$ rpki-client -vvf repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa File: 3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: GObE/Jxe3KQfBbC9gTi9DywRqcjKPKtS43Ksn0UGRtU= Subject key identifier: 05:DD:64:C9:55:0C:EC:7A:73:8C:1B:D4:03:C1:0F:10:B8:C5:FC:18 Certificate issuer: /CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F Certificate serial: 57ACD59858A3AC0CE7EE62CDBDAC1B71C129C70D Authority key identifier: 6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa Signing time: Mon 31 Jul 2023 00:05:40 +0000 ROA not before: Mon 31 Jul 2023 00:00:40 +0000 ROA not after: Mon 29 Jul 2024 00:05:40 +0000 asID: 140443 IP address blocks: 103.152.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.crl rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ac:d5:98:58:a3:ac:0c:e7:ee:62:cd:bd:ac:1b:71:c1:29:c7:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F Validity Not Before: Jul 31 00:00:40 2023 GMT Not After : Jul 29 00:05:40 2024 GMT Subject: CN=05DD64C9550CEC7A738C1BD403C10F10B8C5FC18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:69:0a:23:59:fb:0a:63:3a:77:55:cd:54:2e: 1d:29:d2:de:ed:94:84:62:8f:b0:9c:5d:0f:5d:ab: 6f:58:31:b5:42:00:d4:80:c7:fa:3b:ff:c9:21:fa: 4e:f3:ee:a1:7d:a9:d4:6a:7c:6d:62:34:e4:fe:80: e9:6e:16:f3:89:20:5e:12:fe:c9:2d:fd:d0:70:8d: 57:fd:fe:83:b8:74:53:40:19:cd:a0:52:62:8e:97: 2e:2d:8a:87:d9:5a:e3:60:49:c2:66:f6:61:b4:8c: 75:72:f6:4c:5e:65:e5:5a:75:c7:5c:9f:04:0c:cd: f9:c4:d0:4a:bd:4a:52:9b:3c:2f:51:5b:d2:35:2e: 55:37:6d:eb:ed:54:c1:94:05:e0:3a:f8:49:8b:8c: c5:4c:ec:20:59:5e:dd:83:5a:6f:b6:eb:b4:45:39: df:02:cd:25:2b:71:62:54:2a:b9:67:35:07:34:45: a0:26:70:da:da:bf:d0:89:17:ea:87:e6:3e:39:80: ad:26:6d:3a:18:f5:a0:cd:12:17:70:ac:50:f9:d0: 30:f0:69:db:31:91:55:74:1d:00:a7:3a:c6:ee:3e: 49:46:f8:75:70:cf:cb:43:df:4a:16:0d:22:2c:2b: 54:54:73:e5:92:ac:f9:5e:b3:ec:01:a7:05:a4:ab: e3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:DD:64:C9:55:0C:EC:7A:73:8C:1B:D4:03:C1:0F:10:B8:C5:FC:18 X509v3 Authority Key Identifier: keyid:6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.118.0/23 Signature Algorithm: sha256WithRSAEncryption 43:ab:95:3b:01:54:4a:d2:cb:0d:8b:dc:c4:0b:c1:8f:4e:b7: 32:ac:54:9c:ae:bf:a2:04:3d:71:b6:03:ff:1f:f1:56:a4:d0: 56:50:fe:1e:28:f4:9b:f5:59:f1:00:01:03:da:b5:30:46:fa: c1:dc:38:33:9f:d4:ba:97:26:31:8f:01:90:7e:60:36:29:db: