$ rpki-client -vvf repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131362e302f32332d3234203d3e20313331373336.roa File: 3130332e3136312e3131362e302f32332d3234203d3e20313331373336.roa (raw, json) Hash identifier: Mm4rcUwiC50keHikVtxlQOpZ8FqP+WdFiXI3kx4cpQc= Subject key identifier: FE:D5:5B:70:70:E1:DA:A7:F1:39:C5:03:A7:CE:53:EA:C8:69:5C:CD Certificate issuer: /CN=13697C4A24DCE77089F778CD506D620711B4472B Certificate serial: 7702296070F3BE440A6FECF8262A51CA967F0174 Authority key identifier: 13:69:7C:4A:24:DC:E7:70:89:F7:78:CD:50:6D:62:07:11:B4:47:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13697C4A24DCE77089F778CD506D620711B4472B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131362e302f32332d3234203d3e20313331373336.roa Signing time: Thu 30 May 2024 10:00:00 +0000 ROA not before: Thu 30 May 2024 09:55:00 +0000 ROA not after: Thu 29 May 2025 10:00:00 +0000 asID: 131736 IP address blocks: 103.161.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/13697C4A24DCE77089F778CD506D620711B4472B.crl rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/13697C4A24DCE77089F778CD506D620711B4472B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13697C4A24DCE77089F778CD506D620711B4472B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:02:29:60:70:f3:be:44:0a:6f:ec:f8:26:2a:51:ca:96:7f:01:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13697C4A24DCE77089F778CD506D620711B4472B Validity Not Before: May 30 09:55:00 2024 GMT Not After : May 29 10:00:00 2025 GMT Subject: CN=FED55B7070E1DAA7F139C503A7CE53EAC8695CCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:49:3a:db:c1:da:8f:f0:7d:67:28:28:95:f3: c0:c9:c1:a1:44:0a:1c:7e:a8:64:f3:73:e5:63:b8: 4f:12:f2:cb:60:e9:30:e7:e1:25:42:86:bb:57:44: 2f:96:3b:ff:42:09:a4:f5:0e:c5:ad:34:22:25:1f: 8c:12:5e:64:ef:72:d3:7b:55:e9:c6:71:bc:0d:62: f3:a4:62:9e:6d:e1:cb:50:2a:ec:90:23:ee:08:ed: ee:a1:75:73:3c:f9:e3:59:a5:0f:b2:a5:dd:c4:2a: db:11:fd:5b:7e:85:e0:0e:76:7a:27:20:f7:44:63: ab:38:64:f5:af:05:02:e4:ee:bb:39:2e:56:97:7f: 14:c4:59:e6:85:7c:0f:8a:16:7f:67:0d:fe:a3:de: 54:4b:32:bd:e5:59:e5:e3:24:e0:38:a0:9f:d7:c0: 32:ad:6a:91:0a:03:f6:85:f8:78:07:01:b1:cb:18: 18:3f:9d:82:08:ee:4f:36:f2:4e:0d:9a:c7:17:78: 98:2e:ad:e9:79:48:5c:6f:91:d3:6d:27:76:ad:da: 28:47:54:2e:44:78:e9:eb:93:67:f8:c6:d7:c9:94: 86:7d:5c:45:3b:9b:f2:31:23:5c:62:6f:49:6a:a1: bd:81:74:5a:d9:97:ed:7c:0d:75:cc:64:e3:32:60: f8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D5:5B:70:70:E1:DA:A7:F1:39:C5:03:A7:CE:53:EA:C8:69:5C:CD X509v3 Authority Key Identifier: keyid:13:69:7C:4A:24:DC:E7:70:89:F7:78:CD:50:6D:62:07:11:B4:47:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/13697C4A24DCE77089F778CD506D620711B4472B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13697C4A24DCE77089F778CD506D620711B4472B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131362e302f32332d3234203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.116.