$ rpki-client -vvf repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3232392e302f32342d3234203d3e20313332363638.roa File: 3130332e31392e3232392e302f32342d3234203d3e20313332363638.roa (raw, json) Hash identifier: oMRijgdAHCNRg+15ammSHtDdDugl696TVDAz4O0xa3w= Subject key identifier: 0F:51:07:78:63:E1:A3:7C:5C:E6:61:19:98:CE:68:06:A9:78:0A:0A Certificate issuer: /CN=95966A8DB250307CF9852483F96922EE520F6E2A Certificate serial: 712F021ED3D58D3FBFA775BE9094F736938B6324 Authority key identifier: 95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3232392e302f32342d3234203d3e20313332363638.roa Signing time: Thu 07 Sep 2023 08:00:00 +0000 ROA not before: Thu 07 Sep 2023 07:55:00 +0000 ROA not after: Thu 05 Sep 2024 08:00:00 +0000 asID: 132668 IP address blocks: 103.19.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:2f:02:1e:d3:d5:8d:3f:bf:a7:75:be:90:94:f7:36:93:8b:63:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95966A8DB250307CF9852483F96922EE520F6E2A Validity Not Before: Sep 7 07:55:00 2023 GMT Not After : Sep 5 08:00:00 2024 GMT Subject: CN=0F51077863E1A37C5CE6611998CE6806A9780A0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:d8:1c:ce:a3:03:8c:7c:d7:bb:8d:fd:a0:cb: 03:52:c9:14:19:a6:27:32:a5:f4:8c:b7:76:5f:fa: e4:94:db:a4:ab:41:5b:5b:bc:d1:e1:84:9f:83:dd: 82:63:a9:fb:7f:78:b0:6c:4f:a8:e3:0d:af:bb:ea: 94:a0:22:91:a6:f5:f7:79:fd:c5:99:98:82:90:17: 23:f0:a8:80:07:83:db:d7:a1:c9:83:f4:8b:d0:04: ed:4f:a4:3d:3e:3d:d1:b7:5a:eb:27:3f:39:28:8e: b5:3e:01:53:fc:74:c9:4e:65:62:2f:e7:4e:0e:bf: e8:4a:41:f1:4c:8f:30:bb:7b:16:81:7e:f9:0a:5b: d5:9b:04:ad:44:1f:39:b1:97:85:06:61:cd:a3:b5: 3f:f4:84:d7:3e:61:d6:2e:34:e0:02:ca:14:10:8a: dc:14:c5:61:0a:ba:ed:bf:1d:91:4c:10:49:12:45: 73:ea:af:03:77:3d:e4:13:5a:ed:73:35:5c:7e:c0: ae:5c:18:66:a9:fc:55:ac:07:0a:dd:fb:a1:c7:00: 9d:16:55:8c:c0:73:19:86:97:38:72:3d:be:eb:ab: 0a:80:e4:f1:a1:0c:40:a0:af:f1:76:5d:b7:f8:ab: 8f:71:7b:85:38:92:6b:4d:08:26:93:85:da:b2:04: cc:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:51:07:78:63:E1:A3:7C:5C:E6:61:19:98:CE:68:06:A9:78:0A:0A X509v3 Authority Key Identifier: keyid:95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3232392e302f32342d3234203d3e20313332363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.229.0/24 Signature Algorithm: sha256WithRSAEncryption 77:be:8b:09:51:3b:cd:b9:ec:d4:13:c6:e1:8f:11:5e:f8:47: 