$ rpki-client -vvf repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa File: 3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa (raw, json) Hash identifier: l3izLKTtSNKIZKaYlvxdyIwogoaFANwCiyhOMfscN8c= Subject key identifier: FF:CC:19:42:F1:03:93:E5:E5:BC:2D:1E:31:F4:0A:33:BD:7F:5F:3D Certificate issuer: /CN=D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271 Certificate serial: 702661BAF698DD849146D7C2BB681BEB96B8F2EE Authority key identifier: D5:67:7E:FA:13:70:87:11:CD:AF:B6:7D:9C:4C:8F:5F:FF:A9:A2:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa Signing time: Sat 04 Nov 2023 04:01:10 +0000 ROA not before: Sat 04 Nov 2023 03:56:10 +0000 ROA not after: Sat 02 Nov 2024 04:01:10 +0000 asID: 139955 IP address blocks: 103.147.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.crl rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:26:61:ba:f6:98:dd:84:91:46:d7:c2:bb:68:1b:eb:96:b8:f2:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271 Validity Not Before: Nov 4 03:56:10 2023 GMT Not After : Nov 2 04:01:10 2024 GMT Subject: CN=FFCC1942F10393E5E5BC2D1E31F40A33BD7F5F3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ff:69:0b:47:71:6a:26:33:c0:54:7d:e7:87: 3f:2e:da:c8:7d:76:2a:6f:08:a6:2f:84:3e:3c:ef: 22:92:79:a8:71:81:41:10:c7:4f:c3:64:76:4a:c9: 55:e4:0d:1f:08:93:f0:ca:bf:30:d3:10:1e:92:8c: ba:0f:e2:af:15:21:81:7b:b9:ab:f6:8a:00:68:23: d4:eb:68:8f:67:13:1a:c8:55:e4:23:51:fa:8c:a9: f6:6a:44:b2:d7:50:02:21:c7:d7:eb:24:00:30:cd: b7:8b:72:82:3d:a0:28:83:ae:e5:82:48:69:bc:bd: 81:1f:1e:df:f1:27:6f:f2:d7:ba:24:95:b4:0d:3a: 67:c8:a0:28:0d:e4:fa:77:ab:ab:05:b5:86:76:ed: 41:ef:a9:d5:3d:b2:e8:d4:cf:1d:e4:55:65:9b:15: 02:b5:f2:ad:b3:5c:21:3d:8f:ab:49:3c:d2:fb:8d: 4d:7b:04:56:5a:38:6b:8c:79:01:78:72:f9:f6:77: 07:93:02:18:6f:47:f3:64:63:84:3d:dc:7f:54:2e: 87:3a:aa:ed:9b:68:50:5a:91:d0:54:4f:8f:54:9e: c8:a4:74:a7:77:ac:17:a4:47:98:aa:a5:76:2a:d6: e7:ad:1f:61:82:2b:f2:41:db:3f:9a:32:ad:49:fd: f4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:CC:19:42:F1:03:93:E5:E5:BC:2D:1E:31:F4:0A:33:BD:7F:5F:3D X509v3 Authority Key Identifier: keyid:D5:67:7E:FA:13:70:87:11:CD:AF:B6:7D:9C:4C:8F:5F:FF:A9:A2:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.84.0/23 Signature Algorithm: sha256WithRSAEncryption 61:c0:04:5c:cb:40:e8:50:96:18:97:92:6d:27:d3:cd:16:97: b0:a4:ec:27:ca:43:a1:5e:37:15:36:60:08:4a:54:ad:54:29: b1:3d:cc:e6:a9:a3:26:4b:81:c6:35:82:50:bf:04:9d:33:29: