$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa File: 3130332e3234372e32332e302f32342d3234203d3e203538343835.roa (raw, json) Hash identifier: zXvv1UAJ2glsSTs8Y0KWvxMnWnqOJglGW7L2Q9D9rvE= Subject key identifier: EF:32:80:11:D6:78:7A:EA:71:E7:06:06:E2:73:A9:92:86:21:D9:64 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 7726A722A8B69D90F976F70F1D2CF6134B74D551 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa Signing time: Tue 05 Dec 2023 17:00:00 +0000 ROA not before: Tue 05 Dec 2023 16:55:00 +0000 ROA not after: Tue 03 Dec 2024 17:00:00 +0000 asID: 58485 IP address blocks: 103.247.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:26:a7:22:a8:b6:9d:90:f9:76:f7:0f:1d:2c:f6:13:4b:74:d5:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Dec 5 16:55:00 2023 GMT Not After : Dec 3 17:00:00 2024 GMT Subject: CN=EF328011D6787AEA71E70606E273A9928621D964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d5:bc:8a:86:3e:0a:74:0e:03:4f:ba:ce:e3: 83:42:43:2c:e1:0d:99:01:1c:d4:df:8f:45:e9:10: f6:5b:34:bd:e7:08:92:20:60:0b:00:5a:2f:d3:fb: ed:cf:27:81:fd:fa:e9:17:33:28:e6:e7:35:af:81: 4f:07:c7:15:0a:a3:c8:e9:17:8c:6a:4d:c7:43:d8: 50:95:d8:7d:74:79:53:f4:fd:1a:be:a8:13:09:de: 9f:47:16:78:c5:aa:fa:b5:d2:6a:ef:d4:3a:7c:80: 18:8b:05:dd:d2:d6:2b:72:39:9c:03:a1:42:62:17: 36:87:60:c5:65:06:56:26:81:e9:b6:48:6b:31:18: 25:ab:16:61:ba:fc:50:de:c2:5c:20:73:28:d5:90: 8d:af:9d:76:2c:c3:ea:04:6e:ae:9f:cc:69:eb:3d: f9:4d:71:db:88:f2:ac:cc:c2:fd:73:64:8f:1b:6e: a9:48:5c:39:d6:a4:61:a2:97:58:6a:7c:3d:f9:1d: 06:bc:92:2f:bc:90:33:d8:32:62:20:a6:73:8c:00: 84:3a:88:85:f7:92:35:de:62:bb:13:f4:9c:10:fa: a9:c7:83:d8:8b:32:60:0f:c8:4b:11:44:73:ce:c2: e3:b5:72:07:32:d3:9d:7c:9e:35:b1:96:f6:9f:13: 5c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:32:80:11:D6:78:7A:EA:71:E7:06:06:E2:73:A9:92:86:21:D9:64 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.23.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:13:39:cc:18:cd:83:65:66:84:74:aa:ab:28:59:29:6f:32: 92:fe:59:cf:88:97:8f:a4:47:29:de:a8:bc:b9:94:2f:21:2e: 6a:b3:4f:43:ef:9d:1f:77:49:bd:0a:74:5c:e7:ff:b0:75:7d: 4f:cb:6f:26:c7:3a:46:f5:53:b7:82:a0:56:da:b3:62:78:66: c5:f5:3c:d7:31:08:11:58:c2:3a:bb:95:f9:3b:59:62:00:11: 59:9d:e3:5a:c1:4d:fa:eb:c9:90:79:98:9e:83:db:f6:64:de: 0d:63:d7:96:42:b8:0c:06:2a:47:ed:70:bd:95:a3:c1:5e:d6: 7d:6d:4b:91:57:04:32:56:29:b1:d7:a2:79:a5:3c:a8:1f:a8: 73:06:df:c5:c5:e2:66:1d:9d:bf:ce:fc:d7:0d:64:62:76:a7: dc:83:f9:77:bd:a6:28:47:38:20:fa:2e:bf:28:77:7e:b1:fa: 67:cb:96:84:d4:d5:7c:31:07:5b:01:76:45:8c:5a:89:d8:0c: cf:eb:d8:0c:15:d9:bd:9d:e5:7b:6e:00:5a:dc:b7:67:53:d1: c7:af:f9:49:d6:00:62:6d:25:11:6d:5f:59:b2:67:68:11:c5: 27:a7:76:89:ae:a6:04:2e:17:54:ff:ff:1a:40:7c:3f:6b:47: 57:a5:94:74 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdyanIqi2nZD5dvcPHSz2E0t01VEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yMzEyMDUxNjU1MDBaFw0yNDEyMDMxNzAwMDBaMDMxMTAvBgNV BAMTKEVGMzI4MDExRDY3ODdBRUE3MUU3MDYwNkUyNzNBOTkyODYyMUQ5NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA1byKhj4KdA4DT7rO44NCQyzh DZkBHNTfj0XpEPZbNL3nCJIgYAsAWi/T++3PJ4H9+ukXMyjm5zWvgU8HxxUKo8jp F4xqTcdD2FCV2H10eVP0/Rq+qBMJ3p9HFnjFqvq10mrv1Dp8gBiLBd3S1ityOZwD oUJiFzaHYMVlBlYmgem2SGsxGCWrFmG6/FDewlwgcyjVkI2vnXYsw+oEbq6fzGnr PflNcduI8qzMwv1zZI8bbqlIXDnWpGGil1hqfD35HQa8ki+8kDPYMmIgpnOMAIQ6 iIX3kjXeYrsT9JwQ+qnHg9iLMmAPyEsRRHPOwuO1cgcy0518njWxlvafE1yLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7zKAEdZ4eupx5wYG4nOpkoYh2WQwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3FzANBgkqhkiG 9w0BAQsFAAOCAQEATxM5zBjNg2VmhHSqqyhZKW8ykv5Zz4iXj6RHKd6ovLmULyEu arNPQ++dH3dJvQp0XOf/sHV9T8tvJsc6RvVTt4KgVtqzYnhmxfU81zEIEVjCOruV +TtZYgARWZ3jWsFN+uvJkHmYnoPb9mTeDWPXlkK4DAYqR+1wvZWjwV7WfW1LkVcE MlYpsdeieaU8qB+ocwbfxcXiZh2dv8781w1kYnan3IP5d72mKEc4IPouvyh3frH6 Z8uWhNTVfDEHWwF2RYxaidgMz+vYDBXZvZ3le24AWty3Z1PRx6/5SdYAYm0lEW1f WbJnaBHFJ6d2ia6mBC4XVP//GkB8P2tHV6WUdA== -----END CERTIFICATE-----Generated at Fri May 3 00:06:27 2024 by rpki-client on console-ams.rpki-client.org