$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137322e302f32342d3234203d3e20313338313331.roa File: 3130332e3136342e3137322e302f32342d3234203d3e20313338313331.roa (raw, json) Hash identifier: fzXBkhYAUHRvqm/IOJ/TPlrf08VB6iOak4Th7M2bxfg= Subject key identifier: 60:B5:77:CE:5E:C6:6D:C9:4A:1F:DA:AC:68:48:AB:98:F4:4C:2A:BB Certificate issuer: /CN=D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C Certificate serial: 32E09881C30109D9729D0C79FC90DE73EEB5DB4B Authority key identifier: D7:85:2A:F0:5D:FB:B9:7A:CD:46:A3:73:99:F2:0D:EA:19:C2:EF:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137322e302f32342d3234203d3e20313338313331.roa Signing time: Sat 12 Aug 2023 13:00:01 +0000 ROA not before: Sat 12 Aug 2023 12:55:01 +0000 ROA not after: Sat 10 Aug 2024 13:00:01 +0000 asID: 138131 IP address blocks: 103.164.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.crl rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:e0:98:81:c3:01:09:d9:72:9d:0c:79:fc:90:de:73:ee:b5:db:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C Validity Not Before: Aug 12 12:55:01 2023 GMT Not After : Aug 10 13:00:01 2024 GMT Subject: CN=60B577CE5EC66DC94A1FDAAC6848AB98F44C2ABB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:32:12:3f:e1:91:70:b3:22:17:9b:5d:52:29: 0f:c7:80:b5:c1:6d:a2:2b:4b:98:8d:7b:04:14:5c: 76:75:9f:c4:57:34:b0:a9:31:11:ef:c4:77:66:93: ce:ef:55:1a:f3:89:68:5c:48:16:1f:3f:dd:71:23: 1e:44:31:6e:a9:c4:4c:18:6c:9f:4f:2c:21:9a:36: 22:40:5e:9c:0d:68:de:3f:45:3b:ed:f2:87:22:00: 61:8a:77:18:1f:93:ee:4a:b4:ce:fb:36:e4:35:0a: 14:6b:dd:f5:1b:ae:bc:56:08:62:37:d0:9a:e6:80: c7:5a:0a:8f:ed:47:53:c0:a7:e1:09:03:82:75:af: b6:54:7e:d9:f6:5c:b2:b4:12:4e:d1:60:9e:4d:d8: 18:d3:70:db:47:14:a3:5f:37:83:7b:90:3e:29:19: fd:80:6b:53:8a:33:a0:de:40:71:cc:35:a5:86:78: e2:e7:0a:76:aa:77:50:07:15:3d:0f:6e:af:90:d4: 11:f9:cc:d7:26:77:ab:bd:5d:16:7c:91:67:78:31: c5:74:80:27:6e:19:76:d8:6e:f5:4b:2f:89:50:14: ac:3f:20:2c:4c:4c:40:16:db:5c:e5:f5:45:12:d1: 27:dd:06:b5:2b:a4:be:85:18:3e:fd:d6:f0:f1:01: f0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B5:77:CE:5E:C6:6D:C9:4A:1F:DA:AC:68:48:AB:98:F4:4C:2A:BB X509v3 Authority Key Identifier: keyid:D7:85:2A:F0:5D:FB:B9:7A:CD:46:A3:73:99:F2:0D:EA:19:C2:EF:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137322e302f32342d3234203d3e20313338313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.172.0/24 Signature Algorithm: sha256WithRSAEncryption 24:6d:cb:9c:9e:1c:2d:67:66:13:db:e2:a1:d8:39:ef:e8:f3: 