$ rpki-client -vvf repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32332d3233203d3e203633343937.roa File: 3130332e3133342e3130342e302f32332d3233203d3e203633343937.roa (raw, json) Hash identifier: dEwEBXseLIVE9zYHC+ng0MEPgaK/+fzo8k200WGbF94= Subject key identifier: 41:90:09:C3:0D:BC:41:E5:2B:78:74:D1:BF:0E:38:1A:57:83:D9:F3 Certificate issuer: /CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Certificate serial: 48C29173A69DC11F9E45CD40AF7A1E2DB3C1A79F Authority key identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32332d3233203d3e203633343937.roa Signing time: Mon 31 Jul 2023 00:09:40 +0000 ROA not before: Mon 31 Jul 2023 00:04:40 +0000 ROA not after: Mon 29 Jul 2024 00:09:40 +0000 asID: 63497 IP address blocks: 103.134.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 05:14:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:c2:91:73:a6:9d:c1:1f:9e:45:cd:40:af:7a:1e:2d:b3:c1:a7:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Validity Not Before: Jul 31 00:04:40 2023 GMT Not After : Jul 29 00:09:40 2024 GMT Subject: CN=419009C30DBC41E52B7874D1BF0E381A5783D9F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:38:e0:02:34:6d:6e:a1:94:04:67:6a:13:17: 66:5b:43:e3:81:c7:89:1c:1b:3c:8f:38:8f:fd:bd: 7a:4b:ae:aa:b9:3a:fe:c6:ee:22:01:8e:6b:5a:3e: 53:8c:ed:a5:f0:f4:04:da:6d:7c:ba:3c:8c:0d:24: 94:8f:94:5e:8a:42:40:00:93:0a:6c:97:42:15:b1: 74:fb:00:44:fd:f5:10:27:18:d7:a6:5a:e7:93:50: 09:a2:be:ec:c8:f9:f3:fd:73:d3:d5:a5:b5:49:cf: 73:54:37:47:29:05:38:8c:e2:79:4b:30:e7:03:ff: e2:b0:d3:a6:ab:f7:6d:64:07:1a:3d:ab:96:7e:bb: 18:0f:21:e1:46:0a:b1:1a:a3:1c:a7:5d:cd:2b:6c: cd:1d:b4:dd:3b:0e:08:42:db:b0:5c:7d:54:7b:87: 28:6b:d1:7c:aa:52:18:11:5c:af:c5:44:2f:11:8d: 75:82:ce:15:db:9b:02:cc:39:f2:2d:f0:4e:e2:39: a1:7a:cd:f4:fb:2d:cb:2c:ca:97:82:35:ed:ac:ce: b9:7c:fc:11:6e:ac:93:8f:10:19:e3:4a:fc:8e:0c: 24:68:67:50:4f:20:3c:8c:b9:87:42:21:3c:af:a3: 66:54:e5:55:c9:09:43:b4:3c:7d:69:ef:30:ba:c8: 3d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:90:09:C3:0D:BC:41:E5:2B:78:74:D1:BF:0E:38:1A:57:83:D9:F3 X509v3 Authority Key Identifier: keyid:95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32332d3233203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.104.0/23 Signature Algorithm: sha256WithRSAEncryption 81:d1:2f:d9:15:bb:b9:42:1a:42:19:33:76:db:e7:8e:af:7d: e8:b5:d8:15:10:c7:d3:2f:76:5e:09:bf:d0:e0:58:b1:cc:15: 