$ rpki-client -vvf repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/3130332e3132392e36382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e36382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: iCuE445BiHrqm4IxxIzg+73QX6xB94j0kDVfJpzOBMc= Subject key identifier: D9:60:98:45:73:E6:07:B2:78:0D:BA:2D:45:B1:C3:40:65:AD:4D:A7 Certificate issuer: /CN=CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A Certificate serial: 692032A0E3262B7CBBFAA4BEA61B0B1620EA7AC6 Authority key identifier: CB:B5:E8:D8:79:96:C4:89:7C:9F:5D:C0:CB:32:86:4F:4F:0C:5A:7A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/3130332e3132392e36382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 09:01:14 +0000 ROA not before: Wed 03 Jan 2024 08:56:14 +0000 ROA not after: Wed 01 Jan 2025 09:01:14 +0000 asID: 135478 IP address blocks: 103.129.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.crl rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 18:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:20:32:a0:e3:26:2b:7c:bb:fa:a4:be:a6:1b:0b:16:20:ea:7a:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A Validity Not Before: Jan 3 08:56:14 2024 GMT Not After : Jan 1 09:01:14 2025 GMT Subject: CN=D960984573E607B2780DBA2D45B1C34065AD4DA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0f:ea:ea:53:07:3d:27:3f:69:43:13:30:51: 6e:5e:7d:37:06:8a:05:e8:61:7e:2b:58:8f:2d:a8: cd:38:c6:2e:3a:e2:b5:d1:b7:04:5d:e2:5b:1c:72: c9:6b:4f:a7:48:df:6f:5b:d3:0c:1b:9b:45:96:06: 39:a6:c9:33:59:cb:b8:13:f0:95:47:6b:1c:08:8a: 7c:4d:6f:51:eb:35:3d:b3:fb:e6:d4:9b:4a:f2:79: 7c:aa:88:4c:b6:de:3e:40:9a:46:14:7a:ac:e0:77: c1:0c:1c:e1:43:14:a9:e4:fa:0c:d6:9f:66:1c:d8: 97:51:65:ea:0f:39:45:ac:58:30:d8:54:0b:a5:50: c4:74:a3:ea:92:0c:e7:c6:1b:81:88:74:97:32:6a: 9a:21:4d:3f:8f:c7:4d:60:cb:37:12:df:18:ca:e7: 01:c2:d9:93:20:c6:b5:69:cf:9c:02:d1:c9:31:ac: d8:fe:56:c0:96:54:02:42:a3:99:62:32:59:d8:5c: fd:13:98:5c:ae:62:6e:34:db:af:51:d6:35:1e:a2: 4b:cb:da:7b:3b:81:49:9b:3d:bf:38:dd:3f:34:d4: 1b:54:1c:23:e8:e4:cb:2e:9e:53:f7:65:b1:ef:08: 47:e1:83:a8:b6:c4:0f:34:dd:5a:30:8d:e6:a1:a8: 2f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:60:98:45:73:E6:07:B2:78:0D:BA:2D:45:B1:C3:40:65:AD:4D:A7 X509v3 Authority Key Identifier: keyid:CB:B5:E8:D8:79:96:C4:89:7C:9F:5D:C0:CB:32:86:4F:4F:0C:5A:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/3130332e3132392e36382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.68.0/23 Signature Algorithm: sha256WithRSAEncryption b5:65:fa:98:f0:78:ad:c4:46:ad:f7:90:c6:ea:af:61:91:2e: 