98:88:b9:66:8e:39:4f:ca:0f:73:a4:90:c3:cc:e9:75:9e:6b: be:06:c0:af:d1:88:9d:15:2d:4d:b9:54:4b:4e:31:d5:e3:b8: c2:c4:7c:45:cb:1f:2a:ac:80:d7:82:bc:aa:a4:38:a0:f6:2f: 01:f8:5d:2d:48:4e:83:a5:73:de:b7:a3:e6:56:c3:b5:75:9b: da:f5:05:5d:6c:d1:63:b9:6f:b4:96:7e:e3:8c:b0:2f:98:4d: 21:ab:14:b3:96:1c:f7:1c:9b:4f:d6:51:10:b8:8f:f2:03:6d: 2e:24:95:d8:19:6d:33:6d:24:49:ca:04:6a:06:9c:61:80:0b: 6c:3a:f1:35:44:8b:c0:7f:00:b0:b5:fb:18:00:9e:f7:a1:fc: 80:e1:fe:6c:c7:ac:9a:10:ed:e1:7c:c0:4b:f8:1d:67:be:fa: a1:5f:1c:b1:be:7e:b2:9b:e6:c0:67:e7:bb:c9:ba:21:2f:28: 75:cf:56:8c:3f:64:68:1e:f6:7f:69:6a:aa:27:8b:0a:e5:9c: c2:6b:80:66:a3:e4:d5:60:9d:4d:e6:7c:ed:19:3b:8e:3e:17: 48:e5:04:91:76:fd:e7:3d:e4:63:cb:b8:0d:8a:b1:dc:d7:7f: fa:a3:c0:b0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMuCYgcMBCdlynQx5/JDec+6120swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc4NTJBRjA1REZCQjk3QUNENDZBMzczOTlGMjBERUEx OUMyRUYyQzAeFw0yMzA4MTIxMjU1MDFaFw0yNDA4MTAxMzAwMDFaMDMxMTAvBgNV BAMTKDYwQjU3N0NFNUVDNjZEQzk0QTFGREFBQzY4NDhBQjk4RjQ0QzJBQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTMhI/4ZFwsyIXm11SKQ/HgLXB baIrS5iNewQUXHZ1n8RXNLCpMRHvxHdmk87vVRrziWhcSBYfP91xIx5EMW6pxEwY bJ9PLCGaNiJAXpwNaN4/RTvt8ociAGGKdxgfk+5KtM77NuQ1ChRr3fUbrrxWCGI3 0JrmgMdaCo/tR1PAp+EJA4J1r7ZUftn2XLK0Ek7RYJ5N2BjTcNtHFKNfN4N7kD4p Gf2Aa1OKM6DeQHHMNaWGeOLnCnaqd1AHFT0Pbq+Q1BH5zNcmd6u9XRZ8kWd4McV0 gCduGXbYbvVLL4lQFKw/ICxMTEAW21zl9UUS0SfdBrUrpL6FGD791vDxAfAlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYLV3zl7GbclKH9qsaEirmPRMKrswHwYDVR0j BBgwFoAU14Uq8F37uXrNRqNzmfIN6hnC7ywwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg5ZjFiNC1lZjYzLTQ1MzktODQ1NS05OGM2NzE5OTVjY2YvMC9ENzg1MkFGMDVE RkJCOTdBQ0Q0NkEzNzM5OUYyMERFQTE5QzJFRjJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDc4NTJBRjA1REZCQjk3QUNENDZBMzczOTlGMjBERUExOUMy RUYyQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODlmMWI0LWVmNjMtNDUzOS04 NDU1LTk4YzY3MTk5NWNjZi8wLzMxMzAzMzJlMzEzNjM0MmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpKwwDQYJ KoZIhvcNAQELBQADggEBACRty5yeHC1nZhPb4qHYOe/o85iIuWaOOU/KD3OkkMPM 6XWea74GwK/RiJ0VLU25VEtOMdXjuMLEfEXLHyqsgNeCvKqkOKD2LwH4XS1IToOl c963o+ZWw7V1m9r1BV1s0WO5b7SWfuOMsC+YTSGrFLOWHPccm0/WURC4j/IDbS4k ldgZbTNtJEnKBGoGnGGAC2w68TVEi8B/ALC1+xgAnveh/IDh/mzHrJoQ7eF8wEv4 HWe++qFfHLG+frKb5sBn57vJuiEvKHXPVow/ZGge9n9paqoniwrlnMJrgGaj5NVg nU3mfO0ZO44+F0jlBJF2/ec95GPLuA2KsdzXf/qjwLA= -----END CERTIFICATE-----Generated at Mon May 6 22:39:56 2024 by rpki-client on console-ams.rpki-client.org