$ rpki-client -vvf repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/3130332e39342e3231322e302f32342d3234203d3e20313336313131.roa File: 3130332e39342e3231322e302f32342d3234203d3e20313336313131.roa (raw, json) Hash identifier: 1DQNd1BiHyCqeeoXg540QxKFNBelHF5fdH/zLsWceQw= Subject key identifier: 5C:86:C5:D3:1E:BE:48:A2:DD:8E:5B:A0:E3:49:42:79:2F:E1:2C:1F Certificate issuer: /CN=399315B18BA7D0DD666DCA8C3DBBE013575AF7D1 Certificate serial: 4673FC034517DF0E856D72F6C2EFF7AB5D6A8C88 Authority key identifier: 39:93:15:B1:8B:A7:D0:DD:66:6D:CA:8C:3D:BB:E0:13:57:5A:F7:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/3130332e39342e3231322e302f32342d3234203d3e20313336313131.roa Signing time: Fri 25 Aug 2023 08:00:01 +0000 ROA not before: Fri 25 Aug 2023 07:55:01 +0000 ROA not after: Fri 23 Aug 2024 08:00:01 +0000 asID: 136111 IP address blocks: 103.94.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.crl rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 May 2024 04:37:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:73:fc:03:45:17:df:0e:85:6d:72:f6:c2:ef:f7:ab:5d:6a:8c:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399315B18BA7D0DD666DCA8C3DBBE013575AF7D1 Validity Not Before: Aug 25 07:55:01 2023 GMT Not After : Aug 23 08:00:01 2024 GMT Subject: CN=5C86C5D31EBE48A2DD8E5BA0E34942792FE12C1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d1:df:c4:62:a2:4d:92:29:6c:7b:f0:52:ab: 82:9b:47:90:57:f6:69:12:da:b3:38:65:47:51:83: 29:87:ef:b8:70:94:2a:7d:bb:54:d5:fb:10:be:77: 02:5c:31:2c:7b:d4:f6:33:7a:07:0d:b1:48:97:a3: aa:7b:11:8a:68:f5:d1:0f:f1:32:72:ec:46:e7:47: 21:17:62:9c:91:ee:db:c4:51:ed:12:79:b6:e2:84: e3:3e:ba:ae:58:6b:30:04:8b:e9:19:22:a4:50:a6: 9c:22:70:09:4a:6f:1b:f0:55:68:26:7a:2c:12:b8: 10:c4:ff:d5:09:5e:5d:00:ea:f5:21:d8:56:54:81: d6:8b:b7:91:3b:3c:8f:a5:7c:e4:fa:2c:85:e1:ee: 9b:23:14:b8:0d:a2:e0:7c:b4:3a:58:3d:f2:30:e4: fb:e9:03:b0:f7:36:d3:5a:20:49:63:00:80:79:64: 1a:05:e7:34:3e:56:52:d7:f6:a6:8d:bd:3d:4e:37: 20:d1:57:fd:53:f3:27:b0:e3:e2:0c:cc:b0:50:01: f9:95:ed:ac:ea:7a:ea:f6:7b:55:70:81:8f:e4:04: 33:c0:6f:67:51:db:62:a2:e6:3d:dc:73:92:0b:fc: 5b:3c:20:48:6c:26:05:a6:a4:8c:d9:f8:76:7b:b7: c3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:86:C5:D3:1E:BE:48:A2:DD:8E:5B:A0:E3:49:42:79:2F:E1:2C:1F X509v3 Authority Key Identifier: keyid:39:93:15:B1:8B:A7:D0:DD:66:6D:CA:8C:3D:BB:E0:13:57:5A:F7:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/3130332e39342e3231322e302f32342d3234203d3e20313336313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.94.212.