$ rpki-client -vvf repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/3130332e35352e3232342e302f32332d3234203d3e20313530343832.roa File: 3130332e35352e3232342e302f32332d3234203d3e20313530343832.roa (raw, json) Hash identifier: AlkWH6hQlwgtMTHpNndT8gbFLeTNQfr2Nd0Pr086PGY= Subject key identifier: 76:A2:46:11:59:14:0C:4A:19:34:C1:41:8B:B4:BF:2C:82:8B:D7:94 Certificate issuer: /CN=F137C794398E5F88909A244EC978EA476CCF76CC Certificate serial: 17D9EAE6A4DDA88DD5F6B431017A0D8DF195248F Authority key identifier: F1:37:C7:94:39:8E:5F:88:90:9A:24:4E:C9:78:EA:47:6C:CF:76:CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F137C794398E5F88909A244EC978EA476CCF76CC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/3130332e35352e3232342e302f32332d3234203d3e20313530343832.roa Signing time: Fri 24 Nov 2023 07:01:09 +0000 ROA not before: Fri 24 Nov 2023 06:56:09 +0000 ROA not after: Fri 22 Nov 2024 07:01:09 +0000 asID: 150482 IP address blocks: 103.55.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/F137C794398E5F88909A244EC978EA476CCF76CC.crl rsync://repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/F137C794398E5F88909A244EC978EA476CCF76CC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F137C794398E5F88909A244EC978EA476CCF76CC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d9:ea:e6:a4:dd:a8:8d:d5:f6:b4:31:01:7a:0d:8d:f1:95:24:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F137C794398E5F88909A244EC978EA476CCF76CC Validity Not Before: Nov 24 06:56:09 2023 GMT Not After : Nov 22 07:01:09 2024 GMT Subject: CN=76A2461159140C4A1934C1418BB4BF2C828BD794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:31:1a:9d:c3:fe:d4:3a:a7:8a:e9:26:fc:1a: 4f:19:97:80:a9:00:f6:68:0e:24:82:c3:0f:02:a0: 62:29:96:06:e0:b4:e7:d7:f8:6c:e6:bb:ff:10:80: 48:78:7c:e6:bc:39:ba:e1:ca:3f:59:10:28:8c:ab: b3:5e:d3:2b:bb:bf:ef:cb:fd:35:f9:41:fa:eb:3c: ac:d1:5c:5e:df:10:cf:27:34:37:4e:cd:9a:d1:52: 69:a9:9f:5e:47:1d:1b:dc:37:e6:90:0b:3e:69:11: d9:fb:3f:18:ee:ad:90:4c:03:06:56:99:db:95:28: e3:dd:4e:c5:78:88:56:22:e3:fe:51:47:9f:a6:61: 9e:73:23:52:dc:ee:f6:04:dd:8d:3b:27:2e:40:a9: b5:1d:62:6d:47:d4:b6:51:1b:55:9e:0f:37:55:37: 45:3c:e0:db:93:5f:e7:67:71:3f:e4:ab:6f:8e:b9: db:dd:77:71:c4:16:47:c9:0d:c7:d0:34:e1:50:0b: 17:1a:3f:7a:ff:22:bd:ef:bd:f7:f6:00:8e:44:d9: e3:5a:91:04:32:09:07:ba:30:fa:db:cc:71:9c:41: 39:fb:aa:99:cf:2e:94:3d:3d:45:d3:eb:4e:da:44: 35:56:67:37:75:7a:09:17:1b:54:8e:c0:09:37:93: c6:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A2:46:11:59:14:0C:4A:19:34:C1:41:8B:B4:BF:2C:82:8B:D7:94 X509v3 Authority Key Identifier: keyid:F1:37:C7:94:39:8E:5F:88:90:9A:24:4E:C9:78:EA:47:6C:CF:76:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/F137C794398E5F88909A244EC978EA476CCF76CC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F137C794398E5F88909A244EC978EA476CCF76CC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/3130332e35352e3232342e302f32332d3234203d3e20313530343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.224.0/23 