$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa File: 3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa (raw, json) Hash identifier: cMfpaml72efLZLkWBHcBx7GSLi1m3FiVYf4yb7xjs6M= Subject key identifier: B5:BF:6F:5D:20:10:0E:12:E5:F8:25:89:C1:9B:07:19:C8:17:7E:3A Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 7BF3EFA459C8D2C919ADC82F8F73F4DA0D3F21EF Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa Signing time: Mon 31 Jul 2023 00:08:28 +0000 ROA not before: Mon 31 Jul 2023 00:03:28 +0000 ROA not after: Mon 29 Jul 2024 00:08:28 +0000 asID: 138070 IP address blocks: 103.123.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:f3:ef:a4:59:c8:d2:c9:19:ad:c8:2f:8f:73:f4:da:0d:3f:21:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: Jul 31 00:03:28 2023 GMT Not After : Jul 29 00:08:28 2024 GMT Subject: CN=B5BF6F5D20100E12E5F82589C19B0719C8177E3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d8:34:9c:fd:58:f2:b5:ea:4e:c8:80:75:15: f0:6a:0b:11:3e:8b:0b:69:d0:2e:63:96:17:c3:b4: 63:b9:66:3c:f7:7e:e3:ca:cf:b5:5f:47:fb:43:1d: b7:2e:34:90:9f:0a:ce:91:c3:d9:89:be:74:40:96: f7:fe:36:03:53:be:f5:76:af:a9:1e:f4:58:2a:6d: b7:2d:70:6c:da:fe:6a:bf:10:da:83:64:17:dc:03: d1:3e:c7:05:4c:49:7a:e8:ae:1a:ea:69:fe:bd:e5: 4a:c1:5a:cb:30:18:59:3b:34:fa:2f:63:a8:fc:c2: 36:c5:5e:cf:be:60:91:6a:e5:8b:97:f5:6e:b1:e9: a8:be:c9:dd:c3:4c:d0:dc:81:e9:60:b5:25:c2:95: f4:09:f3:51:b6:cc:54:bf:d0:92:5d:41:07:4c:45: 59:e1:d0:db:82:3a:31:56:dd:96:93:ef:f6:77:f7: ba:11:af:7c:ab:f1:5c:0c:1a:ac:38:f4:25:16:bc: f3:50:54:b2:93:d6:dd:c9:c9:40:1a:76:6c:21:22: 1b:22:2f:6b:cf:1d:0e:70:84:b4:f4:d6:96:ab:59: a8:eb:a6:69:c7:29:4f:9f:15:c1:4c:92:19:ec:05: ba:a4:45:06:91:ec:90:50:9f:b7:0b:db:b8:10:41: 05:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:BF:6F:5D:20:10:0E:12:E5:F8:25:89:C1:9B:07:19:C8:17:7E:3A X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.104.0/24 Signature Algorithm: sha256WithRSAEncryption 84:ef:c9:6b:9d:87:48:c2:79:d2:3a:c9:f8:6d:27:1d:03:0b: 38:5e:97:c9:53:c4:e9:56:44:7f:8e:ed:2e:94:a3:b4:f4:f4: ac:59:7a:c4:7d:e6:43:65:ff:dd:db:03:dd:2a:70:2d:8a:e7: 2f:3b:bc:14:de:29:49:05:66:9c:2c:8d:97:aa:ff:f9:0f:45: 79:7e:a9:19:ed:e3:65:b8:eb:ee:62:cb:e1:d0:82:a6:1a:1c: 6b:d8:f5:fd:5e:20:fa:b7:d8:c6:97:a4:0e:e3:00:5d:62:5d: 36:82:42:10:1a:8e:1c:04:ff:e8:55:0c:46:31:85:ce:44:c4: 42:be:0c:3a:ed:f4:49:21:9e:47:ef:40:4e:62:26:c3:1c:5c: d1:34:57:c4:a9:8f:39:a8:3a:f8:b4:17:06:8a:d9:93:f2:a2: bc:29:b3:2b:32:33:1b:92:1e:3b:95:57:89:c6:12:d9:37:21: be:fa:a2:18:24:9d:e2:2c:f2:9f:df:31:21:a6:be:16:3e:4d: 5c:a4:81:c5:cd:5c:3a:24:38:24:20:99:82:88:47:45:01:af: a0:7e:29:69:ee:42:1f:94:d9:a5:7c:80:ee:29:d7:2e:12:79: 3d:4e:fa:8d:f8:0c:8f:ad:29:f1:ee:22:f6:f5:83:d1:08:af: 4c:76:2f:d0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUe/PvpFnI0skZrcgvj3P02g0/Ie8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yMzA3MzEwMDAzMjhaFw0yNDA3MjkwMDA4MjhaMDMxMTAvBgNV BAMTKEI1QkY2RjVEMjAxMDBFMTJFNUY4MjU4OUMxOUIwNzE5QzgxNzdFM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF2DSc/VjytepOyIB1FfBqCxE+ iwtp0C5jlhfDtGO5Zjz3fuPKz7VfR/tDHbcuNJCfCs6Rw9mJvnRAlvf+NgNTvvV2 r6ke9FgqbbctcGza/mq/ENqDZBfcA9E+xwVMSXrorhrqaf695UrBWsswGFk7NPov Y6j8wjbFXs++YJFq5YuX9W6x6ai+yd3DTNDcgelgtSXClfQJ81G2zFS/0JJdQQdM RVnh0NuCOjFW3ZaT7/Z397oRr3yr8VwMGqw49CUWvPNQVLKT1t3JyUAadmwhIhsi L2vPHQ5whLT01parWajrpmnHKU+fFcFMkhnsBbqkRQaR7JBQn7cL27gQQQWRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtb9vXSAQDhLl+CWJwZsHGcgXfjowHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2gwDQYJ KoZIhvcNAQELBQADggEBAITvyWudh0jCedI6yfhtJx0DCzhel8lTxOlWRH+O7S6U o7T09KxZesR95kNl/93bA90qcC2K5y87vBTeKUkFZpwsjZeq//kPRXl+qRnt42W4 6+5iy+HQgqYaHGvY9f1eIPq32MaXpA7jAF1iXTaCQhAajhwE/+hVDEYxhc5ExEK+ DDrt9EkhnkfvQE5iJsMcXNE0V8SpjzmoOvi0FwaK2ZPyorwpsysyMxuSHjuVV4nG Etk3Ib76ohgkneIs8p/fMSGmvhY+TVykgcXNXDokOCQgmYKIR0UBr6B+KWnuQh+U 2aV8gO4p1y4SeT1O+o34DI+tKfHuIvb1g9EIr0x2L9A= -----END CERTIFICATE-----Generated at Sun Jun 2 03:38:32 2024 by rpki-client on console-ams.rpki-client.org