$ rpki-client -vvf repo-rpki.idnic.net/repo/6adfcb44-ae7a-4423-ae7d-08648bf1deb1/0/3130332e3130332e3133372e302f32342d3234203d3e203233363739.roa File: 3130332e3130332e3133372e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: NplDhxBu/6RmI9LGUSyvFPlI/zKf9p/6Qh2VVCKETOw= Subject key identifier: 77:BF:F7:FD:52:87:7F:70:33:88:A2:74:3F:B9:77:02:F7:0C:7C:0D Certificate issuer: /CN=A349D07CAB13BF067B13D95E99981C2BA84B9A6B Certificate serial: 3535A74D517D82133CF67361E5E10269EDAFB839 Authority key identifier: A3:49:D0:7C:AB:13:BF:06:7B:13:D9:5E:99:98:1C:2B:A8:4B:9A:6B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A349D07CAB13BF067B13D95E99981C2BA84B9A6B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6adfcb44-ae7a-4423-ae7d-08648bf1deb1/0/3130332e3130332e3133372e302f32342d3234203d3e203233363739.roa Signing time: Thu 12 Oct 2023 07:00:00 +0000 ROA not before: Thu 12 Oct 2023 06:55:00 +0000 ROA not after: Thu 10 Oct 2024 07:00:00 +0000 asID: 23679 IP address blocks: 103.103.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6adfcb44-ae7a-4423-ae7d-08648bf1deb1/0/A349D07CAB13BF067B13D95E99981C2BA84B9A6B.crl rsync://repo-rpki.idnic.net/repo/6adfcb44-ae7a-4423-ae7d-08648bf1deb1/0/A349D07CAB13BF067B13D95E99981C2BA84B9A6B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A349D07CAB13BF067B13D95E99981C2BA84B9A6B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:35:a7:4d:51:7d:82:13:3c:f6:73:61:e5:e1:02:69:ed:af:b8:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A349D07CAB13BF067B13D95E99981C2BA84B9A6B Validity Not Before: Oct 12 06:55:00 2023 GMT Not After : Oct 10 07:00:00 2024 GMT Subject: CN=77BFF7FD52877F703388A2743FB97702F70C7C0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d8:72:5d:0e:d0:48:46:44:75:9e:d0:96:f7: 33:61:e6:cf:1a:0f:ad:85:4c:3a:51:34:80:98:be: bf:d7:9a:32:7b:81:1d:6b:0d:d5:38:5a:25:6e:0a: 1c:0b:47:97:d8:95:62:10:07:cb:fa:7a:4e:4b:2f: 55:f2:3a:68:9d:9c:4b:56:64:2e:e5:19:2c:42:e2: bd:ad:59:77:a3:c4:ab:24:00:40:0e:a4:e0:de:35: 6a:3b:b6:c4:60:e4:0f:da:c4:d8:35:d5:ff:9c:83: 58:29:56:20:99:39:1f:66:aa:f2:8e:1f:de:a1:7b: 64:f9:e7:6a:75:31:ab:d6:bf:0d:a5:c9:0b:ad:82: 2d:d0:b1:3a:11:3e:08:4f:87:32:c3:75:87:1e:8a: 34:0a:b0:0e:f9:05:6b:6f:63:c4:22:86:2f:6d:12: 3e:e0:60:97:07:69:7b:06:36:87:4c:7d:a8:cd:19: fd:9d:ed:c5:7e:62:13:fe:6e:57:43:6f:1f:b2:40: bc:a2:79:cc:7f:47:bf:1c:e8:3b:8f:13:9f:3d:79: 31:aa:be:df:59:7f:4a:92:19:8b:8e:c1:da:92:f2: 40:7f:50:26:76:99:5d:c4:94:1f:ab:29:88:3f:94: e9:d1:f7:44:b5:cc:4e:ec:59:6a:25:44:43:6d:aa: 44:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:BF:F7:FD:52:87:7F:70:33:88:A2:74:3F:B9:77:02:F7:0C:7C:0D X509v3 Authority Key Identifier: keyid:A3:49:D0:7C:AB:13:BF:06:7B:13:D9:5E:99:98:1C:2B:A8:4B:9A:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6adfcb44-ae7a-4423-ae7d-08648bf1deb1/0/A349D07CAB13BF067B13D95E99981C2BA84B9A6B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A349D07CAB13BF067B13D95E99981C2BA84B9A6B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6adfcb44-ae7a-4423-ae7d-08648bf1deb1/0/3130332e3130332e3133372e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.137.0/24 Signature Algorithm: sha256WithRSAEncryption 58:b6:54:35:9a:a0:f0:47:9b:14:e5:b8:bc:24:ba:58:33:b1: 11:06:7c:da:e8:43:55:1d:c5:62:20:52:c9:2a:bd:93:b4:36: 10:43:93:1f:c1:db:bd:54:a5:b8:b6:ee:6d:9a:b7:3f:e5:42: 9b:8e:ba:90:f5:5a:77:77:34:8e:24:40:c4:24:9c:81:c9:11: a6:9b:e0:cb:f6:4f:e5:06:66:46:9c:29:9e:2b:79:2f:37:7f: d2:e0:d5:08:d5:05:40:d0:fc:2d:25:02:2b:00:d2:9a:0b:1a: 00:e7:28:b2:c1:a3:0c:76:1f:74:1a:4b:58:3f:02:3f:a5:a3: 12:44:bf:29:bf:35:ec:01:23:4e:64:87:34:62:d6:9a:88:e6: 8c:53:0f:23:c9:b8:cf:2f:7d:ea:7f:18:c6:a9:50:ea:c2:2e: 03:1e:44:00:f1:23:47:dd:6b:20:cb:66:bd:03:b9:e6:54:67: f2:f3:ee:94:54:09:80:00:f3:af:d2:18:e6:8b:39:12:c1:af: e4:e9:9b:fe:ac:57:8a:07:08:87:b6:0d:24:fe:79:88:28:4b: b4:8d:b4:cc:30:2d:f4:a7:40:51:5c:58:54:02:98:90:50:c9: 83:68:73:01:5a:d0:83:15:48:e1:b3:51:9c:ee:85:d7:30:86: 22:1e:3d:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNTWnTVF9ghM89nNh5eECae2vuDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM0OUQwN0NBQjEzQkYwNjdCMTNEOTVFOTk5ODFDMkJB ODRCOUE2QjAeFw0yMzEwMTIwNjU1MDBaFw0yNDEwMTAwNzAwMDBaMDMxMTAvBgNV BAMTKDc3QkZGN0ZENTI4NzdGNzAzMzg4QTI3NDNGQjk3NzAyRjcwQzdDMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj2HJdDtBIRkR1ntCW9zNh5s8a D62FTDpRNICYvr/XmjJ7gR1rDdU4WiVuChwLR5fYlWIQB8v6ek5LL1XyOmidnEtW ZC7lGSxC4r2tWXejxKskAEAOpODeNWo7tsRg5A/axNg11f+cg1gpViCZOR9mqvKO H96he2T552p1MavWvw2lyQutgi3QsToRPghPhzLDdYceijQKsA75BWtvY8Qihi9t Ej7gYJcHaXsGNodMfajNGf2d7cV+YhP+bldDbx+yQLyiecx/R78c6DuPE589eTGq vt9Zf0qSGYuOwdqS8kB/UCZ2mV3ElB+rKYg/lOnR90S1zE7sWWolRENtqkRRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUd7/3/VKHf3AziKJ0P7l3AvcMfA0wHwYDVR0j BBgwFoAUo0nQfKsTvwZ7E9lemZgcK6hLmmswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWRmY2I0NC1hZTdhLTQ0MjMtYWU3ZC0wODY0OGJmMWRlYjEvMC9BMzQ5RDA3Q0FC MTNCRjA2N0IxM0Q5NUU5OTk4MUMyQkE4NEI5QTZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM0OUQwN0NBQjEzQkYwNjdCMTNEOTVFOTk5ODFDMkJBODRC OUE2Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhZGZjYjQ0LWFlN2EtNDQyMy1h ZTdkLTA4NjQ4YmYxZGViMS8wLzMxMzAzMzJlMzEzMDMzMmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2eJMA0GCSqG SIb3DQEBCwUAA4IBAQBYtlQ1mqDwR5sU5bi8JLpYM7ERBnza6ENVHcViIFLJKr2T tDYQQ5Mfwdu9VKW4tu5tmrc/5UKbjrqQ9Vp3dzSOJEDEJJyByRGmm+DL9k/lBmZG nCmeK3kvN3/S4NUI1QVA0PwtJQIrANKaCxoA5yiywaMMdh90GktYPwI/paMSRL8p vzXsASNOZIc0YtaaiOaMUw8jybjPL33qfxjGqVDqwi4DHkQA8SNH3Wsgy2a9A7nm VGfy8+6UVAmAAPOv0hjmizkSwa/k6Zv+rFeKBwiHtg0k/nmIKEu0jbTMMC30p0BR XFhUApiQUMmDaHMBWtCDFUjhs1Gc7oXXMIYiHj1V -----END CERTIFICATE-----Generated at Sat May 4 01:50:55 2024 by rpki-client on console-ams.rpki-client.org