$ rpki-client -vvf repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/3130332e3136342e3137342e302f32332d3234203d3e203538383231.roa File: 3130332e3136342e3137342e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: 1K2Hdxj44ZOTuLvgUulzk3hWuOiw/A3fECUq76MlfqY= Subject key identifier: 9A:D0:2F:9A:93:7B:84:2E:48:AD:23:87:62:F5:CA:02:B0:92:84:FB Certificate issuer: /CN=FF467F8613654288ED5F52ACB466941450FA5DF8 Certificate serial: 1DA323C8F023CB084D5C924F37D8D2B014D9B51F Authority key identifier: FF:46:7F:86:13:65:42:88:ED:5F:52:AC:B4:66:94:14:50:FA:5D:F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF467F8613654288ED5F52ACB466941450FA5DF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/3130332e3136342e3137342e302f32332d3234203d3e203538383231.roa Signing time: Thu 15 Jun 2023 06:00:00 +0000 ROA not before: Thu 15 Jun 2023 05:55:00 +0000 ROA not after: Thu 13 Jun 2024 06:00:00 +0000 asID: 58821 IP address blocks: 103.164.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/FF467F8613654288ED5F52ACB466941450FA5DF8.crl rsync://repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/FF467F8613654288ED5F52ACB466941450FA5DF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF467F8613654288ED5F52ACB466941450FA5DF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:15:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:a3:23:c8:f0:23:cb:08:4d:5c:92:4f:37:d8:d2:b0:14:d9:b5:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF467F8613654288ED5F52ACB466941450FA5DF8 Validity Not Before: Jun 15 05:55:00 2023 GMT Not After : Jun 13 06:00:00 2024 GMT Subject: CN=9AD02F9A937B842E48AD238762F5CA02B09284FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8c:8c:31:b7:3f:57:d6:85:00:10:e9:74:ed: 72:dc:39:2b:4e:22:af:5d:8f:46:e3:a7:bd:ef:a7: e3:7f:39:a9:0c:f7:37:6c:f0:5e:12:08:58:77:7a: 2d:e1:c5:c7:96:62:8a:c1:e4:d7:c7:72:af:1e:7c: e9:26:ac:80:5a:80:8a:a6:08:a6:92:0e:dd:03:b3: 8f:02:6c:59:17:89:6f:12:e4:99:1a:53:28:55:1f: dd:85:63:ee:81:c7:09:ae:76:1a:c5:2f:92:9f:5e: d2:f8:da:87:5d:43:77:96:0c:20:36:39:96:95:46: 6b:8f:dc:49:c8:55:6a:21:5a:bd:c0:95:39:39:06: 12:b3:83:2c:47:9b:d5:75:45:c9:65:b9:13:d8:7f: 82:ac:79:77:fd:f4:57:a5:1f:de:d8:f6:cc:c1:b2: 32:f2:81:c5:e7:5b:f9:f9:ce:62:74:24:be:30:66: 1b:b7:f1:e1:39:99:98:f1:13:1b:10:ce:4b:99:0d: 4f:11:ea:60:fb:43:e5:dc:69:89:7b:35:21:e2:72: f8:f5:fe:dc:36:7c:64:6f:89:f7:d5:7a:83:1c:b0: 28:47:e9:bd:36:de:dd:75:9d:44:50:6d:1d:88:a7: 20:1a:c3:94:36:94:23:07:19:37:46:c1:ca:8c:0f: 4b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D0:2F:9A:93:7B:84:2E:48:AD:23:87:62:F5:CA:02:B0:92:84:FB X509v3 Authority Key Identifier: