$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa File: 3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa (raw, json) Hash identifier: AeRKowPO7Dnk/GDrO9zIEeuYmfQgkBmIKdTL79s5HyA= Subject key identifier: CB:4D:96:B3:1A:FC:A0:46:C9:16:A2:F2:68:E6:FC:C3:42:37:61:C3 Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Certificate serial: 3E61EB8173A4ADA6A18EDC2A88857A62E636ED93 Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa Signing time: Fri 29 Sep 2023 16:00:00 +0000 ROA not before: Fri 29 Sep 2023 15:55:00 +0000 ROA not after: Fri 27 Sep 2024 16:00:00 +0000 asID: 138887 IP address blocks: 103.141.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:61:eb:81:73:a4:ad:a6:a1:8e:dc:2a:88:85:7a:62:e6:36:ed:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Validity Not Before: Sep 29 15:55:00 2023 GMT Not After : Sep 27 16:00:00 2024 GMT Subject: CN=CB4D96B31AFCA046C916A2F268E6FCC3423761C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:06:67:67:60:d2:dd:ae:e1:1d:b5:90:64:3c: 61:20:fb:b7:7e:fa:34:1e:d2:e3:cb:a4:5b:68:d8: 50:08:dc:28:1f:07:6e:e2:04:06:19:87:12:58:fc: 8f:5c:a8:ba:11:7e:ce:da:ec:69:f8:04:6b:2b:71: 01:99:65:74:0f:4a:8f:53:75:d0:54:3e:7f:d4:45: 0a:9c:18:45:4b:d7:25:98:f2:e7:af:63:ac:9a:7d: c3:63:da:d3:01:ad:59:da:57:88:ee:e7:3e:8d:5e: 87:bc:42:57:b5:6b:ca:69:b7:a5:15:8e:ed:64:24: 72:4b:29:9a:1e:f9:ec:95:1a:3a:16:55:87:0e:da: bd:c3:af:dd:19:35:dc:be:84:fa:e7:fd:3a:2e:59: fa:71:a8:df:37:dd:76:43:79:41:a8:cb:9f:7c:25: be:d7:a8:93:d4:3d:e0:ce:2d:d8:32:77:b5:d9:03: d4:e3:88:b0:0a:aa:a8:2f:e3:85:23:ce:ef:d4:fd: 9c:63:61:3b:f3:52:8d:f5:9e:98:d1:d5:91:e3:f1: 04:13:fe:9e:1f:5b:fc:0c:a5:05:23:36:ab:68:e6: 76:8b:24:c0:8b:75:ec:f8:ec:51:c4:94:79:ee:35: 04:33:98:bb:29:f3:c3:e1:47:51:f5:77:3d:3b:fe: 50:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4D:96:B3:1A:FC:A0:46:C9:16:A2:F2:68:E6:FC:C3:42:37:61:C3 X509v3 Authority Key Identifier: keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.20.0/23 Signature Algorithm: sha256WithRSAEncryption 38:ba:85:e4:59:27:56:68:60:b2:f6:ed:37:64:03:47:19:02: f5:ef:59:cc:6a:df:39:29:48:d1:02:8a:69:f2:7f:92:a6:e8: 4f:17:ef:c8:cf:26:4f:aa:e5:2b:09:5c:d8:5e:be:5f:dd:c1: 4c:76:0d:0a:ba:8f:ff:e7:b7:ba:3b:22:f1:64:0e:dc:bd:84: 3a:31:7d:f1:c6:35:32:6d:2f:d9:45:d0:47:22:95:79:0d:57: c1:ea:f9:78:bd:e0:7c:85:44:42:ad:48:ad:25:06:56:ab:41: 11:ad:45:0a:ba:3c:02:86:81:d5:6f:d5:5b:9e:53:4a:9f:76: 65:5b:4e:80:bc:23:e9:74:39:f4:73:05:7e:98:bd:ed:63:17: cb:be:6e:ac:e4:dc:16:38:96:ec:42:34:d5:f9:a9:4a:1d:7a: 6f:57:e3:7f:57:91:59:57:96:2a:c7:d2:13:ab:72:20:a8:60: 24:4c:e7:44:32:fa:75:59:aa:a6:5d:8d:8a:fb:f7:b8:d4:1f: e8:ce:a8:ba:04:59:3b:b7:9c:f5:04:ae:28:c2:fc:00:c2:3d: 11:b5:29:df:ad:12:9c:2e:5a:f5:85:58:24:6a:dc:40:9c:9f: 81:30:2f:42:5b:7c:a0:2b:33:61:b3:af:55:26:c1:c4:96:77: e5:b8:d4:2d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPmHrgXOkraahjtwqiIV6YuY27ZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhG Rjg1OEUzRDAeFw0yMzA5MjkxNTU1MDBaFw0yNDA5MjcxNjAwMDBaMDMxMTAvBgNV BAMTKENCNEQ5NkIzMUFGQ0EwNDZDOTE2QTJGMjY4RTZGQ0MzNDIzNzYxQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1BmdnYNLdruEdtZBkPGEg+7d+ +jQe0uPLpFto2FAI3CgfB27iBAYZhxJY/I9cqLoRfs7a7Gn4BGsrcQGZZXQPSo9T ddBUPn/URQqcGEVL1yWY8uevY6yafcNj2tMBrVnaV4ju5z6NXoe8Qle1a8ppt6UV ju1kJHJLKZoe+eyVGjoWVYcO2r3Dr90ZNdy+hPrn/TouWfpxqN833XZDeUGoy598 Jb7XqJPUPeDOLdgyd7XZA9TjiLAKqqgv44Ujzu/U/ZxjYTvzUo31npjR1ZHj8QQT /p4fW/wMpQUjNqto5naLJMCLdez47FHElHnuNQQzmLsp88PhR1H1dz07/lBJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUy02Wsxr8oEbJFqLyaOb8w0I3YcMwHwYDVR0j BBgwFoAUgPntWSkK133ihW7P2DQOKP+Fjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDdjODhkYS0yYjU2LTQ4N2UtOWVmZS01NzExNzBiMTAyODYvMC84MEY5RUQ1OTI5 MEFENzdERTI4NTZFQ0ZEODM0MEUyOEZGODU4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhGRjg1 OEUzRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMxMzAzMzJlMzEzNDMxMmUzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ40UMA0GCSqG SIb3DQEBCwUAA4IBAQA4uoXkWSdWaGCy9u03ZANHGQL171nMat85KUjRAopp8n+S puhPF+/IzyZPquUrCVzYXr5f3cFMdg0Kuo//57e6OyLxZA7cvYQ6MX3xxjUybS/Z RdBHIpV5DVfB6vl4veB8hURCrUitJQZWq0ERrUUKujwChoHVb9VbnlNKn3ZlW06A vCPpdDn0cwV+mL3tYxfLvm6s5NwWOJbsQjTV+alKHXpvV+N/V5FZV5Yqx9ITq3Ig qGAkTOdEMvp1WaqmXY2K+/e41B/ozqi6BFk7t5z1BK4owvwAwj0RtSnfrRKcLlr1 hVgkatxAnJ+BMC9CW3ygKzNhs69VJsHElnfluNQt -----END CERTIFICATE-----Generated at Sat Jun 1 18:02:06 2024 by rpki-client on console-fra.rpki-client.org