Signature Algorithm: sha256WithRSAEncryption 21:20:f2:74:94:3c:57:06:78:0c:e5:b5:43:55:1a:7f:85:1c: 82:fd:96:d0:db:40:c8:49:ab:bb:6d:c7:5c:df:c5:84:cb:3f: 25:8a:7c:09:d9:4d:02:95:e8:74:4a:28:cc:e2:26:63:5c:0e: 4e:54:de:cb:93:9b:a5:78:7a:e9:41:a8:b6:60:29:67:e2:01: 42:90:23:ab:4f:46:9a:2d:0c:4e:97:bd:48:4d:a9:dd:9c:e5: e0:ea:32:7c:86:7d:ec:82:d1:ef:c9:ce:92:7d:64:1a:5e:03: ab:bd:25:ed:55:dd:8a:8d:3a:8d:f4:a2:40:66:a9:b5:b5:f5: c5:fb:df:8f:7e:b0:b1:e7:23:ce:0d:df:d0:09:34:54:9a:86: 50:b6:39:14:f3:cb:b8:df:65:66:bc:01:6a:42:8b:f3:44:3d: f3:65:f0:ac:d8:e3:b3:e8:5c:cd:0a:f2:87:dd:ca:d1:17:a0: 95:95:54:ed:fe:b6:f9:44:49:22:60:f8:b7:9a:af:36:47:3b: cf:f7:b4:63:ca:db:e2:c9:3e:2f:60:b4:22:d7:b0:e2:6a:b6: c0:e3:bf:f8:48:8b:ae:25:3e:05:66:db:42:f2:1e:4a:a5:aa: c1:90:ba:ce:33:c8:50:a7:7f:c9:83:7d:85:2a:fc:3f:c5:3b: f8:d4:69:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF9nq5qTdqI3V9rQxAXoNjfGVJI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEzN0M3OTQzOThFNUY4ODkwOUEyNDRFQzk3OEVBNDc2 Q0NGNzZDQzAeFw0yMzExMjQwNjU2MDlaFw0yNDExMjIwNzAxMDlaMDMxMTAvBgNV BAMTKDc2QTI0NjExNTkxNDBDNEExOTM0QzE0MThCQjRCRjJDODI4QkQ3OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVMRqdw/7UOqeK6Sb8Gk8Zl4Cp APZoDiSCww8CoGIplgbgtOfX+Gzmu/8QgEh4fOa8Obrhyj9ZECiMq7Ne0yu7v+/L /TX5QfrrPKzRXF7fEM8nNDdOzZrRUmmpn15HHRvcN+aQCz5pEdn7PxjurZBMAwZW mduVKOPdTsV4iFYi4/5RR5+mYZ5zI1Lc7vYE3Y07Jy5AqbUdYm1H1LZRG1WeDzdV N0U84NuTX+dncT/kq2+Oudvdd3HEFkfJDcfQNOFQCxcaP3r/Ir3vvff2AI5E2eNa kQQyCQe6MPrbzHGcQTn7qpnPLpQ9PUXT607aRDVWZzd1egkXG1SOwAk3k8YPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdqJGEVkUDEoZNMFBi7S/LIKL15QwHwYDVR0j BBgwFoAU8TfHlDmOX4iQmiROyXjqR2zPdswwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2YyYzczMy1kNjdmLTQ4MTMtYjhmNy0wNThkOTVhMDk1ODcvMC9GMTM3Qzc5NDM5 OEU1Rjg4OTA5QTI0NEVDOTc4RUE0NzZDQ0Y3NkNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEzN0M3OTQzOThFNUY4ODkwOUEyNDRFQzk3OEVBNDc2Q0NG NzZDQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZjJjNzMzLWQ2N2YtNDgxMy1i OGY3LTA1OGQ5NWEwOTU4Ny8wLzMxMzAzMzJlMzUzNTJlMzIzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZzfgMA0GCSqG SIb3DQEBCwUAA4IBAQAhIPJ0lDxXBngM5bVDVRp/hRyC/ZbQ20DISau7bcdc38WE yz8linwJ2U0Cleh0SijM4iZjXA5OVN7Lk5uleHrpQai2YCln4gFCkCOrT0aaLQxO l71ITandnOXg6jJ8hn3sgtHvyc6SfWQaXgOrvSXtVd2KjTqN9KJAZqm1tfXF+9+P frCx5yPODd/QCTRUmoZQtjkU88u432VmvAFqQovzRD3zZfCs2OOz6FzNCvKH3crR F6CVlVTt/rb5REkiYPi3mq82RzvP97RjytviyT4vYLQi17DiarbA47/4SIuuJT4F ZttC8h5KparBkLrOM8hQp3/Jg32FKvw/xTv41GnU -----END CERTIFICATE-----Generated at Sat Jun 1 08:14:55 2024 by rpki-client on console-ams.rpki-client.org