$ rpki-client -vvf repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/3130332e3136392e34342e302f32342d3234203d3e20313432333931.roa File: 3130332e3136392e34342e302f32342d3234203d3e20313432333931.roa (raw, json) Hash identifier: DZzw5+JFMISRdyz0ytimEtoEGi4+KRHZltdYp0l0FtA= Subject key identifier: D3:AC:05:DE:CA:44:D2:7A:F4:32:BB:61:7C:F0:B4:5A:1B:D7:29:DA Certificate issuer: /CN=99F644C407D1C8C133A923CC84619FC228E767AC Certificate serial: 1D63FCB89DCA4494D758F428BA388AFA05665295 Authority key identifier: 99:F6:44:C4:07:D1:C8:C1:33:A9:23:CC:84:61:9F:C2:28:E7:67:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99F644C407D1C8C133A923CC84619FC228E767AC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/3130332e3136392e34342e302f32342d3234203d3e20313432333931.roa Signing time: Tue 21 Nov 2023 14:00:01 +0000 ROA not before: Tue 21 Nov 2023 13:55:01 +0000 ROA not after: Tue 19 Nov 2024 14:00:01 +0000 asID: 142391 IP address blocks: 103.169.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/99F644C407D1C8C133A923CC84619FC228E767AC.crl rsync://repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/99F644C407D1C8C133A923CC84619FC228E767AC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99F644C407D1C8C133A923CC84619FC228E767AC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:63:fc:b8:9d:ca:44:94:d7:58:f4:28:ba:38:8a:fa:05:66:52:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99F644C407D1C8C133A923CC84619FC228E767AC Validity Not Before: Nov 21 13:55:01 2023 GMT Not After : Nov 19 14:00:01 2024 GMT Subject: CN=D3AC05DECA44D27AF432BB617CF0B45A1BD729DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:88:0d:78:79:21:a8:f3:67:b8:50:a7:a1:d1: be:16:ba:8b:41:d0:d9:65:e6:59:a1:97:71:89:a2: de:2b:74:7e:c4:3d:57:f4:60:c9:2e:79:d5:a2:c7: 38:80:5e:27:29:5e:cc:44:64:e4:6f:69:78:d3:f3: fd:82:a2:dd:81:f6:09:2e:e2:9f:db:7b:2c:5d:3a: 7b:8d:d7:e4:0f:86:48:85:3d:11:70:cc:48:ab:76: 48:b8:f6:8d:ec:35:f2:b1:5e:1e:3a:7b:19:97:90: 1b:74:42:32:de:99:d5:3e:e3:68:16:d0:47:85:6a: 03:43:83:e4:1c:b7:43:b4:57:3e:5c:37:9a:17:a4: 59:e6:f3:d7:37:23:aa:7d:dd:0b:de:60:dc:2d:1b: 2a:0f:ef:03:de:f0:af:95:04:64:d1:ce:12:33:06: ea:ae:74:3f:45:e0:12:c2:f2:ff:34:0c:be:ac:12: c8:bd:52:90:09:30:2a:6e:46:d4:30:34:13:70:96: 21:e9:33:80:85:fb:33:89:9b:4a:0d:3f:8f:4a:0c: 72:38:97:d8:9f:81:5e:0c:4a:e4:24:a1:d7:fc:a1: 04:2a:90:93:4e:67:51:b6:0e:8f:72:37:42:8d:b4: 0e:79:e2:84:59:f1:79:79:8d:68:c1:c8:cf:10:c9: dc:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AC:05:DE:CA:44:D2:7A:F4:32:BB:61:7C:F0:B4:5A:1B:D7:29:DA X509v3 Authority Key Identifier: keyid:99:F6:44:C4:07:D1:C8:C1:33:A9:23:CC:84:61:9F:C2:28:E7:67:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/99F644C407D1C8C133A923CC84619FC228E767AC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99F644C407D1C8C133A923CC84619FC228E767AC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/3130332e3136392e34342e302f32342d3234203d3e20313432333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.44.