$ rpki-client -vvf repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/3130332e38372e3138342e302f32322d3234203d3e20313336313036.roa File: 3130332e38372e3138342e302f32322d3234203d3e20313336313036.roa (raw, json) Hash identifier: k1UXAk7TAeN8eNoLj3NOve87JW4xCL7oCrFaD/kSktY= Subject key identifier: 36:28:00:70:F8:49:93:9F:40:76:BB:FF:91:B6:2B:CA:18:7E:05:75 Certificate issuer: /CN=55FE929F3DF18E4B5BC4309769AA6C72AFF634CC Certificate serial: 21AD3A89496CA37D5010E7C9799289454B137E7D Authority key identifier: 55:FE:92:9F:3D:F1:8E:4B:5B:C4:30:97:69:AA:6C:72:AF:F6:34:CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/3130332e38372e3138342e302f32322d3234203d3e20313336313036.roa Signing time: Mon 31 Jul 2023 00:08:15 +0000 ROA not before: Mon 31 Jul 2023 00:03:15 +0000 ROA not after: Mon 29 Jul 2024 00:08:15 +0000 asID: 136106 IP address blocks: 103.87.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.crl rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ad:3a:89:49:6c:a3:7d:50:10:e7:c9:79:92:89:45:4b:13:7e:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55FE929F3DF18E4B5BC4309769AA6C72AFF634CC Validity Not Before: Jul 31 00:03:15 2023 GMT Not After : Jul 29 00:08:15 2024 GMT Subject: CN=36280070F849939F4076BBFF91B62BCA187E0575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:11:d9:6b:96:dc:9d:30:8d:cc:a2:34:13:db: 9d:c6:a4:fe:48:d0:c9:89:df:10:42:d6:15:b4:d4: e1:d3:aa:70:c1:dc:8c:6f:dd:d3:d5:7b:50:5c:89: 3d:1f:e3:6c:06:dd:7b:be:b7:1c:42:f4:67:81:23: 52:17:66:0f:6f:f8:5f:71:79:e7:fb:34:2a:60:ab: 41:0f:02:f5:da:4d:12:0a:b7:ba:f9:cb:56:2d:9f: b6:95:ee:b1:44:8d:fe:69:2b:56:15:5b:aa:a7:dc: 10:73:48:dd:81:75:43:41:43:9f:fe:f3:60:8f:48: a2:32:17:68:31:1b:78:34:47:6f:bf:65:5d:c3:bc: b5:1c:19:d2:58:66:76:d8:14:81:b1:10:f5:9b:38: 01:44:fe:be:7f:d0:04:fc:f5:ae:80:9c:55:4d:3a: b8:9d:60:30:95:3b:e5:9c:36:72:e0:82:c0:33:06: 30:c1:aa:21:4b:ef:f4:d0:d8:f2:77:1a:07:65:22: 49:bf:22:f3:2a:cf:4c:ed:9c:6b:8d:19:81:10:e9: c0:06:67:8d:39:e2:fc:aa:2b:be:44:89:4a:51:39: 61:1c:f7:c8:cc:95:9b:5f:be:a5:b4:f1:78:85:f2: c0:ad:90:54:62:55:f2:97:cd:7e:5b:60:6c:b4:02: 4d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:28:00:70:F8:49:93:9F:40:76:BB:FF:91:B6:2B:CA:18:7E:05:75 X509v3 Authority Key Identifier: keyid:55:FE:92:9F:3D:F1:8E:4B:5B:C4:30:97:69:AA:6C:72:AF:F6:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/3130332e38372e3138342e302f32322d3234203d3e20313336313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.184.0/22 Signature Algorithm: sha256WithRSAEncryption 