$ rpki-client -vvf repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36392e302f32342d3234203d3e203535363835.roa File: 3130332e36362e36392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: OVZ/W+OEtrLNllcFjtmcQ4BWFdXLIDuMKPBR3f7UEDA= Subject key identifier: 68:5E:28:C7:6D:45:67:B9:04:71:E0:68:3F:57:85:19:90:EA:36:39 Certificate issuer: /CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Certificate serial: 068E1E58ED066894A12D3380BAE1A4BD23242AD5 Authority key identifier: 84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36392e302f32342d3234203d3e203535363835.roa Signing time: Mon 31 Jul 2023 00:06:22 +0000 ROA not before: Mon 31 Jul 2023 00:01:22 +0000 ROA not after: Mon 29 Jul 2024 00:06:22 +0000 asID: 55685 IP address blocks: 103.66.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:8e:1e:58:ed:06:68:94:a1:2d:33:80:ba:e1:a4:bd:23:24:2a:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Validity Not Before: Jul 31 00:01:22 2023 GMT Not After : Jul 29 00:06:22 2024 GMT Subject: CN=685E28C76D4567B90471E0683F57851990EA3639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c9:db:68:95:74:c6:dc:9e:6c:a5:55:07:b2: ff:96:37:30:53:42:04:48:49:90:22:e0:fa:62:04: f5:fd:a7:be:4e:60:d0:aa:7f:32:98:ef:cf:9a:98: 11:c3:d5:98:0e:b8:41:c7:07:b8:19:44:4a:82:28: c5:1a:d9:d4:69:6e:02:17:94:26:ad:14:47:7b:d0: 4d:e0:42:c7:a3:1e:28:3d:4c:0a:3c:36:6d:d5:7d: e6:4c:53:97:d2:b4:02:c5:3a:d6:f2:66:fa:9c:8d: 61:55:92:87:5c:48:43:21:88:e8:e8:3e:11:31:fd: e3:92:fa:61:22:b2:a7:8f:85:db:4e:f1:80:b7:61: 5d:99:c4:91:39:cb:af:16:b2:27:2c:31:35:5e:67: 70:cb:47:eb:aa:b0:c5:41:53:f2:32:e2:df:6a:d2: ce:c1:cc:11:58:4e:1c:f9:ab:03:a0:a8:bb:5a:2e: 23:e2:69:51:39:54:a7:56:ea:99:67:39:97:bb:96: c7:91:13:70:33:10:0e:ae:83:fa:3a:f5:b4:c7:f5: 3f:9a:80:80:07:4d:dc:de:41:34:c9:de:db:21:fa: 3f:bc:ea:ec:8f:dc:ea:56:9e:2b:60:3e:f0:c4:d1: b8:6d:85:2b:a1:10:94:0d:34:f6:84:1e:be:57:1a: af:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:5E:28:C7:6D:45:67:B9:04:71:E0:68:3F:57:85:19:90:EA:36:39 X509v3 Authority Key Identifier: keyid:84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.69.0/24 Signature Algorithm: sha256WithRSAEncryption b5:1b:40:64:02:7a:58:bd:88:dd:64:8f:59:71:4f:00:9e:56: 82:00:16:20:b6:52:9f:f0:4c:13:03:0e:dd:ff:4f:f3:f1:05: 5e:41:3c:60:fc:b4:da:3e:fc:38:9b:2c:0b:2b:68:dc:22:02: 61:1a:f3:cf:14:c4:7c:fd:8a:fc:6b:6c:9f:dc:cd:89:2c:f2: 67:99:49:1c:8c:1f:a6:67:60:c9:c9:c5:fa:50:dc:46:d1:40: 6e:aa:5b:d8:7c:fe:7f:96:2c:85:ae:0a:8c:59:ce:4f:4d:89: 04:26:da:f5:fc:58:71:cb:76:81:de:2e:b8:1d:51:d2:57:e4: 11:a2:43:bd:a4:30:f9:16:ea:0c:4e:16:7c:8a:cc:3f:49:cc: 5b:cd:06:6f:b5:87:e2:7a:39:22:a0:d5:4c:93:02:a0:5b:1b: c0:28:e2:0c:6b:d8:4d:7c:2a:a6:e4:72:b0:fd:fc:2f:15:61: 39:1c:a9:c3:32:c2:2c:27:52:ff:08:ca:3a:df:08:f3:06:a2: f7:c4:f9:57:82:70:69:2a:e2:74:be:ad:6c:df:ea:d8:ec:f7: 06:2f:c9:9f:06:76:65:b7:23:8e:60:dc:9c:89:02:5c:a6:fb: 92:fa:78:23:0d:5c:73:84:d4:83:7d:81:1f:29:85:4e:6c:eb: 77:22:3f:84 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBo4eWO0GaJShLTOAuuGkvSMkKtUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5 QjZBRjMxNzAeFw0yMzA3MzEwMDAxMjJaFw0yNDA3MjkwMDA2MjJaMDMxMTAvBgNV BAMTKDY4NUUyOEM3NkQ0NTY3QjkwNDcxRTA2ODNGNTc4NTE5OTBFQTM2MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwydtolXTG3J5spVUHsv+WNzBT QgRISZAi4PpiBPX9p75OYNCqfzKY78+amBHD1ZgOuEHHB7gZREqCKMUa2dRpbgIX lCatFEd70E3gQsejHig9TAo8Nm3VfeZMU5fStALFOtbyZvqcjWFVkodcSEMhiOjo PhEx/eOS+mEisqePhdtO8YC3YV2ZxJE5y68WsicsMTVeZ3DLR+uqsMVBU/Iy4t9q 0s7BzBFYThz5qwOgqLtaLiPiaVE5VKdW6plnOZe7lseRE3AzEA6ug/o69bTH9T+a gIAHTdzeQTTJ3tsh+j+86uyP3OpWnitgPvDE0bhthSuhEJQNNPaEHr5XGq85AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUaF4ox21FZ7kEceBoP1eFGZDqNjkwHwYDVR0j BBgwFoAUhFi8NpyAp2sodfyX2+XRoJtq8xcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmFhMTZlYS0yYWVjLTQ5NWQtYTlhMy02OTI1NzMwZDVlMGYvMC84NDU4QkMzNjlD ODBBNzZCMjg3NUZDOTdEQkU1RDFBMDlCNkFGMzE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5QjZB RjMxNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyYWExNmVhLTJhZWMtNDk1ZC1h OWEzLTY5MjU3MzBkNWUwZi8wLzMxMzAzMzJlMzYzNjJlMzYzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnQkUwDQYJKoZIhvcN AQELBQADggEBALUbQGQCeli9iN1kj1lxTwCeVoIAFiC2Up/wTBMDDt3/T/PxBV5B PGD8tNo+/DibLAsraNwiAmEa888UxHz9ivxrbJ/czYks8meZSRyMH6ZnYMnJxfpQ 3EbRQG6qW9h8/n+WLIWuCoxZzk9NiQQm2vX8WHHLdoHeLrgdUdJX5BGiQ72kMPkW 6gxOFnyKzD9JzFvNBm+1h+J6OSKg1UyTAqBbG8Ao4gxr2E18KqbkcrD9/C8VYTkc qcMywiwnUv8IyjrfCPMGovfE+VeCcGkq4nS+rWzf6tjs9wYvyZ8GdmW3I45g3JyJ Alym+5L6eCMNXHOE1IN9gR8phU5s63ciP4Q= -----END CERTIFICATE-----Generated at Thu Apr 25 23:29:16 2024 by rpki-client on console-ams.rpki-client.org