$ rpki-client -vvf repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa File: 3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: S07h0jToTq1uEy6OH0z3dOHhCYjSPHSR65N52uEQo+E= Subject key identifier: 36:91:D9:E1:D5:26:91:90:3C:5A:39:8B:EC:0F:43:B4:47:34:07:7F Certificate issuer: /CN=6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8 Certificate serial: 1595D34DB25A218BD48CC5F42F8A60AEE1BC310F Authority key identifier: 6C:F6:DF:7E:65:16:A6:AB:F5:39:F0:39:6C:B6:C0:D4:DB:50:F4:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa Signing time: Mon 26 Jun 2023 13:00:00 +0000 ROA not before: Mon 26 Jun 2023 12:55:00 +0000 ROA not after: Mon 24 Jun 2024 13:00:00 +0000 asID: 4800 IP address blocks: 103.191.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.crl rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 06:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:95:d3:4d:b2:5a:21:8b:d4:8c:c5:f4:2f:8a:60:ae:e1:bc:31:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8 Validity Not Before: Jun 26 12:55:00 2023 GMT Not After : Jun 24 13:00:00 2024 GMT Subject: CN=3691D9E1D52691903C5A398BEC0F43B44734077F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bb:8c:e3:bc:e6:04:7f:0c:d4:97:eb:fd:70: 9e:1e:a5:3a:02:80:6f:a9:c4:d4:cf:b1:0e:2e:de: 00:b2:41:89:6d:d1:e2:dc:92:c2:bb:c3:ef:dd:79: 9d:f2:a9:95:1e:26:08:fb:6a:2e:4d:a9:2a:93:2b: b1:c2:18:1f:2d:8f:7b:54:cd:6f:13:8e:57:fe:3c: 27:1a:40:64:54:ad:d3:ab:0d:01:4d:b1:07:28:99: 9b:53:46:0e:81:86:75:01:d8:34:60:2d:fa:9f:bd: f6:aa:1c:42:3d:ad:2a:cd:a3:01:f5:75:51:cc:9f: dd:7e:f8:a1:b3:f2:d5:c9:ea:bb:9a:cc:95:4e:cd: 98:17:f6:ec:91:0a:9d:07:78:ae:2c:cc:03:7d:f6: 4b:e8:a1:8c:54:d4:fc:91:1d:01:77:4b:7f:84:0c: 85:9b:1c:cd:43:a7:ba:00:c8:ac:a0:72:16:ab:1d: dc:8c:cf:f4:17:2f:74:2f:f7:64:c9:69:5c:38:6a: 16:d6:6a:e1:66:a2:f9:c2:c8:a3:70:9b:3d:65:19: a6:2e:7a:3f:c3:8e:3a:f8:8d:b8:fa:00:19:a0:02: bb:64:3c:e8:6e:9d:82:e8:0f:9c:29:5a:d6:6e:ba: 19:6d:a8:20:f8:45:2c:56:79:d3:89:c0:44:e2:11: e7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:91:D9:E1:D5:26:91:90:3C:5A:39:8B:EC:0F:43:B4:47:34:07:7F X509v3 Authority Key Identifier: keyid:6C:F6:DF:7E:65:16:A6:AB:F5:39:F0:39:6C:B6:C0:D4:DB:50:F4:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.148.