62:bc:f5:22:c9:6f:50:a5:26:f6:e5:ed:d9:cc:3a:f2:4a:e3: c5:55:a3:d3:d4:f2:0c:6f:8c:3b:fc:75:db:23:3e:cf:8c:f7: 6e:22:e2:f2:44:44:01:e0:31:55:68:cc:22:6f:35:61:e6:06: 47:f4:56:ad:50:45:19:c2:32:68:10:91:63:d4:4d:d6:5e:e1: de:b5:4d:e9:0b:44:92:9d:da:f0:be:73:97:1d:b5:37:be:3c: da:72:fc:03:8e:ac:17:fe:6a:b7:ee:69:2e:a0:f5:89:25:1b: 79:5f:43:a2:6f:3b:ee:f2:2e:9e:ff:56:f6:e0:8e:9d:d1:85: ee:29:0f:9f:1b:d5:12:20:1f:e8:af:6f:d8:af:9b:b1:d9:1b: db:48:12:42:d3:c9:c6:29:67:e3:f5:fd:b8:27:37:3a:3d:26: ef:a7:9d:34:8e:31:4a:06:e6:42:a8:2f:29:12:4b:13:03:40: ce:64:3a:0e:1a:a6:05:35:94:c4:0f:99:55:d6:2f:0d:c8:f4: e6:f2:fa:35:fb:3c:44:e6:26:be:a5:a1:c7:71:c4:88:33:01: 8e:50:ff:58:fa:d3:4d:6a:be:8d:26:6f:e4:e5:83:7b:75:96: eb:2f:57:a9:84:d8:f6:57:45:20:65:b9:22:20:70:34:9a:30: 10:05:58:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIa06iUlso31QEOfJeZKJRUsTfn0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTVGRTkyOUYzREYxOEU0QjVCQzQzMDk3NjlBQTZDNzJB RkY2MzRDQzAeFw0yMzA3MzEwMDAzMTVaFw0yNDA3MjkwMDA4MTVaMDMxMTAvBgNV BAMTKDM2MjgwMDcwRjg0OTkzOUY0MDc2QkJGRjkxQjYyQkNBMTg3RTA1NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBEdlrltydMI3MojQT253GpP5I 0MmJ3xBC1hW01OHTqnDB3Ixv3dPVe1BciT0f42wG3Xu+txxC9GeBI1IXZg9v+F9x eef7NCpgq0EPAvXaTRIKt7r5y1Ytn7aV7rFEjf5pK1YVW6qn3BBzSN2BdUNBQ5/+ 82CPSKIyF2gxG3g0R2+/ZV3DvLUcGdJYZnbYFIGxEPWbOAFE/r5/0AT89a6AnFVN OridYDCVO+WcNnLggsAzBjDBqiFL7/TQ2PJ3GgdlIkm/IvMqz0ztnGuNGYEQ6cAG Z4054vyqK75EiUpROWEc98jMlZtfvqW08XiF8sCtkFRiVfKXzX5bYGy0Ak0lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNigAcPhJk59Adrv/kbYryhh+BXUwHwYDVR0j BBgwFoAUVf6Snz3xjktbxDCXaapscq/2NMwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Yzk3NmVjNS1iMDVhLTQ4MGYtODZkYS1kNTU3Zjg0YTIzNjQvMC81NUZFOTI5RjNE RjE4RTRCNUJDNDMwOTc2OUFBNkM3MkFGRjYzNENDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTVGRTkyOUYzREYxOEU0QjVCQzQzMDk3NjlBQTZDNzJBRkY2 MzRDQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjOTc2ZWM1LWIwNWEtNDgwZi04 NmRhLWQ1NTdmODRhMjM2NC8wLzMxMzAzMzJlMzgzNzJlMzEzODM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ1e4MA0GCSqG SIb3DQEBCwUAA4IBAQBivPUiyW9QpSb25e3ZzDrySuPFVaPT1PIMb4w7/HXbIz7P jPduIuLyREQB4DFVaMwibzVh5gZH9FatUEUZwjJoEJFj1E3WXuHetU3pC0SSndrw vnOXHbU3vjzacvwDjqwX/mq37mkuoPWJJRt5X0Oibzvu8i6e/1b24I6d0YXuKQ+f G9USIB/or2/Yr5ux2RvbSBJC08nGKWfj9f24Jzc6PSbvp500jjFKBuZCqC8pEksT A0DOZDoOGqYFNZTED5lV1i8NyPTm8vo1+zxE5ia+paHHccSIMwGOUP9Y+tNNar6N Jm/k5YN7dZbrL1ephNj2V0UgZbkiIHA0mjAQBVg1 -----END CERTIFICATE-----Generated at Sun Jun 2 10:44:53 2024 by rpki-client on console-ams.rpki-client.org