$ rpki-client -vvf repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e332e302f32342d3234203d3e20313430333839.roa File: 3130332e3132322e332e302f32342d3234203d3e20313430333839.roa (raw, json) Hash identifier: PllgWWbUWfgBriJUuJOlsvokQeWGrz8aR9wj0Y+LcOU= Subject key identifier: 4E:AB:93:D5:EC:20:AF:B6:17:16:A4:BD:5F:3A:37:9A:11:08:2D:1E Certificate issuer: /CN=AEB84984B4021FC01344F3D02190FDED8607E7FA Certificate serial: 740B77AB2ADB15CB855ADAA814CA646E6B0F2F72 Authority key identifier: AE:B8:49:84:B4:02:1F:C0:13:44:F3:D0:21:90:FD:ED:86:07:E7:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e332e302f32342d3234203d3e20313430333839.roa Signing time: Fri 01 Mar 2024 06:00:00 +0000 ROA not before: Fri 01 Mar 2024 05:55:00 +0000 ROA not after: Fri 28 Feb 2025 06:00:00 +0000 asID: 140389 IP address blocks: 103.122.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.crl rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:0b:77:ab:2a:db:15:cb:85:5a:da:a8:14:ca:64:6e:6b:0f:2f:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB84984B4021FC01344F3D02190FDED8607E7FA Validity Not Before: Mar 1 05:55:00 2024 GMT Not After : Feb 28 06:00:00 2025 GMT Subject: CN=4EAB93D5EC20AFB61716A4BD5F3A379A11082D1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7b:b7:41:b8:a1:b9:f3:21:c0:fa:ba:67:c6: 90:48:40:ff:7d:36:74:8d:f8:ca:e1:79:22:ca:f6: 22:44:07:4f:e4:b0:b0:75:4e:97:18:a1:4c:16:79: 47:3b:a4:90:d0:86:19:cf:b2:6c:63:47:b5:8e:9b: 19:0c:0a:0e:6d:87:93:a0:b7:46:57:ae:35:8a:86: 83:7e:43:7b:8a:93:d0:ba:de:a5:05:e5:7c:94:cd: 57:b0:e8:e1:eb:aa:ca:d9:92:81:d9:5a:30:05:3b: c0:a0:e2:47:a6:5a:14:59:a6:70:e0:fd:7a:8b:98: a4:08:28:21:d0:45:91:63:da:cf:28:e1:85:1b:d1: 64:19:33:eb:18:09:37:02:60:2d:b9:9f:1d:2d:36: da:73:ad:43:3c:4d:2e:0e:2f:6b:c9:c8:d7:06:4a: 50:b8:89:b5:21:10:9a:0e:9a:ac:d0:83:a1:6c:73: ce:60:79:cb:71:29:ae:c1:36:25:ca:97:36:87:91: ed:9a:40:48:33:e0:94:6b:f6:3c:23:37:82:1c:65: 92:3e:0b:58:2b:0c:66:ab:7e:87:9f:3e:c9:67:89: 38:34:1c:d2:de:b2:ba:cd:3a:df:47:19:72:58:8d: e4:64:b4:50:5d:ac:d1:80:a7:e6:e1:04:33:26:3b: 5b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:AB:93:D5:EC:20:AF:B6:17:16:A4:BD:5F:3A:37:9A:11:08:2D:1E X509v3 Authority Key Identifier: keyid:AE:B8:49:84:B4:02:1F:C0:13:44:F3:D0:21:90:FD:ED:86:07:E7:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e332e302f32342d3234203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.3.