$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa File: 3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: YsuzfSj4e12tPxCkaVoFtNLPTOMkUgYu8dLMvRo32WQ= Subject key identifier: 03:D1:A3:7F:09:C6:03:3F:1D:B2:A5:AE:7A:B1:A3:D0:76:3A:0A:23 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 446C4249FECAA60823AB88B82E0A763DED614BF6 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa Signing time: Tue 12 Sep 2023 09:25:49 +0000 ROA not before: Tue 12 Sep 2023 09:20:49 +0000 ROA not after: Tue 10 Sep 2024 09:25:49 +0000 asID: 38750 IP address blocks: 103.213.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 07:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:6c:42:49:fe:ca:a6:08:23:ab:88:b8:2e:0a:76:3d:ed:61:4b:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Sep 12 09:20:49 2023 GMT Not After : Sep 10 09:25:49 2024 GMT Subject: CN=03D1A37F09C6033F1DB2A5AE7AB1A3D0763A0A23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:84:c0:aa:f8:3c:bc:a3:06:13:ae:82:e5:b3: db:a7:1f:d6:b7:4f:4b:91:13:67:66:61:7c:b4:39: 4a:4f:03:36:fb:c6:90:52:a5:fa:7b:7d:fb:cf:40: 68:dc:59:12:68:0d:66:ec:a1:20:73:72:4a:9c:2b: 11:4e:77:04:52:ca:e6:de:2f:9d:ca:aa:d3:a8:09: 2d:b5:b3:0a:b7:0f:8c:cb:be:ac:38:a1:95:07:6b: a0:c2:3a:f4:5f:0c:85:80:ba:8a:55:a9:55:9e:8e: 44:c6:ae:8e:ac:6d:0a:ff:4c:05:27:eb:9f:05:2d: e9:ba:64:39:b3:bb:a8:04:a6:95:f5:31:a1:dd:01: 0c:ec:65:44:65:d3:c2:68:2d:f1:88:ed:85:e4:6a: 0f:fb:c3:68:bd:f5:43:e5:e4:9c:32:9c:86:2b:5b: 54:51:8b:06:ef:1e:19:a0:6f:9a:87:d9:d7:de:99: 48:58:87:66:9d:b9:8d:ad:7f:f0:ed:54:70:23:4a: b0:a0:e0:16:0e:0a:a6:cb:46:ef:21:19:4b:c0:69: 99:51:62:a4:fb:b9:c4:15:c9:b5:7b:96:8a:44:c5: 84:f8:f0:7b:2a:ec:27:0f:2d:62:29:4d:fa:ba:f2: 1a:d9:2e:de:57:22:05:74:1f:c5:a9:c0:b5:4f:5f: 82:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D1:A3:7F:09:C6:03:3F:1D:B2:A5:AE:7A:B1:A3:D0:76:3A:0A:23 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.119.0/24 Signature Algorithm: sha256WithRSAEncryption 00:b2:55:8b:27:d0:b1:e6:87:e8:49:ac:41:7c:c5:70:41:2c: 84:32:52:03:09:ac:33:c6:1d:36:dd:20:d2:3e:4d:2d:1f:ed: 00:85:4d:72:00:88:98:ab:77:9b:32:44:e9:1e:83:72:86:6c: 43:56:19:0b:d4:a9:4d:d8:eb:d7:a2:c9:f6:5d:cf:b0:e6:dd: d9:23:9f:54:77:51:8c:e3:67:5c:e8:92:a0:97:0e:b9:fd:fe: 91:63:2f:3a:0a:6a:c5:bd:52:e9:07:94:5f:9f:02:ec:b6:30: 37:45:29:51:43:c7:fb:aa:32:63:54:4b:ae:04:65:83:e2:3b: 07:0b:ea:cd:c2:eb:cb:f4:92:eb:0e:b4:f3:11:55:06:6c:c0: ff:5a:68:20:97:90:e0:17:46:44:b6:3b:52:39:4a:da:36:58: 6b:66:f4:12:e6:04:7d:f5:ad:61:28:9c:32:92:9e:fc:a5:10: e3:32:9f:c1:c6:f0:fb:10:48:cd:fc:15:9a:e3:bf:88:6e:d6: ff:a4:94:d0:2c:87:cd:2a:aa:b2:28:da:9b:f7:bf:cc:10:00: e8:8b:9b:21:14:3f:89:ae:03:80:27:0b:9b:b1:06:e3:79:1d: 69:a0:fd:1a:79:27:10:fb:f2:d4:b9:b9:27:eb:f4:12:34:42: 04:88:f2:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURGxCSf7Kpggjq4i4Lgp2Pe1hS/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yMzA5MTIwOTIwNDlaFw0yNDA5MTAwOTI1NDlaMDMxMTAvBgNV BAMTKDAzRDFBMzdGMDlDNjAzM0YxREIyQTVBRTdBQjFBM0QwNzYzQTBBMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPhMCq+Dy8owYTroLls9unH9a3 T0uRE2dmYXy0OUpPAzb7xpBSpfp7ffvPQGjcWRJoDWbsoSBzckqcKxFOdwRSyube L53KqtOoCS21swq3D4zLvqw4oZUHa6DCOvRfDIWAuopVqVWejkTGro6sbQr/TAUn 658FLem6ZDmzu6gEppX1MaHdAQzsZURl08JoLfGI7YXkag/7w2i99UPl5JwynIYr W1RRiwbvHhmgb5qH2dfemUhYh2aduY2tf/DtVHAjSrCg4BYOCqbLRu8hGUvAaZlR YqT7ucQVybV7lopExYT48Hsq7CcPLWIpTfq68hrZLt5XIgV0H8WpwLVPX4LTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUA9GjfwnGAz8dsqWuerGj0HY6CiMwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMxMzAzMzJlMzIzMTMzMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9V3MA0GCSqG SIb3DQEBCwUAA4IBAQAAslWLJ9Cx5ofoSaxBfMVwQSyEMlIDCawzxh023SDSPk0t H+0AhU1yAIiYq3ebMkTpHoNyhmxDVhkL1KlN2OvXosn2Xc+w5t3ZI59Ud1GM42dc 6JKglw65/f6RYy86CmrFvVLpB5RfnwLstjA3RSlRQ8f7qjJjVEuuBGWD4jsHC+rN wuvL9JLrDrTzEVUGbMD/Wmggl5DgF0ZEtjtSOUraNlhrZvQS5gR99a1hKJwykp78 pRDjMp/BxvD7EEjN/BWa47+Ibtb/pJTQLIfNKqqyKNqb97/MEADoi5shFD+JrgOA JwubsQbjeR1poP0aeScQ+/LUubkn6/QSNEIEiPJg -----END CERTIFICATE-----Generated at Fri May 31 10:00:18 2024 by rpki-client on console-ams.rpki-client.org