$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133382e302f32342d3234203d3e20313338383138.roa File: 3130332e3130332e3133382e302f32342d3234203d3e20313338383138.roa (raw, json) Hash identifier: EkpFYEJAAEKGZlR+oouk9ZXPIqeK9i8LkvFyRsMUzkw= Subject key identifier: 8C:01:24:D1:09:30:C5:66:40:7F:67:D0:51:D0:17:D5:24:D8:C6:3A Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 568B58C299897FB99D289B41B8D26B605D29ABA9 Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133382e302f32342d3234203d3e20313338383138.roa Signing time: Fri 14 Jul 2023 05:07:30 +0000 ROA not before: Fri 14 Jul 2023 05:02:30 +0000 ROA not after: Fri 12 Jul 2024 05:07:30 +0000 asID: 138818 IP address blocks: 103.103.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:8b:58:c2:99:89:7f:b9:9d:28:9b:41:b8:d2:6b:60:5d:29:ab:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: Jul 14 05:02:30 2023 GMT Not After : Jul 12 05:07:30 2024 GMT Subject: CN=8C0124D10930C566407F67D051D017D524D8C63A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b0:4a:8b:2a:75:97:f9:f4:5b:81:e3:ef:74: c3:6c:8b:27:f3:bb:cb:0b:6b:eb:ec:d1:d6:0d:07: 45:fc:d1:37:42:c3:cc:72:a9:9d:ea:24:0d:a0:4f: 67:42:95:f9:d3:43:84:6f:7e:85:ad:05:f2:eb:e4: 50:a6:86:36:c8:5d:b0:25:b6:84:54:a0:3b:09:0f: 89:31:85:80:6b:f7:33:57:3f:9a:ba:51:01:f4:1e: 19:85:b0:61:1c:90:05:2a:72:8b:e3:d1:1f:93:e2: 1f:df:95:4a:88:a6:2c:a0:d1:70:9c:d1:f4:c2:a4: b5:64:64:70:07:f3:61:92:e3:a5:58:2c:80:57:f2: 36:2f:aa:37:4a:2a:63:bd:37:5b:1e:2d:f1:01:c7: 26:63:11:e2:3b:a5:7d:ac:c5:fb:e8:db:ed:26:df: 87:a8:6e:d7:33:82:f0:93:13:3c:b7:2d:fe:43:61: b6:28:98:9c:84:a8:0e:f3:f5:d9:23:6c:30:da:be: b5:5d:75:a0:b5:d6:3e:28:fe:71:d0:99:56:c9:c6: a1:b6:ed:ab:f9:c2:4e:63:26:3e:6f:67:cb:6b:d2: ac:f9:73:39:23:ac:4c:24:e9:eb:d9:90:cf:c8:a4: be:75:c8:6d:4f:6b:0a:82:6d:c2:ef:61:2a:8c:c3: 0c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:01:24:D1:09:30:C5:66:40:7F:67:D0:51:D0:17:D5:24:D8:C6:3A X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133382e302f32342d3234203d3e20313338383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.138.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:e8:33:bb:b1:93:01:42:44:89:4e:80:31:e1:c3:d1:8f:e2: 96:f3:e0:d3:2b:7e:f5:80:f6:42:9e:6b:04:ec:42:fe:9e:68: 2b:34:0f:9d:54:47:5b:a2:f4:a5:ff:85:11:00:44:bf:18:8c: dc:09:1f:0c:61:ec:7d:1e:d0:e9:a7:16:c3:dc:40:14:5a:48: 09:81:b6:90:95:9a:ef:50:e9:ff:d5:da:7b:fe:45:ce:ef:86: 79:6f:b8:54:33:03:93:23:b4:79:ad:8c:13:fe:b1:55:5a:47: d4:95:3b:78:5b:7b:42:96:58:d4:2c:ca:b1:a4:5d:1a:5b:c4: f4:1c:aa:dc:c6:49:1f:3c:bf:59:72:bd:93:3c:1e:9b:e0:db: 76:fc:8c:47:88:9c:64:9e:e5:3e:34:4c:70:f5:ef:79:f9:37: 30:f1:d2:cc:9b:ca:8c:a5:7e:b1:aa:9e:36:63:6f:62:e5:3f: 1b:62:a9:f2:7b:b3:25:bc:30:8a:17:3e:4e:c5:7f:4a:72:48: 66:98:6b:e7:d3:92:3c:7e:d7:99:e7:af:7e:a9:1c:47:04:e2: 7d:f0:1e:a8:02:ce:71:96:9c:5a:f4:9f:1c:1e:8d:a6:5e:7b: a0:51:7d:44:24:46:6d:49:47:30:09:51:a6:23:8c:57:71:a3: 0b:45:50:d4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVotYwpmJf7mdKJtBuNJrYF0pq6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yMzA3MTQwNTAyMzBaFw0yNDA3MTIwNTA3MzBaMDMxMTAvBgNV BAMTKDhDMDEyNEQxMDkzMEM1NjY0MDdGNjdEMDUxRDAxN0Q1MjREOEM2M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4sEqLKnWX+fRbgePvdMNsiyfz u8sLa+vs0dYNB0X80TdCw8xyqZ3qJA2gT2dClfnTQ4RvfoWtBfLr5FCmhjbIXbAl toRUoDsJD4kxhYBr9zNXP5q6UQH0HhmFsGEckAUqcovj0R+T4h/flUqIpiyg0XCc 0fTCpLVkZHAH82GS46VYLIBX8jYvqjdKKmO9N1seLfEBxyZjEeI7pX2sxfvo2+0m 34eobtczgvCTEzy3Lf5DYbYomJyEqA7z9dkjbDDavrVddaC11j4o/nHQmVbJxqG2 7av5wk5jJj5vZ8tr0qz5czkjrEwk6evZkM/IpL51yG1PawqCbcLvYSqMwwxvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjAEk0QkwxWZAf2fQUdAX1STYxjowHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzMxMzAzMzJlMzEzMDMzMmUzMTMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODMxMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZ4owDQYJ KoZIhvcNAQELBQADggEBAE7oM7uxkwFCRIlOgDHhw9GP4pbz4NMrfvWA9kKeawTs Qv6eaCs0D51UR1ui9KX/hREARL8YjNwJHwxh7H0e0OmnFsPcQBRaSAmBtpCVmu9Q 6f/V2nv+Rc7vhnlvuFQzA5MjtHmtjBP+sVVaR9SVO3hbe0KWWNQsyrGkXRpbxPQc qtzGSR88v1lyvZM8Hpvg23b8jEeInGSe5T40THD173n5NzDx0sybyoylfrGqnjZj b2LlPxtiqfJ7syW8MIoXPk7Ff0pySGaYa+fTkjx+15nnr36pHEcE4n3wHqgCznGW nFr0nxwejaZee6BRfUQkRm1JRzAJUaYjjFdxowtFUNQ= -----END CERTIFICATE-----Generated at Sat May 4 03:05:12 2024 by rpki-client on console-ams.rpki-client.org