$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa File: 3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa (raw, json) Hash identifier: Jcrotx/J+M9isu15TPRFtjOsEL2f83lMP7ms3K9R7ag= Subject key identifier: 72:90:11:37:90:7D:1A:9F:72:3B:C6:B0:31:AA:DA:9D:DC:57:FA:73 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 36C165F2DDB5F2FBDF27E0D8E7C4432CBDC127A7 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa Signing time: Mon 31 Jul 2023 00:08:38 +0000 ROA not before: Mon 31 Jul 2023 00:03:38 +0000 ROA not after: Mon 29 Jul 2024 00:08:38 +0000 asID: 9422 IP address blocks: 103.206.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c1:65:f2:dd:b5:f2:fb:df:27:e0:d8:e7:c4:43:2c:bd:c1:27:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jul 31 00:03:38 2023 GMT Not After : Jul 29 00:08:38 2024 GMT Subject: CN=72901137907D1A9F723BC6B031AADA9DDC57FA73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fd:d0:37:2c:37:8b:37:a6:8c:91:25:13:71: db:d9:be:0f:21:65:00:b2:42:ae:e4:ef:56:71:92: 6b:37:8a:ec:fe:48:22:42:f0:43:56:29:85:1b:b2: f6:37:47:2c:68:9f:6d:e2:26:c2:6d:86:74:06:03: ac:2e:fc:cd:3b:3e:1c:91:ab:f2:18:15:3d:63:f6: 8b:b3:0a:6e:69:fa:c9:22:d8:66:05:6c:c8:cb:c4: 39:a1:fc:65:30:f2:48:14:c9:7a:0a:b8:d3:11:39: d8:84:07:db:1f:4f:da:f1:96:00:8e:07:13:76:1e: 06:a3:6c:f1:b5:d3:3b:bb:80:01:91:a1:db:c7:42: d5:86:e4:88:fd:15:b9:ca:31:a4:0d:c0:d6:fb:b6: 4e:e9:97:97:58:8d:52:bc:de:c8:93:c3:24:27:db: cf:fa:13:bc:d7:ba:64:44:ea:7e:d7:c4:28:12:82: d1:e0:87:bb:11:3c:30:d0:15:d9:f1:73:3b:02:03: 93:75:2c:cf:7d:c8:71:32:b4:43:af:ff:4b:04:bb: 78:28:71:c5:3e:a1:8c:79:03:fe:64:26:11:90:58: 5c:e4:82:a0:6c:8c:4e:24:a9:94:87:6f:66:68:ec: ba:24:9c:8a:2b:bd:25:35:a1:dc:80:6b:b5:75:f2: 9f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:90:11:37:90:7D:1A:9F:72:3B:C6:B0:31:AA:DA:9D:DC:57:FA:73 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.206.252.0/22 Signature Algorithm: sha256WithRSAEncryption 06:f8:ba:d7:88:cc:b0:7f:3c:47:6d:72:72:02:0e:4a:73:ac: f0:bc:7e:a6:15:d7:af:3c:a4:cf:36:15:5a:f4:f5:27:8c:3f: 05:f8:82:99:df:8f:5a:58:ec:5a:75:01:da:7f:d4:95:39:ba: 54:b4:5f:bf:42:ad:fc:29:32:4f:7e:fa:98:6e:c6:73:27:80: b5:83:95:8a:68:5a:84:82:00:7b:2a:b3:43:ef:04:b8:9e:31: 20:e9:fd:de:45:d9:d6:ca:83:f6:d0:98:89:c1:1e:d4:78:37: 55:4f:56:8b:fc:a4:a6:76:98:ff:b2:33:17:f8:3e:66:0f:d3: 22:02:cb:a6:86:b9:b4:18:99:56:aa:61:5a:92:c7:b3:79:64: 0e:ef:58:04:ad:d3:9c:40:f7:ba:88:1d:12:e7:30:47:75:42: 68:5e:e0:72:b3:05:c7:c3:af:3a:03:9b:03:87:27:29:50:93: aa:4b:fa:ce:7d:06:0c:f7:fc:69:76:79:5c:f5:e1:2a:0b:dd: 88:35:f7:fd:60:68:d4:c3:87:12:e6:c9:f4:f5:ab:93:39:4a: d4:09:9e:15:7a:b0:49:2c:3d:d8:50:0c:20:de:ee:95:c7:7e: 20:4c:c2:6f:e4:16:73:c6:06:c8:e8:70:04:5c:fc:fd:6c:b1: 8b:5f:51:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNsFl8t218vvfJ+DY58RDLL3BJ6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yMzA3MzEwMDAzMzhaFw0yNDA3MjkwMDA4MzhaMDMxMTAvBgNV BAMTKDcyOTAxMTM3OTA3RDFBOUY3MjNCQzZCMDMxQUFEQTlEREM1N0ZBNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO/dA3LDeLN6aMkSUTcdvZvg8h ZQCyQq7k71Zxkms3iuz+SCJC8ENWKYUbsvY3Ryxon23iJsJthnQGA6wu/M07PhyR q/IYFT1j9ouzCm5p+ski2GYFbMjLxDmh/GUw8kgUyXoKuNMROdiEB9sfT9rxlgCO BxN2HgajbPG10zu7gAGRodvHQtWG5Ij9FbnKMaQNwNb7tk7pl5dYjVK83siTwyQn 28/6E7zXumRE6n7XxCgSgtHgh7sRPDDQFdnxczsCA5N1LM99yHEytEOv/0sEu3go ccU+oYx5A/5kJhGQWFzkgqBsjE4kqZSHb2Zo7LoknIorvSU1odyAa7V18p9BAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcpARN5B9Gp9yO8awMarandxX+nMwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMxMzAzMzJlMzIzMDM2MmUzMjM1MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM0MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmfO/DANBgkqhkiG 9w0BAQsFAAOCAQEABvi614jMsH88R21ycgIOSnOs8Lx+phXXrzykzzYVWvT1J4w/ BfiCmd+PWljsWnUB2n/UlTm6VLRfv0Kt/CkyT376mG7GcyeAtYOVimhahIIAeyqz Q+8EuJ4xIOn93kXZ1sqD9tCYicEe1Hg3VU9Wi/ykpnaY/7IzF/g+Zg/TIgLLpoa5 tBiZVqphWpLHs3lkDu9YBK3TnED3uogdEucwR3VCaF7gcrMFx8OvOgObA4cnKVCT qkv6zn0GDPf8aXZ5XPXhKgvdiDX3/WBo1MOHEubJ9PWrkzlK1AmeFXqwSSw92FAM IN7ulcd+IEzCb+QWc8YGyOhwBFz8/Wyxi19Ryg== -----END CERTIFICATE-----Generated at Thu Apr 25 02:04:43 2024 by rpki-client on console-fra.rpki-client.org