$ rpki-client -vvf repo-rpki.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/3130332e39392e32322e302f32342d3234203d3e20313530343636.roa File: 3130332e39392e32322e302f32342d3234203d3e20313530343636.roa (raw, json) Hash identifier: eiaRbLmNmYJNBljdtF4zax5yWYmqOafQUyJXyNO0GFE= Subject key identifier: 24:14:2C:06:BB:FE:2A:02:FC:C6:29:17:98:79:B2:5D:08:70:3C:DC Certificate issuer: /CN=A1DCAAB5B3207C2D75692838A38D1DCD4C65AA27 Certificate serial: 1B45B57C2040D70ED7F06439BA4AC6493D77484B Authority key identifier: A1:DC:AA:B5:B3:20:7C:2D:75:69:28:38:A3:8D:1D:CD:4C:65:AA:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A1DCAAB5B3207C2D75692838A38D1DCD4C65AA27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/3130332e39392e32322e302f32342d3234203d3e20313530343636.roa Signing time: Sat 17 Feb 2024 02:01:57 +0000 ROA not before: Sat 17 Feb 2024 01:56:57 +0000 ROA not after: Sat 15 Feb 2025 02:01:57 +0000 asID: 150466 IP address blocks: 103.99.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/A1DCAAB5B3207C2D75692838A38D1DCD4C65AA27.crl rsync://repo-rpki.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/A1DCAAB5B3207C2D75692838A38D1DCD4C65AA27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A1DCAAB5B3207C2D75692838A38D1DCD4C65AA27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:45:b5:7c:20:40:d7:0e:d7:f0:64:39:ba:4a:c6:49:3d:77:48:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1DCAAB5B3207C2D75692838A38D1DCD4C65AA27 Validity Not Before: Feb 17 01:56:57 2024 GMT Not After : Feb 15 02:01:57 2025 GMT Subject: CN=24142C06BBFE2A02FCC629179879B25D08703CDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3d:1b:72:bc:a3:82:d7:e6:67:6a:84:b8:3c: cb:27:13:6e:90:52:a1:8c:25:f0:85:d8:07:ce:ef: 23:c3:fa:6f:6f:c8:7b:6d:58:04:d5:ff:be:b9:49: 07:74:c2:00:2c:a8:53:03:7a:f3:b3:73:1b:9a:c5: 8f:a8:23:59:ef:79:eb:d5:e5:2d:e8:d5:d9:13:9a: 1c:a8:28:12:ee:d0:ed:7b:4e:24:e4:03:db:21:19: 8a:9e:aa:33:85:f5:17:7d:91:e6:aa:37:46:28:ef: 92:60:17:aa:15:2a:71:54:33:89:91:28:28:20:41: 52:94:7d:16:8c:de:fc:a9:b9:fc:f9:08:a4:b2:a2: f0:5f:8e:af:46:b6:b2:3a:f1:b2:c2:b4:2e:9f:01: db:36:f8:c9:64:bc:51:4a:67:83:82:28:2a:06:75: d0:5b:19:00:6c:3e:90:49:4e:29:ab:b7:8e:7c:9d: f7:e7:45:5b:71:f0:c4:e1:3d:4e:d9:99:46:17:a7: c1:6c:b9:43:b9:9e:0c:1b:49:22:20:ec:ba:16:46: 5b:ff:2c:06:bc:13:7b:14:7c:3f:57:d6:2c:5a:11: 40:b5:26:61:3a:1a:0e:1b:50:49:65:65:0e:09:92: 68:05:d7:1c:7f:1e:58:0b:3f:40:63:bf:52:45:e6: a8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:14:2C:06:BB:FE:2A:02:FC:C6:29:17:98:79:B2:5D:08:70:3C:DC X509v3 Authority Key Identifier: keyid:A1:DC:AA:B5:B3:20:7C:2D:75:69:28:38:A3:8D:1D:CD:4C:65:AA:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/A1DCAAB5B3207C2D75692838A38D1DCD4C65AA27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A1DCAAB5B3207C2D75692838A38D1DCD4C65AA27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/3130332e39392e32322e302f32342d3234203d3e20313530343636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.99.22.0/24 