$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32332d3233203d3e203234323131.roa File: 3130332e34392e3232302e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: JDQJ5MZd7OSbQ00Yf3MtTVlKucR+SBl9C49jQFdXDBA= Subject key identifier: 0A:B1:A3:35:45:0D:1D:45:63:F6:5C:C9:7B:4E:BA:93:B3:99:45:99 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 679462947312031F9B8D2A22B3BFB791C17F1E9D Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32332d3233203d3e203234323131.roa Signing time: Fri 22 Dec 2023 10:00:01 +0000 ROA not before: Fri 22 Dec 2023 09:55:01 +0000 ROA not after: Fri 20 Dec 2024 10:00:01 +0000 asID: 24211 IP address blocks: 103.49.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 19:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:94:62:94:73:12:03:1f:9b:8d:2a:22:b3:bf:b7:91:c1:7f:1e:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Dec 22 09:55:01 2023 GMT Not After : Dec 20 10:00:01 2024 GMT Subject: CN=0AB1A335450D1D4563F65CC97B4EBA93B3994599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ab:b1:a2:96:db:36:c1:3a:bf:af:29:91:23: ff:0d:dd:8d:17:ae:bb:23:3b:c9:b1:95:57:17:d1: 0d:c8:b6:be:e2:8c:2f:c1:85:a3:b7:9f:3c:4e:8c: 8b:56:b6:c2:90:c4:77:47:bd:c9:e7:f7:2d:79:09: bf:bf:c5:64:5d:1e:63:de:65:7c:92:16:23:46:7c: 3d:ce:20:ff:07:cd:7c:4a:d3:ae:67:07:f0:a4:42: df:b2:22:7d:04:6a:70:cc:83:b3:9d:6d:2a:59:37: cc:05:0e:f3:2e:ed:a2:ba:74:da:d2:04:f0:3b:91: b6:5c:b3:ee:b8:3b:66:cd:a7:54:89:4f:e1:dd:ad: 3e:ce:3a:44:9b:8a:9e:a6:88:2b:ac:66:00:e4:02: 45:33:16:58:29:ea:11:79:8d:92:c3:18:4c:47:3e: 1c:0d:ee:3b:2e:ee:9b:e1:54:56:0f:a1:45:ac:ac: 9d:4d:4a:2f:88:1a:37:de:d5:e1:ac:6a:62:d2:4b: a4:7f:7c:9e:c9:84:a2:aa:b2:4b:a9:7c:cb:d7:e1: 51:e2:3a:7c:d2:57:b2:ee:c3:ea:9b:7c:b4:ee:ce: a0:72:cc:2c:a1:1f:53:8b:04:e0:c9:6b:d5:b9:52: d3:76:d1:2b:f0:40:54:8e:cc:2b:52:82:ed:4f:9c: e6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B1:A3:35:45:0D:1D:45:63:F6:5C:C9:7B:4E:BA:93:B3:99:45:99 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.220.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:4f:7b:1b:3d:6b:58:62:8c:b0:9e:5a:15:7f:7a:f9:d4:f8: 10:09:70:82:01:77:41:04:ef:10:71:3c:8a:32:fa:41:4e:4e: 3f:3e:9a:10:49:0e:42:a3:e1:af:43:93:d6:85:d3:7e:f3:bc: 8b:7a:4f:f8:47:3a:f6:85:ce:80:9f:23:38:03:5c:dc:19:23: 86:46:1a:de:6a:6f:58:25:ba:f4:29:b6:d4:52:33:bf:11:51: b2:a6:c1:2a:bc:4f:9a:8a:10:9a:fd:b9:10:81:35:f8:22:a4: 47:1b:50:04:4f:1b:af:cc:57:75:a6:c7:b8:d5:12:b8:4e:ab: 21:22:2e:3b:c3:f3:01:47:5a:16:da:c8:7d:e1:6d:87:87:27: db:48:59:b3:55:ce:94:16:3d:1e:ce:2e:11:2b:76:b6:21:c5: 24:27:3d:dd:a2:97:98:b6:da:af:d0:a0:dc:2f:8c:db:f3:7f: 1c:97:cf:8f:5c:a6:9c:e1:28:d4:84:9f:d9:25:8d:da:4d:79: 87:91:01:c4:6d:59:1f:5b:a3:46:52:f3:d6:84:ad:47:ea:a6: cf:d9:80:89:43:3e:d3:92:30:72:8d:7a:83:a7:d2:46:5d:63: f0:c2:7c:32:1a:26:3b:e3:28:f5:64:9e:5c:be:d3:31:69:b2: be:13:01:22 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZ5RilHMSAx+bjSois7+3kcF/Hp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yMzEyMjIwOTU1MDFaFw0yNDEyMjAxMDAwMDFaMDMxMTAvBgNV BAMTKDBBQjFBMzM1NDUwRDFENDU2M0Y2NUNDOTdCNEVCQTkzQjM5OTQ1OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2q7Gilts2wTq/rymRI/8N3Y0X rrsjO8mxlVcX0Q3Itr7ijC/BhaO3nzxOjItWtsKQxHdHvcnn9y15Cb+/xWRdHmPe ZXySFiNGfD3OIP8HzXxK065nB/CkQt+yIn0EanDMg7OdbSpZN8wFDvMu7aK6dNrS BPA7kbZcs+64O2bNp1SJT+HdrT7OOkSbip6miCusZgDkAkUzFlgp6hF5jZLDGExH PhwN7jsu7pvhVFYPoUWsrJ1NSi+IGjfe1eGsamLSS6R/fJ7JhKKqskupfMvX4VHi OnzSV7Luw+qbfLTuzqByzCyhH1OLBODJa9W5UtN20SvwQFSOzCtSgu1PnOYpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCrGjNUUNHUVj9lzJe066k7OZRZkwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMxMzAzMzJlMzQzOTJlMzIzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDMyMzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcx3DANBgkqhkiG 9w0BAQsFAAOCAQEAKk97Gz1rWGKMsJ5aFX96+dT4EAlwggF3QQTvEHE8ijL6QU5O Pz6aEEkOQqPhr0OT1oXTfvO8i3pP+Ec69oXOgJ8jOANc3BkjhkYa3mpvWCW69Cm2 1FIzvxFRsqbBKrxPmooQmv25EIE1+CKkRxtQBE8br8xXdabHuNUSuE6rISIuO8Pz AUdaFtrIfeFth4cn20hZs1XOlBY9Hs4uESt2tiHFJCc93aKXmLbar9Cg3C+M2/N/ HJfPj1ymnOEo1ISf2SWN2k15h5EBxG1ZH1ujRlLz1oStR+qmz9mAiUM+05Iwco16 g6fSRl1j8MJ8MhomO+Mo9WSeXL7TMWmyvhMBIg== -----END CERTIFICATE-----Generated at Sat Apr 27 13:32:23 2024 by rpki-client on console-ams.rpki-client.org