$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa File: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (raw, json) Hash identifier: YSw61RG8V9aOyQYDMD+nr1J8SFsLvhaFWgeo78KP3Ms= Subject key identifier: 23:61:98:3F:0E:6F:9E:E8:45:D1:C8:46:07:EB:74:75:5A:EA:78:E3 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 6A76380294F6F6590F0FF215D54CD0731DB323D7 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa Signing time: Fri 22 Dec 2023 10:01:08 +0000 ROA not before: Fri 22 Dec 2023 09:56:08 +0000 ROA not after: Fri 20 Dec 2024 10:01:08 +0000 asID: 140023 IP address blocks: 103.149.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:76:38:02:94:f6:f6:59:0f:0f:f2:15:d5:4c:d0:73:1d:b3:23:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Dec 22 09:56:08 2023 GMT Not After : Dec 20 10:01:08 2024 GMT Subject: CN=2361983F0E6F9EE845D1C84607EB74755AEA78E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d2:9f:41:67:98:46:94:b2:73:aa:e6:09:39: 40:01:9a:1b:d6:f9:52:a6:7c:c5:88:25:3b:90:bf: 06:8f:e0:ff:14:4d:ce:ab:15:2e:09:e3:13:64:a6: 03:fe:83:5b:59:e3:2d:04:63:fd:db:04:3f:dc:89: c0:54:01:6d:01:ed:0b:ea:07:f4:b7:1d:9c:34:0c: 76:da:35:5c:6e:78:41:a9:fa:0d:ae:39:69:c3:00: 36:d7:2b:6d:9b:0c:02:8b:4c:28:46:a3:8b:06:d4: 11:17:69:da:84:c7:4d:a4:01:5f:9a:61:49:e8:63: 42:ba:d8:c4:89:3d:b0:94:c5:60:f3:6a:01:a9:78: ce:33:87:4c:cd:21:05:f5:d6:49:a1:19:74:e8:ef: 39:c7:b2:b4:b8:89:06:e1:81:29:f5:e5:33:87:47: 18:7f:c1:b5:09:35:8e:2a:2d:65:ec:78:99:a6:d5: 12:e6:81:83:33:77:8e:4d:2f:a3:60:3d:73:8c:53: 68:ac:6c:72:7d:28:32:65:f2:f7:aa:fd:10:13:03: ee:1c:6f:e3:82:38:88:92:3a:b9:94:c9:d6:4d:a5: 97:fa:7e:4e:0a:d4:07:86:11:c2:b6:65:9b:87:8b: 97:b6:4c:57:ba:64:e1:31:0f:9b:bb:32:d8:48:5d: bb:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:61:98:3F:0E:6F:9E:E8:45:D1:C8:46:07:EB:74:75:5A:EA:78:E3 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/23 Signature Algorithm: sha256WithRSAEncryption 61:50:8e:07:c4:46:82:97:3e:89:82:75:fd:be:99:7f:71:70: b9:28:4f:75:b3:bc:cf:d9:7d:5d:c2:14:24:a1:9f:ee:dc:c9: 76:9c:1a:0e:9c:2c:4c:b7:65:0c:9c:53:76:f2:76:8d:27:88: 82:f8:de:e9:87:8f:6b:11:49:1f:af:9f:01:1a:5a:4c:46:d4: c3:59:58:36:e4:e9:96:b9:3e:50:6c:be:1f:5a:83:25:e9:9f: 99:71:71:0c:6c:af:c3:77:f6:d2:43:ca:7a:fb:84:d5:e5:b1: d6:16:80:89:ac:6a:66:e1:28:51:ff:73:4c:3a:03:07:44:64: f4:e5:45:e6:7a:dc:58:9d:aa:7f:73:49:8a:9d:55:01:bf:46: 28:79:47:ec:02:6e:e1:24:05:28:ed:47:13:29:5a:e2:b3:1c: 50:82:fd:19:de:65:f0:d2:d6:7a:20:84:26:fd:f6:87:a3:b8: b3:a0:df:b0:04:92:98:22:09:d0:65:f3:a9:58:8b:f4:6e:e7: 6c:57:67:d9:3a:d1:33:d7:15:0b:4a:3b:b5:7b:1e:78:63:a9: 7e:70:86:7f:bc:64:c8:c1:1a:2d:8e:e6:af:17:8c:df:93:b8: 5c:5f:48:e1:0a:e6:78:83:e2:48:a9:04:99:cb:22:70:03:1c: a2:e0:7a:c4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUanY4ApT29lkPD/IV1UzQcx2zI9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yMzEyMjIwOTU2MDhaFw0yNDEyMjAxMDAxMDhaMDMxMTAvBgNV BAMTKDIzNjE5ODNGMEU2RjlFRTg0NUQxQzg0NjA3RUI3NDc1NUFFQTc4RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt0p9BZ5hGlLJzquYJOUABmhvW +VKmfMWIJTuQvwaP4P8UTc6rFS4J4xNkpgP+g1tZ4y0EY/3bBD/cicBUAW0B7Qvq B/S3HZw0DHbaNVxueEGp+g2uOWnDADbXK22bDAKLTChGo4sG1BEXadqEx02kAV+a YUnoY0K62MSJPbCUxWDzagGpeM4zh0zNIQX11kmhGXTo7znHsrS4iQbhgSn15TOH Rxh/wbUJNY4qLWXseJmm1RLmgYMzd45NL6NgPXOMU2isbHJ9KDJl8veq/RATA+4c b+OCOIiSOrmUydZNpZf6fk4K1AeGEcK2ZZuHi5e2TFe6ZOExD5u7MthIXbuTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUI2GYPw5vnuhF0chGB+t0dVrqeOMwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlXgwDQYJ KoZIhvcNAQELBQADggEBAGFQjgfERoKXPomCdf2+mX9xcLkoT3WzvM/ZfV3CFCSh n+7cyXacGg6cLEy3ZQycU3bydo0niIL43umHj2sRSR+vnwEaWkxG1MNZWDbk6Za5 PlBsvh9agyXpn5lxcQxsr8N39tJDynr7hNXlsdYWgImsambhKFH/c0w6AwdEZPTl ReZ63Fidqn9zSYqdVQG/Rih5R+wCbuEkBSjtRxMpWuKzHFCC/RneZfDS1noghCb9 9oejuLOg37AEkpgiCdBl86lYi/Ru52xXZ9k60TPXFQtKO7V7HnhjqX5whn+8ZMjB Gi2O5q8XjN+TuFxfSOEK5niD4kipBJnLInADHKLgesQ= -----END CERTIFICATE-----Generated at Sun Jun 2 05:59:27 2024 by rpki-client on console-ams.rpki-client.org