keyid:FF:46:7F:86:13:65:42:88:ED:5F:52:AC:B4:66:94:14:50:FA:5D:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/FF467F8613654288ED5F52ACB466941450FA5DF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF467F8613654288ED5F52ACB466941450FA5DF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/3130332e3136342e3137342e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.174.0/23 Signature Algorithm: sha256WithRSAEncryption 07:ce:21:29:c1:de:ca:42:61:b0:5f:f8:a4:3c:09:fe:cd:de: d8:b4:73:be:0d:05:bd:1b:79:2c:34:a3:15:7a:a5:45:a0:ab: cb:13:99:fc:1d:ad:70:40:5a:f3:8b:e4:03:d7:b3:75:10:3b: a3:56:58:4d:f4:6e:13:4f:b1:97:d8:3f:85:59:55:a8:23:cd: 4e:a9:cf:8a:a0:d4:b1:31:a3:5f:b5:e4:40:b3:1d:87:98:c9: c5:ae:65:5e:b5:18:9f:1c:35:b6:b1:09:cf:90:44:cd:39:c1: f7:c5:3c:3c:36:0e:94:4c:a1:6d:6e:c1:10:30:6e:03:83:29: 02:e9:af:97:e9:af:73:d8:71:82:2b:86:04:1b:91:87:9f:d3: 8a:52:c5:59:ca:29:01:84:97:06:f6:13:5a:41:7a:29:67:2d: 9a:b3:9d:ce:f1:a3:31:cc:e4:ef:87:36:37:92:b0:c2:6e:f2: 08:f4:08:b0:6c:29:90:89:85:b5:bd:a4:fc:2b:d5:f2:f1:d8: e2:11:5b:9d:c8:37:ba:47:f3:66:d7:9c:eb:74:a3:eb:e9:ed: 74:cc:38:0d:0c:5d:06:98:97:88:b8:98:38:8d:3e:f9:e7:d4: d4:62:b5:c5:c5:6e:05:9c:ba:fa:a7:2e:1e:c5:47:76:ea:79: 74:a7:9a:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHaMjyPAjywhNXJJPN9jSsBTZtR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY0NjdGODYxMzY1NDI4OEVENUY1MkFDQjQ2Njk0MTQ1 MEZBNURGODAeFw0yMzA2MTUwNTU1MDBaFw0yNDA2MTMwNjAwMDBaMDMxMTAvBgNV BAMTKDlBRDAyRjlBOTM3Qjg0MkU0OEFEMjM4NzYyRjVDQTAyQjA5Mjg0RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUjIwxtz9X1oUAEOl07XLcOStO Iq9dj0bjp73vp+N/OakM9zds8F4SCFh3ei3hxceWYorB5NfHcq8efOkmrIBagIqm CKaSDt0Ds48CbFkXiW8S5JkaUyhVH92FY+6BxwmudhrFL5KfXtL42oddQ3eWDCA2 OZaVRmuP3EnIVWohWr3AlTk5BhKzgyxHm9V1RclluRPYf4KseXf99FelH97Y9szB sjLygcXnW/n5zmJ0JL4wZhu38eE5mZjxExsQzkuZDU8R6mD7Q+XcaYl7NSHicvj1 /tw2fGRviffVeoMcsChH6b023t11nURQbR2IpyAaw5Q2lCMHGTdGwcqMD0upAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmtAvmpN7hC5IrSOHYvXKArCShPswHwYDVR0j BBgwFoAU/0Z/hhNlQojtX1KstGaUFFD6XfgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODNhMWRiMi1iMTFlLTRjZGMtYTI1Yy0wZjEyNGNhZTcwZWUvMC9GRjQ2N0Y4NjEz NjU0Mjg4RUQ1RjUyQUNCNDY2OTQxNDUwRkE1REY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY0NjdGODYxMzY1NDI4OEVENUY1MkFDQjQ2Njk0MTQ1MEZB NURGOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4M2ExZGIyLWIxMWUtNGNkYy1h MjVjLTBmMTI0Y2FlNzBlZS8wLzMxMzAzMzJlMzEzNjM0MmUzMTM3MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6SuMA0GCSqG SIb3DQEBCwUAA4IBAQAHziEpwd7KQmGwX/ikPAn+zd7YtHO+DQW9G3ksNKMVeqVF oKvLE5n8Ha1wQFrzi+QD17N1EDujVlhN9G4TT7GX2D+FWVWoI81Oqc+KoNSxMaNf teRAsx2HmMnFrmVetRifHDW2sQnPkETNOcH3xTw8Ng6UTKFtbsEQMG4DgykC6a+X 6a9z2HGCK4YEG5GHn9OKUsVZyikBhJcG9hNaQXopZy2as53O8aMxzOTvhzY3krDC bvII9AiwbCmQiYW1vaT8K9Xy8djiEVudyDe6R/Nm15zrdKPr6e10zDgNDF0GmJeI uJg4jT7559TUYrXFxW4FnLr6py4exUd26nl0p5rG -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:37 2024 by rpki-client on console-ams.rpki-client.org