$ rpki-client -vvf repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38352e302f32342d3234203d3e20313530323337.roa File: 3130332e32302e38352e302f32342d3234203d3e20313530323337.roa (raw, json) Hash identifier: NPBqi/Dy5zHHE50UdV8hxAgf6f3LNP5NNYri51dK12o= Subject key identifier: FE:A4:63:BF:73:6E:53:CF:13:CB:25:06:DD:39:AF:2A:7B:9F:9D:B2 Certificate issuer: /CN=BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0 Certificate serial: 2D1F485346540056E8A358C0B5A41D7ABE1DC782 Authority key identifier: BD:0C:A7:BB:7E:E1:45:97:A1:71:F1:B1:E3:E3:12:7A:79:DF:FF:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38352e302f32342d3234203d3e20313530323337.roa Signing time: Thu 28 Dec 2023 18:00:00 +0000 ROA not before: Thu 28 Dec 2023 17:55:00 +0000 ROA not after: Thu 26 Dec 2024 18:00:00 +0000 asID: 150237 IP address blocks: 103.20.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.crl rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:1f:48:53:46:54:00:56:e8:a3:58:c0:b5:a4:1d:7a:be:1d:c7:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0 Validity Not Before: Dec 28 17:55:00 2023 GMT Not After : Dec 26 18:00:00 2024 GMT Subject: CN=FEA463BF736E53CF13CB2506DD39AF2A7B9F9DB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c7:3b:4e:3e:35:c6:cf:b7:ad:c6:cc:b8:dd: 56:02:1d:25:e5:5d:30:71:a0:7b:6d:0d:b4:51:d3: 8a:5a:27:24:db:3d:94:81:7a:57:f8:11:15:22:ff: 14:43:05:2a:4f:00:ce:e2:77:8d:ff:f3:51:2b:49: d0:b7:66:03:6c:be:cb:cd:d5:f5:1f:43:44:62:bc: 2c:81:cf:e5:11:f5:63:ec:11:de:82:3d:2d:9e:08: d1:43:69:4b:ef:89:cc:d1:f3:f9:dc:9c:b1:4a:7d: 65:ae:f9:39:41:3f:38:f8:24:f9:2b:2d:e2:26:57: d1:31:53:3f:71:4d:3a:4f:e1:25:fb:6d:74:30:6a: 9d:f1:06:2f:13:f7:b6:0f:79:ef:5f:bc:8b:2b:e9: 03:9c:9a:8e:7e:d7:54:55:41:a3:2c:c0:87:01:37: 70:0a:15:bc:1f:9a:99:2c:76:f2:4a:21:b8:88:ad: a2:33:8b:e4:e9:48:50:0d:4d:a8:f6:eb:17:be:c4: f0:ee:af:d0:11:a1:fb:42:4e:55:79:85:8c:24:32: e7:19:6b:35:4c:b7:44:3b:7b:99:28:00:84:9f:32: 09:5f:f3:73:7d:9e:86:b5:3f:77:96:66:2d:eb:92: ed:0b:e2:67:76:cf:5c:f5:47:0c:75:d1:74:ec:6c: b7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:A4:63:BF:73:6E:53:CF:13:CB:25:06:DD:39:AF:2A:7B:9F:9D:B2 X509v3 Authority Key Identifier: keyid:BD:0C:A7:BB:7E:E1:45:97:A1:71:F1:B1:E3:E3:12:7A:79:DF:FF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38352e302f32342d3234203d3e20313530323337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.85.0/24 Signature Algorithm: sha256WithRSAEncryption ac:61:f6:7b:91:2d:53:52:1a:3a:7d:4a:46:64:bc:eb:e7:e4: