$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203233393531.roa File: 3130332e3130312e3133362e302f32332d3233203d3e203233393531.roa (raw, json) Hash identifier: MG0h0Vj5XfmpXqS+1elA1P15MQkwmR0e/DCqYF35PbE= Subject key identifier: 6A:AB:8D:5F:82:EE:9C:E8:1F:18:10:AB:10:21:8B:D7:0F:16:D7:99 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 41E3232E4F81070B02151FF3EB06CAF2EEF4209D Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203233393531.roa Signing time: Sat 23 Sep 2023 08:00:00 +0000 ROA not before: Sat 23 Sep 2023 07:55:00 +0000 ROA not after: Sat 21 Sep 2024 08:00:00 +0000 asID: 23951 IP address blocks: 103.101.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:e3:23:2e:4f:81:07:0b:02:15:1f:f3:eb:06:ca:f2:ee:f4:20:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 23 07:55:00 2023 GMT Not After : Sep 21 08:00:00 2024 GMT Subject: CN=6AAB8D5F82EE9CE81F1810AB10218BD70F16D799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ca:a4:2b:d2:3d:fd:e2:e6:25:54:24:d6:de: 26:2f:c2:a1:e0:98:2f:f8:36:10:d0:e3:64:52:39: 48:ef:99:94:0a:a3:e8:64:e1:cb:08:57:ae:e8:94: 0d:83:af:4a:8e:f9:74:62:76:91:bc:77:3f:1e:14: be:9e:b4:be:56:6c:fa:fb:7a:ae:7d:0f:e3:6a:2d: b2:25:d8:a1:4f:8b:2b:e5:5d:ef:5d:7f:b7:4a:61: b0:88:2d:e4:37:5a:d3:4e:cb:85:60:c4:90:aa:c2: 55:29:16:b7:bd:d3:1a:77:24:5c:b4:37:d4:97:c2: c3:77:29:33:b9:1e:c9:97:83:98:f4:bd:0b:2c:1f: a7:cf:b6:c1:52:8a:2c:02:84:da:a6:6f:79:f1:3d: 1a:94:d4:72:c9:5c:cd:aa:b2:1c:a8:29:bd:a4:6b: 8a:b7:f2:1a:a8:7e:b9:90:04:20:e4:32:71:2e:14: 64:99:b1:27:6f:b2:2a:c3:6d:e2:39:bd:f2:0d:7c: 62:69:da:24:7b:1d:cd:5d:08:02:f5:66:a7:12:49: 54:45:33:40:f1:25:62:03:db:04:5d:52:72:f5:8b: f2:2e:86:48:a2:be:e5:68:26:d0:db:31:7f:89:2e: 7a:60:1c:92:3c:6e:d6:08:1b:4c:54:1e:79:9c:76: 2c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AB:8D:5F:82:EE:9C:E8:1F:18:10:AB:10:21:8B:D7:0F:16:D7:99 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.136.0/23 Signature Algorithm: sha256WithRSAEncryption 63:70:44:0d:7d:f9:02:41:63:c3:83:0a:d1:cc:f3:78:c6:56: d4:3a:c7:5e:34:38:30:03:84:4b:5a:0a:5f:fe:11:96:06:39: 41:aa:7c:3e:7c:34:83:9b:fe:58:c9:40:83:2d:ea:38:4f:a9: e7:f9:2b:75:b4:2f:6d:80:75:62:44:fe:14:17:20:12:10:16: 90:38:d1:16:e0:af:56:47:b2:bd:03:24:de:cb:2a:c5:c4:2d: c5:1f:34:84:80:07:0d:87:9b:02:3f:b5:c1:1b:d9:6d:2b:8d: dd:ae:9e:2f:c1:82:8e:1d:e4:34:2a:fc:b9:89:e3:08:b1:ef: b4:e5:ed:be:59:6d:27:a5:fd:a0:81:76:17:aa:53:dd:4e:62: 7b:8e:86:d8:08:30:23:c1:fa:93:57:21:a3:78:79:cd:29:f1: ba:f9:ff:d3:47:7e:1a:a6:2f:3c:7f:45:d6:08:ed:82:90:00: 00:78:02:ad:8b:8e:1c:3f:51:e3:df:8b:dc:52:46:e7:2f:61: 95:d1:ee:15:a3:dd:a1:a1:41:5c:2d:76:dc:91:11:20:f7:1b: cc:a1:a2:3e:b5:93:92:79:a1:e7:09:4a:f0:b1:ab:fb:3a:d7: 7b:4c:ee:8a:2d:58:c6:07:4c:41:c3:0e:88:16:31:f3:88:d9: 33:c6:f7:cb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQeMjLk+BBwsCFR/z6wbK8u70IJ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MjMwNzU1MDBaFw0yNDA5MjEwODAwMDBaMDMxMTAvBgNV BAMTKDZBQUI4RDVGODJFRTlDRTgxRjE4MTBBQjEwMjE4QkQ3MEYxNkQ3OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2yqQr0j394uYlVCTW3iYvwqHg mC/4NhDQ42RSOUjvmZQKo+hk4csIV67olA2Dr0qO+XRidpG8dz8eFL6etL5WbPr7 eq59D+NqLbIl2KFPiyvlXe9df7dKYbCILeQ3WtNOy4VgxJCqwlUpFre90xp3JFy0 N9SXwsN3KTO5HsmXg5j0vQssH6fPtsFSiiwChNqmb3nxPRqU1HLJXM2qshyoKb2k a4q38hqofrmQBCDkMnEuFGSZsSdvsirDbeI5vfINfGJp2iR7Hc1dCAL1ZqcSSVRF M0DxJWID2wRdUnL1i/IuhkiivuVoJtDbMX+JLnpgHJI8btYIG0xUHnmcdixBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaquNX4LunOgfGBCrECGL1w8W15kwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjMzMzkzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2WIMA0GCSqG SIb3DQEBCwUAA4IBAQBjcEQNffkCQWPDgwrRzPN4xlbUOsdeNDgwA4RLWgpf/hGW BjlBqnw+fDSDm/5YyUCDLeo4T6nn+St1tC9tgHViRP4UFyASEBaQONEW4K9WR7K9 AyTeyyrFxC3FHzSEgAcNh5sCP7XBG9ltK43drp4vwYKOHeQ0Kvy5ieMIse+05e2+ WW0npf2ggXYXqlPdTmJ7jobYCDAjwfqTVyGjeHnNKfG6+f/TR34api88f0XWCO2C kAAAeAKti44cP1Hj34vcUkbnL2GV0e4Vo92hoUFcLXbckREg9xvMoaI+tZOSeaHn CUrwsav7Otd7TO6KLVjGB0xBww6IFjHziNkzxvfL -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:50 2024 by rpki-client on console-fra.rpki-client.org