c1:e5:3b:a3:9b:5f:84:32:a8:db:84:79:a0:14:e5:b2:3d:c9: e8:cc:37:83:de:14:67:0a:47:c4:98:dd:d1:ae:cb:90:f0:6f: 9e:c1:0c:ce:11:50:9c:fc:b9:7e:11:31:40:fa:93:b0:68:ec: ec:83:6a:af:22:dd:f5:73:9d:3a:89:5d:4f:96:b7:3e:ac:7c: 25:d9:71:25:9a:07:39:96:11:25:f7:27:32:12:eb:d0:68:15: d6:12:58:cb:27:e8:55:f4:2b:04:7b:af:9e:86:4e:c0:e0:f6: 12:b7:4f:d2:90:48:49:02:79:94:99:92:26:36:89:ff:bd:50: c4:1b:87:82:54:f2:15:0b:50:dd:4b:f1:e5:67:8d:bc:12:9a: 60:58:aa:b1:40:17:62:58:98:92:31:0f:80:b3:2d:e1:e5:a1: 0b:ed:b1:99:28:ee:8f:a2:f8:b2:f3:e4:19:e3:58:3b:0b:eb: e9:36:70:28:16:96:98:0a:7a:d1:c0:58:b0:80:54:d3:bc:ee: 0e:60:1a:dd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcCZhuvaY3YSRRtfCu2gb65a48u4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU2NzdFRkExMzcwODcxMUNEQUZCNjdEOUM0QzhGNUZG RkE5QTI3MTAeFw0yMzExMDQwMzU2MTBaFw0yNDExMDIwNDAxMTBaMDMxMTAvBgNV BAMTKEZGQ0MxOTQyRjEwMzkzRTVFNUJDMkQxRTMxRjQwQTMzQkQ3RjVGM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8/2kLR3FqJjPAVH3nhz8u2sh9 dipvCKYvhD487yKSeahxgUEQx0/DZHZKyVXkDR8Ik/DKvzDTEB6SjLoP4q8VIYF7 uav2igBoI9TraI9nExrIVeQjUfqMqfZqRLLXUAIhx9frJAAwzbeLcoI9oCiDruWC SGm8vYEfHt/xJ2/y17oklbQNOmfIoCgN5Pp3q6sFtYZ27UHvqdU9sujUzx3kVWWb FQK18q2zXCE9j6tJPNL7jU17BFZaOGuMeQF4cvn2dweTAhhvR/NkY4Q93H9ULoc6 qu2baFBakdBUT49UnsikdKd3rBekR5iqpXYq1uetH2GCK/JB2z+aMq1J/fT9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/8wZQvEDk+XlvC0eMfQKM71/Xz0wHwYDVR0j BBgwFoAU1Wd++hNwhxHNr7Z9nEyPX/+ponEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Nzk2NTlhOS01NTA1LTQ5NGItYTAzYy02ZWJhY2ZhZGY5MzEvMC9ENTY3N0VGQTEz NzA4NzExQ0RBRkI2N0Q5QzRDOEY1RkZGQTlBMjcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU2NzdFRkExMzcwODcxMUNEQUZCNjdEOUM0QzhGNUZGRkE5 QTI3MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3OTY1OWE5LTU1MDUtNDk0Yi1h MDNjLTZlYmFjZmFkZjkzMS8wLzMxMzAzMzJlMzEzNDM3MmUzODM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5NUMA0GCSqG SIb3DQEBCwUAA4IBAQBhwARcy0DoUJYYl5JtJ9PNFpewpOwnykOhXjcVNmAISlSt VCmxPczmqaMmS4HGNYJQvwSdMynB5Tujm1+EMqjbhHmgFOWyPcnozDeD3hRnCkfE mN3RrsuQ8G+ewQzOEVCc/Ll+ETFA+pOwaOzsg2qvIt31c506iV1Plrc+rHwl2XEl mgc5lhEl9ycyEuvQaBXWEljLJ+hV9CsEe6+ehk7A4PYSt0/SkEhJAnmUmZImNon/ vVDEG4eCVPIVC1DdS/HlZ428EppgWKqxQBdiWJiSMQ+Asy3h5aEL7bGZKO6Poviy 8+QZ41g7C+vpNnAoFpaYCnrRwFiwgFTTvO4OYBrd -----END CERTIFICATE-----Generated at Sun Jun 2 00:28:56 2024 by rpki-client on console-ams.rpki-client.org