$ rpki-client -vvf repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa File: 3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa (raw, json) Hash identifier: 3gAYBALY9khDRsp5MO/uVdTqC0sSebaGWfCaedkAA7s= Subject key identifier: D4:22:F4:C7:4A:A5:60:03:C8:44:F8:12:B9:1D:77:5A:BE:22:4D:D8 Certificate issuer: /CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Certificate serial: 6B5EE8F543E4017840E82718CDF0F1E2DBE71174 Authority key identifier: 14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa Signing time: Wed 31 May 2023 21:52:52 +0000 ROA not before: Wed 31 May 2023 21:47:52 +0000 ROA not after: Wed 29 May 2024 21:52:52 +0000 asID: 138064 IP address blocks: 103.122.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:5e:e8:f5:43:e4:01:78:40:e8:27:18:cd:f0:f1:e2:db:e7:11:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Validity Not Before: May 31 21:47:52 2023 GMT Not After : May 29 21:52:52 2024 GMT Subject: CN=D422F4C74AA56003C844F812B91D775ABE224DD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4a:1c:cf:ac:3f:36:ab:15:05:6c:ba:a5:1b: 31:ac:10:78:8e:41:e1:bb:57:b8:87:e2:b6:98:67: e7:1b:1e:78:e9:bb:4e:f2:c8:e1:87:7b:c3:d6:59: 9f:60:43:b5:f9:54:7f:4c:01:a5:6c:75:fd:2b:48: 03:ae:f0:28:94:a7:c8:48:dd:d5:5d:1d:27:de:25: 72:be:c3:ec:9d:d4:44:9e:c3:9a:51:ad:e1:17:d2: c6:1d:14:2c:59:15:da:02:02:d4:6d:fa:b2:79:3c: dd:19:65:31:a0:2b:30:e4:58:32:f6:a2:ce:f6:03: d5:2f:58:6b:28:8e:61:86:2f:43:40:79:ed:3a:19: 95:4f:ab:0a:71:60:07:25:6e:b4:1a:ce:9a:bf:d2: 50:6c:a0:d1:cd:95:65:a0:b3:75:bb:9d:9a:d8:98: 14:6f:13:b4:ed:eb:31:62:74:bc:4b:74:32:60:6e: db:60:9d:12:28:76:0d:ad:c8:53:25:ce:c5:d0:37: 4f:46:b1:68:1d:c1:b4:b5:df:20:1e:b9:41:38:00: 34:b6:2c:f7:fc:40:96:34:91:a0:99:fe:a1:94:07: cb:8e:b6:ac:e6:6e:d1:2c:cc:b2:d4:56:34:a9:3a: 01:49:7b:c8:8a:9a:0b:e1:02:bc:81:34:a1:0e:51: ef:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:22:F4:C7:4A:A5:60:03:C8:44:F8:12:B9:1D:77:5A:BE:22:4D:D8 X509v3 Authority Key Identifier: keyid:14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.64.0/22 Signature Algorithm: sha256WithRSAEncryption 64:07:7c:0e:1b:00:f5:51:d6:f9:1d:4f:17:79:18:de:1e:dc: 34:8f:6f:3d:d7:42:57:2a:e3:56:b8:38:ba:2c:2a:9f:3e:97: 08:38:e6:a6:97:6d:e8:a1:2e:5e:bd:e2:53:35:3f:77:eb:e9: f4:80:28:b0:9c:b5:29:d7:f9:db:ad:4d:e0:80:53:de:4e:c9: be:6b:f1:93:4c:c9:c8:67:1d:92:06:77:4e:39:e3:cb:93:b8: 2a:89:8d:7d:0f:2b:1c:88:8d:83:18:c0:db:c7:ba:af:9f:d2: 4d:6e:2c:80:b5:d0:25:9a:5a:65:0b:f7:68:be:8a:ba:24:1c: 35:85:e6:50:12:bd:c9:5f:09:f4:0b:38:38:c6:8c:b4:dc:c4: 78:39:5b:0a:9d:1c:f2:d1:61:b9:38:44:81:54:10:e7:7c:8f: 42:84:26:dc:3b:f6:1a:87:4a:85:54:0a:3e:fd:81:e7:ec:06: e1:02:bd:7b:66:77:43:fe:24:06:f9:69:ff:7e:7c:c4:5b:a6: 7c:81:de:48:ed:19:0e:eb:95:a9:94:38:1c:01:55:c5:0c:e0: 0d:cb:f7:3a:5a:ff:34:e6:8c:eb:0b:a4:62:2f:11:02:c7:f1: d8:01:ae:46:4d:a9:67:e4:89:a6:51:4c:64:57:88:e4:a7:f2: c7:b8:e1:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa17o9UPkAXhA6CcYzfDx4tvnEXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJB Qjg5Q0M3NTAeFw0yMzA1MzEyMTQ3NTJaFw0yNDA1MjkyMTUyNTJaMDMxMTAvBgNV BAMTKEQ0MjJGNEM3NEFBNTYwMDNDODQ0RjgxMkI5MUQ3NzVBQkUyMjRERDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXShzPrD82qxUFbLqlGzGsEHiO QeG7V7iH4raYZ+cbHnjpu07yyOGHe8PWWZ9gQ7X5VH9MAaVsdf0rSAOu8CiUp8hI 3dVdHSfeJXK+w+yd1ESew5pRreEX0sYdFCxZFdoCAtRt+rJ5PN0ZZTGgKzDkWDL2 os72A9UvWGsojmGGL0NAee06GZVPqwpxYAclbrQazpq/0lBsoNHNlWWgs3W7nZrY mBRvE7Tt6zFidLxLdDJgbttgnRIodg2tyFMlzsXQN09GsWgdwbS13yAeuUE4ADS2 LPf8QJY0kaCZ/qGUB8uOtqzmbtEszLLUVjSpOgFJe8iKmgvhAryBNKEOUe8FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1CL0x0qlYAPIRPgSuR13Wr4iTdgwHwYDVR0j BBgwFoAUFKOfpUEOpX4NQW4DLXaeUquJzHUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MGQ5YTI5Ni04MjI4LTQzODYtOGZlOS05N2FhMzA5MWRlMGQvMC8xNEEzOUZBNTQx MEVBNTdFMEQ0MTZFMDMyRDc2OUU1MkFCODlDQzc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJBQjg5 Q0M3NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwZDlhMjk2LTgyMjgtNDM4Ni04 ZmU5LTk3YWEzMDkxZGUwZC8wLzMxMzAzMzJlMzEzMjMyMmUzNjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ3pAMA0GCSqG SIb3DQEBCwUAA4IBAQBkB3wOGwD1Udb5HU8XeRjeHtw0j28910JXKuNWuDi6LCqf PpcIOOaml23ooS5eveJTNT936+n0gCiwnLUp1/nbrU3ggFPeTsm+a/GTTMnIZx2S BndOOePLk7gqiY19DysciI2DGMDbx7qvn9JNbiyAtdAlmlplC/dovoq6JBw1heZQ Er3JXwn0Czg4xoy03MR4OVsKnRzy0WG5OESBVBDnfI9ChCbcO/Yah0qFVAo+/YHn 7AbhAr17ZndD/iQG+Wn/fnzEW6Z8gd5I7RkO65WplDgcAVXFDOANy/c6Wv805ozr C6RiLxECx/HYAa5GTaln5ImmUUxkV4jkp/LHuOGp -----END CERTIFICATE-----Generated at Sat Apr 27 10:13:23 2024 by rpki-client on console-ams.rpki-client.org