$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232322e302f32332d3233203d3e203234323131.roa File: 3130332e34392e3232322e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: UOAh2I5/CJBR3HlDeOuYRU1R2eKZSMBlMXWOs8FFUdk= Subject key identifier: 9F:38:8C:E4:DE:F1:17:4B:95:E8:93:46:FB:1A:DE:9E:F6:58:70:43 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 3A9C2CC2B2492861C193D7A43FC401938719D9CB Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232322e302f32332d3233203d3e203234323131.roa Signing time: Fri 22 Dec 2023 10:00:01 +0000 ROA not before: Fri 22 Dec 2023 09:55:01 +0000 ROA not after: Fri 20 Dec 2024 10:00:01 +0000 asID: 24211 IP address blocks: 103.49.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 19:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:9c:2c:c2:b2:49:28:61:c1:93:d7:a4:3f:c4:01:93:87:19:d9:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Dec 22 09:55:01 2023 GMT Not After : Dec 20 10:00:01 2024 GMT Subject: CN=9F388CE4DEF1174B95E89346FB1ADE9EF6587043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e1:72:71:d9:e6:d0:db:2e:ae:76:19:95:00: a9:9b:72:5e:fb:84:59:02:7f:1c:bf:7f:67:d8:b8: 49:29:03:d2:80:f5:c8:f3:7a:08:b1:bd:54:dd:30: 7c:d0:16:f7:b4:43:03:e8:4c:5c:ce:dc:46:b6:5d: 32:66:d5:d3:da:da:77:05:fd:77:97:45:6b:c0:6a: 1a:d6:2e:e8:c3:95:8d:05:ac:bb:4b:8f:8e:a4:14: 89:5c:58:2e:ba:04:72:b5:cd:53:07:ac:2a:83:b0: 1d:b9:63:1e:c5:08:44:6a:0a:17:02:b3:19:b9:f4: 80:15:1e:bd:99:90:6e:02:2f:47:08:02:3b:11:75: ed:7b:e0:c0:cf:56:a5:86:fe:e2:2f:01:6c:48:e9: d5:9f:e7:c9:1c:bb:8a:15:65:7f:2f:01:cd:97:dd: 21:72:f1:70:3f:3c:27:85:16:7c:66:b9:ac:ce:88: 4a:9b:a1:ae:24:6c:65:6c:65:19:dc:d9:ee:a2:64: 25:e5:fb:e6:0b:af:81:14:59:eb:65:93:6c:45:22: fd:49:50:3e:81:cb:bf:91:0f:3e:91:e8:b5:4c:89: 0e:09:a3:ef:56:ab:70:6d:87:0c:be:c6:eb:f5:20: 55:85:0a:5e:bc:54:8c:99:a1:ba:4c:29:1a:b4:29: be:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:38:8C:E4:DE:F1:17:4B:95:E8:93:46:FB:1A:DE:9E:F6:58:70:43 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232322e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.222.0/23 Signature Algorithm: sha256WithRSAEncryption c0:7a:63:58:6e:4c:ff:d7:04:58:0f:e3:63:1d:ad:9f:23:1c: bf:b2:fd:ba:2d:86:d0:47:84:02:d2:ac:4c:ec:e7:48:39:40: 64:58:0b:28:18:b1:5c:69:3a:28:57:a7:08:b9:20:9b:2c:59: 0e:e1:c0:77:a9:e2:33:17:10:30:e8:d0:e1:c3:b0:0a:55:36: 94:a1:9e:ef:d7:b4:54:1c:bf:e1:6a:1b:0f:2f:b8:ee:89:f7: 69:c2:0e:b0:e9:eb:4f:18:0e:8d:e4:e7:db:b4:c5:27:64:07: b3:0b:5e:c5:1e:04:80:93:fc:20:db:ef:5c:c8:d7:85:4e:ce: bb:84:36:d8:6e:05:72:3d:0f:74:ae:d0:56:29:f5:88:46:a4: 5f:4d:21:09:13:97:f3:4c:29:d0:91:de:2a:19:2d:ad:5b:76: ce:39:e5:09:a8:20:ae:20:70:41:b2:ae:69:13:85:3c:af:d3: 9a:ed:48:7f:fe:65:f7:73:b9:ea:50:97:b2:d2:29:86:bb:db: fa:7d:2f:d4:14:a4:2e:7e:b4:25:f8:e9:bb:07:f6:fe:61:9a: 82:4e:52:ee:ee:6f:dc:6e:c0:d5:f4:e8:47:62:a8:97:30:0b: 02:96:91:36:d7:85:d6:c5:c3:54:fc:38:bc:44:13:e7:bf:fd: 1e:02:9f:63 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOpwswrJJKGHBk9ekP8QBk4cZ2cswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yMzEyMjIwOTU1MDFaFw0yNDEyMjAxMDAwMDFaMDMxMTAvBgNV BAMTKDlGMzg4Q0U0REVGMTE3NEI5NUU4OTM0NkZCMUFERTlFRjY1ODcwNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP4XJx2ebQ2y6udhmVAKmbcl77 hFkCfxy/f2fYuEkpA9KA9cjzegixvVTdMHzQFve0QwPoTFzO3Ea2XTJm1dPa2ncF /XeXRWvAahrWLujDlY0FrLtLj46kFIlcWC66BHK1zVMHrCqDsB25Yx7FCERqChcC sxm59IAVHr2ZkG4CL0cIAjsRde174MDPVqWG/uIvAWxI6dWf58kcu4oVZX8vAc2X 3SFy8XA/PCeFFnxmuazOiEqboa4kbGVsZRnc2e6iZCXl++YLr4EUWetlk2xFIv1J UD6By7+RDz6R6LVMiQ4Jo+9Wq3Bthwy+xuv1IFWFCl68VIyZobpMKRq0Kb5TAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnziM5N7xF0uV6JNG+xrenvZYcEMwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMxMzAzMzJlMzQzOTJlMzIzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDMyMzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcx3jANBgkqhkiG 9w0BAQsFAAOCAQEAwHpjWG5M/9cEWA/jYx2tnyMcv7L9ui2G0EeEAtKsTOznSDlA ZFgLKBixXGk6KFenCLkgmyxZDuHAd6niMxcQMOjQ4cOwClU2lKGe79e0VBy/4Wob Dy+47on3acIOsOnrTxgOjeTn27TFJ2QHswtexR4EgJP8INvvXMjXhU7Ou4Q22G4F cj0PdK7QVin1iEakX00hCROX80wp0JHeKhktrVt2zjnlCaggriBwQbKuaROFPK/T mu1If/5l93O56lCXstIphrvb+n0v1BSkLn60Jfjpuwf2/mGagk5S7u5v3G7A1fTo R2KolzALApaRNteF1sXDVPw4vEQT57/9HgKfYw== -----END CERTIFICATE-----Generated at Sat Apr 27 13:32:23 2024 by rpki-client on console-ams.rpki-client.org