$ rpki-client -vvf repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/3130332e39342e3231322e302f32332d3233203d3e20313336313131.roa File: 3130332e39342e3231322e302f32332d3233203d3e20313336313131.roa (raw, json) Hash identifier: 8VIhDuue4JzU213v1PlqiZp/LgzSTn4JupEB7OWX++8= Subject key identifier: 72:CB:47:28:1C:7D:43:5B:1F:73:76:16:B9:5D:BE:38:37:87:41:51 Certificate issuer: /CN=399315B18BA7D0DD666DCA8C3DBBE013575AF7D1 Certificate serial: 1C870CCA5A92098A8C5774E9E2B6821D267FA915 Authority key identifier: 39:93:15:B1:8B:A7:D0:DD:66:6D:CA:8C:3D:BB:E0:13:57:5A:F7:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/3130332e39342e3231322e302f32332d3233203d3e20313336313131.roa Signing time: Wed 06 Sep 2023 03:30:15 +0000 ROA not before: Wed 06 Sep 2023 03:25:15 +0000 ROA not after: Wed 04 Sep 2024 03:30:15 +0000 asID: 136111 IP address blocks: 103.94.212.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.crl rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 06:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:87:0c:ca:5a:92:09:8a:8c:57:74:e9:e2:b6:82:1d:26:7f:a9:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399315B18BA7D0DD666DCA8C3DBBE013575AF7D1 Validity Not Before: Sep 6 03:25:15 2023 GMT Not After : Sep 4 03:30:15 2024 GMT Subject: CN=72CB47281C7D435B1F737616B95DBE3837874151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:9c:2a:c2:3c:6b:a6:3f:9a:15:4a:f1:ee:0b: 5c:29:bd:90:8a:59:a7:ef:91:d4:f5:a4:e8:8b:ca: a4:a8:91:3e:58:73:e0:2f:6e:46:8c:a8:b0:fd:e5: 9d:5a:df:a1:83:27:9f:8a:13:f6:0c:5b:2d:c1:1b: 63:6c:9e:06:27:07:12:62:73:92:50:13:7a:fa:ed: 03:73:12:ee:a5:0b:27:9f:00:21:2d:96:0c:a5:99: 90:47:5b:ff:c1:05:08:42:64:82:4e:c7:1b:22:21: 63:dc:d5:44:32:97:f9:00:75:45:f3:77:94:8d:eb: a1:dd:73:c3:c9:92:ad:c9:ff:04:f4:f6:0e:b8:9c: 51:2d:fe:cb:ce:2e:6a:e1:dc:96:87:5e:a8:7f:71: 03:da:ad:f3:1f:3e:bf:cd:79:10:a6:d6:9f:3a:38: 8c:38:6e:72:96:f8:e8:f1:4d:7c:74:10:28:09:dc: 30:2b:eb:7b:89:77:f6:06:62:93:02:89:45:19:cd: c1:92:c6:8d:b9:c3:c4:99:a1:1c:62:48:32:cc:1f: 9e:c3:72:54:bb:fa:4c:ae:bf:a1:9d:b2:47:5b:bf: 9d:38:30:3f:7a:fe:a0:06:fb:50:ab:c4:26:f8:8f: d9:f7:75:ee:12:30:31:8f:09:ca:18:01:48:30:9c: cf:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:CB:47:28:1C:7D:43:5B:1F:73:76:16:B9:5D:BE:38:37:87:41:51 X509v3 Authority Key Identifier: keyid:39:93:15:B1:8B:A7:D0:DD:66:6D:CA:8C:3D:BB:E0:13:57:5A:F7:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/3130332e39342e3231322e302f32332d3233203d3e20313336313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.94.212.