$ rpki-client -vvf repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3137362e302f32342d3234203d3e20313335343634.roa File: 3130332e3130322e3137362e302f32342d3234203d3e20313335343634.roa (raw, json) Hash identifier: FN9moHHBZ3MLolY5dlfOBBBnsigPjPC3dsAYGgp1VMk= Subject key identifier: 11:69:21:15:9A:D0:BC:35:70:02:0C:20:5E:DE:56:58:4B:05:77:4A Certificate issuer: /CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Certificate serial: 2D902B7E81BBBEE3E6E472350A7D9D2ADCFEEECD Authority key identifier: D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3137362e302f32342d3234203d3e20313335343634.roa Signing time: Sat 16 Dec 2023 08:00:00 +0000 ROA not before: Sat 16 Dec 2023 07:55:00 +0000 ROA not after: Sat 14 Dec 2024 08:00:00 +0000 asID: 135464 IP address blocks: 103.102.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:90:2b:7e:81:bb:be:e3:e6:e4:72:35:0a:7d:9d:2a:dc:fe:ee:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Validity Not Before: Dec 16 07:55:00 2023 GMT Not After : Dec 14 08:00:00 2024 GMT Subject: CN=116921159AD0BC3570020C205EDE56584B05774A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0c:30:58:0d:06:1d:5b:28:6c:2f:95:6c:56: 2f:60:dc:43:13:52:b1:66:27:76:ac:23:6b:fb:7e: ff:e7:e3:c9:86:22:f5:fe:5c:32:cb:90:7a:4e:c8: 80:ef:72:8c:89:0b:d9:d0:f7:89:8d:2d:d2:22:ca: a3:69:4c:05:cd:ec:fb:21:5a:17:11:56:16:0c:9e: 82:d4:40:a6:bd:e3:db:c2:d1:87:90:3a:77:48:72: 3a:be:f8:4b:5a:3a:a8:c0:42:64:1c:f5:70:70:f2: 7d:f8:2a:5a:d8:e1:2e:fa:03:66:47:f2:5d:43:5b: b2:4f:ec:e3:6b:60:bc:64:d3:34:44:27:d1:76:a9: af:1b:c3:83:ef:68:ba:f6:c7:81:19:b1:00:1e:79: 90:c0:ee:c7:2c:54:bb:8e:ef:61:2d:a1:a9:16:3b: ec:7b:b8:e1:da:80:b9:d6:4f:20:04:fd:df:a9:9e: 71:ea:b9:45:b3:c7:47:79:d6:da:2f:82:19:4c:ab: 3f:91:18:7f:40:c2:90:9c:22:b4:75:08:0f:f2:6a: 28:04:7a:c2:9e:13:d1:7d:4e:80:cc:0d:a5:4d:74: 59:f2:3d:01:0f:66:bd:40:06:eb:d1:24:83:bd:02: 39:65:a9:95:aa:3f:f4:e5:15:89:c6:33:13:6c:bc: 7b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:69:21:15:9A:D0:BC:35:70:02:0C:20:5E:DE:56:58:4B:05:77:4A X509v3 Authority Key Identifier: keyid:D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3137362e302f32342d3234203d3e20313335343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.176.0/24 Signature Algorithm: sha256WithRSAEncryption 26:1b:07:e3:82:15:27:43:7b:0e:c7:a1:53:c6:2e:77:2f:e2: 7f:68:d0:5a:e7:0b:72:0b:33:7f:52:12:32:78:e1:6f:41:ea: 