d8:21:64:bb:44:8a:10:7f:c4:cc:6c:a5:f8:57:46:a1:8c:85: c8:04:f7:16:ba:40:f2:79:78:2f:e8:33:78:49:85:d3:d6:99: e3:f5:cc:54:b0:6f:72:37:d2:44:8d:e6:14:5d:e5:04:ce:f9: c1:2c:62:ed:92:cc:b5:87:55:ff:d5:68:e6:01:2a:ac:ec:57: b3:be:a7:6f:7e:45:39:86:16:ba:da:ad:05:25:55:b7:70:4a: f5:98:17:2f:7e:c0:5b:0e:57:ed:50:92:f7:93:65:0e:58:c8: ac:24:94:24:d6:0c:3f:ef:7c:fc:39:2d:8e:e6:b3:97:dc:be: 53:ef:76:3c:79:a5:14:1f:dc:50:c6:3f:15:f0:79:fc:6f:47: 81:ff:ec:04:2c:76:3e:e5:ab:a4:98:09:19:e4:23:f5:5d:b1: c4:87:22:08:dc:ed:4d:12:ec:1f:b0:a5:bd:e6:16:80:ab:2d: 3e:e0:f7:a9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUV6zVmFijrAzn7mLNvawbccEpxw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRDQzY5NTA4RUY0RTY3MEVGQkM1QzY5MjAzRDZCMTIw RkE5MzkyRjAeFw0yMzA3MzEwMDAwNDBaFw0yNDA3MjkwMDA1NDBaMDMxMTAvBgNV BAMTKDA1REQ2NEM5NTUwQ0VDN0E3MzhDMUJENDAzQzEwRjEwQjhDNUZDMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0aQojWfsKYzp3Vc1ULh0p0t7t lIRij7CcXQ9dq29YMbVCANSAx/o7/8kh+k7z7qF9qdRqfG1iNOT+gOluFvOJIF4S /skt/dBwjVf9/oO4dFNAGc2gUmKOly4tiofZWuNgScJm9mG0jHVy9kxeZeVadcdc nwQMzfnE0Eq9SlKbPC9RW9I1LlU3bevtVMGUBeA6+EmLjMVM7CBZXt2DWm+267RF Od8CzSUrcWJUKrlnNQc0RaAmcNrav9CJF+qH5j45gK0mbToY9aDNEhdwrFD50DDw adsxkVV0HQCnOsbuPklG+HVwz8tD30oWDSIsK1RUc+WSrPles+wBpwWkq+OxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBd1kyVUM7HpzjBvUA8EPELjF/BgwHwYDVR0j BBgwFoAUbcxpUI705nDvvFxpID1rEg+pOS8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjA3M2FjZS1hNjkxLTQ4NjMtOWMxYy01OWIyZGI5Y2I0NjMvMC82RENDNjk1MDhF RjRFNjcwRUZCQzVDNjkyMDNENkIxMjBGQTkzOTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRDQzY5NTA4RUY0RTY3MEVGQkM1QzY5MjAzRDZCMTIwRkE5 MzkyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMDczYWNlLWE2OTEtNDg2My05 YzFjLTU5YjJkYjljYjQ2My8wLzMxMzAzMzJlMzEzNTMyMmUzMTMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmHYwDQYJ KoZIhvcNAQELBQADggEBAEOrlTsBVErSyw2L3MQLwY9OtzKsVJyuv6IEPXG2A/8f 8Vak0FZQ/h4o9Jv1WfEAAQPatTBG+sHcODOf1LqXJjGPAZB+YDYp29ghZLtEihB/ xMxspfhXRqGMhcgE9xa6QPJ5eC/oM3hJhdPWmeP1zFSwb3I30kSN5hRd5QTO+cEs Yu2SzLWHVf/VaOYBKqzsV7O+p29+RTmGFrrarQUlVbdwSvWYFy9+wFsOV+1QkveT ZQ5YyKwklCTWDD/vfPw5LY7ms5fcvlPvdjx5pRQf3FDGPxXwefxvR4H/7AQsdj7l q6SYCRnkI/VdscSHIgjc7U0S7B+wpb3mFoCrLT7g96k= -----END CERTIFICATE-----Generated at Fri May 3 11:55:18 2024 by rpki-client on console-fra.rpki-client.org