$ rpki-client -vvf repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137302e302f32332d3233203d3e203633383732.roa File: 3130332e35322e3137302e302f32332d3233203d3e203633383732.roa (raw, json) Hash identifier: IItHYU8m8kJIB+aCdi43dIrmAn7Yf1bKtCDMlPIJJ4s= Subject key identifier: FD:84:5F:21:6D:BF:C2:C3:8D:D5:B4:B4:23:EB:FC:80:06:F5:F5:F0 Certificate issuer: /CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Certificate serial: 03DB5D1C01A354B4148677ECBD83BD3C5F74A160 Authority key identifier: 6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137302e302f32332d3233203d3e203633383732.roa Signing time: Mon 31 Jul 2023 00:13:32 +0000 ROA not before: Mon 31 Jul 2023 00:08:32 +0000 ROA not after: Mon 29 Jul 2024 00:13:32 +0000 asID: 63872 IP address blocks: 103.52.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 20:18:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:db:5d:1c:01:a3:54:b4:14:86:77:ec:bd:83:bd:3c:5f:74:a1:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Validity Not Before: Jul 31 00:08:32 2023 GMT Not After : Jul 29 00:13:32 2024 GMT Subject: CN=FD845F216DBFC2C38DD5B4B423EBFC8006F5F5F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ef:ba:58:db:65:8d:02:79:56:4c:12:37:8d: f3:1b:6b:3d:2f:f8:9f:a3:7a:80:68:bf:d3:9a:bc: 08:23:24:40:b8:8b:cc:c2:55:45:ee:99:88:e8:c8: 44:8e:ac:28:fc:c2:43:98:8e:6f:9c:bb:30:17:be: f5:92:dd:dc:e9:ec:0f:7f:af:45:61:6f:92:5d:bf: 1e:c6:65:ee:51:4d:4b:71:d5:de:6d:61:14:55:73: c7:fa:3e:07:ec:e7:c0:c0:8e:f8:59:e4:9e:2e:4c: 31:85:46:53:aa:d9:6e:5f:0b:b3:dc:ca:87:2a:19: e8:0e:23:fa:c1:05:f2:c1:9f:7e:64:b9:fb:e5:9d: 32:02:56:c5:7b:ad:55:98:ad:89:5b:ac:37:bf:0e: 94:20:63:e2:e1:29:a0:97:74:3c:2b:c5:a0:0f:26: 10:e1:30:76:93:5f:fe:13:52:4d:c6:02:09:14:c6: f0:77:78:a6:d3:f3:0d:61:5b:22:69:d0:aa:17:b3: d0:5b:f8:3f:4b:18:6d:96:4f:1e:55:09:c4:b6:8f: 2c:58:73:b9:53:23:79:21:5e:69:03:a2:a2:16:fc: 0f:97:57:a9:25:87:4c:3b:9e:60:b9:ff:c9:04:a8: 17:52:04:de:9c:c3:db:48:75:25:2d:df:15:ab:32: 24:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:84:5F:21:6D:BF:C2:C3:8D:D5:B4:B4:23:EB:FC:80:06:F5:F5:F0 X509v3 Authority Key Identifier: keyid:6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137302e302f32332d3233203d3e203633383732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.170.0/23 Signature Algorithm: sha256WithRSAEncryption 07:13:4b:65:f1:1b:b6:4c:3a:df:30:9e:d8:3e:16:70:3d:2c: 8a:92:01:20:11:f5:8d:67:38:df:fa:42:bb:4d:4c:a9:65:a9: c2:85:48:11:46:38:30:ca:57:4e:6f:9a:93:86:d2:71:a6:38: 5e:bf:e8:30:82:2f:bd:f8:44:8e:c1:db:8e:ac:d6:f6:fb:a4: cf:00:e6:d7:3b:ff:a8:f4:d8:e3:0e:bd:f9:c4:ef:3b:87:bc: e4:fc:09:7e:02:37:d0:c8:53:5e:7d:d3:f0:67:a4:a5:21:36: ab:a6:6b:b8:b5:13:66:ba:75:8d:a3:45:11:75:be:a4:09:85: 63:22:ff:c9:d7:34:bc:ac:4b:a1:0b:a5:17:c3:7d:e3:da:f9: c9:b5:75:b3:7f:ef:67:8f:75:de:a2:82:ec:2e:cf:ef:72:d8: 20:bf:10:46:d8:69:8b:cc:76:56:a6:88:cf:9b:db:3a:fb:6a: d9:d3:32:29:66:f1:e4:0a:40:11:dc:7a:b8:93:44:88:ca:2f: 9a:12:93:72:a8:d4:b2:08:32:fc:7d:15:9c:46:c4:fa:35:51: 95:1e:15:93:da:6d:6f:51:33:c7:1a:cf:e4:02:52:01:75:37: af:7c:df:6f:ce:39:d0:99:d7:67:41:49:d1:fd:00:92:0a:90: ea:3b:23:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA9tdHAGjVLQUhnfsvYO9PF90oWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYy N0JFN0IxOTAeFw0yMzA3MzEwMDA4MzJaFw0yNDA3MjkwMDEzMzJaMDMxMTAvBgNV BAMTKEZEODQ1RjIxNkRCRkMyQzM4REQ1QjRCNDIzRUJGQzgwMDZGNUY1RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ77pY22WNAnlWTBI3jfMbaz0v +J+jeoBov9OavAgjJEC4i8zCVUXumYjoyESOrCj8wkOYjm+cuzAXvvWS3dzp7A9/ r0Vhb5Jdvx7GZe5RTUtx1d5tYRRVc8f6Pgfs58DAjvhZ5J4uTDGFRlOq2W5fC7Pc yocqGegOI/rBBfLBn35kufvlnTICVsV7rVWYrYlbrDe/DpQgY+LhKaCXdDwrxaAP JhDhMHaTX/4TUk3GAgkUxvB3eKbT8w1hWyJp0KoXs9Bb+D9LGG2WTx5VCcS2jyxY c7lTI3khXmkDoqIW/A+XV6klh0w7nmC5/8kEqBdSBN6cw9tIdSUt3xWrMiR/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/YRfIW2/wsON1bS0I+v8gAb19fAwHwYDVR0j BBgwFoAUbWuu2/27qka/PaIYVXB3Fie+exkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmJiMzMzYy05ODJiLTRmY2UtYWM4MS1iYzA2OTIyOWUyNDMvMC82RDZCQUVEQkZE QkJBQTQ2QkYzREEyMTg1NTcwNzcxNjI3QkU3QjE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYyN0JF N0IxOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2YmIzMzNjLTk4MmItNGZjZS1h YzgxLWJjMDY5MjI5ZTI0My8wLzMxMzAzMzJlMzUzMjJlMzEzNzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzYzMzM4MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc0qjANBgkqhkiG 9w0BAQsFAAOCAQEABxNLZfEbtkw63zCe2D4WcD0sipIBIBH1jWc43/pCu01MqWWp woVIEUY4MMpXTm+ak4bScaY4Xr/oMIIvvfhEjsHbjqzW9vukzwDm1zv/qPTY4w69 +cTvO4e85PwJfgI30MhTXn3T8GekpSE2q6ZruLUTZrp1jaNFEXW+pAmFYyL/ydc0 vKxLoQulF8N949r5ybV1s3/vZ4913qKC7C7P73LYIL8QRthpi8x2VqaIz5vbOvtq 2dMyKWbx5ApAEdx6uJNEiMovmhKTcqjUsggy/H0VnEbE+jVRlR4Vk9ptb1EzxxrP 5AJSAXU3r3zfb8450JnXZ0FJ0f0AkgqQ6jsjpg== -----END CERTIFICATE-----Generated at Tue Apr 16 18:26:19 2024 by rpki-client on console-fra.rpki-client.org