Signature Algorithm: sha256WithRSAEncryption 75:6d:43:1a:46:56:d3:53:4b:34:91:c4:d7:50:f1:71:29:0e: 4a:e9:46:35:7b:42:54:4c:e2:5a:55:f2:5f:84:18:c9:b0:dd: cc:8d:7c:0b:95:b6:8b:49:20:1e:2b:89:08:57:5a:62:3a:d8: b8:c7:96:c0:c6:84:c2:58:6c:e8:01:6f:9a:c1:cb:f6:c9:26: 69:c0:f1:51:42:fa:65:bf:7d:af:cd:f3:36:61:01:c7:50:f2: 66:b6:0a:a5:04:8c:07:c6:7a:f4:a7:a6:39:3d:aa:cf:39:32: 8d:e3:df:5b:ad:de:0d:66:88:f9:ab:9c:c4:01:30:42:b5:3c: 69:46:ab:c0:60:2e:ff:c0:36:59:ac:3c:bb:1c:13:88:1a:d4: 90:10:af:8a:a4:ae:81:f7:6c:2c:4e:84:6c:49:6e:79:b5:58: f5:57:a2:29:2c:98:b6:85:31:49:f5:a5:c7:16:0c:79:0f:b9: 07:b7:d7:84:6c:f6:b9:82:62:b8:c2:c5:f9:f4:93:5f:75:a4: bb:6f:39:92:f6:7d:b2:83:b1:69:cd:fb:5d:e1:b2:7d:c0:ed: 90:c9:d6:71:de:5f:c8:5e:2c:64:bc:e0:11:ea:44:98:8a:77: 8a:57:39:59:f1:21:e6:3a:5e:36:48:2a:13:f1:95:20:2e:cc: be:36:9a:48 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG0W1fCBA1w7X8GQ5ukrGST13SEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFEQ0FBQjVCMzIwN0MyRDc1NjkyODM4QTM4RDFEQ0Q0 QzY1QUEyNzAeFw0yNDAyMTcwMTU2NTdaFw0yNTAyMTUwMjAxNTdaMDMxMTAvBgNV BAMTKDI0MTQyQzA2QkJGRTJBMDJGQ0M2MjkxNzk4NzlCMjVEMDg3MDNDREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkPRtyvKOC1+ZnaoS4PMsnE26Q UqGMJfCF2AfO7yPD+m9vyHttWATV/765SQd0wgAsqFMDevOzcxuaxY+oI1nveevV 5S3o1dkTmhyoKBLu0O17TiTkA9shGYqeqjOF9Rd9keaqN0Yo75JgF6oVKnFUM4mR KCggQVKUfRaM3vypufz5CKSyovBfjq9GtrI68bLCtC6fAds2+MlkvFFKZ4OCKCoG ddBbGQBsPpBJTimrt458nffnRVtx8MThPU7ZmUYXp8FsuUO5ngwbSSIg7LoWRlv/ LAa8E3sUfD9X1ixaEUC1JmE6Gg4bUEllZQ4JkmgF1xx/HlgLP0Bjv1JF5qgpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJBQsBrv+KgL8xikXmHmyXQhwPNwwHwYDVR0j BBgwFoAUodyqtbMgfC11aSg4o40dzUxlqicwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWYyNTYzNC1mNTgzLTQ2YmMtOWU4Yy0zMmRiNGNjYTM1YjYvMC9BMURDQUFCNUIz MjA3QzJENzU2OTI4MzhBMzhEMURDRDRDNjVBQTI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTFEQ0FBQjVCMzIwN0MyRDc1NjkyODM4QTM4RDFEQ0Q0QzY1 QUEyNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxZjI1NjM0LWY1ODMtNDZiYy05 ZThjLTMyZGI0Y2NhMzViNi8wLzMxMzAzMzJlMzkzOTJlMzIzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdjFjANBgkqhkiG 9w0BAQsFAAOCAQEAdW1DGkZW01NLNJHE11DxcSkOSulGNXtCVEziWlXyX4QYybDd zI18C5W2i0kgHiuJCFdaYjrYuMeWwMaEwlhs6AFvmsHL9skmacDxUUL6Zb99r83z NmEBx1DyZrYKpQSMB8Z69KemOT2qzzkyjePfW63eDWaI+aucxAEwQrU8aUarwGAu /8A2Waw8uxwTiBrUkBCviqSugfdsLE6EbEluebVY9VeiKSyYtoUxSfWlxxYMeQ+5 B7fXhGz2uYJiuMLF+fSTX3Wku285kvZ9soOxac37XeGyfcDtkMnWcd5fyF4sZLzg EepEmIp3ilc5WfEh5jpeNkgqE/GVIC7MvjaaSA== -----END CERTIFICATE-----Generated at Sun Jun 23 23:58:16 2024 by rpki-client on console-fra.rpki-client.org