$ rpki-client -vvf repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/3130332e3233342e31392e302f32342d3234203d3e20313531353036.roa File: 3130332e3233342e31392e302f32342d3234203d3e20313531353036.roa (raw, json) Hash identifier: W2ycUOnGNOOgMrFBhIpuAuDKuyU/vcMUQ7r6zR2dl3s= Subject key identifier: C3:77:18:28:A9:FA:6F:2A:41:3B:03:4A:03:EA:00:F0:A5:C5:BF:53 Certificate issuer: /CN=7365D5B1AE30C5B6450AFDDE98BA231F962A6C26 Certificate serial: 64E252586799A75A4B7B03FFA4F997C56A6FD398 Authority key identifier: 73:65:D5:B1:AE:30:C5:B6:45:0A:FD:DE:98:BA:23:1F:96:2A:6C:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.cer Subject info access: rsync://repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/3130332e3233342e31392e302f32342d3234203d3e20313531353036.roa Signing time: Fri 21 Jul 2023 01:58:54 +0000 ROA not before: Fri 21 Jul 2023 01:53:54 +0000 ROA not after: Fri 19 Jul 2024 01:58:54 +0000 asID: 151506 IP address blocks: 103.234.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.crl rsync://repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e2:52:58:67:99:a7:5a:4b:7b:03:ff:a4:f9:97:c5:6a:6f:d3:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7365D5B1AE30C5B6450AFDDE98BA231F962A6C26 Validity Not Before: Jul 21 01:53:54 2023 GMT Not After : Jul 19 01:58:54 2024 GMT Subject: CN=C3771828A9FA6F2A413B034A03EA00F0A5C5BF53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9d:72:9a:79:d3:89:60:5d:5e:70:fc:cb:6e: 88:f7:25:5c:b3:a6:14:c2:ae:58:d0:11:b3:35:d6: 14:2c:7f:31:d7:ca:63:49:64:80:84:58:a5:59:72: a4:6c:7d:f1:c2:dd:09:7d:b1:d1:f1:7d:35:14:4e: df:cc:d8:b3:21:54:f7:8f:d2:eb:13:24:be:11:5b: 7d:da:25:13:db:c1:19:ca:14:f8:f1:56:ec:c5:d0: 14:74:4b:cf:02:ce:eb:f7:be:af:e6:12:cf:cd:97: b6:6a:33:5c:f0:20:b5:b4:20:ac:2e:38:c4:b6:85: 94:f8:d6:44:a0:30:a2:a7:b0:e2:e0:1b:74:ae:a9: 02:c1:c3:3a:5f:da:72:8e:3c:ef:20:b7:5f:ab:91: e0:b0:72:6b:ab:2b:71:ed:16:c8:a3:7d:3d:68:e1: 3a:d1:94:69:37:2b:7b:c6:f7:1f:67:67:0a:7f:2a: 70:13:7c:43:fd:88:7c:38:47:bc:aa:75:a7:66:46: a0:d0:06:e0:1c:64:e2:0d:ee:70:ef:65:2f:1c:8a: 81:1c:e9:5f:3e:42:0c:d6:e0:e6:b6:78:ab:b1:f4: 1c:5a:dc:e5:6c:3d:d7:ab:b3:91:44:06:c6:30:4a: 80:b6:62:0b:02:dc:91:4e:56:52:7b:97:b2:74:1b: ea:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:77:18:28:A9:FA:6F:2A:41:3B:03:4A:03:EA:00:F0:A5:C5:BF:53 X509v3 Authority Key Identifier: keyid:73:65:D5:B1:AE:30:C5:B6:45:0A:FD:DE:98:BA:23:1F:96:2A:6C:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/3130332e3233342e31392e302f32342d3234203d3e20313531353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.19.0/24 