$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37312e302f32342d3234203d3e20313338383834.roa File: 3130332e3133382e37312e302f32342d3234203d3e20313338383834.roa (raw, json) Hash identifier: nhb/GkfGlkdpbtSswi5Z3PDF3aAa1rRM8qCaNe9Yz/A= Subject key identifier: B3:17:2E:5D:B5:22:24:80:10:E9:65:8A:FD:37:CF:E1:B6:53:3C:D9 Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 750BABC6A5144A75958C45B5970E0C68EC50FAEA Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37312e302f32342d3234203d3e20313338383834.roa Signing time: Fri 08 Sep 2023 04:01:19 +0000 ROA not before: Fri 08 Sep 2023 03:56:19 +0000 ROA not after: Fri 06 Sep 2024 04:01:19 +0000 asID: 138884 IP address blocks: 103.138.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:0b:ab:c6:a5:14:4a:75:95:8c:45:b5:97:0e:0c:68:ec:50:fa:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Sep 8 03:56:19 2023 GMT Not After : Sep 6 04:01:19 2024 GMT Subject: CN=B3172E5DB522248010E9658AFD37CFE1B6533CD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d4:49:a1:6b:df:a4:c8:7d:0c:0c:6a:46:5e: 51:29:59:48:74:13:a3:06:4e:d0:eb:ae:e7:8f:e0: 36:52:8d:5d:82:17:8b:61:95:cd:bc:30:0d:ad:97: 94:e2:25:9b:0b:dc:1d:6d:de:34:e5:f7:4a:e6:48: 10:52:46:a9:4b:14:08:2d:19:01:bf:51:4a:f4:bf: cd:d3:6f:76:79:91:2e:a2:63:d8:de:25:a9:f5:85: 25:87:65:88:f8:b9:99:e1:fb:dd:1a:9b:0f:b2:44: 6b:2d:11:ab:2c:34:87:8d:99:9f:a4:13:3e:8e:05: 52:20:30:3e:be:75:7c:32:36:d8:8d:7e:c0:66:9d: f6:f2:fb:31:22:65:d3:7e:1f:60:6e:34:bd:fc:7c: a8:f3:03:48:ac:a8:69:9e:a8:bc:5b:84:c0:b1:d9: c7:73:7e:39:9e:04:26:3e:fa:37:e6:ef:df:92:a7: ca:73:99:c5:33:24:53:08:c1:25:02:bd:cb:34:51: 44:e2:71:bd:c8:a8:f8:b9:9b:36:b3:80:c2:29:1a: a7:94:2d:a9:01:54:4d:80:08:58:d6:ce:74:36:87: d1:ad:bd:1a:58:b8:90:2a:4b:a1:c7:04:e4:f5:25: 00:f4:a6:94:1c:63:16:c8:7c:fa:89:94:02:84:52: 36:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:17:2E:5D:B5:22:24:80:10:E9:65:8A:FD:37:CF:E1:B6:53:3C:D9 X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37312e302f32342d3234203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.71.0/24 Signature Algorithm: sha256WithRSAEncryption d7:cd:95:b1:ce:cb:8e:9c:b5:f9:3b:1a:3e:bb:71:99:6c:35: 8f:01:01:7f:9e:51:1a:66:e9:97:ab:75:6b:71:16:14:02:9b: ed:da:34:3c:81:df:8b:f6:20:d2:5f:44:dc:e3:b4:14:00:64: d7:6a:f6:df:87:09:6b:2f:aa:2c:45:53:fc:9b:13:c3:e4:94: 05:a2:dd:4c:72:c6:df:dd:01:b5:e4:85:ea:5e:da:eb:76:dd: 33:9f:f3:5c:e5:84:64:21:40:80:c0:4d:13:0c:01:53:7f:a2: 9d:16:56:a2:61:64:b0:58:19:64:84:8b:b7:de:7f:0d:d0:85: 67:b4:e5:ac:4f:34:ef:0f:7f:47:65:c6:bc:55:7e:77:f8:af: be:bb:65:3f:02:09:74:13:5f:fd:0b:66:69:89:74:83:61:e4: 14:a0:37:b2:f3:25:e3:aa:42:b4:fb:ce:d0:51:f7:9d:64:9a: c2:94:24:17:34:39:8b:7f:0f:8e:8a:64:4b:bb:57:7e:c9:73: 03:1c:bb:3f:e3:fb:31:8b:a3:0a:8e:ee:b8:82:93:c7:60:fd: 65:26:99:b2:f8:32:dd:b7:bd:a8:ba:17:d6:c7:c7:6c:5e:60: 69:c1:43:10:1b:40:ff:41:45:e7:55:05:a2:96:37:24:fe:a6: b6:91:fb:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdQurxqUUSnWVjEW1lw4MaOxQ+uowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yMzA5MDgwMzU2MTlaFw0yNDA5MDYwNDAxMTlaMDMxMTAvBgNV BAMTKEIzMTcyRTVEQjUyMjI0ODAxMEU5NjU4QUZEMzdDRkUxQjY1MzNDRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy1Emha9+kyH0MDGpGXlEpWUh0 E6MGTtDrrueP4DZSjV2CF4thlc28MA2tl5TiJZsL3B1t3jTl90rmSBBSRqlLFAgt GQG/UUr0v83Tb3Z5kS6iY9jeJan1hSWHZYj4uZnh+90amw+yRGstEassNIeNmZ+k Ez6OBVIgMD6+dXwyNtiNfsBmnfby+zEiZdN+H2BuNL38fKjzA0isqGmeqLxbhMCx 2cdzfjmeBCY++jfm79+Sp8pzmcUzJFMIwSUCvcs0UUTicb3IqPi5mzazgMIpGqeU LakBVE2ACFjWznQ2h9GtvRpYuJAqS6HHBOT1JQD0ppQcYxbIfPqJlAKEUja/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsxcuXbUiJIAQ6WWK/TfP4bZTPNkwHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMxMzAzMzJlMzEzMzM4MmUzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4pHMA0GCSqG SIb3DQEBCwUAA4IBAQDXzZWxzsuOnLX5Oxo+u3GZbDWPAQF/nlEaZumXq3VrcRYU Apvt2jQ8gd+L9iDSX0Tc47QUAGTXavbfhwlrL6osRVP8mxPD5JQFot1Mcsbf3QG1 5IXqXtrrdt0zn/Nc5YRkIUCAwE0TDAFTf6KdFlaiYWSwWBlkhIu33n8N0IVntOWs TzTvD39HZca8VX53+K++u2U/Agl0E1/9C2ZpiXSDYeQUoDey8yXjqkK0+87QUfed ZJrClCQXNDmLfw+OimRLu1d+yXMDHLs/4/sxi6MKju64gpPHYP1lJpmy+DLdt72o uhfWx8dsXmBpwUMQG0D/QUXnVQWiljck/qa2kfs8 -----END CERTIFICATE-----Generated at Sat Jun 1 08:14:55 2024 by rpki-client on console-ams.rpki-client.org