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:9e:10:22:65:4a:0c:a3:26:64:a7:2f:b2:83:51:78:b1:3f: 2a:c1:65:2f:60:aa:41:4a:42:5e:0c:c3:a2:49:67:1b:10:8e: af:2e:f0:5f:69:97:07:80:3e:e4:37:49:ce:de:90:a1:49:60: f2:b2:62:e1:63:69:4a:83:56:a5:a2:55:54:a9:e4:8d:05:c4: 78:e1:55:27:75:32:bd:c8:1d:45:93:48:2c:d8:d5:14:74:fc: 94:f5:35:03:28:51:d1:40:43:27:95:de:45:44:89:90:c8:b2: b1:7d:7e:92:a0:65:b0:6b:5e:86:36:9a:f9:ec:35:db:b3:2c: 6c:d8:76:64:d6:a5:9b:5e:31:79:0d:d6:7d:49:f0:7b:5d:2c: cd:23:59:0a:80:d1:87:24:d6:0c:b8:3e:6f:a2:77:1a:7a:dc: d0:09:6f:9e:3b:06:e0:99:6e:9a:65:9d:1f:fc:db:c5:ec:d5: 75:a1:cf:13:57:13:a1:5c:cf:d2:e5:b5:b4:4c:b6:c0:70:04: bf:85:c5:70:fa:b0:a7:b7:52:84:7e:f7:75:5b:f3:5e:9f:79: 2a:9a:eb:0a:af:0c:32:9a:37:10:fa:c7:16:5b:7f:d3:53:b2: f5:16:88:f2:27:29:03:02:55:73:8e:b0:0f:9f:01:4e:7e:ea: ba:14:6e:9c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdwIpYHDzvkQKb+z4JipRypZ/AXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM2OTdDNEEyNERDRTc3MDg5Rjc3OENENTA2RDYyMDcx MUI0NDcyQjAeFw0yNDA1MzAwOTU1MDBaFw0yNTA1MjkxMDAwMDBaMDMxMTAvBgNV BAMTKEZFRDU1QjcwNzBFMURBQTdGMTM5QzUwM0E3Q0U1M0VBQzg2OTVDQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6STrbwdqP8H1nKCiV88DJwaFE Chx+qGTzc+VjuE8S8stg6TDn4SVChrtXRC+WO/9CCaT1DsWtNCIlH4wSXmTvctN7 VenGcbwNYvOkYp5t4ctQKuyQI+4I7e6hdXM8+eNZpQ+ypd3EKtsR/Vt+heAOdnon IPdEY6s4ZPWvBQLk7rs5LlaXfxTEWeaFfA+KFn9nDf6j3lRLMr3lWeXjJOA4oJ/X wDKtapEKA/aF+HgHAbHLGBg/nYII7k828k4NmscXeJgurel5SFxvkdNtJ3at2ihH VC5EeOnrk2f4xtfJlIZ9XEU7m/IxI1xib0lqob2BdFrZl+18DXXMZOMyYPhDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/tVbcHDh2qfxOcUDp85T6shpXM0wHwYDVR0j BBgwFoAUE2l8SiTc53CJ93jNUG1iBxG0RyswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzM1MDdmMy1mOGMwLTQxMGItYjE5ZS01N2U0OGJmMzIzMDUvMC8xMzY5N0M0QTI0 RENFNzcwODlGNzc4Q0Q1MDZENjIwNzExQjQ0NzJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTM2OTdDNEEyNERDRTc3MDg5Rjc3OENENTA2RDYyMDcxMUI0 NDcyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3MzUwN2YzLWY4YzAtNDEwYi1i MTllLTU3ZTQ4YmYzMjMwNS8wLzMxMzAzMzJlMzEzNjMxMmUzMTMxMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnoXQwDQYJ KoZIhvcNAQELBQADggEBAG6eECJlSgyjJmSnL7KDUXixPyrBZS9gqkFKQl4Mw6JJ ZxsQjq8u8F9plweAPuQ3Sc7ekKFJYPKyYuFjaUqDVqWiVVSp5I0FxHjhVSd1Mr3I HUWTSCzY1RR0/JT1NQMoUdFAQyeV3kVEiZDIsrF9fpKgZbBrXoY2mvnsNduzLGzY dmTWpZteMXkN1n1J8HtdLM0jWQqA0Yck1gy4Pm+idxp63NAJb547BuCZbpplnR/8 28Xs1XWhzxNXE6Fcz9LltbRMtsBwBL+FxXD6sKe3UoR+93Vb816feSqa6wqvDDKa NxD6xxZbf9NTsvUWiPInKQMCVXOOsA+fAU5+6roUbpw= -----END CERTIFICATE-----Generated at Fri Jun 21 19:32:10 2024 by rpki-client on console-ams.rpki-client.org