$ rpki-client -vvf repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa File: 3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa (raw, json) Hash identifier: AwK6OuX79/KlF+8PETnzxa0MieD2vFc2KXSFkcSMPpU= Subject key identifier: 0F:C1:9B:35:EF:64:51:4D:7A:03:04:04:EC:54:93:27:33:C7:27:0A Certificate issuer: /CN=CB8106D827747D008C9DE9181B4EC6739C8EE800 Certificate serial: 57372F7AB0777B0F9E32AF55DAA4E8B0FFF28886 Authority key identifier: CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa Signing time: Mon 31 Jul 2023 00:09:46 +0000 ROA not before: Mon 31 Jul 2023 00:04:46 +0000 ROA not after: Mon 29 Jul 2024 00:09:46 +0000 asID: 131746 IP address blocks: 103.21.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 15:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:37:2f:7a:b0:77:7b:0f:9e:32:af:55:da:a4:e8:b0:ff:f2:88:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8106D827747D008C9DE9181B4EC6739C8EE800 Validity Not Before: Jul 31 00:04:46 2023 GMT Not After : Jul 29 00:09:46 2024 GMT Subject: CN=0FC19B35EF64514D7A030404EC54932733C7270A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:96:a8:f9:4b:2d:38:60:85:d7:d9:9b:29:0f: e7:b3:6d:04:3f:08:b1:4d:be:dc:df:99:67:05:b0: 5e:85:d6:1e:f6:67:9d:00:e8:31:71:54:e7:f8:82: 8b:49:8f:58:e1:ff:f2:9b:37:cc:2e:6f:fa:f9:dc: 56:c1:49:2d:de:a5:0a:27:0a:4a:88:a7:f9:64:f1: 07:0e:d2:b0:8f:53:28:24:9d:5e:5c:1b:97:c3:5b: 3b:a0:21:48:01:65:7b:e0:47:80:fd:ae:76:7b:fd: a4:d4:52:ca:bf:8a:72:f7:ce:d4:8d:73:ee:8a:1d: 89:5a:95:b8:12:05:4c:b5:71:ec:24:52:44:c1:04: 23:08:c3:d0:f8:1b:14:f3:d0:2d:1b:ea:72:2f:32: 22:74:58:f6:7e:dc:0a:7b:eb:2e:7f:19:79:6c:0d: 6a:6e:54:b2:7a:80:d2:9b:da:b6:c9:e5:20:ec:28: a0:3c:5b:bb:22:55:c7:04:7d:6f:3f:e9:4e:26:b7: b5:99:b9:d7:c1:ae:8e:3c:a1:81:2e:b9:fb:4e:03: 68:4d:9b:89:71:d5:c4:06:dd:51:e3:c0:27:bf:56: 6f:f6:f0:bb:75:e3:58:79:73:a0:36:bd:a9:f2:42: ea:3c:c2:f9:1b:ae:74:22:8d:49:6f:ce:c7:06:45: 9b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C1:9B:35:EF:64:51:4D:7A:03:04:04:EC:54:93:27:33:C7:27:0A X509v3 Authority Key Identifier: keyid:CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.204.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:a7:22:69:37:a2:b7:a2:37:ea:74:81:d0:b5:da:28:eb:e5: 4e:44:74:a9:9f:1d:5f:14:30:9e:1f:37:a3:24:f4:be:d1:ba: d3:bd:19:2d:dd:8f:bf:2a:d2:9f:55:a7:37:17:46:e1:6c:31: 37:ef:f8:d0:47:83:9a:22:d5:e0:d3:bb:1b:be:4e:41:53:d2: 9d:68:e6:6d:b4:5a:63:f3:8d:86:40:ee:42:67:c4:2e:6d:2c: 15:32:bb:ce:10:86:15:35:af:3a:0a:87:38:1f:37:84:09:dc: ad:93:5c:fb:51:42:88:a5:df:78:09:67:35:21:3e:b9:89:6f: 4c:04:5d:0e:b2:2b:4b:8e:fd:5d:85:54:23:5a:7c:4c:2a:69: e6:6b:6d:8a:3f:0e:2b:78:2e:d0:87:53:23:72:98:f5:4a:db: 6d:dd:9c:41:87:09:46:19:e9:b8:c4:98:b0:a2:c1:78:20:b1: a9:0a:4e:ec:6b:9e:48:81:48:5d:77:e5:e4:f6:83:7b:b2:a2: bd:9d:4c:b7:cb:dc:9f:20:77:59:9f:b7:77:46:ab:e6:75:f0: f6:01:a0:c5:ae:3e:c5:4b:03:d6:d5:c6:1d:2f:d6:f9:6f:6b: b5:5d:53:07:43:ac:bb:ae:e3:bc:bb:fd:24:8b:bf:15:91:96: 0e:70:30:9b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVzcverB3ew+eMq9V2qTosP/yiIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5 QzhFRTgwMDAeFw0yMzA3MzEwMDA0NDZaFw0yNDA3MjkwMDA5NDZaMDMxMTAvBgNV BAMTKDBGQzE5QjM1RUY2NDUxNEQ3QTAzMDQwNEVDNTQ5MzI3MzNDNzI3MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqlqj5Sy04YIXX2ZspD+ezbQQ/ CLFNvtzfmWcFsF6F1h72Z50A6DFxVOf4gotJj1jh//KbN8wub/r53FbBSS3epQon CkqIp/lk8QcO0rCPUygknV5cG5fDWzugIUgBZXvgR4D9rnZ7/aTUUsq/inL3ztSN c+6KHYlalbgSBUy1cewkUkTBBCMIw9D4GxTz0C0b6nIvMiJ0WPZ+3Ap76y5/GXls DWpuVLJ6gNKb2rbJ5SDsKKA8W7siVccEfW8/6U4mt7WZudfBro48oYEuuftOA2hN m4lx1cQG3VHjwCe/Vm/28Lt141h5c6A2vanyQuo8wvkbrnQijUlvzscGRZs1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUD8GbNe9kUU16AwQE7FSTJzPHJwowHwYDVR0j BBgwFoAUy4EG2Cd0fQCMnekYG07Gc5yO6AAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YmU1NzhkMC1kM2FhLTRmMGYtYmI5ZC1mNzRiNDljNmE2NTUvMC9DQjgxMDZEODI3 NzQ3RDAwOEM5REU5MTgxQjRFQzY3MzlDOEVFODAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5QzhF RTgwMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiZTU3OGQwLWQzYWEtNGYwZi1i YjlkLWY3NGI0OWM2YTY1NS8wLzMxMzAzMzJlMzIzMTJlMzIzMDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxXMMA0GCSqG SIb3DQEBCwUAA4IBAQCapyJpN6K3ojfqdIHQtdoo6+VORHSpnx1fFDCeHzejJPS+ 0brTvRkt3Y+/KtKfVac3F0bhbDE37/jQR4OaItXg07sbvk5BU9KdaOZttFpj842G QO5CZ8QubSwVMrvOEIYVNa86Coc4HzeECdytk1z7UUKIpd94CWc1IT65iW9MBF0O sitLjv1dhVQjWnxMKmnma22KPw4reC7Qh1Mjcpj1Sttt3ZxBhwlGGem4xJiwosF4 ILGpCk7sa55IgUhdd+Xk9oN7sqK9nUy3y9yfIHdZn7d3RqvmdfD2AaDFrj7FSwPW 1cYdL9b5b2u1XVMHQ6y7ruO8u/0ki78VkZYOcDCb -----END CERTIFICATE-----Generated at Thu Apr 18 14:06:40 2024 by rpki-client on console-fra.rpki-client.org