$ rpki-client -vvf repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313530323338.roa File: 3130332e32302e3130382e302f32342d3234203d3e20313530323338.roa (raw, json) Hash identifier: t+QLoeFuvebyWfHRw63Ey++zIXBPvtYgCbpqv4GLcP4= Subject key identifier: 1F:DB:72:A7:1B:86:D5:9E:A4:E8:99:F6:E3:63:15:52:65:BF:9E:20 Certificate issuer: /CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Certificate serial: 488C3F38033651B8D5C61812EDDBF7AB07C0950C Authority key identifier: 7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313530323338.roa Signing time: Mon 20 May 2024 17:00:01 +0000 ROA not before: Mon 20 May 2024 16:55:01 +0000 ROA not after: Mon 19 May 2025 17:00:01 +0000 asID: 150238 IP address blocks: 103.20.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:8c:3f:38:03:36:51:b8:d5:c6:18:12:ed:db:f7:ab:07:c0:95:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Validity Not Before: May 20 16:55:01 2024 GMT Not After : May 19 17:00:01 2025 GMT Subject: CN=1FDB72A71B86D59EA4E899F6E363155265BF9E20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e2:42:5f:b7:e5:e4:fa:12:08:18:e6:79:f4: b3:59:7e:8b:d7:2f:ea:ec:55:45:f9:68:1a:74:34: 66:c8:34:f8:50:72:84:14:f7:0a:94:01:65:26:89: ee:f0:25:1c:cc:8c:a6:4b:85:22:22:cb:b0:7e:81: eb:56:a0:3e:47:97:77:c5:99:9a:36:6e:d5:45:e0: 83:7d:db:02:39:e6:58:92:ad:15:4e:b6:18:23:8d: 29:cd:99:f5:d3:fe:15:8d:ed:c5:6f:83:9d:41:1c: f2:bf:8c:90:04:4c:77:3a:14:e4:b4:b8:bc:84:86: a0:d1:6e:f1:6e:be:bf:12:de:db:b8:c5:08:6b:50: 2b:45:a8:10:8a:c0:ff:80:b2:a3:4a:13:ce:31:6e: a6:78:1a:73:69:f2:94:ce:f3:7b:6f:93:59:27:b1: e5:87:df:84:a2:b9:12:6f:55:91:fa:2d:1a:e6:69: c0:9f:c3:8a:46:d3:3e:30:54:0b:18:ae:ca:9b:1d: 3f:77:93:ab:21:3d:dc:53:a4:80:d5:39:5a:e1:3e: 7d:e0:22:29:a8:19:2c:65:2b:f9:19:c4:e7:9c:d8: ff:31:c9:6e:4a:b4:df:12:22:10:7d:0f:82:d1:e9: 6b:16:4f:72:79:c9:40:46:a1:12:a3:58:02:38:cf: 94:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:DB:72:A7:1B:86:D5:9E:A4:E8:99:F6:E3:63:15:52:65:BF:9E:20 X509v3 Authority Key Identifier: keyid:7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313530323338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.108.0/24 Signature Algorithm: sha256WithRSAEncryption 07:49:db:04:d1:86:f4:e8:75:95:1f:c6:03:96:a9:53:a1:02: 7b:a3:44:1a:67:c0:42:ac:0e:45:04:e0:2c:ae:8c:14:b9:df: e8:da:0d:f4:f8:83:00:3b:18:1b:dc:a1:84:8b:a0:10:07:d2: 47:ac:14:3a:9d:5d:2f:a1:f4:71:79:1b:87:22:0b:40:eb:f9: b7:fb:66:a8:1d:8a:85:c9:2a:c5:cd:80:bc:43:8f:86:3d:8a: 25:05:94:77:ac:9a:35:7f:a0:ac:90:5d:df:21:fd:58:27:1c: e1:ba:d8:64:d5:f8:d8:5e:c0:46:ce:12:de:94:0e:83:77:fd: 42:c5:f2:55:71:84:ec:17:4f:3e:8c:50:ab:17:e1:78:dc:81: fa:2a:b4:68:4d:f3:47:38:54:55:9f:e8:32:fe:ec:5f:1b:d7: ca:27:31:59:f0:87:f6:51:6e:b2:3c:36:74:05:c3:b2:54:a1: 23:6a:6c:76:05:de:6f:41:14:5c:6c:ce:7a:85:bd:81:06:7d: 99:fd:f4:90:31:bf:9e:34:40:8d:fd:0c:ed:65:32:32:22:f5: 5c:6e:0d:1a:ea:a5:e9:be:bc:3c:31:ad:07:75:62:de:17:37: 45:96:17:81:4d:d0:08:8c:91:49:df:5c:2b:9c:77:c5:19:82: d7:16:f8:67 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSIw/OAM2UbjVxhgS7dv3qwfAlQwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1 MDMyMzFCMzAeFw0yNDA1MjAxNjU1MDFaFw0yNTA1MTkxNzAwMDFaMDMxMTAvBgNV BAMTKDFGREI3MkE3MUI4NkQ1OUVBNEU4OTlGNkUzNjMxNTUyNjVCRjlFMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ4kJft+Xk+hIIGOZ59LNZfovX L+rsVUX5aBp0NGbINPhQcoQU9wqUAWUmie7wJRzMjKZLhSIiy7B+getWoD5Hl3fF mZo2btVF4IN92wI55liSrRVOthgjjSnNmfXT/hWN7cVvg51BHPK/jJAETHc6FOS0 uLyEhqDRbvFuvr8S3tu4xQhrUCtFqBCKwP+AsqNKE84xbqZ4GnNp8pTO83tvk1kn seWH34SiuRJvVZH6LRrmacCfw4pG0z4wVAsYrsqbHT93k6shPdxTpIDVOVrhPn3g IimoGSxlK/kZxOec2P8xyW5KtN8SIhB9D4LR6WsWT3J5yUBGoRKjWAI4z5SNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH9typxuG1Z6k6Jn242MVUmW/niAwHwYDVR0j BBgwFoAUeiFvI9iiKPu49WPsFd92/VAyMbMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2M2YmQ3My1mOWJkLTRmNWEtOWM1OS1mYmVhMWJkODM0NzMvMC83QTIxNkYyM0Q4 QTIyOEZCQjhGNTYzRUMxNURGNzZGRDUwMzIzMUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1MDMy MzFCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYzZiZDczLWY5YmQtNGY1YS05 YzU5LWZiZWExYmQ4MzQ3My8wLzMxMzAzMzJlMzIzMDJlMzEzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxRsMA0GCSqG SIb3DQEBCwUAA4IBAQAHSdsE0Yb06HWVH8YDlqlToQJ7o0QaZ8BCrA5FBOAsrowU ud/o2g30+IMAOxgb3KGEi6AQB9JHrBQ6nV0vofRxeRuHIgtA6/m3+2aoHYqFySrF zYC8Q4+GPYolBZR3rJo1f6CskF3fIf1YJxzhuthk1fjYXsBGzhLelA6Dd/1CxfJV cYTsF08+jFCrF+F43IH6KrRoTfNHOFRVn+gy/uxfG9fKJzFZ8If2UW6yPDZ0BcOy VKEjamx2Bd5vQRRcbM56hb2BBn2Z/fSQMb+eNECN/QztZTIyIvVcbg0a6qXpvrw8 Ma0HdWLeFzdFlheBTdAIjJFJ31wrnHfFGYLXFvhn -----END CERTIFICATE-----Generated at Thu May 30 18:44:42 2024 by rpki-client on console-ams.rpki-client.org