$ rpki-client -vvf repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa File: 3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa (raw, json) Hash identifier: SA7DEMsunF1J4Pw1sPuOx7e1WTw7UGCBp/TXEwtvYL0= Subject key identifier: 60:92:06:B0:9C:8F:0D:8E:B6:D6:92:57:ED:BE:89:1E:DF:1E:C0:5E Certificate issuer: /CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Certificate serial: 704F7E5AC2862719324D4F81A6B1A04A3AA04945 Authority key identifier: FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa Signing time: Thu 27 Jul 2023 04:30:50 +0000 ROA not before: Thu 27 Jul 2023 04:25:50 +0000 ROA not after: Thu 25 Jul 2024 04:30:50 +0000 asID: 151519 IP address blocks: 103.239.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 06:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:4f:7e:5a:c2:86:27:19:32:4d:4f:81:a6:b1:a0:4a:3a:a0:49:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Validity Not Before: Jul 27 04:25:50 2023 GMT Not After : Jul 25 04:30:50 2024 GMT Subject: CN=609206B09C8F0D8EB6D69257EDBE891EDF1EC05E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8b:28:22:87:7d:36:6b:8b:e0:8e:de:2e:a9: d3:b0:9f:76:b6:44:96:d4:35:5c:bd:70:bc:24:e1: dc:c8:2a:54:bb:74:c9:82:40:ef:6b:29:e0:7a:6a: 2a:34:b7:94:db:07:70:ac:d8:26:d5:1f:19:33:f5: 3a:62:9b:85:71:38:89:76:7e:eb:38:30:0b:ba:6a: bd:69:34:a0:c0:62:a0:2f:4a:e6:18:25:de:04:dc: da:0a:9c:eb:aa:86:a6:03:ba:04:8a:7d:84:ec:37: 8f:8b:8a:3d:15:14:d9:16:b5:c3:23:cc:45:ce:54: e8:65:c7:7d:5e:f9:9c:f9:89:47:c6:1d:35:d0:eb: 2b:b0:61:2c:68:e6:80:46:35:8e:e8:1b:33:a6:b5: e7:b4:f4:90:df:07:5a:3c:6d:8e:93:9e:70:96:4d: 72:cc:d0:bf:49:a3:7a:d9:50:22:04:01:74:5c:bf: 08:bc:13:e7:fa:fa:83:ba:8f:87:23:3e:9b:7c:00: 3d:7b:f9:69:b6:a2:1d:1a:8b:b4:5e:0a:ca:c9:04: 62:09:66:91:60:9c:1f:19:58:54:f2:f8:2c:84:bd: 2d:50:cc:5d:88:a9:d8:f9:69:16:d3:28:08:a3:3b: 28:a5:0c:a8:41:90:00:9d:9b:b2:99:c7:07:fd:9f: 69:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:92:06:B0:9C:8F:0D:8E:B6:D6:92:57:ED:BE:89:1E:DF:1E:C0:5E X509v3 Authority Key Identifier: keyid:FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.20.0/23 Signature Algorithm: sha256WithRSAEncryption 33:1f:98:0e:29:a1:c6:03:21:e5:4f:e9:2f:f7:e2:30:04:fb: 7b:4b:61:5a:34:07:50:d2:f0:c3:d6:a1:1f:fe:ad:bf:d3:c5: c1:42:1b:65:95:5b:4b:a8:42:9c:ec:d7:4e:63:33:f3:5a:ac: 67:8e:17:3f:53:a9:49:12:0a:f0:90:41:de:af:1b:69:bc:5d: df:34:02:8d:f9:f6:39:77:9c:c3:6f:f1:51:6e:29:40:0f:b1: 6a:d9:45:44:82:0e:2f:05:35:76:3c:96:41:66:5a:4a:7c:ff: b0:ca:11:72:3b:33:a8:a5:cc:6b:fb:95:0a:ab:fc:cc:a4:a5: 41:39:46:ae:9e:65:75:a7:05:c1:84:7f:7c:12:33:ca:9b:ee: 8d:24:a9:ec:66:d7:f2:77:b2:49:7a:f8:8a:a5:12:5a:78:15: 78:9f:99:a8:67:37:f4:3e:ea:8f:c9:9d:1b:fa:08:7b:73:19: b8:c1:50:90:01:2e:4e:f1:c0:54:be:a1:f8:0e:66:a7:d7:bd: 25:00:ea:e8:2b:74:2a:9d:7d:83:9d:32:e5:8a:d2:05:5b:6b: 88:46:18:3a:c1:e3:22:89:f2:63:19:86:49:b3:d2:a3:e4:7e: 10:41:32:83:c4:6b:ee:14:4a:47:c9:70:b3:0f:c7:93:c3:3a: a7:c5:62:e2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcE9+WsKGJxkyTU+BprGgSjqgSUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0 NTQyRTdENzAeFw0yMzA3MjcwNDI1NTBaFw0yNDA3MjUwNDMwNTBaMDMxMTAvBgNV BAMTKDYwOTIwNkIwOUM4RjBEOEVCNkQ2OTI1N0VEQkU4OTFFREYxRUMwNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLiygih302a4vgjt4uqdOwn3a2 RJbUNVy9cLwk4dzIKlS7dMmCQO9rKeB6aio0t5TbB3Cs2CbVHxkz9Tpim4VxOIl2 fus4MAu6ar1pNKDAYqAvSuYYJd4E3NoKnOuqhqYDugSKfYTsN4+Lij0VFNkWtcMj zEXOVOhlx31e+Zz5iUfGHTXQ6yuwYSxo5oBGNY7oGzOmtee09JDfB1o8bY6TnnCW TXLM0L9Jo3rZUCIEAXRcvwi8E+f6+oO6j4cjPpt8AD17+Wm2oh0ai7ReCsrJBGIJ ZpFgnB8ZWFTy+CyEvS1QzF2Iqdj5aRbTKAijOyilDKhBkACdm7KZxwf9n2nHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYJIGsJyPDY621pJX7b6JHt8ewF4wHwYDVR0j BBgwFoAU/lZSrUcCEE2wgsOWsF7l0EVC59cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2FmZDU3YS1lNmRlLTRhNWYtYjVjNi0xMDg2NWQ1YThjOTgvMC9GRTU2NTJBRDQ3 MDIxMDREQjA4MkMzOTZCMDVFRTVEMDQ1NDJFN0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0NTQy RTdENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3YWZkNTdhLWU2ZGUtNGE1Zi1i NWM2LTEwODY1ZDVhOGM5OC8wLzMxMzAzMzJlMzIzMzM5MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+8UMA0GCSqG SIb3DQEBCwUAA4IBAQAzH5gOKaHGAyHlT+kv9+IwBPt7S2FaNAdQ0vDD1qEf/q2/ 08XBQhtllVtLqEKc7NdOYzPzWqxnjhc/U6lJEgrwkEHerxtpvF3fNAKN+fY5d5zD b/FRbilAD7Fq2UVEgg4vBTV2PJZBZlpKfP+wyhFyOzOopcxr+5UKq/zMpKVBOUau nmV1pwXBhH98EjPKm+6NJKnsZtfyd7JJeviKpRJaeBV4n5moZzf0PuqPyZ0b+gh7 cxm4wVCQAS5O8cBUvqH4Dman170lAOroK3QqnX2DnTLlitIFW2uIRhg6weMiifJj GYZJs9Kj5H4QQTKDxGvuFEpHyXCzD8eTwzqnxWLi -----END CERTIFICATE-----Generated at Sat Jun 22 03:12:11 2024 by rpki-client on console-ams.rpki-client.org