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:7e:9a:86:15:7c:b6:da:5c:f8:a4:d5:fa:9d:91:43:5e:fc: 2b:3f:f5:05:df:8b:a6:34:37:08:71:87:74:80:69:08:8c:13: 48:cf:de:59:b6:b5:b8:de:c9:f8:cb:04:78:81:3c:e5:ad:9a: 5f:80:44:c3:e6:b8:ab:e4:c8:b2:3e:f8:66:06:f5:d7:ac:78: 40:b8:01:c1:e3:80:2b:02:13:0e:02:7c:f0:47:67:52:6e:12: dd:16:69:6a:7f:61:bc:1b:00:c1:c7:a7:1c:23:c0:06:3e:e3: a8:2f:18:5a:42:f2:f4:d8:57:ca:32:ad:97:0c:40:44:c0:8c: df:43:17:4e:9e:f6:3e:8b:d0:af:b8:4d:b2:a5:1d:15:9c:52: ed:98:8b:9a:0a:1d:48:8a:13:23:5c:df:b2:0e:3a:6a:9b:72: 06:cb:41:1f:b6:a8:c4:7a:e2:59:56:30:11:c5:0b:a7:9f:11: cb:52:7f:a6:46:8d:ec:12:67:17:98:e4:4c:62:80:e7:3a:76: 9c:28:eb:8e:90:b5:2f:ac:16:c9:19:5d:c8:6f:b0:73:fc:f1: 55:62:2c:7f:6c:07:bc:3b:ba:b3:53:05:4d:ad:df:62:4a:30: fc:1b:a5:ba:a3:c9:c6:12:90:88:e0:7a:07:ee:85:1c:da:c9: 61:a2:e6:f8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFZXTTbJaIYvUjMX0L4pgruG8MQ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkNGNkRGN0U2NTE2QTZBQkY1MzlGMDM5NkNCNkMwRDRE QjUwRjREODAeFw0yMzA2MjYxMjU1MDBaFw0yNDA2MjQxMzAwMDBaMDMxMTAvBgNV BAMTKDM2OTFEOUUxRDUyNjkxOTAzQzVBMzk4QkVDMEY0M0I0NDczNDA3N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPu4zjvOYEfwzUl+v9cJ4epToC gG+pxNTPsQ4u3gCyQYlt0eLcksK7w+/deZ3yqZUeJgj7ai5NqSqTK7HCGB8tj3tU zW8Tjlf+PCcaQGRUrdOrDQFNsQcomZtTRg6BhnUB2DRgLfqfvfaqHEI9rSrNowH1 dVHMn91++KGz8tXJ6ruazJVOzZgX9uyRCp0HeK4szAN99kvooYxU1PyRHQF3S3+E DIWbHM1Dp7oAyKygcharHdyMz/QXL3Qv92TJaVw4ahbWauFmovnCyKNwmz1lGaYu ej/Djjr4jbj6ABmgArtkPOhunYLoD5wpWtZuuhltqCD4RSxWedOJwETiEefbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNpHZ4dUmkZA8WjmL7A9DtEc0B38wHwYDVR0j BBgwFoAUbPbffmUWpqv1OfA5bLbA1NtQ9NgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZDkwNmZjMC00MzYzLTRmNDYtOWIxNC01YzFhYjgyNWEzMzUvMC82Q0Y2REY3RTY1 MTZBNkFCRjUzOUYwMzk2Q0I2QzBENERCNTBGNEQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkNGNkRGN0U2NTE2QTZBQkY1MzlGMDM5NkNCNkMwRDREQjUw RjREOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkOTA2ZmMwLTQzNjMtNGY0Ni05 YjE0LTVjMWFiODI1YTMzNS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM0MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe/lDANBgkqhkiG 9w0BAQsFAAOCAQEAGn6ahhV8ttpc+KTV+p2RQ178Kz/1Bd+LpjQ3CHGHdIBpCIwT SM/eWba1uN7J+MsEeIE85a2aX4BEw+a4q+TIsj74Zgb116x4QLgBweOAKwITDgJ8 8EdnUm4S3RZpan9hvBsAwcenHCPABj7jqC8YWkLy9NhXyjKtlwxARMCM30MXTp72 PovQr7hNsqUdFZxS7ZiLmgodSIoTI1zfsg46aptyBstBH7aoxHriWVYwEcULp58R y1J/pkaN7BJnF5jkTGKA5zp2nCjrjpC1L6wWyRldyG+wc/zxVWIsf2wHvDu6s1MF Ta3fYkow/BuluqPJxhKQiOB6B+6FHNrJYaLm+A== -----END CERTIFICATE-----Generated at Mon May 6 03:07:14 2024 by rpki-client on console-ams.rpki-client.org