$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa File: 3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa (raw, json) Hash identifier: 3+Nxi5s0AIN7q4U2N08UW5NXB2+VUMPSbERQn0l7Law= Subject key identifier: 07:91:E3:04:C8:0D:32:49:3E:74:FB:D0:33:79:0F:D0:0F:C8:21:9B Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 3AB1B5FF0DC7034ADB717A13C2F5C1C69C5B4770 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa Signing time: Tue 19 Sep 2023 04:00:00 +0000 ROA not before: Tue 19 Sep 2023 03:55:00 +0000 ROA not after: Tue 17 Sep 2024 04:00:00 +0000 asID: 58500 IP address blocks: 103.101.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:07:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:b1:b5:ff:0d:c7:03:4a:db:71:7a:13:c2:f5:c1:c6:9c:5b:47:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 19 03:55:00 2023 GMT Not After : Sep 17 04:00:00 2024 GMT Subject: CN=0791E304C80D32493E74FBD033790FD00FC8219B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:78:54:2f:81:81:46:f5:45:2d:5a:1a:52:59: ed:6c:94:6f:7c:fd:52:dd:5d:6d:21:dd:ce:45:da: 27:ea:f2:2f:32:b8:57:9b:75:3b:b5:3a:3e:c8:bc: 37:4a:be:98:06:aa:a2:86:e6:16:e2:6f:e4:fa:f0: 6c:1a:a3:83:a6:f6:9e:da:02:42:63:22:87:16:70: 81:82:be:7a:b5:15:85:6b:eb:5f:91:6e:88:e3:16: ff:72:f4:d8:d5:2a:0b:ee:5a:6e:83:9f:59:3e:32: e2:70:cf:fd:b9:f9:e8:c6:df:b0:e4:b6:42:04:88: ea:2f:ef:3a:88:63:d6:ba:f5:53:41:d1:43:9a:ab: 25:13:ae:51:e1:27:4b:96:72:0d:43:b7:1e:42:c0: 80:32:89:fd:f8:a9:ae:21:e4:9a:8e:76:1b:3c:5d: c0:ee:ae:e6:9f:2e:06:62:92:68:df:47:e7:58:22: 8f:2b:9a:fb:4a:0e:cf:43:74:a4:f3:9f:cb:4e:bd: 0d:5b:70:ea:65:d7:48:c8:bd:84:3c:ac:e9:3d:0a: cc:60:c5:7e:53:ab:35:78:c5:9f:b8:b2:d8:ec:68: 65:29:08:26:0f:75:bc:1e:ab:c9:ba:be:28:e8:ae: ca:73:4c:cb:03:d0:b0:0b:dc:13:6e:fc:28:62:e2: d6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:91:E3:04:C8:0D:32:49:3E:74:FB:D0:33:79:0F:D0:0F:C8:21:9B X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.136.0/23 Signature Algorithm: sha256WithRSAEncryption b2:2c:f3:1c:9a:aa:26:f0:89:5d:68:c6:93:da:4c:4c:42:a0: e5:af:ad:e4:ea:49:98:4b:36:d8:9a:51:b0:b2:08:d9:2d:5a: 76:34:5c:a2:98:22:52:19:10:6f:a7:df:1a:88:18:fb:14:0d: 8d:3b:92:1a:20:14:b5:4b:79:cb:55:72:ce:d5:3c:03:02:bd: a8:6c:76:7e:9f:8d:ff:26:8d:e2:45:cf:d5:32:fd:77:92:fe: 23:e7:34:44:7f:29:6f:e5:56:41:80:31:1b:8f:a7:ce:6a:69: ef:76:2c:12:c9:ab:07:ba:a2:5f:23:f4:b9:51:6a:52:2f:9e: 5c:25:aa:fe:6e:40:de:b5:dc:56:2b:66:bd:ba:c6:1a:2d:41: eb:f3:2c:06:b7:14:54:fa:14:e9:c3:dd:28:21:18:ab:46:88: 77:29:c7:a6:3a:06:85:76:e0:7f:9b:f9:96:68:b6:5b:b7:a7: 54:a1:9c:9a:4a:b9:ac:4e:29:ed:0a:01:b1:f1:de:0a:6c:f5: a3:5f:b2:e3:4f:9d:92:c7:19:7e:fe:96:cb:64:24:46:a9:4c: ed:4b:59:e8:e9:09:31:a5:92:25:10:bf:b6:14:f2:72:0f:79: 29:47:d6:18:ce:02:ac:80:91:bb:60:5c:f2:69:0e:9a:03:1b: a8:4d:2f:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOrG1/w3HA0rbcXoTwvXBxpxbR3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MTkwMzU1MDBaFw0yNDA5MTcwNDAwMDBaMDMxMTAvBgNV BAMTKDA3OTFFMzA0QzgwRDMyNDkzRTc0RkJEMDMzNzkwRkQwMEZDODIxOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBeFQvgYFG9UUtWhpSWe1slG98 /VLdXW0h3c5F2ifq8i8yuFebdTu1Oj7IvDdKvpgGqqKG5hbib+T68Gwao4Om9p7a AkJjIocWcIGCvnq1FYVr61+RbojjFv9y9NjVKgvuWm6Dn1k+MuJwz/25+ejG37Dk tkIEiOov7zqIY9a69VNB0UOaqyUTrlHhJ0uWcg1Dtx5CwIAyif34qa4h5JqOdhs8 XcDuruafLgZikmjfR+dYIo8rmvtKDs9DdKTzn8tOvQ1bcOpl10jIvYQ8rOk9Csxg xX5TqzV4xZ+4stjsaGUpCCYPdbweq8m6vijorspzTMsD0LAL3BNu/Chi4tYhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUB5HjBMgNMkk+dPvQM3kP0A/IIZswHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2WIMA0GCSqG SIb3DQEBCwUAA4IBAQCyLPMcmqom8IldaMaT2kxMQqDlr63k6kmYSzbYmlGwsgjZ LVp2NFyimCJSGRBvp98aiBj7FA2NO5IaIBS1S3nLVXLO1TwDAr2obHZ+n43/Jo3i Rc/VMv13kv4j5zREfylv5VZBgDEbj6fOamnvdiwSyasHuqJfI/S5UWpSL55cJar+ bkDetdxWK2a9usYaLUHr8ywGtxRU+hTpw90oIRirRoh3KcemOgaFduB/m/mWaLZb t6dUoZyaSrmsTintCgGx8d4KbPWjX7LjT52Sxxl+/pbLZCRGqUztS1no6QkxpZIl EL+2FPJyD3kpR9YYzgKsgJG7YFzyaQ6aAxuoTS+v -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:30 2024 by rpki-client on console-ams.rpki-client.org