GqAR1L5tJVs yRbVaEDy1aVyg8CHlIzKG5JzawgM+L4p0NedvINq00HP1/PlZZ5nrzT2qssjjkSy a5yZ/e3kT4gECL9v0atEHLoI0w3Q4r9B4nh62DAOTgA6QjM7qNsKCP/PO2taeHKf jPIqtKM8fq11qmY4/liJUh6Df+2uF4HKf/KHCAHzQFbBUgyx1UZ0owVq9p7YlUB8 +l4MbAscBgHKJgpeHVNVZcBVuHCkLrvoZRV2rs1qMZMPsGb8oI4HX+B70J+UysLO nh8JEIiuZPUgG2B9Onr5qcCOIH/AJVzmOUE3eUuRjM312ZygRCYYL39LG0cxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGj1Z5Jl+cMiXPgve0kKX5bQ6qGYwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3FjANBgkqhkiG 9w0BAQsFAAOCAQEAxqlXf89rewqtLBIKURVFWJ1mgemGEpV90e0xNSTPcmuTO7Jw FatjVMrQylf/c9s+URIwyymyuWbXcsunk6Ro4rIpb5FWe+Jw59xslXc8N9io/JqS ENGNG/pIk2cH8xzNW+rXI4GYX4Xv804cXPkdFSQTi6e5q5Yh7KHnq6SZCzd6XDKl AbowDBYc9vOuka1LJ5gX3Rwl42W3oB8ajOwYubW2/JlQivgD1wmbmlTIAWMducX0 zs7fpa8Fw1anIgrxLy0PouPKzMtdBA6CAedkOKs7Ea3cDcUhoeg1RMxVw6Jgx7rz g8o7pE0wKLHnaBNqNg0UXtuBjR0nQ/JCEXUttQ== -----END CERTIFICATE-----Generated at Fri May 3 00:06:27 2024 by rpki-client on console-ams.rpki-client.org