$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e32332e3234302e302f32322d3234203d3e203138313033.roa File: 3130332e32332e3234302e302f32322d3234203d3e203138313033.roa (raw, json) Hash identifier: NMGvN1cEYFAERlTS1zi/4kF0Iznr1ceZy2eZc7uxEC4= Subject key identifier: F1:03:93:0D:99:95:D2:5C:7E:B6:BA:51:84:8F:82:E4:EA:9A:82:E1 Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 384BA5E9EEF8B4F871FA845B2F979B5A5A01FE8C Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e32332e3234302e302f32322d3234203d3e203138313033.roa Signing time: Wed 20 Sep 2023 11:00:00 +0000 ROA not before: Wed 20 Sep 2023 10:55:00 +0000 ROA not after: Wed 18 Sep 2024 11:00:00 +0000 asID: 18103 IP address blocks: 103.23.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 12:13:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:4b:a5:e9:ee:f8:b4:f8:71:fa:84:5b:2f:97:9b:5a:5a:01:fe:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Sep 20 10:55:00 2023 GMT Not After : Sep 18 11:00:00 2024 GMT Subject: CN=F103930D9995D25C7EB6BA51848F82E4EA9A82E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b9:0d:5e:94:6f:fb:3f:75:cc:be:c8:9f:a5: ba:9c:51:73:a6:0f:71:60:4b:6e:da:8b:c3:39:09: 2d:48:16:0b:fc:9d:1a:d9:5d:51:c5:4d:49:9d:00: 53:8a:41:af:76:d0:b7:42:8b:d5:c4:ed:53:44:b5: 19:2e:58:52:3e:1e:27:6e:82:91:0a:08:8b:b4:f9: 65:fa:c6:d3:a2:6f:75:75:3a:be:ba:37:d0:e7:7a: 57:25:6e:24:9d:43:bf:a2:f4:3b:6c:95:d2:5b:38: e6:02:4c:5e:d4:19:70:0d:7e:18:56:ef:2c:fd:3e: b9:ab:49:63:1c:82:18:73:b9:cf:f3:52:f1:30:77: d0:19:db:4f:60:f3:88:0e:6c:6e:d2:17:1a:a0:86: 5e:49:a1:f3:cf:28:0e:d7:79:c7:53:7a:c5:bf:f6: b2:d1:9a:02:bf:e7:d7:1f:a4:fe:0f:a7:bb:84:2a: 7e:e6:df:1b:b2:5c:5c:8e:81:c3:34:b1:b2:46:c9: 5a:04:39:af:ef:9c:8c:45:c5:72:40:9c:94:28:3a: 7b:6e:11:63:bb:80:0e:53:92:6a:18:94:35:32:2c: 50:0d:89:1e:1d:8c:1d:f3:cd:1a:1d:c9:b7:4a:d9: 65:59:01:98:7c:70:c4:22:57:05:d8:a2:18:44:26: 29:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:03:93:0D:99:95:D2:5C:7E:B6:BA:51:84:8F:82:E4:EA:9A:82:E1 X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e32332e3234302e302f32322d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.240.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:6a:56:0e:6a:d3:15:02:47:90:ef:19:1f:cb:b7:3b:f1:0c: 58:a5:7c:cf:fc:7b:ba:97:9e:23:72:e1:d5:a5:38:50:5c:ab: 3c:2f:ac:e3:0b:2c:56:a3:30:7b:b3:a9:08:6c:a5:30:76:7b: 1f:ef:1f:b0:b4:e5:d2:bc:56:28:5f:73:f4:60:39:7c:2a:c7: f3:87:6a:95:84:fe:25:16:a9:de:1b:02:7b:c1:a0:66:9f:7e: 90:8a:27:01:cb:69:77:49:09:fd:78:ec:d2:97:74:54:ea:0e: b9:06:7a:ee:c7:60:6a:e6:94:d3:ef:2d:0d:a1:18:75:8a:88: 7c:51:03:2c:bd:b5:6e:15:27:e4:e2:c6:fd:33:a5:f6:9f:b3: b7:a7:a8:99:1e:c5:d6:4e:de:3e:68:9d:78:d3:40:f1:53:53: ad:2b:63:31:09:c5:4f:19:a7:49:aa:f7:5d:1a:8a:92:aa:48: 96:2e:83:01:2d:aa:4b:dc:52:ad:d9:e7:22:87:20:bd:74:52: 07:de:3e:29:95:df:3d:b8:cf:a5:4c:16:76:47:bc:a8:3b:e5: fc:d5:4b:30:ab:45:b3:f2:cc:85:59:78:9b:88:96:b3:69:bf: 51:24:e8:5b:3a:2e:9e:c1:d5:4c:77:12:2c:8d:08:1a:03:f7: cc:0a:c8:f0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOEul6e74tPhx+oRbL5ebWloB/owwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yMzA5MjAxMDU1MDBaFw0yNDA5MTgxMTAwMDBaMDMxMTAvBgNV BAMTKEYxMDM5MzBEOTk5NUQyNUM3RUI2QkE1MTg0OEY4MkU0RUE5QTgyRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFuQ1elG/7P3XMvsifpbqcUXOm D3FgS27ai8M5CS1IFgv8nRrZXVHFTUmdAFOKQa920LdCi9XE7VNEtRkuWFI+Hidu gpEKCIu0+WX6xtOib3V1Or66N9DnelclbiSdQ7+i9DtsldJbOOYCTF7UGXANfhhW 7yz9PrmrSWMcghhzuc/zUvEwd9AZ209g84gObG7SFxqghl5JofPPKA7XecdTesW/ 9rLRmgK/59cfpP4Pp7uEKn7m3xuyXFyOgcM0sbJGyVoEOa/vnIxFxXJAnJQoOntu EWO7gA5TkmoYlDUyLFANiR4djB3zzRodybdK2WVZAZh8cMQiVwXYohhEJik7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8QOTDZmV0lx+trpRhI+C5OqaguEwHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzMxMzAzMzJlMzIzMzJlMzIzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzODMxMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcX8DANBgkqhkiG 9w0BAQsFAAOCAQEAWmpWDmrTFQJHkO8ZH8u3O/EMWKV8z/x7upeeI3Lh1aU4UFyr PC+s4wssVqMwe7OpCGylMHZ7H+8fsLTl0rxWKF9z9GA5fCrH84dqlYT+JRap3hsC e8GgZp9+kIonActpd0kJ/Xjs0pd0VOoOuQZ67sdgauaU0+8tDaEYdYqIfFEDLL21 bhUn5OLG/TOl9p+zt6eomR7F1k7ePmideNNA8VNTrStjMQnFTxmnSar3XRqKkqpI li6DAS2qS9xSrdnnIocgvXRSB94+KZXfPbjPpUwWdke8qDvl/NVLMKtFs/LMhVl4 m4iWs2m/USToWzounsHVTHcSLI0IGgP3zArI8A== -----END CERTIFICATE-----Generated at Fri Jun 21 09:35:51 2024 by rpki-client on console-fra.rpki-client.org