$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa File: 3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: 2PI/Wixy6w3UoQW888a5O2CjzQ5vq+/VK7hXSSApRMI= Subject key identifier: 67:7A:E4:9A:3D:BA:AE:37:D8:F6:C0:1C:11:3D:92:6B:5E:A3:97:44 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 6FD9368AC4DECE4D12991180463AF4F826AB5611 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa Signing time: Wed 20 Dec 2023 10:01:50 +0000 ROA not before: Wed 20 Dec 2023 09:56:50 +0000 ROA not after: Wed 18 Dec 2024 10:01:50 +0000 asID: 58487 IP address blocks: 103.253.212.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:d9:36:8a:c4:de:ce:4d:12:99:11:80:46:3a:f4:f8:26:ab:56:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Dec 20 09:56:50 2023 GMT Not After : Dec 18 10:01:50 2024 GMT Subject: CN=677AE49A3DBAAE37D8F6C01C113D926B5EA39744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:49:f0:de:a5:17:2f:b6:46:15:de:ec:a2:a1: f1:98:c6:a0:d7:67:4a:4a:de:f2:68:05:14:44:d4: af:21:38:6a:de:a6:5d:d9:31:54:bb:c9:6b:04:2b: 7c:1c:88:52:9c:b3:a6:93:28:e8:ca:3a:d0:db:d0: b9:fc:cf:c3:2a:af:1e:0e:6e:79:57:ad:8e:c1:e7: 27:8b:e7:5c:51:1c:c8:57:1a:95:15:6b:d2:ae:92: 29:09:86:ed:22:ed:08:8f:dc:c8:c1:da:7e:dc:e3: 01:e1:81:44:39:38:05:0f:2c:6c:3a:2d:39:4f:e2: 3e:8f:25:51:82:ac:8b:7d:25:c8:1d:f6:c8:42:2b: 8c:ca:48:90:cc:37:1f:34:9b:93:07:d3:79:33:53: 7d:9b:70:a7:d6:77:99:e1:99:36:65:27:0c:98:23: fa:26:b2:81:d1:d0:88:0f:5a:ae:62:c7:cf:5e:0c: 01:a6:4a:4b:1f:ef:94:00:d2:d0:6c:8f:f7:e8:83: 67:b6:a1:7c:6e:de:2b:61:81:ac:4d:58:69:7d:3e: e1:3e:63:99:bf:bf:49:04:7a:64:62:2c:68:01:8c: df:69:6d:c0:0a:eb:ec:28:8c:56:ea:8c:91:cd:0b: 57:0e:11:53:2a:10:ad:78:6c:28:e7:8d:93:1e:a3: d6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:7A:E4:9A:3D:BA:AE:37:D8:F6:C0:1C:11:3D:92:6B:5E:A3:97:44 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.212.0/23 Signature Algorithm: sha256WithRSAEncryption b4:9d:26:bf:31:d9:d2:95:3f:b3:88:65:64:c5:b6:53:be:e0: 40:dd:55:22:14:c9:83:e4:cf:1f:32:8e:40:48:c8:b4:29:61: 7d:24:34:b7:14:62:e6:c2:e3:38:e7:2a:33:19:6e:74:ef:4b: e9:f2:16:fa:86:ca:41:e7:db:57:f9:32:19:45:f5:3a:19:b5: 70:6d:13:28:27:90:fe:e8:db:bb:2e:29:6b:86:d7:ea:64:b0: ea:b1:67:df:3f:b0:ff:09:34:e5:31:58:bf:ed:70:21:84:81: a0:02:0f:de:c4:f2:a4:4f:04:42:5e:e2:a4:97:ea:5f:4d:af: 4b:35:43:8c:8d:4a:c9:56:f0:33:b6:06:b6:b0:1e:ad:be:c1: af:90:f8:fb:5f:7f:59:52:8d:12:ca:20:c0:49:8e:18:9a:09: 5e:1e:1e:c9:ab:c8:d0:ab:50:a7:3f:45:e2:3b:8e:80:8b:d3: a3:f7:89:ef:65:88:f6:fa:37:e6:74:b6:ac:27:1d:ad:65:00: 9e:0e:eb:a1:63:65:6b:59:df:59:57:6a:cb:37:77:3c:f7:89: 53:79:e5:7e:6a:58:11:02:6a:b4:8c:86:79:32:93:ec:fa:79: 98:be:42:d3:57:a3:83:61:63:15:37:ce:4c:7f:74:51:ae:41: 33:21:2b:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb9k2isTezk0SmRGARjr0+CarVhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yMzEyMjAwOTU2NTBaFw0yNDEyMTgxMDAxNTBaMDMxMTAvBgNV BAMTKDY3N0FFNDlBM0RCQUFFMzdEOEY2QzAxQzExM0Q5MjZCNUVBMzk3NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7SfDepRcvtkYV3uyiofGYxqDX Z0pK3vJoBRRE1K8hOGrepl3ZMVS7yWsEK3wciFKcs6aTKOjKOtDb0Ln8z8Mqrx4O bnlXrY7B5yeL51xRHMhXGpUVa9KukikJhu0i7QiP3MjB2n7c4wHhgUQ5OAUPLGw6 LTlP4j6PJVGCrIt9Jcgd9shCK4zKSJDMNx80m5MH03kzU32bcKfWd5nhmTZlJwyY I/omsoHR0IgPWq5ix89eDAGmSksf75QA0tBsj/fog2e2oXxu3ithgaxNWGl9PuE+ Y5m/v0kEemRiLGgBjN9pbcAK6+wojFbqjJHNC1cOEVMqEK14bCjnjZMeo9Z5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZ3rkmj26rjfY9sAcET2Sa16jl0QwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/3UMA0GCSqG SIb3DQEBCwUAA4IBAQC0nSa/MdnSlT+ziGVkxbZTvuBA3VUiFMmD5M8fMo5ASMi0 KWF9JDS3FGLmwuM45yozGW5070vp8hb6hspB59tX+TIZRfU6GbVwbRMoJ5D+6Nu7 LilrhtfqZLDqsWffP7D/CTTlMVi/7XAhhIGgAg/exPKkTwRCXuKkl+pfTa9LNUOM jUrJVvAztga2sB6tvsGvkPj7X39ZUo0SyiDASY4YmgleHh7Jq8jQq1CnP0XiO46A i9Oj94nvZYj2+jfmdLasJx2tZQCeDuuhY2VrWd9ZV2rLN3c894lTeeV+algRAmq0 jIZ5MpPs+nmYvkLTV6ODYWMVN85Mf3RRrkEzISt1 -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org