$ rpki-client -vvf repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36382e302f32342d3234203d3e203535363835.roa File: 3130332e36362e36382e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: F6fgbhJ9aRUda7qo5W61dg3tOh56iPPIqDbDWuxDzQ0= Subject key identifier: 43:3D:7A:AA:96:5C:74:B6:F5:45:9B:FA:98:7C:A9:A1:20:D9:DB:8C Certificate issuer: /CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Certificate serial: 2AFD4DCBA27C119B4BBD77DF65AA488A8DCA6A83 Authority key identifier: 84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36382e302f32342d3234203d3e203535363835.roa Signing time: Mon 04 Dec 2023 05:00:01 +0000 ROA not before: Mon 04 Dec 2023 04:55:01 +0000 ROA not after: Mon 02 Dec 2024 05:00:01 +0000 asID: 55685 IP address blocks: 103.66.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:fd:4d:cb:a2:7c:11:9b:4b:bd:77:df:65:aa:48:8a:8d:ca:6a:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Validity Not Before: Dec 4 04:55:01 2023 GMT Not After : Dec 2 05:00:01 2024 GMT Subject: CN=433D7AAA965C74B6F5459BFA987CA9A120D9DB8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:57:9b:83:f4:63:e4:bf:b8:86:38:35:95:33: 86:84:71:3d:a0:5e:4e:a2:79:2a:72:31:cb:56:cf: a7:d0:ca:c2:b3:0e:cb:5a:0f:9a:8e:a4:5f:08:b9: 08:b7:49:d1:40:9d:f6:f9:f6:b7:ec:a3:6a:cf:be: a9:df:df:79:b2:c3:20:81:89:46:79:b2:eb:af:5b: 72:fe:84:e3:e5:cc:d9:32:ed:a7:80:7c:9f:5b:af: 82:22:f9:29:01:7a:fb:72:d5:ce:02:6c:ab:76:51: 94:89:8a:7b:14:a9:54:99:cc:67:79:f2:d3:b5:26: ec:c1:ac:a0:7a:ed:91:f9:7c:6d:5e:14:84:63:f2: ce:36:50:17:c6:b3:43:25:8a:c5:87:eb:30:d1:fe: 4f:24:1b:22:89:a2:ac:2a:1b:85:78:12:28:8c:9c: be:33:43:9f:9c:af:96:df:29:da:e7:34:71:82:60: ba:46:9f:bb:36:53:28:3e:de:b7:7c:13:50:5c:4c: be:43:a5:fb:b8:8e:3d:8c:ed:f9:90:34:73:9d:07: e7:d1:43:20:0d:1d:00:eb:3c:25:d3:bb:b6:64:09: 16:a4:77:29:d7:3a:8b:3a:d8:90:29:f5:56:b2:f2: b9:31:71:79:21:aa:6f:fb:2b:35:8e:78:45:f4:30: be:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:3D:7A:AA:96:5C:74:B6:F5:45:9B:FA:98:7C:A9:A1:20:D9:DB:8C X509v3 Authority Key Identifier: keyid:84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36382e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.68.0/24 Signature Algorithm: sha256WithRSAEncryption 05:da:bd:3f:c3:9a:86:90:3e:a9:b5:e7:0b:ef:d4:dc:3e:13: f1:99:b6:84:ce:60:d0:9e:cc:c2:c3:96:3d:cd:2a:22:b3:cd: 01:17:90:2d:ad:f9:36:6b:b2:aa:53:6c:7b:f5:fb:04:38:25: 71:66:11:32:f0:9d:53:d7:23:d4:0b:0f:e2:77:71:6e:fc:a0: 5b:ff:31:ea:f0:e5:50:9e:a4:17:1b:e0:5e:b0:be:7e:61:c8: fb:69:25:c2:ac:17:aa:be:18:95:50:4f:b3:b0:23:b1:3f:0c: 22:f0:38:9e:21:7b:f1:4a:8b:9a:d4:0c:1e:cb:15:dd:73:2f: fb:c1:71:31:57:91:e8:b6:7e:b2:24:5a:27:4e:ee:84:64:6b: 84:9a:61:25:9e:00:a9:5b:54:cc:23:51:79:5f:6a:70:9c:51: d5:91:ff:2a:f8:9d:6e:bf:0d:44:bb:c2:e9:67:ed:d4:66:db: 18:12:d4:da:06:d1:bd:a1:4f:e2:03:34:ab:7a:fb:99:ff:0d: a3:e6:da:eb:50:e4:47:70:38:12:78:36:9a:2d:d7:5b:6c:42: d2:d2:35:75:76:be:d5:d8:8b:4a:a3:be:9c:34:25:4e:71:c0: 78:69:8e:31:7d:d5:de:a0:76:64:88:6a:9a:8b:5b:f1:e0:d0: 93:07:e7:e4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKv1Ny6J8EZtLvXffZapIio3KaoMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5 QjZBRjMxNzAeFw0yMzEyMDQwNDU1MDFaFw0yNDEyMDIwNTAwMDFaMDMxMTAvBgNV BAMTKDQzM0Q3QUFBOTY1Qzc0QjZGNTQ1OUJGQTk4N0NBOUExMjBEOURCOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbV5uD9GPkv7iGODWVM4aEcT2g Xk6ieSpyMctWz6fQysKzDstaD5qOpF8IuQi3SdFAnfb59rfso2rPvqnf33mywyCB iUZ5suuvW3L+hOPlzNky7aeAfJ9br4Ii+SkBevty1c4CbKt2UZSJinsUqVSZzGd5 8tO1JuzBrKB67ZH5fG1eFIRj8s42UBfGs0MlisWH6zDR/k8kGyKJoqwqG4V4EiiM nL4zQ5+cr5bfKdrnNHGCYLpGn7s2Uyg+3rd8E1BcTL5Dpfu4jj2M7fmQNHOdB+fR QyANHQDrPCXTu7ZkCRakdynXOos62JAp9Vay8rkxcXkhqm/7KzWOeEX0ML7zAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUQz16qpZcdLb1RZv6mHypoSDZ24wwHwYDVR0j BBgwFoAUhFi8NpyAp2sodfyX2+XRoJtq8xcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmFhMTZlYS0yYWVjLTQ5NWQtYTlhMy02OTI1NzMwZDVlMGYvMC84NDU4QkMzNjlD ODBBNzZCMjg3NUZDOTdEQkU1RDFBMDlCNkFGMzE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5QjZB RjMxNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyYWExNmVhLTJhZWMtNDk1ZC1h OWEzLTY5MjU3MzBkNWUwZi8wLzMxMzAzMzJlMzYzNjJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnQkQwDQYJKoZIhvcN AQELBQADggEBAAXavT/DmoaQPqm15wvv1Nw+E/GZtoTOYNCezMLDlj3NKiKzzQEX kC2t+TZrsqpTbHv1+wQ4JXFmETLwnVPXI9QLD+J3cW78oFv/Merw5VCepBcb4F6w vn5hyPtpJcKsF6q+GJVQT7OwI7E/DCLwOJ4he/FKi5rUDB7LFd1zL/vBcTFXkei2 frIkWidO7oRka4SaYSWeAKlbVMwjUXlfanCcUdWR/yr4nW6/DUS7wuln7dRm2xgS 1NoG0b2hT+IDNKt6+5n/DaPm2utQ5EdwOBJ4Npot11tsQtLSNXV2vtXYi0qjvpw0 JU5xwHhpjjF91d6gdmSIapqLW/Hg0JMH5+Q= -----END CERTIFICATE-----Generated at Fri Apr 19 00:03:49 2024 by rpki-client on console-ams.rpki-client.org