19:f7:ea:24:2c:ee:0d:31:1f:dc:b2:bc:69:6d:a1:d5:9a:22: 39:c9:d8:45:85:9f:88:5a:15:94:da:fe:0e:a4:d0:09:5f:7a: 96:a7:07:70:73:58:6f:a4:70:2d:23:b8:9b:3c:76:cf:ee:73: 58:8d:a8:94:1b:e8:e1:10:bb:5f:13:75:ce:d6:f9:a6:80:8c: c2:38:fb:0d:88:a1:49:31:c5:91:bf:fb:27:0e:7d:8b:a6:5e: af:c9:8b:54:94:e6:a4:59:ca:f0:eb:4b:4e:98:b8:82:64:b1: d3:b1:86:b8:84:bf:7d:32:9b:bd:45:28:74:66:db:f2:68:33: c1:5e:83:6b:f5:ba:b2:8f:16:7e:28:6d:8e:68:c5:db:e4:bb: 6a:37:d9:4d:9d:a1:c6:1b:d4:30:ca:11:f6:e2:6d:d5:07:28: a7:3c:1e:8c:ab:75:c9:df:ff:40:04:77:76:f0:f7:85:71:12: 8d:e7:6a:95:f7:65:64:ed:13:b7:67:69:93:0b:ca:9b:55:a7: 81:47:60:e9:5f:4f:88:80:a6:4a:59:df:ab:52:78:20:da:a3: e2:c0:16:95 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSMKRc6adwR+eRc1Ar3oeLbPBp58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVF NzRFMkE2RDAeFw0yMzA3MzEwMDA0NDBaFw0yNDA3MjkwMDA5NDBaMDMxMTAvBgNV BAMTKDQxOTAwOUMzMERCQzQxRTUyQjc4NzREMUJGMEUzODFBNTc4M0Q5RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKOOACNG1uoZQEZ2oTF2ZbQ+OB x4kcGzyPOI/9vXpLrqq5Ov7G7iIBjmtaPlOM7aXw9ATabXy6PIwNJJSPlF6KQkAA kwpsl0IVsXT7AET99RAnGNemWueTUAmivuzI+fP9c9PVpbVJz3NUN0cpBTiM4nlL MOcD/+Kw06ar921kBxo9q5Z+uxgPIeFGCrEaoxynXc0rbM0dtN07DghC27BcfVR7 hyhr0XyqUhgRXK/FRC8RjXWCzhXbmwLMOfIt8E7iOaF6zfT7LcssypeCNe2szrl8 /BFurJOPEBnjSvyODCRoZ1BPIDyMuYdCITyvo2ZU5VXJCUO0PH1p7zC6yD1BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQZAJww28QeUreHTRvw44GleD2fMwHwYDVR0j BBgwFoAUlegA6/9kcJiSy1dB2e3HXudOKm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NmI1YWUxZS1iZTY2LTRhMzAtYTk0OC03ZDQ3OGMyMmVhMmIvMC85NUU4MDBFQkZG NjQ3MDk4OTJDQjU3NDFEOUVEQzc1RUU3NEUyQTZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVFNzRF MkE2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2YjVhZTFlLWJlNjYtNGEzMC1h OTQ4LTdkNDc4YzIyZWEyYi8wLzMxMzAzMzJlMzEzMzM0MmUzMTMwMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4ZoMA0GCSqG SIb3DQEBCwUAA4IBAQCB0S/ZFbu5QhpCGTN22+eOr33otdgVEMfTL3ZeCb/Q4Fix zBUZ9+okLO4NMR/csrxpbaHVmiI5ydhFhZ+IWhWU2v4OpNAJX3qWpwdwc1hvpHAt I7ibPHbP7nNYjaiUG+jhELtfE3XO1vmmgIzCOPsNiKFJMcWRv/snDn2Lpl6vyYtU lOakWcrw60tOmLiCZLHTsYa4hL99Mpu9RSh0ZtvyaDPBXoNr9bqyjxZ+KG2OaMXb 5LtqN9lNnaHGG9QwyhH24m3VByinPB6Mq3XJ3/9ABHd28PeFcRKN52qV92Vk7RO3 Z2mTC8qbVaeBR2DpX0+IgKZKWd+rUngg2qPiwBaV -----END CERTIFICATE-----Generated at Tue Apr 30 22:54:58 2024 by rpki-client on console-fra.rpki-client.org