$ rpki-client -vvf repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/3130332e3139312e3235342e302f32342d3234203d3e20313439393433.roa File: 3130332e3139312e3235342e302f32342d3234203d3e20313439393433.roa (raw, json) Hash identifier: Xml1n/Gq07Fb69HXxkgPLJGGmO+6s4O8nxvGY4PqMMo= Subject key identifier: FB:5E:47:BD:21:78:0E:A6:90:06:C3:55:16:21:E9:1A:10:B9:DC:40 Certificate issuer: /CN=ADE0D4624859A4D642D8C07FD007B4EEE066EFF3 Certificate serial: 430343438C738F56B518E990428E91CCE66BDF70 Authority key identifier: AD:E0:D4:62:48:59:A4:D6:42:D8:C0:7F:D0:07:B4:EE:E0:66:EF:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/3130332e3139312e3235342e302f32342d3234203d3e20313439393433.roa Signing time: Fri 25 Aug 2023 10:00:01 +0000 ROA not before: Fri 25 Aug 2023 09:55:01 +0000 ROA not after: Fri 23 Aug 2024 10:00:01 +0000 asID: 149943 IP address blocks: 103.191.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.crl rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:03:43:43:8c:73:8f:56:b5:18:e9:90:42:8e:91:cc:e6:6b:df:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADE0D4624859A4D642D8C07FD007B4EEE066EFF3 Validity Not Before: Aug 25 09:55:01 2023 GMT Not After : Aug 23 10:00:01 2024 GMT Subject: CN=FB5E47BD21780EA69006C3551621E91A10B9DC40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ba:cc:c9:61:04:3a:ac:24:ea:6f:dd:c9:ed: 58:a8:98:1a:12:66:74:38:9f:86:52:bd:18:8b:cf: de:72:ae:4b:b6:a1:27:72:b6:2e:5c:00:d9:d8:d8: 08:08:c9:6c:35:b9:29:e3:4c:69:c3:34:d3:00:d2: c7:d8:e7:88:82:3f:af:49:73:d0:61:3f:68:81:58: 1d:2b:d0:36:c9:ef:b6:56:90:29:5a:c9:05:3f:13: c3:cb:e1:9c:eb:ee:5b:83:5f:d6:7f:55:62:a1:cc: 48:ff:d0:c3:39:b8:3b:b8:8f:50:75:4e:fc:76:64: e4:06:13:81:07:62:8e:35:9e:e8:44:a1:02:c8:c5: 7f:36:60:83:50:25:b1:7c:56:fa:cd:af:8b:86:74: f6:21:76:1e:e0:63:89:64:a8:f1:1f:6f:eb:03:27: 0e:83:f4:57:09:83:77:ef:c7:44:26:62:64:0e:26: 0c:ba:24:6e:f4:7b:54:8e:6b:8f:54:33:2b:82:99: fd:f9:63:96:14:4b:79:f0:45:72:9c:3f:d0:4a:ad: 96:d6:21:4e:55:10:b0:80:ed:59:95:48:56:e4:53: 62:77:ab:66:fe:77:55:f5:79:43:80:06:b1:d8:eb: 7c:09:c4:b7:f4:a6:44:09:37:f4:41:64:1a:cc:bd: 24:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:5E:47:BD:21:78:0E:A6:90:06:C3:55:16:21:E9:1A:10:B9:DC:40 X509v3 Authority Key Identifier: keyid:AD:E0:D4:62:48:59:A4:D6:42:D8:C0:7F:D0:07:B4:EE:E0:66:EF:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/3130332e3139312e3235342e302f32342d3234203d3e20313439393433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.254.0/24 Signature Algorithm: sha256WithRSAEncryption 