$ rpki-client -vvf repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa File: 3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa (raw, json) Hash identifier: Z1139f8SYhxMGCJCgRPQwIEWH4tedHLshgGrgMzsNUY= Subject key identifier: 6C:48:24:57:C0:77:46:CE:B3:85:83:F5:0F:EB:3B:60:79:B7:72:00 Certificate issuer: /CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Certificate serial: 589A8CBB63089364490EF51FEE05633C07BE7FF7 Authority key identifier: 66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa Signing time: Fri 14 Jul 2023 10:00:02 +0000 ROA not before: Fri 14 Jul 2023 09:55:02 +0000 ROA not after: Fri 12 Jul 2024 10:00:02 +0000 asID: 17440 IP address blocks: 103.209.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 01:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:9a:8c:bb:63:08:93:64:49:0e:f5:1f:ee:05:63:3c:07:be:7f:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Validity Not Before: Jul 14 09:55:02 2023 GMT Not After : Jul 12 10:00:02 2024 GMT Subject: CN=6C482457C07746CEB38583F50FEB3B6079B77200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:85:09:e1:21:52:8c:4b:f8:87:f0:01:3c:d0: 2c:0d:4d:c5:73:b0:93:c0:9b:8d:11:48:d3:1d:2a: c2:31:1b:c6:a8:74:3c:8d:3e:98:a4:a9:60:fa:b2: fc:39:83:b5:30:19:51:64:8d:77:f3:2d:86:8e:e5: d5:a8:cd:26:4f:f4:82:2c:62:bd:c1:f9:6d:7c:cb: 2d:b0:15:4b:34:96:fa:25:e6:ae:2d:c3:11:9f:c8: 38:08:67:ea:bd:29:97:a6:d5:db:b6:2e:5d:97:2f: 10:b1:fd:76:de:f4:28:3c:16:24:ba:72:43:d4:76: fb:97:25:09:5c:42:0d:8e:ad:76:55:f6:6c:1e:8f: 3c:b4:29:99:db:6a:f3:38:dd:cf:e5:23:d8:fa:65: b6:15:30:00:c3:49:37:04:21:a0:a2:56:d1:26:f9: 66:57:2e:db:ce:f3:cf:f9:f1:11:6d:d8:76:39:fc: b7:30:71:09:b8:d1:92:a5:75:4e:b4:8a:eb:4a:d0: 9d:81:8b:11:d4:9c:15:6b:bf:4b:07:7f:d8:9b:49: b8:76:f3:c4:95:8e:b4:66:26:0e:6a:55:e0:90:7f: 9c:69:ce:2c:c8:52:15:09:45:02:06:27:ee:f5:d2: da:b7:f2:ec:e2:1c:cf:20:ae:81:e5:c7:c6:07:5d: 50:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:48:24:57:C0:77:46:CE:B3:85:83:F5:0F:EB:3B:60:79:B7:72:00 X509v3 Authority Key Identifier: keyid:66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.251.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:5f:6f:c3:40:a4:9f:ba:36:7f:11:54:a1:9e:83:86:db:c5: f9:72:7b:6b:2f:fd:f4:a9:7e:5e:bd:dc:57:88:68:b1:25:48: 2e:4d:cc:96:c2:19:2e:4b:83:24:8d:d4:28:af:7c:d9:05:d7: 75:ac:8a:f2:e6:77:ae:63:af:74:e2:d3:95:50:3a:c7:b0:f1: c6:42:44:06:b6:58:90:66:00:7f:09:f0:68:16:e5:e5:4a:f9: 7e:d0:af:97:a8:af:05:8d:a1:76:c9:13:98:1a:2d:02:c4:76: aa:62:ef:6b:9c:ad:9c:68:90:85:e4:cd:26:cf:eb:21:30:a1: 7d:24:79:31:40:59:b1:a8:53:11:e7:c0:9e:a8:33:97:b4:d9: 19:0c:cf:6a:26:0e:44:85:88:3a:ea:6d:f4:0b:b5:d3:89:49: 65:01:09:14:3c:c6:90:94:11:67:cc:08:d5:ad:69:77:bf:4c: 12:01:6b:3f:37:d7:c5:74:97:d1:dd:c7:72:16:a5:43:7b:1c: f1:7e:e7:66:c7:04:7e:17:f8:5b:aa:99:a9:11:d2:69:39:60: 61:53:2b:92:c9:c3:91:27:72:fa:15:76:de:e4:90:2e:c2:50: dc:71:8e:70:44:25:db:13:30:49:39:bd:62:47:45:3c:25:7b: 54:04:fb:9b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWJqMu2MIk2RJDvUf7gVjPAe+f/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5 QkU1NzBFNzAeFw0yMzA3MTQwOTU1MDJaFw0yNDA3MTIxMDAwMDJaMDMxMTAvBgNV BAMTKDZDNDgyNDU3QzA3NzQ2Q0VCMzg1ODNGNTBGRUIzQjYwNzlCNzcyMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUhQnhIVKMS/iH8AE80CwNTcVz sJPAm40RSNMdKsIxG8aodDyNPpikqWD6svw5g7UwGVFkjXfzLYaO5dWozSZP9IIs Yr3B+W18yy2wFUs0lvol5q4twxGfyDgIZ+q9KZem1du2Ll2XLxCx/Xbe9Cg8FiS6 ckPUdvuXJQlcQg2OrXZV9mwejzy0KZnbavM43c/lI9j6ZbYVMADDSTcEIaCiVtEm +WZXLtvO88/58RFt2HY5/LcwcQm40ZKldU60iutK0J2BixHUnBVrv0sHf9ibSbh2 88SVjrRmJg5qVeCQf5xpzizIUhUJRQIGJ+710tq38uziHM8groHlx8YHXVC5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbEgkV8B3Rs6zhYP1D+s7YHm3cgAwHwYDVR0j BBgwFoAUZqa2DOAPOdPTwigCTIfSeZvlcOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzA3NGNkOC0yODMwLTRlYWItYmRkNC1hODA3ZWM1MTE1ZGEvMC82NkE2QjYwQ0Uw MEYzOUQzRDNDMjI4MDI0Qzg3RDI3OTlCRTU3MEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5QkU1 NzBFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9H7MA0GCSqG SIb3DQEBCwUAA4IBAQCaX2/DQKSfujZ/EVShnoOG28X5cntrL/30qX5evdxXiGix JUguTcyWwhkuS4MkjdQor3zZBdd1rIry5neuY6904tOVUDrHsPHGQkQGtliQZgB/ CfBoFuXlSvl+0K+XqK8FjaF2yROYGi0CxHaqYu9rnK2caJCF5M0mz+shMKF9JHkx QFmxqFMR58CeqDOXtNkZDM9qJg5EhYg66m30C7XTiUllAQkUPMaQlBFnzAjVrWl3 v0wSAWs/N9fFdJfR3cdyFqVDexzxfudmxwR+F/hbqpmpEdJpOWBhUyuSycORJ3L6 FXbe5JAuwlDccY5wRCXbEzBJOb1iR0U8JXtUBPub -----END CERTIFICATE-----Generated at Sat Jun 1 01:58:00 2024 by rpki-client on console-ams.rpki-client.org