$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa File: 3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa (raw, json) Hash identifier: T1Zub4ycLWzmwd2MNSPlr57RqJ8e1DyIH6p0ZSGIHWU= Subject key identifier: D1:E2:F0:DB:1E:94:40:00:57:92:0B:93:F0:AD:AB:65:45:91:56:29 Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 66C8BBDBF8AEAD035FD8D76E48231859A02D0CDD Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa Signing time: Wed 06 Sep 2023 05:00:30 +0000 ROA not before: Wed 06 Sep 2023 04:55:30 +0000 ROA not after: Wed 04 Sep 2024 05:00:30 +0000 asID: 59278 IP address blocks: 103.227.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 06:17:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:c8:bb:db:f8:ae:ad:03:5f:d8:d7:6e:48:23:18:59:a0:2d:0c:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Sep 6 04:55:30 2023 GMT Not After : Sep 4 05:00:30 2024 GMT Subject: CN=D1E2F0DB1E94400057920B93F0ADAB6545915629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ea:a5:b4:f7:0c:b0:4e:6d:7d:2e:45:99:7a: 19:d0:bb:d6:75:82:e5:aa:5a:c4:07:c3:b5:72:05: 5e:8d:f2:a0:40:69:74:4c:9f:37:c3:d2:6b:f9:eb: 9d:ed:ea:d6:f6:0a:fe:82:fd:1f:bd:b8:88:2d:c7: 12:e7:6d:39:ca:e4:78:b2:a7:e7:dc:f8:96:b1:e6: 6c:77:5a:76:45:01:46:08:77:31:7f:56:87:eb:fa: fc:80:df:f8:38:6f:b4:89:9f:d4:19:61:16:73:7f: 29:e0:e7:37:ec:fa:64:11:a9:17:de:44:bc:dc:44: f8:b8:4b:09:30:b4:62:6f:50:25:aa:21:f9:d5:82: 36:25:34:bc:d2:6f:e6:e6:b5:ac:07:a2:65:b8:ca: ac:2b:8e:41:c8:ee:fb:fb:2c:39:40:d4:82:17:eb: b8:a0:f2:27:cd:8c:4d:04:3b:d2:99:69:19:4d:d6: ff:73:5d:d7:a7:b2:c9:fd:92:13:05:a7:40:fc:8a: 1f:bf:42:e2:80:c1:47:d3:6e:4c:87:ee:76:fc:4b: f7:9c:9c:0f:de:37:c0:f9:d3:8b:55:a9:e5:05:9d: a6:4a:8a:27:f9:a8:a5:a0:0c:d0:65:43:8d:5f:28: 35:bc:f0:51:29:e1:b8:a3:b9:40:98:5f:b7:92:c5: f3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E2:F0:DB:1E:94:40:00:57:92:0B:93:F0:AD:AB:65:45:91:56:29 X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.240.0/22 Signature Algorithm: sha256WithRSAEncryption 78:00:9d:7e:6d:43:75:ff:ce:c5:39:98:bb:d9:be:9e:f1:2e: 49:3b:bf:89:4e:d2:5c:36:28:e8:14:f4:8f:5a:8c:f5:db:3b: 9b:dd:ba:3e:e7:f7:5f:07:d9:a2:53:ad:32:fd:3b:25:c6:75: bb:38:9d:ce:ab:4e:f9:27:c2:04:94:0b:36:f3:e5:55:07:7d: 1c:96:64:40:68:32:0c:56:10:96:14:2b:de:fb:cd:4a:1e:70: e6:e4:7d:a6:57:17:fb:f5:1d:95:d5:2e:c5:79:a5:31:0a:63: 56:b2:04:7a:a2:96:63:dc:a7:36:67:a3:0d:35:5b:d2:c7:22: 34:9c:4b:c5:af:9d:e6:40:93:bc:bd:c8:b8:81:37:0e:c2:aa: 72:d5:b7:6a:1d:9e:44:1b:6d:31:ae:c4:a6:68:43:4d:48:4b: cf:ea:3c:7b:af:f5:eb:73:b9:29:bb:49:a4:10:5f:f5:ab:7c: 1e:c7:6c:59:09:b9:77:b1:38:1c:41:08:d9:75:41:d0:86:db: 23:b4:7a:89:0e:33:9d:4d:b5:1e:fb:94:73:1c:84:b1:5c:70: d1:f4:97:4f:ec:d3:17:fc:3c:da:7a:d9:13:fd:ac:2e:5f:dd: d4:7a:ea:91:2e:b2:00:cd:23:dd:42:8e:ed:04:d2:2b:0f:06: 54:90:4b:ef -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZsi72/iurQNf2NduSCMYWaAtDN0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yMzA5MDYwNDU1MzBaFw0yNDA5MDQwNTAwMzBaMDMxMTAvBgNV BAMTKEQxRTJGMERCMUU5NDQwMDA1NzkyMEI5M0YwQURBQjY1NDU5MTU2MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa6qW09wywTm19LkWZehnQu9Z1 guWqWsQHw7VyBV6N8qBAaXRMnzfD0mv5653t6tb2Cv6C/R+9uIgtxxLnbTnK5Hiy p+fc+Jax5mx3WnZFAUYIdzF/Vofr+vyA3/g4b7SJn9QZYRZzfyng5zfs+mQRqRfe RLzcRPi4SwkwtGJvUCWqIfnVgjYlNLzSb+bmtawHomW4yqwrjkHI7vv7LDlA1IIX 67ig8ifNjE0EO9KZaRlN1v9zXdenssn9khMFp0D8ih+/QuKAwUfTbkyH7nb8S/ec nA/eN8D504tVqeUFnaZKiif5qKWgDNBlQ41fKDW88FEp4bijuUCYX7eSxfNNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0eLw2x6UQABXkguT8K2rZUWRVikwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMxMzAzMzJlMzIzMjM3MmUzMjM0MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM5MzIzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+PwMA0GCSqG SIb3DQEBCwUAA4IBAQB4AJ1+bUN1/87FOZi72b6e8S5JO7+JTtJcNijoFPSPWoz1 2zub3bo+5/dfB9miU60y/TslxnW7OJ3Oq075J8IElAs28+VVB30clmRAaDIMVhCW FCve+81KHnDm5H2mVxf79R2V1S7FeaUxCmNWsgR6opZj3Kc2Z6MNNVvSxyI0nEvF r53mQJO8vci4gTcOwqpy1bdqHZ5EG20xrsSmaENNSEvP6jx7r/Xrc7kpu0mkEF/1 q3wex2xZCbl3sTgcQQjZdUHQhtsjtHqJDjOdTbUe+5RzHISxXHDR9JdP7NMX/Dza etkT/awuX93UeuqRLrIAzSPdQo7tBNIrDwZUkEvv -----END CERTIFICATE-----Generated at Sun Jun 30 02:20:07 2024 by rpki-client on console-fra.rpki-client.org