$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa File: 3130332e32302e3138392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: XsPcUD3D12ouvFdnl/ow88cCJHi/YL32gjPHiw9TMy0= Subject key identifier: 1A:2E:7C:4D:43:26:29:3F:68:A6:D7:0F:F8:F7:29:15:E4:47:3B:26 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 5E941774651D3A13BCC26B157972B8533D3A6A5D Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa Signing time: Mon 31 Jul 2023 00:13:04 +0000 ROA not before: Mon 31 Jul 2023 00:08:04 +0000 ROA not after: Mon 29 Jul 2024 00:13:04 +0000 asID: 55685 IP address blocks: 103.20.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 13:23:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:94:17:74:65:1d:3a:13:bc:c2:6b:15:79:72:b8:53:3d:3a:6a:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jul 31 00:08:04 2023 GMT Not After : Jul 29 00:13:04 2024 GMT Subject: CN=1A2E7C4D4326293F68A6D70FF8F72915E4473B26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0f:1b:36:29:a0:f8:06:6a:e5:75:de:8b:9a: 0c:28:4c:ee:a0:db:3c:da:ac:7b:85:cd:eb:0e:5a: 55:76:40:38:e0:d7:5a:dd:18:00:d6:ed:18:fe:99: 29:fa:dd:3f:6d:58:97:3d:e1:28:83:fd:34:7e:70: ee:35:d5:da:eb:14:fe:95:05:11:e6:3d:7d:07:2c: ea:b4:32:1c:10:18:4f:d8:c7:6c:fc:37:75:0e:29: 13:25:4b:37:70:ae:c5:a0:19:4e:b8:f7:41:25:7a: 3f:f2:20:de:32:28:2e:b4:05:f6:d7:94:bb:78:30: 63:dd:62:03:fe:ef:0f:cf:dd:b1:39:a3:36:d1:eb: bd:88:0b:1a:b4:34:e6:ef:e3:14:09:5e:5f:2f:58: 61:be:ae:df:bf:58:d0:e6:d1:29:2b:0a:54:b4:62: 45:1b:24:3d:58:0a:8a:a8:50:89:60:ee:2b:a8:80: e7:8f:59:11:af:87:8d:3d:98:1c:f5:b6:8a:2f:25: a6:ff:76:6a:a0:6e:9a:f8:0e:63:20:93:90:6b:78: d5:36:b3:0b:a2:7a:f8:f5:2b:67:89:a3:7b:c9:f7: d1:b5:76:19:01:25:79:a3:d3:4f:66:5e:83:56:a1: 97:38:9d:2e:52:87:b5:e6:6a:d8:14:21:85:c7:09: b1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:2E:7C:4D:43:26:29:3F:68:A6:D7:0F:F8:F7:29:15:E4:47:3B:26 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.189.0/24 Signature Algorithm: sha256WithRSAEncryption 90:5a:4f:ed:e8:64:7a:3c:c1:82:bd:c2:8e:58:e3:ff:05:b5: 8f:30:99:fc:c7:35:77:87:a0:04:55:a2:4a:bc:ea:74:0f:17: 0a:99:cc:5f:ef:db:c6:78:6c:44:f2:97:7a:80:cc:25:c9:6b: 98:39:3a:75:d6:6c:04:6d:60:ba:03:3d:a4:58:8c:ab:89:cd: a3:ff:0a:cc:b4:51:47:ed:6b:95:b0:8e:2e:8f:0f:69:fa:96: db:48:38:da:35:33:8f:3a:8f:7d:36:ff:8f:22:79:d8:1d:cc: 2c:45:c5:51:29:92:67:3b:7e:c7:70:60:ea:ec:61:75:bc:b4: 45:36:40:e6:c4:98:3d:3b:87:95:a7:76:4f:f8:23:5e:9f:6e: 30:ba:15:30:c8:9f:2e:dc:ef:f7:77:b6:8d:13:34:bb:43:aa: c9:df:09:c4:16:05:8c:08:8a:3b:a5:a2:e2:e9:c7:ba:b7:ed: 29:fe:57:6c:d1:34:e0:a2:ca:bc:65:2c:7c:77:2c:1b:36:9e: a8:0f:15:cf:96:09:3a:01:a5:59:8e:82:1a:34:86:49:53:e9: 9b:dc:c4:82:df:d4:7b:0d:07:42:b2:3c:4c:c3:3d:52:ec:01: 93:ac:03:23:97:07:ba:68:77:78:cd:34:14:1f:8c:70:ba:00: e3:fb:d4:0e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXpQXdGUdOhO8wmsVeXK4Uz06al0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yMzA3MzEwMDA4MDRaFw0yNDA3MjkwMDEzMDRaMDMxMTAvBgNV BAMTKDFBMkU3QzRENDMyNjI5M0Y2OEE2RDcwRkY4RjcyOTE1RTQ0NzNCMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Dxs2KaD4Bmrldd6LmgwoTO6g 2zzarHuFzesOWlV2QDjg11rdGADW7Rj+mSn63T9tWJc94SiD/TR+cO411drrFP6V BRHmPX0HLOq0MhwQGE/Yx2z8N3UOKRMlSzdwrsWgGU6490Elej/yIN4yKC60BfbX lLt4MGPdYgP+7w/P3bE5ozbR672ICxq0NObv4xQJXl8vWGG+rt+/WNDm0SkrClS0 YkUbJD1YCoqoUIlg7iuogOePWRGvh409mBz1toovJab/dmqgbpr4DmMgk5BreNU2 swuievj1K2eJo3vJ99G1dhkBJXmj009mXoNWoZc4nS5Sh7XmatgUIYXHCbFTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGi58TUMmKT9optcP+PcpFeRHOyYwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzAzMzJlMzIzMDJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUvTANBgkqhkiG 9w0BAQsFAAOCAQEAkFpP7ehkejzBgr3Cjljj/wW1jzCZ/Mc1d4egBFWiSrzqdA8X CpnMX+/bxnhsRPKXeoDMJclrmDk6ddZsBG1gugM9pFiMq4nNo/8KzLRRR+1rlbCO Lo8PafqW20g42jUzjzqPfTb/jyJ52B3MLEXFUSmSZzt+x3Bg6uxhdby0RTZA5sSY PTuHlad2T/gjXp9uMLoVMMifLtzv93e2jRM0u0Oqyd8JxBYFjAiKO6Wi4unHurft Kf5XbNE04KLKvGUsfHcsGzaeqA8Vz5YJOgGlWY6CGjSGSVPpm9zEgt/Uew0HQrI8 TMM9UuwBk6wDI5cHumh3eM00FB+McLoA4/vUDg== -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:53 2024 by rpki-client on console-fra.rpki-client.org