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:46:f8:98:b1:58:8c:68:53:eb:83:9d:e8:72:48:07:5a:86: 8f:6a:31:d4:07:b5:38:40:d6:c1:54:f0:80:c8:09:c4:30:94: 69:d8:16:16:32:67:a9:0a:cb:3c:6d:db:1d:66:af:52:8f:59: e8:11:6e:a6:da:f9:b3:bd:40:22:17:6e:b7:71:de:9f:a9:8c: f4:5f:c9:82:b3:96:1c:d8:de:99:93:7e:96:a3:db:e2:f7:73: ab:40:38:0b:ca:1f:9f:fc:81:b3:3c:6f:f8:11:b9:f5:ca:ea: 5f:88:ce:5c:56:d7:35:18:79:8c:1f:82:45:f8:f1:51:bc:4d: 42:bb:35:5f:36:25:33:44:74:e6:fc:78:05:65:a8:2a:80:ad: 56:fe:21:fc:9a:2c:dc:37:b7:19:93:71:90:4b:07:63:8e:b4: c2:d9:75:f7:00:b6:09:e3:6f:b7:da:84:cb:07:ad:06:b1:26: c4:7f:1e:bb:39:5e:13:31:50:73:ec:66:31:5e:2b:28:81:da: 79:17:9b:25:6a:b3:a5:dd:fe:41:cd:33:3e:96:3d:72:3e:62: 9e:e8:4a:3c:29:80:ca:cf:a8:05:c1:6e:7f:47:32:63:b6:2d: 78:a6:f7:e9:48:66:c8:9c:af:eb:a9:09:bf:b8:97:65:0b:16: 65:99:73:53 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHIcMylqSCYqMV3Tp4raCHSZ/qRUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk5MzE1QjE4QkE3RDBERDY2NkRDQThDM0RCQkUwMTM1 NzVBRjdEMTAeFw0yMzA5MDYwMzI1MTVaFw0yNDA5MDQwMzMwMTVaMDMxMTAvBgNV BAMTKDcyQ0I0NzI4MUM3RDQzNUIxRjczNzYxNkI5NURCRTM4Mzc4NzQxNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqnCrCPGumP5oVSvHuC1wpvZCK WafvkdT1pOiLyqSokT5Yc+AvbkaMqLD95Z1a36GDJ5+KE/YMWy3BG2NsngYnBxJi c5JQE3r67QNzEu6lCyefACEtlgylmZBHW//BBQhCZIJOxxsiIWPc1UQyl/kAdUXz d5SN66Hdc8PJkq3J/wT09g64nFEt/svOLmrh3JaHXqh/cQParfMfPr/NeRCm1p86 OIw4bnKW+OjxTXx0ECgJ3DAr63uJd/YGYpMCiUUZzcGSxo25w8SZoRxiSDLMH57D clS7+kyuv6Gdskdbv504MD96/qAG+1CrxCb4j9n3de4SMDGPCcoYAUgwnM+7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcstHKBx9Q1sfc3YWuV2+ODeHQVEwHwYDVR0j BBgwFoAUOZMVsYun0N1mbcqMPbvgE1da99EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MmYyODg3OS00ODQ0LTQyZGUtYjJkOS1hOTY2NmRlMjgyZWEvMC8zOTkzMTVCMThC QTdEMERENjY2RENBOEMzREJCRTAxMzU3NUFGN0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzk5MzE1QjE4QkE3RDBERDY2NkRDQThDM0RCQkUwMTM1NzVB RjdEMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyZjI4ODc5LTQ4NDQtNDJkZS1i MmQ5LWE5NjY2ZGUyODJlYS8wLzMxMzAzMzJlMzkzNDJlMzIzMTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM2MzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ17UMA0GCSqG SIb3DQEBCwUAA4IBAQBvRviYsViMaFPrg53ockgHWoaPajHUB7U4QNbBVPCAyAnE MJRp2BYWMmepCss8bdsdZq9Sj1noEW6m2vmzvUAiF263cd6fqYz0X8mCs5Yc2N6Z k36Wo9vi93OrQDgLyh+f/IGzPG/4Ebn1yupfiM5cVtc1GHmMH4JF+PFRvE1CuzVf NiUzRHTm/HgFZagqgK1W/iH8mizcN7cZk3GQSwdjjrTC2XX3ALYJ42+32oTLB60G sSbEfx67OV4TMVBz7GYxXisogdp5F5slarOl3f5BzTM+lj1yPmKe6Eo8KYDKz6gF wW5/RzJjti14pvfpSGbInK/rqQm/uJdlCxZlmXNT -----END CERTIFICATE-----Generated at Thu May 16 05:44:52 2024 by rpki-client on console-ams.rpki-client.org