$ rpki-client -vvf repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32332d3234203d3e20313338383831.roa File: 3130332e35392e34342e302f32332d3234203d3e20313338383831.roa (raw, json) Hash identifier: Jn9KLaP/iXKotp33KugPV3FQeCL4lXPV9miMOHqJSj4= Subject key identifier: B7:7D:BA:40:E4:97:F9:5F:B8:E1:55:15:53:F5:EA:4C:1D:38:A9:55 Certificate issuer: /CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Certificate serial: 3B87A0960875526EB8A6725E7F7D80D343FD1893 Authority key identifier: 9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32332d3234203d3e20313338383831.roa Signing time: Fri 02 Feb 2024 04:00:01 +0000 ROA not before: Fri 02 Feb 2024 03:55:01 +0000 ROA not after: Fri 31 Jan 2025 04:00:01 +0000 asID: 138881 IP address blocks: 103.59.44.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:87:a0:96:08:75:52:6e:b8:a6:72:5e:7f:7d:80:d3:43:fd:18:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Validity Not Before: Feb 2 03:55:01 2024 GMT Not After : Jan 31 04:00:01 2025 GMT Subject: CN=B77DBA40E497F95FB8E1551553F5EA4C1D38A955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ba:f6:d8:c0:15:d4:b6:af:ed:66:fa:7a:1f: a4:26:39:06:bf:dd:fc:f0:62:fe:3d:f8:4c:fc:86: 0a:e3:c6:a4:48:e0:c4:b9:04:40:f5:d4:a8:41:cb: 13:71:53:c9:02:fc:0f:56:ec:44:d7:27:8b:0b:43: 60:c6:dd:f5:5d:aa:fb:32:f1:de:d4:f2:3a:55:a4: fb:a5:bb:f5:e1:84:33:d5:5e:7f:aa:28:fd:fc:60: a9:d6:ca:c6:23:a3:00:81:d0:c4:45:1b:f3:01:66: 12:e1:ef:8b:4c:3d:c8:de:4d:f1:7c:7d:76:64:44: d3:1f:42:79:78:70:e0:8a:25:64:cc:9d:8f:36:d9: 7e:86:f7:eb:f9:de:87:25:5c:c3:8e:cb:a9:2d:86: 9b:2a:db:a7:a7:e6:8f:e9:20:56:0b:d4:5e:97:b6: 8e:37:ca:86:7f:2c:3b:82:e9:c6:46:80:f0:23:d1: 23:17:87:76:88:b0:43:c8:08:e3:b1:b3:2e:b9:d7: 4b:6f:37:d6:ab:a1:f2:3a:2f:5f:22:cc:fe:e9:b2: a2:1c:b3:cd:87:8d:eb:0e:89:69:0d:58:78:26:b3: 5d:e1:a5:8f:8e:8f:3f:ba:9a:20:79:67:53:f7:ce: bb:d8:81:62:49:33:fb:67:26:3b:08:0f:38:09:44: 24:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:7D:BA:40:E4:97:F9:5F:B8:E1:55:15:53:F5:EA:4C:1D:38:A9:55 X509v3 Authority Key Identifier: keyid:9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32332d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.44.0/23 Signature Algorithm: sha256WithRSAEncryption 03:20:b7:37:a0:31:0d:07:cd:7a:30:ee:2a:92:67:0b:7f:ef: 45:49:f8:97:97:03:51:94:4e:b7:2e:31:3d:e1:f7:ae:b8:7d: 