$ rpki-client -vvf repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232342e302f32342d3234203d3e20313530393233.roa File: 3130332e39372e3232342e302f32342d3234203d3e20313530393233.roa (raw, json) Hash identifier: bODylvciXp9IIDzUs3E3x/Tj1E/9w4FgS7+pDBsAzQg= Subject key identifier: 5A:03:22:94:EA:30:A2:C0:F6:96:07:2E:72:63:18:53:4D:F3:9F:5E Certificate issuer: /CN=A5BB79678DB1239CD393222080CAAF085BEE737F Certificate serial: 56618F799DF0823FECF2A34C3E651067B97AB0B1 Authority key identifier: A5:BB:79:67:8D:B1:23:9C:D3:93:22:20:80:CA:AF:08:5B:EE:73:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BB79678DB1239CD393222080CAAF085BEE737F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232342e302f32342d3234203d3e20313530393233.roa Signing time: Sun 16 Jul 2023 16:33:15 +0000 ROA not before: Sun 16 Jul 2023 16:28:15 +0000 ROA not after: Sun 14 Jul 2024 16:33:15 +0000 asID: 150923 IP address blocks: 103.97.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/A5BB79678DB1239CD393222080CAAF085BEE737F.crl rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/A5BB79678DB1239CD393222080CAAF085BEE737F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BB79678DB1239CD393222080CAAF085BEE737F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 01:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:61:8f:79:9d:f0:82:3f:ec:f2:a3:4c:3e:65:10:67:b9:7a:b0:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5BB79678DB1239CD393222080CAAF085BEE737F Validity Not Before: Jul 16 16:28:15 2023 GMT Not After : Jul 14 16:33:15 2024 GMT Subject: CN=5A032294EA30A2C0F696072E726318534DF39F5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ef:55:39:2c:0e:8e:cc:6b:73:81:07:4e:c9: d7:0c:bf:ce:dd:bf:13:e1:9a:67:df:96:9a:f9:20: 9c:70:28:5e:2e:50:8d:da:af:05:ca:cb:c1:95:c0: a0:0b:f6:d1:6a:6f:6a:58:a5:51:7f:7a:4f:c9:31: 07:8b:17:61:82:d2:4f:f7:e0:e9:a7:75:2d:c9:1c: 38:d9:8d:45:c7:b1:a8:e9:e0:cd:95:aa:47:8e:78: 70:af:02:80:44:ce:00:8d:6a:98:fb:ec:30:57:63: 29:14:ed:29:44:64:71:31:cd:83:a2:7f:55:42:31: 69:fc:e6:b3:fc:1a:85:22:0d:6a:af:dc:93:95:80: 38:28:40:e2:2b:30:16:71:9e:f2:15:db:1c:b1:20: 9d:03:34:b2:cc:48:99:fc:c1:4a:b3:32:1c:40:de: 76:ca:4f:ee:36:ee:17:41:45:de:68:bf:1f:0a:01: 2c:eb:0e:ef:65:ec:3e:08:96:65:36:fc:65:fd:e2: 40:ad:70:3f:bb:fd:55:dc:82:66:7f:15:7b:67:3f: c2:62:f8:d0:ed:18:f2:93:09:a7:00:c8:8b:57:db: d7:55:6e:b5:89:ca:77:f5:7b:2a:73:cb:cc:c8:5a: 9a:bb:46:b3:e8:67:21:95:93:ad:9d:e2:7b:94:43: 72:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:03:22:94:EA:30:A2:C0:F6:96:07:2E:72:63:18:53:4D:F3:9F:5E X509v3 Authority Key Identifier: keyid:A5:BB:79:67:8D:B1:23:9C:D3:93:22:20:80:CA:AF:08:5B:EE:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/A5BB79678DB1239CD393222080CAAF085BEE737F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BB79678DB1239CD393222080CAAF085BEE737F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232342e302f32342d3234203d3e20313530393233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.224.0/24 Signature Algorithm: sha256WithRSAEncryption 44:c5:d7:eb:13:57:d0:21:5b:68:d6:e8:b1:e4:6d:b1:c0:81: d3:e2:cb:cd:e9:48:ed:a3:4c:0a:95:97:b8:be:48:00:de:a1: d2:5c:c9:92:53:75:b7:a1:b1:42:fc:1b:c0:73:aa:fe:ee:cc: 80:c0:a9:2a:97:43:66:6a:9a:b3:bd:0b:4b:a3:2b:1e:a6:19: 2f:5c:56:96:4d:11:42:8e:46:41:45:ad:0b:77:a5:77:53:51: 6f:22:5d:dc:a3:28:81:a4:86:2f:29:63:2b:d5:3a:6b:f1:9a: 2c:5b:57:f8:ff:5c:4b:91:90:d7:1a:58:f2:e9:fb:56:e5:a4: 73:c3:ce:42:90:f7:8b:74:2d:10:1d:5c:bd:25:1e:20:c1:77: 21:4f:ed:02:45:a4:0b:3e:06:f9:8f:cd:24:a0:bb:94:90:3d: 8d:79:26:81:04:fb:86:98:23:a4:ff:07:7c:dc:13:d6:a1:25: b7:31:18:c3:53:12:81:68:90:06:3f:7d:8e:1b:d4:5d:45:cd: b8:a0:11:65:37:85:8a:f3:6f:03:e1:cc:a0:c5:7c:55:52:2a: 69:2b:b9:9d:a1:db:de:50:73:9b:4c:98:ca:72:a2:23:13:dd: 90:f5:5e:9f:1a:1e:ca:13:1f:63:97:46:19:1a:69:70:ac:9f: 32:3d:bb:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVmGPeZ3wgj/s8qNMPmUQZ7l6sLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVCQjc5Njc4REIxMjM5Q0QzOTMyMjIwODBDQUFGMDg1 QkVFNzM3RjAeFw0yMzA3MTYxNjI4MTVaFw0yNDA3MTQxNjMzMTVaMDMxMTAvBgNV BAMTKDVBMDMyMjk0RUEzMEEyQzBGNjk2MDcyRTcyNjMxODUzNERGMzlGNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx71U5LA6OzGtzgQdOydcMv87d vxPhmmfflpr5IJxwKF4uUI3arwXKy8GVwKAL9tFqb2pYpVF/ek/JMQeLF2GC0k/3 4OmndS3JHDjZjUXHsajp4M2VqkeOeHCvAoBEzgCNapj77DBXYykU7SlEZHExzYOi f1VCMWn85rP8GoUiDWqv3JOVgDgoQOIrMBZxnvIV2xyxIJ0DNLLMSJn8wUqzMhxA 3nbKT+427hdBRd5ovx8KASzrDu9l7D4IlmU2/GX94kCtcD+7/VXcgmZ/FXtnP8Ji +NDtGPKTCacAyItX29dVbrWJynf1eypzy8zIWpq7RrPoZyGVk62d4nuUQ3LHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWgMilOowosD2lgcucmMYU03zn14wHwYDVR0j BBgwFoAUpbt5Z42xI5zTkyIggMqvCFvuc38wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NGFhYTJmMS02M2E5LTQyODEtODk0Mi1mYjVkODI0MTE5YTQvMC9BNUJCNzk2NzhE QjEyMzlDRDM5MzIyMjA4MENBQUYwODVCRUU3MzdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTVCQjc5Njc4REIxMjM5Q0QzOTMyMjIwODBDQUFGMDg1QkVF NzM3Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0YWFhMmYxLTYzYTktNDI4MS04 OTQyLWZiNWQ4MjQxMTlhNC8wLzMxMzAzMzJlMzkzNzJlMzIzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2HgMA0GCSqG SIb3DQEBCwUAA4IBAQBExdfrE1fQIVto1uix5G2xwIHT4svN6Ujto0wKlZe4vkgA 3qHSXMmSU3W3obFC/BvAc6r+7syAwKkql0NmapqzvQtLoysephkvXFaWTRFCjkZB Ra0Ld6V3U1FvIl3coyiBpIYvKWMr1Tpr8ZosW1f4/1xLkZDXGljy6ftW5aRzw85C kPeLdC0QHVy9JR4gwXchT+0CRaQLPgb5j80koLuUkD2NeSaBBPuGmCOk/wd83BPW oSW3MRjDUxKBaJAGP32OG9RdRc24oBFlN4WK828D4cygxXxVUippK7mdodveUHOb TJjKcqIjE92Q9V6fGh7KEx9jl0YZGmlwrJ8yPbvD -----END CERTIFICATE-----Generated at Fri May 31 22:12:28 2024 by rpki-client on console-fra.rpki-client.org