$ rpki-client -vvf repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32342d3234203d3e20313338383831.roa File: 3130332e35392e34342e302f32342d3234203d3e20313338383831.roa (raw, json) Hash identifier: EGPVlPIcLKjEU8YJqtGrfCoS8d9O6Z6ovsBRAOjskXw= Subject key identifier: 3E:53:FA:99:4A:41:DD:96:7A:E7:08:E6:6A:36:4A:D8:B6:7C:D2:17 Certificate issuer: /CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Certificate serial: 174857DC35243D7A29DFD769FBF30F3D3CD70F58 Authority key identifier: 9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32342d3234203d3e20313338383831.roa Signing time: Tue 28 Nov 2023 10:00:01 +0000 ROA not before: Tue 28 Nov 2023 09:55:01 +0000 ROA not after: Tue 26 Nov 2024 10:00:01 +0000 asID: 138881 IP address blocks: 103.59.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:48:57:dc:35:24:3d:7a:29:df:d7:69:fb:f3:0f:3d:3c:d7:0f:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Validity Not Before: Nov 28 09:55:01 2023 GMT Not After : Nov 26 10:00:01 2024 GMT Subject: CN=3E53FA994A41DD967AE708E66A364AD8B67CD217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:20:22:57:6e:cb:c7:f5:e1:ac:bb:aa:7c:db: a6:85:53:6a:c6:7d:20:43:14:3d:f1:1e:56:55:c4: de:19:b5:27:7c:ae:6d:f5:1e:44:bf:e1:97:09:fc: 0d:c6:4f:8a:0b:d2:88:1a:2f:28:52:83:0a:24:cf: 22:ed:6b:1e:da:8b:9c:df:2e:4d:ec:90:6f:c3:b9: 0c:ab:d1:18:73:9b:e4:b2:01:6f:ae:37:f3:ef:11: e3:8d:87:8f:bc:e5:ba:11:88:ee:78:bf:6e:95:f2: 46:ac:42:11:3c:41:87:48:29:d8:26:bf:92:5a:ab: fd:f3:f8:47:0a:0d:98:a0:ef:a8:b5:26:d0:99:bd: 5c:03:c1:23:96:6d:79:52:63:36:51:be:66:10:40: 37:a3:f9:8a:87:ad:17:83:bd:1e:4c:f1:0d:10:39: 76:36:07:46:d9:f5:d0:39:b4:a9:cd:75:2e:34:9d: a0:2a:af:3c:f0:eb:06:a3:2a:88:60:95:45:d6:4e: bb:7e:4e:ed:6a:4c:dd:76:10:db:0e:08:bd:32:61: 9d:6a:00:18:b1:24:35:3a:14:11:3f:b4:0a:4a:70: 36:c0:f9:b6:11:f8:d8:d5:ec:74:db:b6:ad:e0:63: cc:20:4c:7d:0b:e8:4e:7e:bf:17:c0:01:0c:8d:47: 03:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:53:FA:99:4A:41:DD:96:7A:E7:08:E6:6A:36:4A:D8:B6:7C:D2:17 X509v3 Authority Key Identifier: keyid:9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32342d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.44.0/24 Signature Algorithm: sha256WithRSAEncryption 87:c6:57:2a:b6:8a:c9:0d:51:0e:78:3f:c7:2d:ae:54:96:47: 76:90:da:38:eb:09:ae:ee:16:85:89:5d:5d:06:62:bb:55:bc: 