$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa File: 3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa (raw, json) Hash identifier: FIvOrH/s/+9mjT6UBvMf+mB2vWMqUmpz3+OCYoPOWqs= Subject key identifier: FB:29:61:E4:80:FA:44:B3:AC:4A:C5:4E:32:D8:2E:54:03:2B:59:24 Certificate issuer: /CN=4A906D4F534B26A0E62898882630292936CEA54A Certificate serial: 21A553E2055BF768C2A48056777BDC28EFF61187 Authority key identifier: 4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa Signing time: Sun 22 Oct 2023 09:06:11 +0000 ROA not before: Sun 22 Oct 2023 09:01:11 +0000 ROA not after: Sun 20 Oct 2024 09:06:11 +0000 asID: 142373 IP address blocks: 103.171.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:a5:53:e2:05:5b:f7:68:c2:a4:80:56:77:7b:dc:28:ef:f6:11:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A906D4F534B26A0E62898882630292936CEA54A Validity Not Before: Oct 22 09:01:11 2023 GMT Not After : Oct 20 09:06:11 2024 GMT Subject: CN=FB2961E480FA44B3AC4AC54E32D82E54032B5924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:56:a4:cc:e6:e8:a7:db:5d:4e:68:71:04:38: de:fb:5e:53:0f:13:7d:bd:18:65:e0:0e:dd:90:6b: 38:c7:51:69:41:6a:25:29:86:26:7f:eb:97:fd:af: f3:af:2b:b9:60:45:3d:47:b7:8d:38:d9:9c:4c:2b: 57:9a:2d:34:33:21:a7:84:ea:80:c6:f0:46:3e:50: 91:f9:c1:b2:09:75:aa:60:18:42:ab:64:2d:0c:af: 7a:cd:7f:56:fe:96:77:11:84:89:54:3b:80:b6:e6: 7f:91:1f:37:b8:12:7c:c8:51:eb:61:8a:08:d0:cb: ef:1a:b3:d4:7d:d0:28:2b:51:d1:09:c1:a3:cc:dc: 5a:f1:b1:c8:c6:d1:69:be:5a:09:c9:0f:e0:d8:a3: 4a:cf:1f:25:76:58:1d:29:d7:af:11:d6:9f:7e:14: c6:21:fc:33:17:4b:b2:0c:54:1c:28:ae:94:e7:7c: c4:68:8b:6f:f5:a1:6a:8f:42:7e:6f:ea:53:ac:a4: 8f:c2:14:5b:12:bb:65:3d:84:c6:34:5e:53:bc:29: 9a:b7:08:6d:a5:ce:d6:b8:1b:45:2b:8c:28:ae:2e: 65:5f:33:cb:e6:b2:f0:e9:06:de:7b:87:24:86:ee: 0a:6c:8e:73:ba:5a:c1:40:38:03:15:b4:88:e2:ee: 14:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:29:61:E4:80:FA:44:B3:AC:4A:C5:4E:32:D8:2E:54:03:2B:59:24 X509v3 Authority Key Identifier: keyid:4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.82.0/24 Signature Algorithm: sha256WithRSAEncryption 36:ea:01:63:54:bd:d0:a3:b2:1a:0a:d4:45:43:27:35:e8:2f: 94:d5:0a:05:16:9c:6f:bf:9a:28:01:31:80:6a:f6:fa:0c:1b: a4:9a:ed:91:e5:1d:01:4e:77:83:48:12:c6:7b:1c:49:0d:b9: 8b:2a:3a:da:76:03:6b:57:05:d0:60:28:91:a9:07:3c:49:8f: aa:16:44:e5:84:b4:16:76:b0:f7:f7:2e:9a:ac:77:22:64:a3: 4b:80:0b:41:d7:3c:30:fb:70:19:97:1a:20:9f:0c:41:d2:48: 61:e2:f2:6e:e3:03:97:81:fb:89:84:f4:ca:ab:49:4a:45:5c: f7:6c:d0:69:21:d3:1d:4a:0b:83:69:83:4f:b7:81:05:a4:01: f8:01:d5:2d:cb:d3:90:2f:39:4b:47:21:4f:a3:d6:3d:94:bb: 00:9b:12:94:1e:7e:33:80:fe:5e:00:d3:f4:a9:cf:2a:c5:a5: 84:50:57:1f:5f:0a:1b:16:04:9e:c4:cb:23:db:e9:48:33:44: 44:6d:95:df:07:c8:e0:08:df:90:13:e1:ee:bb:e8:5a:8e:af: e9:47:fa:a3:eb:85:3a:7c:ea:ac:89:b6:99:8b:de:e5:1c:1e: f0:df:15:6f:f3:ff:fb:1d:36:17:92:47:17:be:85:93:2f:08: 48:34:c5:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIaVT4gVb92jCpIBWd3vcKO/2EYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5Mjkz NkNFQTU0QTAeFw0yMzEwMjIwOTAxMTFaFw0yNDEwMjAwOTA2MTFaMDMxMTAvBgNV BAMTKEZCMjk2MUU0ODBGQTQ0QjNBQzRBQzU0RTMyRDgyRTU0MDMyQjU5MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2VqTM5uin211OaHEEON77XlMP E329GGXgDt2QazjHUWlBaiUphiZ/65f9r/OvK7lgRT1Ht4042ZxMK1eaLTQzIaeE 6oDG8EY+UJH5wbIJdapgGEKrZC0Mr3rNf1b+lncRhIlUO4C25n+RHze4EnzIUeth igjQy+8as9R90CgrUdEJwaPM3FrxscjG0Wm+WgnJD+DYo0rPHyV2WB0p168R1p9+ FMYh/DMXS7IMVBworpTnfMRoi2/1oWqPQn5v6lOspI/CFFsSu2U9hMY0XlO8KZq3 CG2lzta4G0UrjCiuLmVfM8vmsvDpBt57hySG7gpsjnO6WsFAOAMVtIji7hQVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+ylh5ID6RLOsSsVOMtguVAMrWSQwHwYDVR0j BBgwFoAUSpBtT1NLJqDmKJiIJjApKTbOpUowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg5ZTg1OS0zYzJjLTRhMDktYTRhOS0zNzMyM2VhNWRlMjIvMC80QTkwNkQ0RjUz NEIyNkEwRTYyODk4ODgyNjMwMjkyOTM2Q0VBNTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5MjkzNkNF QTU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODllODU5LTNjMmMtNGEwOS1h NGE5LTM3MzIzZWE1ZGUyMi8wLzMxMzAzMzJlMzEzNzMxMmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6tSMA0GCSqG SIb3DQEBCwUAA4IBAQA26gFjVL3Qo7IaCtRFQyc16C+U1QoFFpxvv5ooATGAavb6 DBukmu2R5R0BTneDSBLGexxJDbmLKjradgNrVwXQYCiRqQc8SY+qFkTlhLQWdrD3 9y6arHciZKNLgAtB1zww+3AZlxognwxB0khh4vJu4wOXgfuJhPTKq0lKRVz3bNBp IdMdSguDaYNPt4EFpAH4AdUty9OQLzlLRyFPo9Y9lLsAmxKUHn4zgP5eANP0qc8q xaWEUFcfXwobFgSexMsj2+lIM0REbZXfB8jgCN+QE+Huu+hajq/pR/qj64U6fOqs ibaZi97lHB7w3xVv8//7HTYXkkcXvoWTLwhINMWo -----END CERTIFICATE-----Generated at Sat May 4 03:05:12 2024 by rpki-client on console-ams.rpki-client.org