$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa File: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (raw, json) Hash identifier: Y9Myg21wZWpArPDRMRM2GYBJ5q8vQ+ONOYlkqIekfXY= Subject key identifier: 3F:F1:0C:F0:E7:56:BF:28:11:24:70:8D:49:6F:34:DD:9B:F5:01:51 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 1D5844A1CFD14EB0776F6D9D1994C9477A1A239C Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa Signing time: Sat 07 Oct 2023 15:00:00 +0000 ROA not before: Sat 07 Oct 2023 14:55:00 +0000 ROA not after: Sat 05 Oct 2024 15:00:00 +0000 asID: 147128 IP address blocks: 103.176.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:58:44:a1:cf:d1:4e:b0:77:6f:6d:9d:19:94:c9:47:7a:1a:23:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Oct 7 14:55:00 2023 GMT Not After : Oct 5 15:00:00 2024 GMT Subject: CN=3FF10CF0E756BF281124708D496F34DD9BF50151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6a:cb:a8:b2:84:bf:13:54:25:40:6c:bf:14: 0a:4b:f0:ff:7f:45:2e:6f:55:98:ee:76:7a:95:8a: 71:2e:d7:ed:4f:12:97:96:15:8c:ba:30:36:8e:b7: fd:c8:df:74:2b:40:75:bf:f6:0e:e9:90:8e:5b:79: 30:e3:cb:23:56:e6:82:e3:84:31:c0:d4:90:36:13: 6d:f6:be:c1:99:2b:3f:5e:ba:13:64:cb:2b:a2:8d: d4:11:13:f9:c2:bc:86:34:91:eb:40:2d:aa:5f:ac: 31:e6:c9:c8:c7:56:93:24:da:0e:33:81:df:ff:fc: fd:45:08:4f:c2:0a:6b:18:58:25:a9:da:49:55:77: 9b:1a:08:f8:cc:57:b0:68:86:fc:81:6c:1e:29:5f: 26:35:cc:83:f2:29:96:05:b8:5d:82:63:06:6b:46: e1:c6:d4:36:3f:57:59:c3:51:41:2e:3b:85:03:80: 8c:b5:5d:14:cd:ae:cb:89:60:9d:8b:6f:fc:c5:72: e7:4a:2d:5d:15:18:61:37:e4:c5:27:66:9a:f3:b4: a2:f4:b0:6c:23:1c:d4:e8:34:91:24:06:9c:e8:e4: 59:bd:50:5b:a9:58:86:a8:f4:0e:0b:ae:3b:6b:9b: f1:e4:23:1c:92:89:b4:e5:d2:19:bd:18:ba:3b:41: 5a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F1:0C:F0:E7:56:BF:28:11:24:70:8D:49:6F:34:DD:9B:F5:01:51 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.44.0/23 Signature Algorithm: sha256WithRSAEncryption 40:7c:c0:bd:2e:a8:84:f7:09:79:b7:b0:d4:c1:35:bc:64:70: ff:ea:96:1f:28:a7:6f:c2:a9:64:fc:bb:5d:77:d4:ce:02:d2: e4:32:0e:5a:e3:6d:52:21:c7:fb:4b:68:28:10:02:ca:2b:1d: 89:67:bb:d1:44:84:cd:22:5f:c0:ae:32:39:bf:02:4a:87:45: b9:24:09:49:10:6e:2c:96:0a:10:94:75:39:e7:29:92:19:be: 6e:69:0e:80:2d:a1:b4:b0:c6:c4:b7:3b:70:40:ba:65:1b:e5: a0:7e:62:8a:7c:3a:0e:05:e6:6b:04:42:38:f2:8c:3b:84:77: 9f:9c:19:2a:ed:23:8c:d5:be:d2:46:be:68:ec:b9:e3:4b:6d: 0b:bf:d2:54:38:48:bb:84:f1:8e:01:2d:d6:56:91:e8:ac:fb: 4d:a8:df:23:5e:56:c7:9e:93:51:75:e6:5a:64:8c:b3:9b:05: a8:cc:ed:bf:56:b9:f4:47:80:ff:ac:df:0c:20:bc:4f:ff:0b: f4:68:52:77:a3:6c:60:43:9e:42:83:aa:57:d7:13:58:8a:62: 5b:94:cd:12:ff:6f:f8:d8:b8:d3:f3:06:53:e7:0f:a3:8e:7b: cc:32:e3:73:73:6e:b8:79:ad:a7:9f:58:07:0c:47:dd:d9:b2: 02:c0:37:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHVhEoc/RTrB3b22dGZTJR3oaI5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yMzEwMDcxNDU1MDBaFw0yNDEwMDUxNTAwMDBaMDMxMTAvBgNV BAMTKDNGRjEwQ0YwRTc1NkJGMjgxMTI0NzA4RDQ5NkYzNEREOUJGNTAxNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkasuosoS/E1QlQGy/FApL8P9/ RS5vVZjudnqVinEu1+1PEpeWFYy6MDaOt/3I33QrQHW/9g7pkI5beTDjyyNW5oLj hDHA1JA2E232vsGZKz9euhNkyyuijdQRE/nCvIY0ketALapfrDHmycjHVpMk2g4z gd///P1FCE/CCmsYWCWp2klVd5saCPjMV7BohvyBbB4pXyY1zIPyKZYFuF2CYwZr RuHG1DY/V1nDUUEuO4UDgIy1XRTNrsuJYJ2Lb/zFcudKLV0VGGE35MUnZprztKL0 sGwjHNToNJEkBpzo5Fm9UFupWIao9A4Lrjtrm/HkIxySibTl0hm9GLo7QVrnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUP/EM8OdWvygRJHCNSW803Zv1AVEwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzMWE5NDI2LTNjMzUtNDcwZS1i ZjM0LTMwZTdlNDE2MDJjYi8wLzMxMzAzMzJlMzEzNzM2MmUzNDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM3MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7AsMA0GCSqG SIb3DQEBCwUAA4IBAQBAfMC9LqiE9wl5t7DUwTW8ZHD/6pYfKKdvwqlk/Ltdd9TO AtLkMg5a421SIcf7S2goEALKKx2JZ7vRRITNIl/ArjI5vwJKh0W5JAlJEG4slgoQ lHU55ymSGb5uaQ6ALaG0sMbEtztwQLplG+WgfmKKfDoOBeZrBEI48ow7hHefnBkq 7SOM1b7SRr5o7LnjS20Lv9JUOEi7hPGOAS3WVpHorPtNqN8jXlbHnpNRdeZaZIyz mwWozO2/Vrn0R4D/rN8MILxP/wv0aFJ3o2xgQ55Cg6pX1xNYimJblM0S/2/42LjT 8wZT5w+jjnvMMuNzc264ea2nn1gHDEfd2bICwDdk -----END CERTIFICATE-----Generated at Fri Jun 21 19:32:08 2024 by rpki-client on console-ams.rpki-client.org