Signature Algorithm: sha256WithRSAEncryption 42:ab:d7:d9:4d:5e:21:a0:21:4e:f4:81:3d:41:dc:f4:eb:26: 2c:16:b6:49:fb:c2:54:67:af:25:b6:54:42:34:52:a4:f2:78: 99:d8:63:d8:d8:24:c3:3e:39:87:88:6e:f7:5c:95:a8:2a:be: 6b:ab:60:5b:f0:f8:14:51:c4:df:ce:ed:63:ab:b7:15:b2:30: 9a:83:25:f7:a3:46:13:e8:ae:8e:00:14:9a:d4:cc:b5:78:56: b3:35:e9:a3:ee:18:58:a1:b0:74:06:c1:a6:5e:bf:bf:0b:5c: f1:1a:cd:8d:08:29:e5:49:d2:b1:2b:9b:e2:b1:a1:80:87:37: 9f:f3:65:51:e8:c4:71:b8:f4:4b:2a:49:99:b7:fa:ba:26:eb: 97:40:82:a4:a6:9f:b9:7d:d7:d9:69:ea:ee:d8:72:c1:08:73: 79:f9:30:83:01:5b:d1:fc:83:2b:99:08:16:a1:fe:2c:35:f9: 31:0a:8b:d7:92:93:a7:97:6b:9c:30:49:de:e2:eb:3c:67:42: 74:2b:cf:3e:0f:89:8c:cb:64:c4:d6:87:a1:b5:92:8e:80:af: 75:77:ed:cf:12:2f:89:aa:5b:09:25:c6:03:cc:71:5e:aa:c7: cd:2a:f2:c7:0d:a6:1e:3d:12:0d:8e:0f:85:4e:7c:d9:cd:38: 37:12:b7:ab -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZOJSWGeZp1pLewP/pPmXxWpv05gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM2NUQ1QjFBRTMwQzVCNjQ1MEFGRERFOThCQTIzMUY5 NjJBNkMyNjAeFw0yMzA3MjEwMTUzNTRaFw0yNDA3MTkwMTU4NTRaMDMxMTAvBgNV BAMTKEMzNzcxODI4QTlGQTZGMkE0MTNCMDM0QTAzRUEwMEYwQTVDNUJGNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCznXKaedOJYF1ecPzLboj3JVyz phTCrljQEbM11hQsfzHXymNJZICEWKVZcqRsffHC3Ql9sdHxfTUUTt/M2LMhVPeP 0usTJL4RW33aJRPbwRnKFPjxVuzF0BR0S88Czuv3vq/mEs/Nl7ZqM1zwILW0IKwu OMS2hZT41kSgMKKnsOLgG3SuqQLBwzpf2nKOPO8gt1+rkeCwcmurK3HtFsijfT1o 4TrRlGk3K3vG9x9nZwp/KnATfEP9iHw4R7yqdadmRqDQBuAcZOIN7nDvZS8cioEc 6V8+QgzW4Oa2eKux9Bxa3OVsPders5FEBsYwSoC2YgsC3JFOVlJ7l7J0G+ozAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUw3cYKKn6bypBOwNKA+oA8KXFv1MwHwYDVR0j BBgwFoAUc2XVsa4wxbZFCv3emLojH5YqbCYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODgzMjljYS1lOGY3LTRkM2QtYWNlNC04MDdmOGFhNThhZTAvMC83MzY1RDVCMUFF MzBDNUI2NDUwQUZEREU5OEJBMjMxRjk2MkE2QzI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM2NUQ1QjFBRTMwQzVCNjQ1MEFGRERFOThCQTIzMUY5NjJB NkMyNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4ODMyOWNhLWU4ZjctNGQzZC1h Y2U0LTgwN2Y4YWE1OGFlMC8wLzMxMzAzMzJlMzIzMzM0MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+oTMA0GCSqG SIb3DQEBCwUAA4IBAQBCq9fZTV4hoCFO9IE9Qdz06yYsFrZJ+8JUZ68ltlRCNFKk 8niZ2GPY2CTDPjmHiG73XJWoKr5rq2Bb8PgUUcTfzu1jq7cVsjCagyX3o0YT6K6O ABSa1My1eFazNemj7hhYobB0BsGmXr+/C1zxGs2NCCnlSdKxK5visaGAhzef82VR 6MRxuPRLKkmZt/q6JuuXQIKkpp+5fdfZaeru2HLBCHN5+TCDAVvR/IMrmQgWof4s NfkxCovXkpOnl2ucMEne4us8Z0J0K88+D4mMy2TE1oehtZKOgK91d+3PEi+JqlsJ JcYDzHFeqsfNKvLHDaYePRINjg+FTnzZzTg3Erer -----END CERTIFICATE-----Generated at Sun Jun 2 09:14:17 2024 by rpki-client on console-ams.rpki-client.org