73:0e:06:95:51:da:d4:02:c9:47:93:fa:84:98:77:1d:fa:5d: ff:7a:5d:ef:c9:24:11:b7:01:18:0e:6a:ff:f6:3a:6a:75:f4: 66:08:79:27:64:54:21:3c:74:93:be:93:f6:59:89:92:ec:0d: 13:e7:80:5c:3f:50:b1:4d:c9:b6:cb:39:8f:52:f6:4d:a8:c1: 74:f1:bf:51:34:49:30:c7:30:88:6f:a5:28:8b:ae:75:09:f8: 1b:6b:ad:5a:cf:58:f8:cc:ad:79:fe:7c:e9:a2:c6:23:2b:69: 54:aa:f2:ef:c6:9c:6f:a4:d6:0a:25:e5:be:ce:17:1c:a6:2f: 39:1c:36:95:27:58:99:be:9a:99:61:d9:0a:60:58:14:35:bc: e6:f2:4a:db:fa:9b:b9:65:89:b4:be:5b:ad:09:03:8b:54:5d: 02:2f:f1:43:fe:1f:a5:03:9d:86:f0:03:85:62:91:69:77:b0: 19:69:e6:93:cf:f7:60:7a:d3:e3:88:be:6e:86:1f:03:d1:db: 69:56:ab:76:f4:d6:50:00:01:cb:6d:7c:d0:cc:51:ff:d1:d7: f4:f3:a0:ca:08:5f:77:2c:7a:eb:17:f7:06:5d:ae:3f:83:b1: c1:33:e6:61:52:c8:69:56:0d:98:d9:0e:34:23:db:64:46:fd: e3:8d:bb:ce -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQwNDQ4xzj1a1GOmQQo6RzOZr33AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURFMEQ0NjI0ODU5QTRENjQyRDhDMDdGRDAwN0I0RUVF MDY2RUZGMzAeFw0yMzA4MjUwOTU1MDFaFw0yNDA4MjMxMDAwMDFaMDMxMTAvBgNV BAMTKEZCNUU0N0JEMjE3ODBFQTY5MDA2QzM1NTE2MjFFOTFBMTBCOURDNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpuszJYQQ6rCTqb93J7ViomBoS ZnQ4n4ZSvRiLz95yrku2oSdyti5cANnY2AgIyWw1uSnjTGnDNNMA0sfY54iCP69J c9BhP2iBWB0r0DbJ77ZWkClayQU/E8PL4Zzr7luDX9Z/VWKhzEj/0MM5uDu4j1B1 Tvx2ZOQGE4EHYo41nuhEoQLIxX82YINQJbF8VvrNr4uGdPYhdh7gY4lkqPEfb+sD Jw6D9FcJg3fvx0QmYmQOJgy6JG70e1SOa49UMyuCmf35Y5YUS3nwRXKcP9BKrZbW IU5VELCA7VmVSFbkU2J3q2b+d1X1eUOABrHY63wJxLf0pkQJN/RBZBrMvSSdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+15HvSF4DqaQBsNVFiHpGhC53EAwHwYDVR0j BBgwFoAUreDUYkhZpNZC2MB/0Ae07uBm7/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDk4ZjkyNC05ZjJlLTQ5OWItODEwMS0wMmY3NTA2OTMyYmYvMC9BREUwRDQ2MjQ4 NTlBNEQ2NDJEOEMwN0ZEMDA3QjRFRUUwNjZFRkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURFMEQ0NjI0ODU5QTRENjQyRDhDMDdGRDAwN0I0RUVFMDY2 RUZGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOThmOTI0LTlmMmUtNDk5Yi04 MTAxLTAyZjc1MDY5MzJiZi8wLzMxMzAzMzJlMzEzOTMxMmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv/4wDQYJ KoZIhvcNAQELBQADggEBAHMOBpVR2tQCyUeT+oSYdx36Xf96Xe/JJBG3ARgOav/2 Omp19GYIeSdkVCE8dJO+k/ZZiZLsDRPngFw/ULFNybbLOY9S9k2owXTxv1E0STDH MIhvpSiLrnUJ+BtrrVrPWPjMrXn+fOmixiMraVSq8u/GnG+k1gol5b7OFxymLzkc NpUnWJm+mplh2QpgWBQ1vObyStv6m7llibS+W60JA4tUXQIv8UP+H6UDnYbwA4Vi kWl3sBlp5pPP92B60+OIvm6GHwPR22lWq3b01lAAActtfNDMUf/R1/TzoMoIX3cs eusX9wZdrj+DscEz5mFSyGlWDZjZDjQj22RG/eONu84= -----END CERTIFICATE-----Generated at Sun Jun 23 10:11:53 2024 by rpki-client on console-ams.rpki-client.org