0e:c0:3c:c7:a0:7f:da:c7:57:3a:08:54:08:ef:95:ec:33:62: 52:c1:9d:52:db:2e:1b:df:a0:f7:b3:24:fc:aa:c6:86:38:93: 1f:6f:eb:a6:a9:b9:f9:dc:8c:13:17:2c:0a:73:74:1f:00:e6: c4:f0:0b:25:be:cd:61:37:82:f5:36:63:df:6a:61:8b:86:4b: 14:b9:6e:e9:f5:44:28:36:58:58:0c:53:02:10:43:e6:9a:71: 63:e1:1a:0c:b7:aa:be:61:d1:9f:bf:2c:d1:b6:10:5f:f1:9d: 57:4c:9e:68:10:00:a7:78:d4:72:d8:4d:00:b0:e8:a5:cc:b6: 38:4c:aa:2b:da:0e:f0:d2:89:a0:8a:4f:81:95:2f:9a:32:94: 9d:10:1b:05:c8:77:ae:3e:ce:3b:15:20:17:d0:90:70:16:bf: 2e:2c:23:9f:52:5d:0a:00:a7:af:4d:6f:d9:18:7c:42:c5:ce: e1:8b:17:02:28:55:fc:b7:28:e8:ef:a0:3c:4b:a3:6b:9d:ee: 94:3f:13:b4:8c:e4:2c:71:f0:70:a0:a8:61:ec:8c:4a:5b:db: 33:30:2c:cc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULZArfoG7vuPm5HI1Cn2dKtz+7s0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQz NkMzOUZBRjAeFw0yMzEyMTYwNzU1MDBaFw0yNDEyMTQwODAwMDBaMDMxMTAvBgNV BAMTKDExNjkyMTE1OUFEMEJDMzU3MDAyMEMyMDVFREU1NjU4NEIwNTc3NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzDDBYDQYdWyhsL5VsVi9g3EMT UrFmJ3asI2v7fv/n48mGIvX+XDLLkHpOyIDvcoyJC9nQ94mNLdIiyqNpTAXN7Psh WhcRVhYMnoLUQKa949vC0YeQOndIcjq++EtaOqjAQmQc9XBw8n34KlrY4S76A2ZH 8l1DW7JP7ONrYLxk0zREJ9F2qa8bw4PvaLr2x4EZsQAeeZDA7scsVLuO72EtoakW O+x7uOHagLnWTyAE/d+pnnHquUWzx0d51tovghlMqz+RGH9AwpCcIrR1CA/yaigE esKeE9F9ToDMDaVNdFnyPQEPZr1ABuvRJIO9AjllqZWqP/TlFYnGMxNsvHthAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEWkhFZrQvDVwAgwgXt5WWEsFd0owHwYDVR0j BBgwFoAU18fG5TPEHDbZI83Fn/wbBDbDn68wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTlhODUzOC1kYTQzLTQxNTgtYWJjMi04ZTYzYThlNDA4OTkvMC9EN0M3QzZFNTMz QzQxQzM2RDkyM0NEQzU5RkZDMUIwNDM2QzM5RkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQzNkMz OUZBRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxOWE4NTM4LWRhNDMtNDE1OC1h YmMyLThlNjNhOGU0MDg5OS8wLzMxMzAzMzJlMzEzMDMyMmUzMTM3MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZrAwDQYJ KoZIhvcNAQELBQADggEBACYbB+OCFSdDew7HoVPGLncv4n9o0FrnC3ILM39SEjJ4 4W9B6g7APMegf9rHVzoIVAjvlewzYlLBnVLbLhvfoPezJPyqxoY4kx9v66apufnc jBMXLApzdB8A5sTwCyW+zWE3gvU2Y99qYYuGSxS5bun1RCg2WFgMUwIQQ+aacWPh Ggy3qr5h0Z+/LNG2EF/xnVdMnmgQAKd41HLYTQCw6KXMtjhMqivaDvDSiaCKT4GV L5oylJ0QGwXId64+zjsVIBfQkHAWvy4sI59SXQoAp69Nb9kYfELFzuGLFwIoVfy3 KOjvoDxLo2ud7pQ/E7SM5Cxx8HCgqGHsjEpb2zMwLMw= -----END CERTIFICATE-----Generated at Sun Jun 2 14:42:31 2024 by rpki-client on console-ams.rpki-client.org