$ rpki-client -vvf repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/3130332e36382e3133362e302f32332d3233203d3e203338353131.roa File: 3130332e36382e3133362e302f32332d3233203d3e203338353131.roa (raw, json) Hash identifier: Q/LrC0lApeEpkcG4EsW/h+HjwO1YTc03oRd8jJlrVMc= Subject key identifier: 3F:AD:00:E8:87:E6:CC:F3:8C:60:38:0C:18:15:27:CE:35:7B:85:E3 Certificate issuer: /CN=B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416 Certificate serial: 1625DC0C550AB89483E216423EDF16FB26B76542 Authority key identifier: B2:C1:8E:11:C8:53:0B:DF:4E:E3:33:F5:DE:BD:0B:05:5F:9D:A4:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer Subject info access: rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/3130332e36382e3133362e302f32332d3233203d3e203338353131.roa Signing time: Mon 20 Nov 2023 14:00:01 +0000 ROA not before: Mon 20 Nov 2023 13:55:01 +0000 ROA not after: Mon 18 Nov 2024 14:00:01 +0000 asID: 38511 IP address blocks: 103.68.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.crl rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 14:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:25:dc:0c:55:0a:b8:94:83:e2:16:42:3e:df:16:fb:26:b7:65:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416 Validity Not Before: Nov 20 13:55:01 2023 GMT Not After : Nov 18 14:00:01 2024 GMT Subject: CN=3FAD00E887E6CCF38C60380C181527CE357B85E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d9:f6:7b:10:9f:7e:2a:1b:14:da:0d:0b:36: a1:0a:a0:00:27:45:21:d1:5f:a4:89:7a:29:eb:86: cf:d3:20:f4:32:f6:49:06:22:27:fb:6c:3f:4f:bf: 47:6a:3d:1c:c3:a5:14:0a:59:1e:60:6d:be:29:1c: 69:59:19:84:b1:70:7d:a4:d8:78:08:13:25:b0:97: b3:56:f4:0a:1d:0b:ba:60:e8:15:f7:55:fe:81:73: c7:dd:8d:ca:13:d7:1c:d1:e3:c5:2d:48:18:07:4d: b3:8a:e6:a0:58:ba:02:dd:37:85:93:cb:09:9d:3e: ce:70:40:9d:55:fc:9d:d1:d5:cc:37:7c:64:59:9b: d7:65:9e:26:bb:5d:92:c3:2b:51:04:ff:b6:2c:55: 34:29:ff:8e:1f:4f:7c:09:88:87:2c:26:5b:7a:97: 8b:b7:40:c1:74:cd:cd:fe:10:e0:55:b3:91:80:94: 91:19:c9:32:7a:d8:1c:65:be:98:41:cf:b3:00:3f: 50:b2:23:83:d4:a2:af:25:27:9c:d9:a3:7a:60:ea: ab:3c:cf:8a:21:5b:df:a2:fe:67:c2:a9:8a:e7:6f: f7:2a:7d:59:6f:e7:cf:8e:ea:14:05:6d:75:22:14: 6f:49:91:8b:12:7c:13:47:0f:67:2d:28:a1:37:48: 3a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:AD:00:E8:87:E6:CC:F3:8C:60:38:0C:18:15:27:CE:35:7B:85:E3 X509v3 Authority Key Identifier: keyid:B2:C1:8E:11:C8:53:0B:DF:4E:E3:33:F5:DE:BD:0B:05:5F:9D:A4:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/3130332e36382e3133362e302f32332d3233203d3e203338353131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.68.136.0/23 Signature Algorithm: sha256WithRSAEncryption 45:e2:71:09:de:b8:7a:41:d0:ea:91:da:05:0d:c0:6f:4e:dc: c6:32:94:ee:c9:2a:08:93:eb:5b:80:21:77:40:a7:ec:35:91: 6d:6c:90:56:24:19:80:a6:e3:02:cc:49:38:24:90:42:3d:18: 1a:32:1c:9c:ff:bd:b4:92:ab:63:4b:ba:80:27:48:64:af:ef: 3b:37:b8:f1:ec:5c:ca:ff:a4:33:75:22:69:3d:dd:42:4a:f8: 07:9f:2a:d8:3b:52:c1:7c:68:93:d3:c4:05:d4:51:57:e2:31: 88:3b:d5:19:4a:77:c6:1e:e8:67:65:43:54:e9:a8:fc:2a:e3: b5:19:40:7a:f8:a5:33:f6:10:f8:8c:d0:1e:89:cc:0a:85:e8: 1f:2a:5f:7c:91:69:ed:4d:22:6a:35:2a:a1:2f:88:1d:99:7e: 92:a6:f6:31:34:1f:0a:70:89:79:a0:e8:0f:3e:02:71:98:9f: fa:70:23:df:e6:b7:de:ea:7b:50:1e:0d:69:35:4a:9a:4e:07: 0a:c1:9f:5f:a3:a4:e8:63:ae:79:a5:d5:8a:5d:42:cf:48:cf: eb:a8:b9:b2:7c:c5:7d:db:2b:aa:74:e0:09:57:32:d1:b1:8c: ed:87:ce:61:46:da:5f:2f:0c:a9:5c:17:86:60:58:f4:c1:39: c5:24:1a:8d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFiXcDFUKuJSD4hZCPt8W+ya3ZUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJDMThFMTFDODUzMEJERjRFRTMzM0Y1REVCRDBCMDU1 RjlEQTQxNjAeFw0yMzExMjAxMzU1MDFaFw0yNDExMTgxNDAwMDFaMDMxMTAvBgNV BAMTKDNGQUQwMEU4ODdFNkNDRjM4QzYwMzgwQzE4MTUyN0NFMzU3Qjg1RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz2fZ7EJ9+KhsU2g0LNqEKoAAn RSHRX6SJeinrhs/TIPQy9kkGIif7bD9Pv0dqPRzDpRQKWR5gbb4pHGlZGYSxcH2k 2HgIEyWwl7NW9AodC7pg6BX3Vf6Bc8fdjcoT1xzR48UtSBgHTbOK5qBYugLdN4WT ywmdPs5wQJ1V/J3R1cw3fGRZm9dlnia7XZLDK1EE/7YsVTQp/44fT3wJiIcsJlt6 l4u3QMF0zc3+EOBVs5GAlJEZyTJ62BxlvphBz7MAP1CyI4PUoq8lJ5zZo3pg6qs8 z4ohW9+i/mfCqYrnb/cqfVlv58+O6hQFbXUiFG9JkYsSfBNHD2ctKKE3SDoHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUP60A6IfmzPOMYDgMGBUnzjV7heMwHwYDVR0j BBgwFoAUssGOEchTC99O4zP13r0LBV+dpBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 M2RjMWIwNS0yYTY5LTQ1YjAtOGM0NC02MjY3NzIyNzZiZDkvMC9CMkMxOEUxMUM4 NTMwQkRGNEVFMzMzRjVERUJEMEIwNTVGOURBNDE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJDMThFMTFDODUzMEJERjRFRTMzM0Y1REVCRDBCMDU1RjlE QTQxNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzZGMxYjA1LTJhNjktNDViMC04 YzQ0LTYyNjc3MjI3NmJkOS8wLzMxMzAzMzJlMzYzODJlMzEzMzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM1MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdEiDANBgkqhkiG 9w0BAQsFAAOCAQEAReJxCd64ekHQ6pHaBQ3Ab07cxjKU7skqCJPrW4Ahd0Cn7DWR bWyQViQZgKbjAsxJOCSQQj0YGjIcnP+9tJKrY0u6gCdIZK/vOze48excyv+kM3Ui aT3dQkr4B58q2DtSwXxok9PEBdRRV+IxiDvVGUp3xh7oZ2VDVOmo/CrjtRlAevil M/YQ+IzQHonMCoXoHypffJFp7U0iajUqoS+IHZl+kqb2MTQfCnCJeaDoDz4CcZif +nAj3+a33up7UB4NaTVKmk4HCsGfX6Ok6GOueaXVil1Cz0jP66i5snzFfdsrqnTg CVcy0bGM7YfOYUbaXy8MqVwXhmBY9ME5xSQajQ== -----END CERTIFICATE-----Generated at Wed May 1 15:35:30 2024 by rpki-client on console-ams.rpki-client.org