84:8a:13:60:66:c2:1f:b3:9d:ff:5b:e7:c2:0f:d6:6e:d5:ce: 15:a1:5d:36:c0:18:01:9f:5f:a6:81:d0:97:fc:4f:98:ea:ec: 35:72:95:f4:fc:05:19:30:7a:de:b9:89:d5:ed:13:48:5a:3a: d0:ff:65:28:b5:3a:b9:f6:ca:c2:d7:57:87:d7:59:e6:a3:ba: 32:bb:16:ef:9e:51:c5:42:66:81:31:2c:55:34:b6:bb:25:1f: 6a:77:78:bd:3f:19:53:6a:80:15:37:69:79:be:f0:35:34:9a: 46:62:d9:e1:c7:a3:00:e4:81:d6:11:93:2f:fc:6c:ac:f3:5c: 66:29:f2:38:07:d2:8c:7c:b9:b9:10:dc:98:f5:2b:d4:9c:7a: 62:1d:df:1a:38:bb:a9:af:5a:60:06:c8:4e:5d:6c:2b:f8:a1: 11:35:62:c9:51:cd:6f:57:ab:85:d8:7d:2e:af:fd:59:47:26: 72:1b:d0:3e:3b:d0:d1:f1:50:6b:9d:de:10:97:bf:f9:e0:b3: 96:5f:04:fd:3d:dd:87:58:11:e5:16:1c:cd:48:b4:a8:fb:e4: 15:c8:25:02 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF0hX3DUkPXop39dp+/MPPTzXD1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgy NzI4QUU5NTAeFw0yMzExMjgwOTU1MDFaFw0yNDExMjYxMDAwMDFaMDMxMTAvBgNV BAMTKDNFNTNGQTk5NEE0MUREOTY3QUU3MDhFNjZBMzY0QUQ4QjY3Q0QyMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcICJXbsvH9eGsu6p826aFU2rG fSBDFD3xHlZVxN4ZtSd8rm31HkS/4ZcJ/A3GT4oL0ogaLyhSgwokzyLtax7ai5zf Lk3skG/DuQyr0Rhzm+SyAW+uN/PvEeONh4+85boRiO54v26V8kasQhE8QYdIKdgm v5Jaq/3z+EcKDZig76i1JtCZvVwDwSOWbXlSYzZRvmYQQDej+YqHrReDvR5M8Q0Q OXY2B0bZ9dA5tKnNdS40naAqrzzw6wajKohglUXWTrt+Tu1qTN12ENsOCL0yYZ1q ABixJDU6FBE/tApKcDbA+bYR+NjV7HTbtq3gY8wgTH0L6E5+vxfAAQyNRwPPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPlP6mUpB3ZZ65wjmajZK2LZ80hcwHwYDVR0j BBgwFoAUmlqHYK3mi/00KMwG/m2smCcorpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTc1OThlNC0yMDY0LTRlY2ItOThmNi1iMjU5YTc0OTk2YTEvMC85QTVBODc2MEFE RTY4QkZEMzQyOENDMDZGRTZEQUM5ODI3MjhBRTk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgyNzI4 QUU5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNzU5OGU0LTIwNjQtNGVjYi05 OGY2LWIyNTlhNzQ5OTZhMS8wLzMxMzAzMzJlMzUzOTJlMzQzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc7LDANBgkqhkiG 9w0BAQsFAAOCAQEAh8ZXKraKyQ1RDng/xy2uVJZHdpDaOOsJru4WhYldXQZiu1W8 hIoTYGbCH7Od/1vnwg/WbtXOFaFdNsAYAZ9fpoHQl/xPmOrsNXKV9PwFGTB63rmJ 1e0TSFo60P9lKLU6ufbKwtdXh9dZ5qO6MrsW755RxUJmgTEsVTS2uyUfand4vT8Z U2qAFTdpeb7wNTSaRmLZ4cejAOSB1hGTL/xsrPNcZinyOAfSjHy5uRDcmPUr1Jx6 Yh3fGji7qa9aYAbITl1sK/ihETViyVHNb1erhdh9Lq/9WUcmchvQPjvQ0fFQa53e EJe/+eCzll8E/T3dh1gR5RYczUi0qPvkFcglAg== -----END CERTIFICATE-----Generated at Tue May 7 01:55:34 2024 by rpki-client on console-fra.rpki-client.org