37:3c:da:ca:d0:89:38:ae:e4:9a:73:aa:9f:49:c0:c1:15:e1: b8:b9:d4:41:2a:df:f6:48:7d:5f:a4:9d:e9:b8:8a:b3:b2:2a: 15:dc:f7:eb:f1:a5:23:1d:74:15:5e:b5:a6:38:79:d6:6f:ad: 50:8c:cc:75:68:00:a9:24:cc:3c:23:bf:c2:19:28:bf:5c:8c: 35:28:25:61:26:f5:8e:70:69:c7:0c:6f:e4:d8:03:ff:6b:b4: 6e:80:ae:90:51:b6:67:5b:81:f9:70:19:bf:b8:c9:89:d5:a8: d9:a3:ea:2d:53:54:76:15:13:a8:88:47:1c:11:bf:d6:79:96: 71:57:57:b6:df:33:97:4a:55:cd:94:49:c8:1e:6b:16:6a:b2: 06:62:0e:c6:36:49:e7:16:f7:07:91:b7:91:2d:2f:a8:0d:5e: 20:9e:6c:9c:6e:9c:f0:ea:1e:4d:e2:29:4d:22:bd:d6:f5:1a: 66:3f:61:1c:d5:b3:64:f8:e7:4d:f3:61:1c:37:57:46:fb:4d: 4d:16:30:67:34:ee:94:0f:17:99:24:07:8d:ab:cb:c3:f6:64: bd:91:6e:6f:35:2a:03:2c:69:4d:7c:31:d2:08:07:3f:22:1b: 21:13:ff:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcS8CHtPVjT+/p3W+kJT3NpOLYyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1 MjBGNkUyQTAeFw0yMzA5MDcwNzU1MDBaFw0yNDA5MDUwODAwMDBaMDMxMTAvBgNV BAMTKDBGNTEwNzc4NjNFMUEzN0M1Q0U2NjExOTk4Q0U2ODA2QTk3ODBBMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD62BzOowOMfNe7jf2gywNSyRQZ picypfSMt3Zf+uSU26SrQVtbvNHhhJ+D3YJjqft/eLBsT6jjDa+76pSgIpGm9fd5 /cWZmIKQFyPwqIAHg9vXocmD9IvQBO1PpD0+PdG3WusnPzkojrU+AVP8dMlOZWIv 504Ov+hKQfFMjzC7exaBfvkKW9WbBK1EHzmxl4UGYc2jtT/0hNc+YdYuNOACyhQQ itwUxWEKuu2/HZFMEEkSRXPqrwN3PeQTWu1zNVx+wK5cGGap/FWsBwrd+6HHAJ0W VYzAcxmGlzhyPb7rqwqA5PGhDECgr/F2Xbf4q49xe4U4kmtNCCaThdqyBMyRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUD1EHeGPho3xc5mEZmM5oBql4CgowHwYDVR0j BBgwFoAUlZZqjbJQMHz5hSSD+Wki7lIPbiowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MmYxNDE3YS01NzE4LTQwNzEtOWYzNS1jMTIyNTU1ZGFjN2EvMC85NTk2NkE4REIy NTAzMDdDRjk4NTI0ODNGOTY5MjJFRTUyMEY2RTJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1MjBG NkUyQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyZjE0MTdhLTU3MTgtNDA3MS05 ZjM1LWMxMjI1NTVkYWM3YS8wLzMxMzAzMzJlMzEzOTJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxPlMA0GCSqG SIb3DQEBCwUAA4IBAQB3vosJUTvNuezUE8bhjxFe+Ec3PNrK0Ik4ruSac6qfScDB FeG4udRBKt/2SH1fpJ3puIqzsioV3Pfr8aUjHXQVXrWmOHnWb61QjMx1aACpJMw8 I7/CGSi/XIw1KCVhJvWOcGnHDG/k2AP/a7RugK6QUbZnW4H5cBm/uMmJ1ajZo+ot U1R2FROoiEccEb/WeZZxV1e23zOXSlXNlEnIHmsWarIGYg7GNknnFvcHkbeRLS+o DV4gnmycbpzw6h5N4ilNIr3W9RpmP2Ec1bNk+OdN82EcN1dG+01NFjBnNO6UDxeZ JAeNq8vD9mS9kW5vNSoDLGlNfDHSCAc/IhshE/9W -----END CERTIFICATE-----Generated at Sat Jun 22 14:21:51 2024 by rpki-client on console-ams.rpki-client.org