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:94:25:0b:91:ff:a6:f2:eb:84:06:47:2f:8c:a5:97:9c:ac: aa:61:3e:af:e0:51:7f:65:b5:32:53:95:a7:76:1f:ba:ea:5f: 68:e3:14:a1:51:c9:bd:25:e4:9d:4e:8c:76:3d:48:7a:2b:40: 61:2f:9c:c9:75:2c:f9:a9:0d:a5:c5:22:b7:b1:b9:3c:8e:3a: f0:f4:99:c4:b5:be:e7:5b:a8:04:72:90:30:ba:3c:0a:65:14: d5:78:f8:78:f3:b8:03:ab:c6:ce:e4:96:ac:7b:61:29:93:10: cd:ce:92:31:f4:51:1d:c1:37:5d:fc:cb:cd:4b:46:7b:27:4e: 25:18:9b:ee:d9:f9:aa:c2:c1:92:fe:ba:ce:22:ad:04:31:7a: 24:50:49:4f:63:3d:0f:86:33:66:f5:5c:0e:56:9a:be:1d:c8: 57:ed:57:e5:66:48:95:d6:a2:84:ef:1b:2d:4d:34:9f:75:fe: 3f:30:df:a4:a6:fe:b9:ed:4c:43:1d:3d:80:5a:03:7d:ef:fe: ef:fa:8d:a6:45:33:df:0a:07:7f:8e:7a:8a:fc:00:86:c9:c6: 46:9e:de:98:cb:69:17:e5:56:ac:45:4c:c5:92:38:d2:e6:74: 0e:cc:b0:64:36:e9:7e:03:a8:1c:29:c9:5f:0c:8a:10:e3:b7: 14:5b:48:0e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHWP8uJ3KRJTXWPQoujiK+gVmUpUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlGNjQ0QzQwN0QxQzhDMTMzQTkyM0NDODQ2MTlGQzIy OEU3NjdBQzAeFw0yMzExMjExMzU1MDFaFw0yNDExMTkxNDAwMDFaMDMxMTAvBgNV BAMTKEQzQUMwNURFQ0E0NEQyN0FGNDMyQkI2MTdDRjBCNDVBMUJENzI5REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3iA14eSGo82e4UKeh0b4WuotB 0Nll5lmhl3GJot4rdH7EPVf0YMkuedWixziAXicpXsxEZORvaXjT8/2Cot2B9gku 4p/beyxdOnuN1+QPhkiFPRFwzEirdki49o3sNfKxXh46exmXkBt0QjLemdU+42gW 0EeFagNDg+Qct0O0Vz5cN5oXpFnm89c3I6p93QveYNwtGyoP7wPe8K+VBGTRzhIz BuqudD9F4BLC8v80DL6sEsi9UpAJMCpuRtQwNBNwliHpM4CF+zOJm0oNP49KDHI4 l9ifgV4MSuQkodf8oQQqkJNOZ1G2Do9yN0KNtA554oRZ8Xl5jWjByM8QydzBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU06wF3spE0nr0MrthfPC0WhvXKdowHwYDVR0j BBgwFoAUmfZExAfRyMEzqSPMhGGfwijnZ6wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDZiNTI0OC1jZTMzLTRlOTctODgyZi1mNjE0NWYzMTkwMjYvMC85OUY2NDRDNDA3 RDFDOEMxMzNBOTIzQ0M4NDYxOUZDMjI4RTc2N0FDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTlGNjQ0QzQwN0QxQzhDMTMzQTkyM0NDODQ2MTlGQzIyOEU3 NjdBQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0NmI1MjQ4LWNlMzMtNGU5Ny04 ODJmLWY2MTQ1ZjMxOTAyNi8wLzMxMzAzMzJlMzEzNjM5MmUzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6ksMA0GCSqG SIb3DQEBCwUAA4IBAQBclCULkf+m8uuEBkcvjKWXnKyqYT6v4FF/ZbUyU5Wndh+6 6l9o4xShUcm9JeSdTox2PUh6K0BhL5zJdSz5qQ2lxSK3sbk8jjrw9JnEtb7nW6gE cpAwujwKZRTVePh487gDq8bO5Jase2EpkxDNzpIx9FEdwTdd/MvNS0Z7J04lGJvu 2fmqwsGS/rrOIq0EMXokUElPYz0PhjNm9VwOVpq+HchX7VflZkiV1qKE7xstTTSf df4/MN+kpv657UxDHT2AWgN97/7v+o2mRTPfCgd/jnqK/ACGycZGnt6Yy2kX5Vas RUzFkjjS5nQOzLBkNul+A6gcKclfDIoQ47cUW0gO -----END CERTIFICATE-----Generated at Sun Jun 2 00:28:55 2024 by rpki-client on console-ams.rpki-client.org