$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa File: 3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa (raw, json) Hash identifier: wde7f7Hu8gNaRF4GFackdHkkhdHU31fySFvhbpCrz+A= Subject key identifier: 11:C4:A9:C9:3D:4E:1F:18:84:78:CE:CC:76:C2:FE:D9:29:1B:64:A7 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 3F792A329BA2FA772F9C7083487DA2C9DF41AE9C Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa Signing time: Tue 19 Sep 2023 04:00:00 +0000 ROA not before: Tue 19 Sep 2023 03:55:00 +0000 ROA not after: Tue 17 Sep 2024 04:00:00 +0000 asID: 58500 IP address blocks: 103.101.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:79:2a:32:9b:a2:fa:77:2f:9c:70:83:48:7d:a2:c9:df:41:ae:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 19 03:55:00 2023 GMT Not After : Sep 17 04:00:00 2024 GMT Subject: CN=11C4A9C93D4E1F188478CECC76C2FED9291B64A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2d:43:c2:aa:2b:24:f8:72:80:a2:46:30:22: b1:ea:7c:55:4d:9e:86:cc:2a:fe:35:3f:99:fe:4d: dd:8b:dd:e4:5b:6b:e8:82:29:23:33:e6:da:c3:be: 2a:8f:31:e4:35:9d:ed:6d:3b:12:69:5d:23:65:d4: a2:8f:3f:0b:2c:48:44:bd:64:b5:fe:39:12:02:58: a4:b6:67:b3:97:10:b8:8a:82:6b:6a:6b:c0:18:9e: 3e:76:8b:20:bd:38:9f:d8:e1:24:ea:1d:6b:60:9b: b0:d5:66:42:41:3a:61:3e:38:c1:a7:68:ab:77:a7: 2a:f1:88:6f:d4:99:c9:6a:e6:18:f9:48:0c:a7:8b: a8:5a:97:15:1c:80:fd:83:6d:a9:76:bd:cf:fc:ca: a4:18:72:91:62:f5:16:71:f3:17:f5:e6:22:fe:d2: 1a:9f:85:b8:c2:60:49:9f:4b:8c:98:f5:34:57:b1: c3:2e:f8:83:35:d8:4b:f3:bc:41:65:fc:7e:e4:f7: 32:9e:0f:80:a1:44:b4:f3:04:c3:93:5f:52:18:2a: af:61:52:86:cc:9a:ee:7a:a9:f4:f3:9b:83:62:f3: 83:bc:f9:fd:ba:cb:c2:98:cf:86:ee:8e:7e:3e:df: f7:7d:d8:de:9c:11:55:2e:8d:39:0d:85:82:27:4a: 3e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:C4:A9:C9:3D:4E:1F:18:84:78:CE:CC:76:C2:FE:D9:29:1B:64:A7 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.137.0/24 Signature Algorithm: sha256WithRSAEncryption 62:06:29:60:2e:a5:10:ea:15:1e:8a:3c:d6:59:20:3a:70:e0: 33:0f:82:b4:dd:c2:5e:1b:9d:e4:1a:69:56:d9:0b:2b:45:bf: 8d:18:47:42:c3:ea:c8:b8:db:f0:a0:59:c7:95:8e:a8:1d:22: ea:f4:22:83:a0:6e:47:c3:77:ba:08:f3:d8:4d:b6:b7:57:ed: d9:95:85:87:a5:e5:ea:3b:2d:04:0b:40:26:64:75:a2:6d:8c: 79:a8:c1:b9:57:56:4b:78:d7:fe:e2:ee:97:5e:0a:c7:d8:14: 58:71:4f:f7:ff:73:62:d6:e7:ec:8e:b4:ec:2a:9f:bc:b1:02: f4:85:6d:01:dd:c5:13:a5:22:dd:63:f5:d0:49:44:51:b8:d1: 89:46:2a:fa:22:d0:d2:70:49:2c:76:72:aa:14:72:fa:48:e2: 9e:db:d9:61:36:3f:83:fc:81:b7:6c:b2:42:0e:88:8c:2d:36: 11:62:d3:e6:e8:7f:3a:a0:84:a2:38:b0:e6:0c:ea:c8:3a:f1: c3:9c:88:ae:93:49:b6:87:37:3d:2a:00:11:9a:23:37:b7:97: 2e:96:36:dd:37:24:39:82:a7:e6:3c:f4:34:93:9e:0c:6b:a7: c6:3e:99:e7:8e:df:4e:e0:59:d1:bb:68:14:0d:4f:0e:b1:15: af:92:98:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP3kqMpui+ncvnHCDSH2iyd9BrpwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MTkwMzU1MDBaFw0yNDA5MTcwNDAwMDBaMDMxMTAvBgNV BAMTKDExQzRBOUM5M0Q0RTFGMTg4NDc4Q0VDQzc2QzJGRUQ5MjkxQjY0QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKLUPCqisk+HKAokYwIrHqfFVN nobMKv41P5n+Td2L3eRba+iCKSMz5trDviqPMeQ1ne1tOxJpXSNl1KKPPwssSES9 ZLX+ORICWKS2Z7OXELiKgmtqa8AYnj52iyC9OJ/Y4STqHWtgm7DVZkJBOmE+OMGn aKt3pyrxiG/Umclq5hj5SAyni6halxUcgP2Dbal2vc/8yqQYcpFi9RZx8xf15iL+ 0hqfhbjCYEmfS4yY9TRXscMu+IM12EvzvEFl/H7k9zKeD4ChRLTzBMOTX1IYKq9h UobMmu56qfTzm4Ni84O8+f26y8KYz4bujn4+3/d92N6cEVUujTkNhYInSj4dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEcSpyT1OHxiEeM7MdsL+2SkbZKcwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2WJMA0GCSqG SIb3DQEBCwUAA4IBAQBiBilgLqUQ6hUeijzWWSA6cOAzD4K03cJeG53kGmlW2Qsr Rb+NGEdCw+rIuNvwoFnHlY6oHSLq9CKDoG5Hw3e6CPPYTba3V+3ZlYWHpeXqOy0E C0AmZHWibYx5qMG5V1ZLeNf+4u6XXgrH2BRYcU/3/3Ni1ufsjrTsKp+8sQL0hW0B 3cUTpSLdY/XQSURRuNGJRir6ItDScEksdnKqFHL6SOKe29lhNj+D/IG3bLJCDoiM LTYRYtPm6H86oISiOLDmDOrIOvHDnIiuk0m2hzc9KgARmiM3t5culjbdNyQ5gqfm PPQ0k54Ma6fGPpnnjt9O4FnRu2gUDU8OsRWvkph2 -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:50 2024 by rpki-client on console-fra.rpki-client.org