87:e2:bb:d0:e8:f3:55:22:bc:0c:dc:d2:dd:6e:19:8d:68:6b: d0:29:0d:94:1e:7e:9c:d4:bd:9b:d1:2e:d3:34:fb:23:de:24: 19:9c:16:00:c7:4e:c6:9b:36:c3:3f:52:a0:af:bf:6f:a9:2a: 61:6d:92:10:be:e7:ed:cd:32:e4:8f:f6:ab:b9:6e:e2:96:a7: 1e:6f:d1:34:e1:41:3a:a0:72:8d:3d:55:7f:2d:4c:9f:ab:23: 28:c6:fc:2d:e5:6e:48:d8:7b:ef:40:95:fe:f3:b6:8b:28:55: 28:86:a6:e7:24:f4:e0:35:6c:d1:b9:1b:06:c8:19:b3:5c:e7: 3a:74:2b:87:92:82:0d:d4:ac:a0:62:d8:89:9d:4f:07:9b:97: 5a:9c:f3:bc:cc:56:67:4d:07:3a:f9:5d:41:fa:3d:4e:3b:c0: 3e:95:c9:be:c9:c2:6c:2d:b8:f6:bf:5e:93:4c:b9:b9:e3:0c: 4b:66:7e:77:21:03:16:55:93:10:42:22:d9:c7:d7:2b:e0:96: d0:03:39:83:cf:1c:40:e0:47:e8:bd:24:93:79:a2:df:56:5b: 71:e1:6b:34 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUO4eglgh1Um64pnJef32A00P9GJMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgy NzI4QUU5NTAeFw0yNDAyMDIwMzU1MDFaFw0yNTAxMzEwNDAwMDFaMDMxMTAvBgNV BAMTKEI3N0RCQTQwRTQ5N0Y5NUZCOEUxNTUxNTUzRjVFQTRDMUQzOEE5NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcuvbYwBXUtq/tZvp6H6QmOQa/ 3fzwYv49+Ez8hgrjxqRI4MS5BED11KhByxNxU8kC/A9W7ETXJ4sLQ2DG3fVdqvsy 8d7U8jpVpPulu/XhhDPVXn+qKP38YKnWysYjowCB0MRFG/MBZhLh74tMPcjeTfF8 fXZkRNMfQnl4cOCKJWTMnY822X6G9+v53oclXMOOy6kthpsq26en5o/pIFYL1F6X to43yoZ/LDuC6cZGgPAj0SMXh3aIsEPICOOxsy6510tvN9arofI6L18izP7psqIc s82HjesOiWkNWHgms13hpY+Ojz+6miB5Z1P3zrvYgWJJM/tnJjsIDzgJRCR1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUt326QOSX+V+44VUVU/XqTB04qVUwHwYDVR0j BBgwFoAUmlqHYK3mi/00KMwG/m2smCcorpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTc1OThlNC0yMDY0LTRlY2ItOThmNi1iMjU5YTc0OTk2YTEvMC85QTVBODc2MEFE RTY4QkZEMzQyOENDMDZGRTZEQUM5ODI3MjhBRTk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgyNzI4 QUU5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNzU5OGU0LTIwNjQtNGVjYi05 OGY2LWIyNTlhNzQ5OTZhMS8wLzMxMzAzMzJlMzUzOTJlMzQzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc7LDANBgkqhkiG 9w0BAQsFAAOCAQEAAyC3N6AxDQfNejDuKpJnC3/vRUn4l5cDUZROty4xPeH3rrh9 h+K70OjzVSK8DNzS3W4ZjWhr0CkNlB5+nNS9m9Eu0zT7I94kGZwWAMdOxps2wz9S oK+/b6kqYW2SEL7n7c0y5I/2q7lu4panHm/RNOFBOqByjT1Vfy1Mn6sjKMb8LeVu SNh770CV/vO2iyhVKIam5yT04DVs0bkbBsgZs1znOnQrh5KCDdSsoGLYiZ1PB5uX WpzzvMxWZ00HOvldQfo9TjvAPpXJvsnCbC249r9ek0y5ueMMS2Z+dyEDFlWTEEIi 2cfXK+CW0AM5g88cQOBH6L0kk3mi31ZbceFrNA== -----END CERTIFICATE-----Generated at Tue May 7 01:55:34 2024 by rpki-client on console-fra.rpki-client.org