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:4d:f0:3b:b9:85:47:ec:8f:e9:8e:9a:52:25:71:00:57:e8: 39:06:82:e6:6b:fa:eb:40:79:cf:71:cf:72:0e:c6:b8:80:4e: e7:1d:b3:8c:98:6b:07:ae:ff:ff:66:04:1f:87:88:3d:98:7b: d9:aa:62:89:45:44:d6:2b:0b:70:f1:5b:ed:c7:44:72:4a:cf: 43:a1:e0:b0:9f:ec:7e:12:3d:be:43:ac:bf:57:80:33:d7:02: 6c:d4:9f:8a:5e:82:3f:91:e0:98:76:ef:a2:50:f3:af:04:c2: d4:96:14:c2:82:78:5b:f6:d6:91:7c:72:53:1b:23:89:3a:2e: c4:4a:f1:eb:4d:c6:f5:79:77:95:44:e8:94:66:66:28:47:47: 3f:ce:f7:b2:fb:6f:62:1e:f4:ff:f0:e9:32:db:1f:b6:ab:35: 39:a0:66:a2:a5:3b:6a:cb:93:ff:80:9e:7f:96:59:e4:26:18: 5b:27:5e:2b:05:36:53:ae:dd:5c:3d:01:5d:d0:24:ed:dc:1d: 85:1d:da:31:20:62:15:48:f7:2f:a9:c0:4d:53:80:63:98:51: 03:01:91:bf:51:51:b9:04:0d:b5:2a:14:61:22:b5:51:3c:4c: 23:59:a5:da:e6:c8:32:9e:fd:c0:0e:b8:78:4b:cd:e2:e8:a5: 96:8a:5e:a5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdAt3qyrbFcuFWtqoFMpkbmsPL3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCODQ5ODRCNDAyMUZDMDEzNDRGM0QwMjE5MEZERUQ4 NjA3RTdGQTAeFw0yNDAzMDEwNTU1MDBaFw0yNTAyMjgwNjAwMDBaMDMxMTAvBgNV BAMTKDRFQUI5M0Q1RUMyMEFGQjYxNzE2QTRCRDVGM0EzNzlBMTEwODJEMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1e7dBuKG58yHA+rpnxpBIQP99 NnSN+MrheSLK9iJEB0/ksLB1TpcYoUwWeUc7pJDQhhnPsmxjR7WOmxkMCg5th5Og t0ZXrjWKhoN+Q3uKk9C63qUF5XyUzVew6OHrqsrZkoHZWjAFO8Cg4kemWhRZpnDg /XqLmKQIKCHQRZFj2s8o4YUb0WQZM+sYCTcCYC25nx0tNtpzrUM8TS4OL2vJyNcG SlC4ibUhEJoOmqzQg6Fsc85gectxKa7BNiXKlzaHke2aQEgz4JRr9jwjN4IcZZI+ C1grDGarfoefPslniTg0HNLesrrNOt9HGXJYjeRktFBdrNGAp+bhBDMmO1sPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTquT1ewgr7YXFqS9Xzo3mhEILR4wHwYDVR0j BBgwFoAUrrhJhLQCH8ATRPPQIZD97YYH5/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjE5NTVmMC00YjQwLTRjM2ItOWZmZi05ZjkyNThjMzk3NWEvMC9BRUI4NDk4NEI0 MDIxRkMwMTM0NEYzRDAyMTkwRkRFRDg2MDdFN0ZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVCODQ5ODRCNDAyMUZDMDEzNDRGM0QwMjE5MEZERUQ4NjA3 RTdGQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMTk1NWYwLTRiNDAtNGMzYi05 ZmZmLTlmOTI1OGMzOTc1YS8wLzMxMzAzMzJlMzEzMjMyMmUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDMzMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGd6AzANBgkqhkiG 9w0BAQsFAAOCAQEAXU3wO7mFR+yP6Y6aUiVxAFfoOQaC5mv660B5z3HPcg7GuIBO 5x2zjJhrB67//2YEH4eIPZh72apiiUVE1isLcPFb7cdEckrPQ6HgsJ/sfhI9vkOs v1eAM9cCbNSfil6CP5HgmHbvolDzrwTC1JYUwoJ4W/bWkXxyUxsjiTouxErx603G 9Xl3lUTolGZmKEdHP873svtvYh70//DpMtsftqs1OaBmoqU7asuT/4Cef5ZZ5CYY WydeKwU2U67dXD0BXdAk7dwdhR3aMSBiFUj3L6nATVOAY5hRAwGRv1FRuQQNtSoU YSK1UTxMI1ml2ubIMp79wA64eEvN4uillopepQ== -----END CERTIFICATE-----Generated at Sun Jun 2 14:42:32 2024 by rpki-client on console-ams.rpki-client.org