$ rpki-client -vvf repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/3130332e3137392e3133362e302f32332d3234203d3e20313339393737.roa File: 3130332e3137392e3133362e302f32332d3234203d3e20313339393737.roa (raw, json) Hash identifier: 04M4nN+L5TCsryjdd5ngzY+bnpDsCEgeAX0id7ag4a4= Subject key identifier: 66:70:66:D1:B6:5E:81:27:2F:9E:9B:E7:C7:E0:92:03:48:20:DD:F5 Certificate issuer: /CN=5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21 Certificate serial: 2024CE35437E9C2FD1C8B6A250EDFC099C8175E6 Authority key identifier: 5E:02:7C:2A:BE:4A:1F:46:34:0E:D8:3A:3A:D8:F0:6D:BC:CD:CD:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/3130332e3137392e3133362e302f32332d3234203d3e20313339393737.roa Signing time: Wed 22 Nov 2023 08:00:55 +0000 ROA not before: Wed 22 Nov 2023 07:55:55 +0000 ROA not after: Wed 20 Nov 2024 08:00:55 +0000 asID: 139977 IP address blocks: 103.179.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.crl rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:24:ce:35:43:7e:9c:2f:d1:c8:b6:a2:50:ed:fc:09:9c:81:75:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21 Validity Not Before: Nov 22 07:55:55 2023 GMT Not After : Nov 20 08:00:55 2024 GMT Subject: CN=667066D1B65E81272F9E9BE7C7E092034820DDF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a9:a5:6a:9a:c9:23:81:8d:c1:97:7d:d4:e2: 82:9c:e0:a2:79:6f:2f:2b:b0:b2:db:02:67:2a:9a: ea:a8:64:e7:be:aa:05:95:fe:ef:b1:df:e4:33:43: bc:8b:41:24:87:eb:05:45:e5:67:3d:06:6e:3d:98: 1a:a0:72:ad:48:4f:8e:28:64:1a:c2:86:8b:4d:ad: 68:58:fa:fa:e0:43:50:3a:f0:5b:bc:b2:59:4d:7a: d0:34:49:82:f2:bb:8d:28:8d:5f:e4:df:54:c1:61: c7:f5:f3:6a:9a:b3:2d:cf:d2:0e:26:29:49:88:60: 03:71:8a:7f:f4:bc:f4:d0:c2:2d:3e:f7:24:ae:d4: 63:cc:a6:e9:73:b6:1e:fd:78:92:17:9d:84:52:f8: 13:69:64:6c:fc:5b:6b:af:68:f6:bb:96:22:4d:bf: 40:3e:6d:c9:b0:5a:f1:c9:20:76:4e:6b:4a:6a:12: 93:e1:8b:37:00:a4:1b:fd:05:26:6f:b8:f9:54:32: 1c:3f:de:8f:df:33:de:76:f8:79:7e:26:62:dc:05: 0b:11:d9:85:c5:1d:8f:1f:dc:af:92:42:4d:af:a4: 96:b5:0b:08:fa:74:84:bc:b1:18:8b:b9:27:21:10: 09:49:9d:bb:ac:60:fb:b6:fa:69:88:9b:65:28:93: 72:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:70:66:D1:B6:5E:81:27:2F:9E:9B:E7:C7:E0:92:03:48:20:DD:F5 X509v3 Authority Key Identifier: keyid:5E:02:7C:2A:BE:4A:1F:46:34:0E:D8:3A:3A:D8:F0:6D:BC:CD:CD:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/3130332e3137392e3133362e302f32332d3234203d3e20313339393737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.136.0/23 Signature Algorithm: sha256WithRSAEncryption 72:d5:bc:c2:b3:6c:93:7b:ec:11:16:f6:97:37:46:3b:c8:4c: e5:ba:7b:3d:04:0f:4f:06:44:db:26:ac:2d:fa:d4:ca:1f:99: db:d8:c5:c2:43:c6:77:23:3a:28:fc:f4:af:ff:f6:0a:d9:2a: 93:ba:c5:cb:8f:c2:bf:68:63:95:ef:9a:67:a2:bd:3d:db:dc: cb:24:ca:0f:5e:9b:94:a7:57:bf:d1:bd:d3:8a:70:81:02:db: 96:f9:10:a6:5f:51:2d:e0:be:ae:4f:1b:c1:d4:d6:84:38:aa: 1f:ea:8e:8a:1f:9e:46:bd:36:bb:9d:ef:21:b1:ff:87:93:7c: 49:ea:71:a1:6e:66:c8:88:cc:1b:92:f4:e2:50:d9:c1:80:84: 3c:ef:ac:fb:aa:6e:88:0a:e6:b9:d1:02:fd:c1:3c:46:d3:9d: 69:11:5f:ab:43:3b:ce:3d:0e:c0:c3:50:8a:d5:1e:69:77:4a: 1f:40:5b:67:f2:3a:9b:0a:27:78:23:72:81:48:19:be:0f:2c: 97:7d:bf:9c:75:2e:6b:e5:15:d1:1d:db:a8:ea:5d:06:b9:1b: 79:1e:a4:05:1f:6c:9f:a1:0a:1b:0e:26:19:0b:f4:ae:a6:23: a4:0a:33:a1:8e:b3:b2:4d:a3:f2:34:cf:70:a2:a4:aa:f3:6c: ed:7f:06:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUICTONUN+nC/RyLaiUO38CZyBdeYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUUwMjdDMkFCRTRBMUY0NjM0MEVEODNBM0FEOEYwNkRC Q0NEQ0QyMTAeFw0yMzExMjIwNzU1NTVaFw0yNDExMjAwODAwNTVaMDMxMTAvBgNV BAMTKDY2NzA2NkQxQjY1RTgxMjcyRjlFOUJFN0M3RTA5MjAzNDgyMERERjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcqaVqmskjgY3Bl33U4oKc4KJ5 by8rsLLbAmcqmuqoZOe+qgWV/u+x3+QzQ7yLQSSH6wVF5Wc9Bm49mBqgcq1IT44o ZBrChotNrWhY+vrgQ1A68Fu8sllNetA0SYLyu40ojV/k31TBYcf182qasy3P0g4m KUmIYANxin/0vPTQwi0+9ySu1GPMpulzth79eJIXnYRS+BNpZGz8W2uvaPa7liJN v0A+bcmwWvHJIHZOa0pqEpPhizcApBv9BSZvuPlUMhw/3o/fM952+Hl+JmLcBQsR 2YXFHY8f3K+SQk2vpJa1Cwj6dIS8sRiLuSchEAlJnbusYPu2+mmIm2Uok3KzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZnBm0bZegScvnpvnx+CSA0gg3fUwHwYDVR0j BBgwFoAUXgJ8Kr5KH0Y0Dtg6OtjwbbzNzSEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDgwYjMyMS1hYTMxLTQzMTctOWQzMS1jMmJkMTkwYzEzODQvMC81RTAyN0MyQUJF NEExRjQ2MzQwRUQ4M0EzQUQ4RjA2REJDQ0RDRDIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUUwMjdDMkFCRTRBMUY0NjM0MEVEODNBM0FEOEYwNkRCQ0NE Q0QyMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkODBiMzIxLWFhMzEtNDMxNy05 ZDMxLWMyYmQxOTBjMTM4NC8wLzMxMzAzMzJlMzEzNzM5MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM3Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFns4gwDQYJ KoZIhvcNAQELBQADggEBAHLVvMKzbJN77BEW9pc3RjvITOW6ez0ED08GRNsmrC36 1MofmdvYxcJDxncjOij89K//9grZKpO6xcuPwr9oY5XvmmeivT3b3Mskyg9em5Sn V7/RvdOKcIEC25b5EKZfUS3gvq5PG8HU1oQ4qh/qjoofnka9Nrud7yGx/4eTfEnq caFuZsiIzBuS9OJQ2cGAhDzvrPuqbogK5rnRAv3BPEbTnWkRX6tDO849DsDDUIrV Hml3Sh9AW2fyOpsKJ3gjcoFIGb4PLJd9v5x1LmvlFdEd26jqXQa5G3kepAUfbJ+h ChsOJhkL9K6mI6QKM6GOs7JNo/I0z3CipKrzbO1/Bro= -----END CERTIFICATE-----Generated at Sun May 5 16:43:20 2024 by rpki-client on console-ams.rpki-client.org