46:84:27:a5:47:d7:80:36:ef:31:1b:79:5c:c5:8a:2e:0c:70: ac:54:d6:3a:0e:79:7b:37:41:51:20:05:0e:70:94:af:7e:f5: d6:c3:cc:86:bc:ab:de:cb:cc:65:87:d9:08:a1:07:de:c8:0f: e9:2e:67:23:68:09:1a:b9:82:11:91:71:eb:c6:49:df:bc:a2: 97:6e:d2:4a:a1:fd:31:23:04:59:e5:b4:4b:b6:dc:08:6a:bd: 70:73:ec:67:06:fb:db:89:a4:27:f8:95:67:9f:58:60:f3:c4: ec:03:12:36:9c:f6:8c:d0:34:23:3a:a3:d6:ab:21:c9:ff:a7: 95:47:f2:fc:b7:0a:f6:34:66:40:7b:a5:96:35:7a:6d:ba:59: ce:54:17:5b:5f:b5:5d:43:5b:9a:6b:7b:d6:9b:ae:5d:2f:16: 7e:e7:ab:95:4b:31:5b:c9:d3:a7:fc:e7:c5:1d:f4:63:e6:2f: 88:7b:e3:98:b3:e8:82:c6:08:b0:06:07:45:08:96:e0:61:ce: 0a:4e:50:e8:13:f6:fa:ca:03:0a:9d:65:61:11:df:98:d3:2b: 75:05:19:a7:30:dd:ce:61:49:33:af:0f:8e:2c:ec:a6:a7:42: bc:cb:63:5f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaSAyoOMmK3y7+qS+phsLFiDqesYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0JCNUU4RDg3OTk2QzQ4OTdDOUY1REMwQ0IzMjg2NEY0 RjBDNUE3QTAeFw0yNDAxMDMwODU2MTRaFw0yNTAxMDEwOTAxMTRaMDMxMTAvBgNV BAMTKEQ5NjA5ODQ1NzNFNjA3QjI3ODBEQkEyRDQ1QjFDMzQwNjVBRDREQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6D+rqUwc9Jz9pQxMwUW5efTcG igXoYX4rWI8tqM04xi464rXRtwRd4lsccslrT6dI329b0wwbm0WWBjmmyTNZy7gT 8JVHaxwIinxNb1HrNT2z++bUm0ryeXyqiEy23j5AmkYUeqzgd8EMHOFDFKnk+gzW n2Yc2JdRZeoPOUWsWDDYVAulUMR0o+qSDOfGG4GIdJcyapohTT+Px01gyzcS3xjK 5wHC2ZMgxrVpz5wC0ckxrNj+VsCWVAJCo5liMlnYXP0TmFyuYm40269R1jUeokvL 2ns7gUmbPb843T801BtUHCPo5MsunlP3ZbHvCEfhg6i2xA803VowjeahqC+PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2WCYRXPmB7J4DbotRbHDQGWtTacwHwYDVR0j BBgwFoAUy7Xo2HmWxIl8n13AyzKGT08MWnowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 N2Y2ZTU3Yi00YzI2LTQ0MmItOGFmYy0wMzI5ZWVkYWZiNzIvMC9DQkI1RThEODc5 OTZDNDg5N0M5RjVEQzBDQjMyODY0RjRGMEM1QTdBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0JCNUU4RDg3OTk2QzQ4OTdDOUY1REMwQ0IzMjg2NEY0RjBD NUE3QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3ZjZlNTdiLTRjMjYtNDQyYi04 YWZjLTAzMjllZWRhZmI3Mi8wLzMxMzAzMzJlMzEzMjM5MmUzNjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4FEMA0GCSqG SIb3DQEBCwUAA4IBAQC1ZfqY8HitxEat95DG6q9hkS5GhCelR9eANu8xG3lcxYou DHCsVNY6Dnl7N0FRIAUOcJSvfvXWw8yGvKvey8xlh9kIoQfeyA/pLmcjaAkauYIR kXHrxknfvKKXbtJKof0xIwRZ5bRLttwIar1wc+xnBvvbiaQn+JVnn1hg88TsAxI2 nPaM0DQjOqPWqyHJ/6eVR/L8twr2NGZAe6WWNXptulnOVBdbX7VdQ1uaa3vWm65d LxZ+56uVSzFbydOn/OfFHfRj5i+Ie+OYs+iCxgiwBgdFCJbgYc4KTlDoE/b6ygMK nWVhEd+Y0yt1BRmnMN3OYUkzrw+OLOymp0K8y2Nf -----END CERTIFICATE-----Generated at Wed May 1 18:10:55 2024 by rpki-client on console-ams.rpki-client.org