cd:f7:af:de:b8:cd:98:82:e4:1a:fb:e7:49:cd:46:38:c9:69: a3:34:88:ff:e1:e1:9b:70:ef:cb:de:22:bd:50:70:1c:7e:23: df:bb:8e:df:5d:d5:85:1c:6e:76:79:75:00:15:0a:7e:c3:0c: 13:59:53:61:a3:48:38:2b:9c:38:96:4f:56:d2:73:48:a3:1c: dc:84:1b:36:6e:31:6b:23:11:d6:0f:ed:bb:30:08:73:4e:8e: 29:0f:f8:01:10:49:4c:85:e0:fe:29:ab:7e:cc:01:0f:19:a7: 54:dc:59:54:e2:cc:c4:11:c0:5e:23:a4:6c:4d:69:c9:44:19: ce:40:44:dd:b6:d8:7c:0a:7c:4a:62:3f:fc:d8:cf:3c:b7:05: 19:f5:51:23:c9:a6:04:4c:da:8f:a5:26:01:4f:b8:83:64:79: 3f:e8:77:43:45:f7:5e:94:fd:e8:2d:73:55:08:d9:f9:f7:a0: e3:f9:47:f1:8a:44:84:db:3b:7f:95:76:ab:28:60:a4:9b:2e: da:21:e4:5f:39:0a:75:a4:2a:14:68:07:d0:a0:04:11:78:7a: 99:4c:44:77:b8:e4:87:6e:5d:9d:f9:2d:7e:71:b8:c3:a7:39: 80:04:b1:eb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULR9IU0ZUAFboo1jAtaQder4dx4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQwQ0E3QkI3RUUxNDU5N0ExNzFGMUIxRTNFMzEyN0E3 OURGRkZEMDAeFw0yMzEyMjgxNzU1MDBaFw0yNDEyMjYxODAwMDBaMDMxMTAvBgNV BAMTKEZFQTQ2M0JGNzM2RTUzQ0YxM0NCMjUwNkREMzlBRjJBN0I5RjlEQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfxztOPjXGz7etxsy43VYCHSXl XTBxoHttDbRR04paJyTbPZSBelf4ERUi/xRDBSpPAM7id43/81ErSdC3ZgNsvsvN 1fUfQ0RivCyBz+UR9WPsEd6CPS2eCNFDaUvviczR8/ncnLFKfWWu+TlBPzj4JPkr LeImV9ExUz9xTTpP4SX7bXQwap3xBi8T97YPee9fvIsr6QOcmo5+11RVQaMswIcB N3AKFbwfmpksdvJKIbiIraIzi+TpSFANTaj26xe+xPDur9ARoftCTlV5hYwkMucZ azVMt0Q7e5koAISfMglf83N9noa1P3eWZi3rku0L4md2z1z1Rwx10XTsbLdvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/qRjv3NuU88TyyUG3TmvKnufnbIwHwYDVR0j BBgwFoAUvQynu37hRZehcfGx4+MSennf/9AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZDdhNzFiYy1mOTEwLTRiOGMtOWNmZi0wODU3ZDVmMmQzN2YvMC9CRDBDQTdCQjdF RTE0NTk3QTE3MUYxQjFFM0UzMTI3QTc5REZGRkQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQwQ0E3QkI3RUUxNDU5N0ExNzFGMUIxRTNFMzEyN0E3OURG RkZEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkN2E3MWJjLWY5MTAtNGI4Yy05 Y2ZmLTA4NTdkNWYyZDM3Zi8wLzMxMzAzMzJlMzIzMDJlMzgzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUVTANBgkqhkiG 9w0BAQsFAAOCAQEArGH2e5EtU1IaOn1KRmS86+fkzfev3rjNmILkGvvnSc1GOMlp ozSI/+Hhm3Dvy94ivVBwHH4j37uO313VhRxudnl1ABUKfsMME1lTYaNIOCucOJZP VtJzSKMc3IQbNm4xayMR1g/tuzAIc06OKQ/4ARBJTIXg/imrfswBDxmnVNxZVOLM xBHAXiOkbE1pyUQZzkBE3bbYfAp8SmI//NjPPLcFGfVRI8mmBEzaj6UmAU+4g2R5 P+h3Q0X3XpT96C1zVQjZ+feg4/lH8YpEhNs7f5V2qyhgpJsu2iHkXzkKdaQqFGgH 0KAEEXh6mUxEd7jkh25dnfktfnG4w6c5gASx6w== -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:32 2024 by rpki-client on console-ams.rpki-client.org