$ rpki-client -vvf repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa File: 3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa (raw, json) Hash identifier: h8qJ49nx9myfWiKZL58bC9IaelF9jBofBRTjs4GSn9g= Subject key identifier: F6:94:2A:8B:6E:4C:0E:5C:C3:F6:73:26:56:1A:6A:1C:74:82:14:84 Certificate issuer: /CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7 Certificate serial: 2AE6597D37ED072C2825750E9570C737A6480D85 Authority key identifier: 6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa Signing time: Tue 31 Oct 2023 00:42:26 +0000 ROA not before: Tue 31 Oct 2023 00:37:26 +0000 ROA not after: Tue 29 Oct 2024 00:42:26 +0000 asID: 45701 IP address blocks: 103.156.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.crl rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e6:59:7d:37:ed:07:2c:28:25:75:0e:95:70:c7:37:a6:48:0d:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7 Validity Not Before: Oct 31 00:37:26 2023 GMT Not After : Oct 29 00:42:26 2024 GMT Subject: CN=F6942A8B6E4C0E5CC3F67326561A6A1C74821484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:05:63:71:2b:d5:68:bb:6a:b1:fe:93:d2:8b: 5d:a1:7d:1a:9b:86:74:70:9e:ed:45:75:e2:7f:56: 53:89:de:9b:51:d8:25:16:42:b9:e3:18:5b:e2:c6: 9a:f3:75:e9:56:f5:01:97:72:f1:17:a5:66:eb:a2: c3:21:93:7a:91:dd:dd:25:6e:d9:7f:ca:2a:fb:9f: c3:b8:35:76:b5:b2:9c:3c:56:67:67:97:9d:4f:a1: f1:a7:a0:76:53:c7:12:5c:56:77:b6:32:f5:72:cf: 62:5a:1a:6a:48:ed:6c:69:0b:e3:b3:b3:42:8a:06: 50:55:53:03:6d:2e:3c:d3:ca:c1:64:90:4b:22:43: 50:8d:2d:7b:8f:3b:75:26:cf:9f:7b:2d:5c:25:6d: 64:3b:84:6b:4c:94:fc:29:31:d1:71:2f:fb:4a:df: 49:89:ec:68:58:8e:6a:a2:32:69:ed:7d:9f:75:58: 80:a6:88:42:fd:62:77:f6:4c:27:2b:66:5d:f5:ec: 08:7c:ed:f0:5f:e3:ba:a4:90:c2:80:ac:01:00:91: ff:27:ba:d9:db:b2:f4:81:63:04:7a:d9:6d:13:5b: df:3d:43:92:b6:00:af:e1:f3:c9:92:d5:ae:14:e1: 28:cd:fa:d2:32:56:f4:f5:aa:38:20:92:b0:31:e3: ff:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:94:2A:8B:6E:4C:0E:5C:C3:F6:73:26:56:1A:6A:1C:74:82:14:84 X509v3 Authority Key Identifier: keyid:6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.227.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:cd:e7:71:17:9d:38:5f:e7:80:f1:5e:94:08:db:11:f0:f3: 45:21:0f:2a:5a:e2:1c:5d:d1:92:6a:d3:91:da:e4:a1:a5:fe: 72:c4:af:6d:f6:de:3a:db:4b:28:ce:e6:a5:02:31:66:53:6c: 9f:f8:84:c0:0b:b5:6e:3f:7a:5c:db:26:d2:77:60:d8:ab:00: 4d:48:0e:de:a1:a8:22:9b:74:df:bf:55:65:ac:ce:5f:ad:43: 45:50:69:c4:16:58:4d:e0:79:75:54:f5:82:d4:57:b1:e5:c7: 23:fe:f0:65:53:92:42:9c:79:8c:6c:9d:3f:c7:13:26:31:8f: 68:3b:e9:47:5d:92:f7:47:3b:09:18:d3:b5:03:9e:a3:81:fb: f6:ee:42:c4:8e:01:14:c5:f9:2e:03:9e:2a:28:e4:47:3a:35: b2:3f:7e:31:03:be:87:11:41:07:b3:48:3a:89:9d:62:03:93: 3d:e2:26:95:af:fe:55:c9:43:bb:a2:ca:78:0e:0e:64:a2:40: 45:cb:cb:68:1e:d7:2e:02:b7:66:52:60:f7:d9:c5:ab:15:27: 40:4a:0c:0a:3d:aa:44:43:b5:3a:77:de:ac:f3:d1:ab:02:05: e3:d9:79:e3:5f:5e:2d:cb:c5:58:55:69:08:e9:3e:c0:11:4e: 35:93:be:b0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKuZZfTftBywoJXUOlXDHN6ZIDYUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkUxMjM1QzhGQzNGMkVGNkQ5RDI0NUQwNjA3QUE2RDc2 M0M1RDRFNzAeFw0yMzEwMzEwMDM3MjZaFw0yNDEwMjkwMDQyMjZaMDMxMTAvBgNV BAMTKEY2OTQyQThCNkU0QzBFNUNDM0Y2NzMyNjU2MUE2QTFDNzQ4MjE0ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiBWNxK9Vou2qx/pPSi12hfRqb hnRwnu1FdeJ/VlOJ3ptR2CUWQrnjGFvixprzdelW9QGXcvEXpWbrosMhk3qR3d0l btl/yir7n8O4NXa1spw8Vmdnl51PofGnoHZTxxJcVne2MvVyz2JaGmpI7WxpC+Oz s0KKBlBVUwNtLjzTysFkkEsiQ1CNLXuPO3Umz597LVwlbWQ7hGtMlPwpMdFxL/tK 30mJ7GhYjmqiMmntfZ91WICmiEL9Ynf2TCcrZl317Ah87fBf47qkkMKArAEAkf8n utnbsvSBYwR62W0TW989Q5K2AK/h88mS1a4U4SjN+tIyVvT1qjggkrAx4/9pAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9pQqi25MDlzD9nMmVhpqHHSCFIQwHwYDVR0j BBgwFoAUbhI1yPw/LvbZ0kXQYHqm12PF1OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTM1NWM1YS1lZmM4LTQ4ZjctOTAyZi02ZTMxZmM0Mjk5NWEvMC82RTEyMzVDOEZD M0YyRUY2RDlEMjQ1RDA2MDdBQTZENzYzQzVENEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkUxMjM1QzhGQzNGMkVGNkQ5RDI0NUQwNjA3QUE2RDc2M0M1 RDRFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1MzU1YzVhLWVmYzgtNDhmNy05 MDJmLTZlMzFmYzQyOTk1YS8wLzMxMzAzMzJlMzEzNTM2MmUzMjMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5zjMA0GCSqG SIb3DQEBCwUAA4IBAQAtzedxF504X+eA8V6UCNsR8PNFIQ8qWuIcXdGSatOR2uSh pf5yxK9t9t4620sozualAjFmU2yf+ITAC7VuP3pc2ybSd2DYqwBNSA7eoagim3Tf v1VlrM5frUNFUGnEFlhN4Hl1VPWC1Fex5ccj/vBlU5JCnHmMbJ0/xxMmMY9oO+lH XZL3RzsJGNO1A56jgfv27kLEjgEUxfkuA54qKORHOjWyP34xA76HEUEHs0g6iZ1i A5M94iaVr/5VyUO7osp4Dg5kokBFy8toHtcuArdmUmD32cWrFSdASgwKPapEQ7U6 d96s89GrAgXj2XnjX14ty8VYVWkI6T7AEU41k76w -----END CERTIFICATE-----Generated at Sat Apr 27 20:20:10 2024 by rpki-client on console-ams.rpki-client.org