$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa File: 3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa (raw, json) Hash identifier: dyilB+Ds6Q1tK4zMWFAmazCe7b6NTVLSxg97MbTY4fE= Subject key identifier: 19:89:AE:21:3E:A8:9C:0E:13:49:69:52:BD:0A:9F:D3:F3:F8:B5:16 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 67A0744F3859A37557FB3FAE49F6E47479170E98 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa Signing time: Tue 25 Jul 2023 09:00:05 +0000 ROA not before: Tue 25 Jul 2023 08:55:05 +0000 ROA not after: Tue 23 Jul 2024 09:00:05 +0000 asID: 45725 IP address blocks: 103.245.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:a0:74:4f:38:59:a3:75:57:fb:3f:ae:49:f6:e4:74:79:17:0e:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Jul 25 08:55:05 2023 GMT Not After : Jul 23 09:00:05 2024 GMT Subject: CN=1989AE213EA89C0E13496952BD0A9FD3F3F8B516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e2:55:eb:95:c8:b3:9a:4b:8d:a5:4e:13:4d: da:fc:dd:d6:bb:40:ea:64:30:c0:cd:0b:be:b7:09: 41:5d:05:8c:f5:ef:8c:df:ed:9c:5d:a2:d2:0c:be: ab:90:53:43:ed:84:ec:5d:c9:4d:c1:88:e7:ce:6d: e2:fe:a4:a1:e9:07:59:3f:a2:ea:ef:5b:57:8e:09: c0:9c:90:1a:68:9b:18:27:85:bf:08:52:9f:8c:1d: c9:3e:e9:fa:92:29:9d:a2:82:9d:3d:52:5e:a0:8b: db:23:ea:eb:9c:8a:6e:9d:7f:d8:7f:99:28:14:85: 26:b8:61:f1:64:7c:7d:d4:5d:fb:88:f6:0f:ae:71: 0c:4e:73:96:e0:b2:f5:9e:1a:cc:85:35:7e:8f:4d: 7b:73:79:d3:1e:79:a0:b0:21:62:48:2f:44:c6:00: 44:50:33:8b:e9:5c:e9:38:84:fa:3e:6f:bb:b5:f2: 8c:5a:79:57:46:e1:a2:43:a3:50:a2:25:4c:d6:f6: 13:be:5f:24:e4:51:43:db:eb:45:6c:cf:1f:87:69: 31:ce:ad:a6:52:0f:e5:31:7e:ce:0c:5b:60:50:90: e6:41:af:f9:46:f5:ed:9b:f0:7b:33:5e:a9:cd:ba: 6b:b7:14:0f:31:ec:0b:93:1a:8f:bb:62:f1:39:58: 25:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:89:AE:21:3E:A8:9C:0E:13:49:69:52:BD:0A:9F:D3:F3:F8:B5:16 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.136.0/22 Signature Algorithm: sha256WithRSAEncryption 77:c7:aa:89:3e:9b:20:40:f9:93:12:40:6b:39:9b:0c:dd:45: 66:2c:fa:ad:76:6f:7a:8f:18:49:fc:b5:77:17:d0:9e:c3:22: ec:92:e8:b8:5e:19:26:70:8f:fb:5c:d7:b5:67:d8:53:4c:45: cc:bb:51:25:a9:a4:db:6f:af:ae:ee:b6:1a:57:65:8b:03:e8: 78:39:45:97:67:1a:90:3a:45:93:e7:d0:43:d4:05:81:6e:7a: 66:31:fc:6b:32:b2:68:4a:ed:08:02:ca:ec:98:47:f4:54:83: 8f:a4:ec:c6:1b:25:2b:f7:53:de:a2:ac:87:c0:d2:f6:9a:9e: d8:c3:a1:13:97:f6:40:06:73:bc:61:ef:58:46:f7:19:c8:84: 66:04:1f:91:a6:7e:30:8a:41:c9:a2:49:d9:5c:30:66:01:d6: 42:ad:fd:c6:3c:bf:9e:48:25:76:4d:de:70:89:4e:ff:93:59: fc:37:9c:4d:55:46:57:5b:6a:e4:79:35:a3:e0:31:60:a0:79: a9:15:ed:ed:89:bb:a1:71:fa:4e:65:c4:9f:4e:89:38:04:2b: 31:5e:3d:53:1a:5c:95:5c:e6:84:61:db:00:87:0f:68:ac:53: 61:1a:62:a8:97:78:37:c4:8e:53:da:d2:57:24:fc:a7:a1:e6: 05:48:36:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ6B0TzhZo3VX+z+uSfbkdHkXDpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yMzA3MjUwODU1MDVaFw0yNDA3MjMwOTAwMDVaMDMxMTAvBgNV BAMTKDE5ODlBRTIxM0VBODlDMEUxMzQ5Njk1MkJEMEE5RkQzRjNGOEI1MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB4lXrlcizmkuNpU4TTdr83da7 QOpkMMDNC763CUFdBYz174zf7ZxdotIMvquQU0PthOxdyU3BiOfObeL+pKHpB1k/ ourvW1eOCcCckBpomxgnhb8IUp+MHck+6fqSKZ2igp09Ul6gi9sj6uucim6df9h/ mSgUhSa4YfFkfH3UXfuI9g+ucQxOc5bgsvWeGsyFNX6PTXtzedMeeaCwIWJIL0TG AERQM4vpXOk4hPo+b7u18oxaeVdG4aJDo1CiJUzW9hO+XyTkUUPb60Vszx+HaTHO raZSD+Uxfs4MW2BQkOZBr/lG9e2b8HszXqnNumu3FA8x7AuTGo+7YvE5WCUxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGYmuIT6onA4TSWlSvQqf0/P4tRYwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzAzMzJlMzIzNDM1MmUzMTMzMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/WIMA0GCSqG SIb3DQEBCwUAA4IBAQB3x6qJPpsgQPmTEkBrOZsM3UVmLPqtdm96jxhJ/LV3F9Ce wyLskui4XhkmcI/7XNe1Z9hTTEXMu1ElqaTbb6+u7rYaV2WLA+h4OUWXZxqQOkWT 59BD1AWBbnpmMfxrMrJoSu0IAsrsmEf0VIOPpOzGGyUr91PeoqyHwNL2mp7Yw6ET l/ZABnO8Ye9YRvcZyIRmBB+Rpn4wikHJoknZXDBmAdZCrf3GPL+eSCV2Td5wiU7/ k1n8N5xNVUZXW2rkeTWj4DFgoHmpFe3tibuhcfpOZcSfTok4BCsxXj1TGlyVXOaE YdsAhw9orFNhGmKol3g3xI5T2tJXJPynoeYFSDYs -----END CERTIFICATE-----Generated at Sat Jun 1 15:52:56 2024 by rpki-client on console-ams.rpki-client.org