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:c8:df:d4:92:ba:ac:bc:0e:77:69:58:9f:b8:ed:af:dd:d9: 44:20:8d:83:b3:a6:3c:14:e3:89:0f:53:c6:f1:be:10:8d:b2: d5:50:93:ce:e6:49:e2:11:97:41:16:ed:0f:32:43:d6:8d:91: e8:a3:fc:22:65:b9:1a:92:3f:70:67:65:dc:6f:0d:1d:9a:f8: e6:14:46:ee:de:7d:8c:5a:6c:88:a9:ed:33:86:e4:d0:b8:61: ae:e7:7f:78:67:89:0c:a3:f5:b6:7f:78:39:63:71:d3:47:a1: 04:5b:e3:f6:bc:8a:42:3a:23:38:7d:e2:05:78:f5:e8:7a:92: 35:b6:37:9d:52:39:09:e1:40:b8:98:ca:e0:43:35:d0:47:68: 34:5b:20:8b:b1:31:f3:20:b9:f6:d4:fd:69:d1:c1:fa:5c:54: 5e:ee:35:47:c9:a0:be:1a:79:e2:7a:b1:1e:b6:07:38:27:81: 6d:bf:99:f1:38:33:b1:64:86:97:b8:ba:df:04:d5:c9:37:64: 74:69:eb:64:e0:63:ca:77:cc:d5:29:37:b2:84:f0:7a:c8:51: c1:23:50:39:d9:ae:24:11:f2:5d:f8:df:c9:66:74:e9:f8:2c: d0:a5:68:af:4a:db:16:c4:a8:fd:89:d9:12:e5:cb:e8:15:99: 9f:b5:cd:cd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURnP8A0UX3w6FbXL2wu/3q11qjIgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk5MzE1QjE4QkE3RDBERDY2NkRDQThDM0RCQkUwMTM1 NzVBRjdEMTAeFw0yMzA4MjUwNzU1MDFaFw0yNDA4MjMwODAwMDFaMDMxMTAvBgNV BAMTKDVDODZDNUQzMUVCRTQ4QTJERDhFNUJBMEUzNDk0Mjc5MkZFMTJDMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz0d/EYqJNkilse/BSq4KbR5BX 9mkS2rM4ZUdRgymH77hwlCp9u1TV+xC+dwJcMSx71PYzegcNsUiXo6p7EYpo9dEP 8TJy7EbnRyEXYpyR7tvEUe0SebbihOM+uq5YazAEi+kZIqRQppwicAlKbxvwVWgm eiwSuBDE/9UJXl0A6vUh2FZUgdaLt5E7PI+lfOT6LIXh7psjFLgNouB8tDpYPfIw 5PvpA7D3NtNaIEljAIB5ZBoF5zQ+VlLX9qaNvT1ONyDRV/1T8yew4+IMzLBQAfmV 7azqeur2e1VwgY/kBDPAb2dR22Ki5j3cc5IL/Fs8IEhsJgWmpIzZ+HZ7t8M7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXIbF0x6+SKLdjlug40lCeS/hLB8wHwYDVR0j BBgwFoAUOZMVsYun0N1mbcqMPbvgE1da99EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MmYyODg3OS00ODQ0LTQyZGUtYjJkOS1hOTY2NmRlMjgyZWEvMC8zOTkzMTVCMThC QTdEMERENjY2RENBOEMzREJCRTAxMzU3NUFGN0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzk5MzE1QjE4QkE3RDBERDY2NkRDQThDM0RCQkUwMTM1NzVB RjdEMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyZjI4ODc5LTQ4NDQtNDJkZS1i MmQ5LWE5NjY2ZGUyODJlYS8wLzMxMzAzMzJlMzkzNDJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ17UMA0GCSqG SIb3DQEBCwUAA4IBAQBKyN/UkrqsvA53aVifuO2v3dlEII2Ds6Y8FOOJD1PG8b4Q jbLVUJPO5kniEZdBFu0PMkPWjZHoo/wiZbkakj9wZ2Xcbw0dmvjmFEbu3n2MWmyI qe0zhuTQuGGu5394Z4kMo/W2f3g5Y3HTR6EEW+P2vIpCOiM4feIFePXoepI1tjed UjkJ4UC4mMrgQzXQR2g0WyCLsTHzILn21P1p0cH6XFRe7jVHyaC+GnnierEetgc4 J4Ftv5nxODOxZIaXuLrfBNXJN2R0aetk4GPKd8zVKTeyhPB6yFHBI1A52a4kEfJd +N/JZnTp+CzQpWivStsWxKj9idkS5cvoFZmftc3N -----END CERTIFICATE-----Generated at Tue May 14 03:00:07 2024 by rpki-client on console-fra.rpki-client.org