$ rpki-client -vvf repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32342d3234203d3e203633343937.roa File: 3130332e3133342e3130342e302f32342d3234203d3e203633343937.roa (raw, json) Hash identifier: Np3Kztj0oLH4yW8lN61qYBfTAYN8P15tHdshi4B7Cmw= Subject key identifier: F5:73:09:EB:22:44:E7:17:4A:A0:B2:6B:07:56:E0:7C:49:12:FD:C7 Certificate issuer: /CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Certificate serial: 5CCF734BCE77CD3FE2E4594A4C7C032F2FF2CCFF Authority key identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32342d3234203d3e203633343937.roa Signing time: Mon 31 Jul 2023 00:09:40 +0000 ROA not before: Mon 31 Jul 2023 00:04:40 +0000 ROA not after: Mon 29 Jul 2024 00:09:40 +0000 asID: 63497 IP address blocks: 103.134.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 05:14:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:cf:73:4b:ce:77:cd:3f:e2:e4:59:4a:4c:7c:03:2f:2f:f2:cc:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Validity Not Before: Jul 31 00:04:40 2023 GMT Not After : Jul 29 00:09:40 2024 GMT Subject: CN=F57309EB2244E7174AA0B26B0756E07C4912FDC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e4:b1:4b:0a:59:ae:c3:fa:fb:27:98:b5:74: d2:e7:ae:24:30:ef:c7:e1:4a:c5:0c:79:53:08:43: 69:13:d9:fc:fe:38:1d:34:3c:d8:35:65:d3:77:b8: 3b:5b:96:ab:05:02:5c:dc:8d:ad:e2:a1:60:48:5d: 3a:1b:5c:23:91:ee:01:57:6b:4f:03:4a:bc:a1:b8: 69:30:cb:be:54:de:0c:87:c5:2f:a9:6f:93:45:f7: 02:56:b9:d5:70:c3:da:cb:b3:21:2d:4c:8f:eb:a6: 80:5f:e5:4f:d8:11:bf:d3:bc:9b:c3:13:21:3d:7a: 1a:0b:ca:7e:07:a7:25:d2:d5:b8:93:09:7d:12:a2: 93:dc:f2:94:97:58:d1:02:04:20:12:5c:a6:24:54: 7d:5b:19:2d:2d:5d:1a:ac:43:ff:7e:ca:c9:cf:56: 3c:ee:b0:c8:24:97:80:a7:71:8c:1d:dd:ce:60:87: b2:f1:bc:9d:2f:50:c7:41:66:85:0a:27:19:2c:39: 51:57:dc:88:52:28:c0:63:3f:c3:33:00:cc:6f:a4: 1b:98:cf:86:5f:dd:ae:af:37:d2:7c:93:9a:2c:0b: 32:26:66:21:c9:84:d9:6d:90:28:1b:9e:1c:81:53: 8b:7e:c0:42:91:d7:12:c2:00:93:a3:58:6d:50:7c: 3f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:73:09:EB:22:44:E7:17:4A:A0:B2:6B:07:56:E0:7C:49:12:FD:C7 X509v3 Authority Key Identifier: keyid:95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32342d3234203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.104.0/24 Signature Algorithm: sha256WithRSAEncryption 37:eb:9b:bd:58:12:82:81:bf:7b:f6:09:94:01:01:d5:b7:3f: ba:38:ff:3d:07:1f:59:03:87:90:b1:ce:08:0a:ac:9f:1c:e2: 5e:c0:13:59:df:38:84:c2:15:86:6f:50:51:6c:b5:3a:37:14: 70:80:3e:b0:fc:82:83:c8:30:df:98:b2:40:e2:c6:1d:ed:33: 6c:7a:01:83:0e:5a:a7:ce:31:08:b1:1e:9f:82:95:7a:12:f2: 15:c6:89:ba:5f:18:ee:79:e6:b3:62:ab:51:5d:20:72:90:55: f0:c8:99:be:23:36:c4:90:52:b9:80:04:e5:41:a8:e9:f6:74: ed:0b:be:33:e9:4d:cf:92:bb:a4:8e:7b:c7:08:a9:53:ae:21: 66:3f:a4:1b:64:b1:dc:8f:7a:c7:b6:39:06:24:6a:4b:14:80: d7:85:dd:4f:8f:c5:e8:c8:aa:96:87:d5:67:4b:2a:25:08:cb: 7c:c9:4e:98:63:f7:9c:03:24:54:61:ff:6e:21:ab:43:02:b9: 34:ce:b4:46:f1:78:ec:44:07:5f:68:3c:b4:8f:42:51:ac:1a: c1:48:c2:af:4d:3f:fc:7a:cf:38:d6:09:f7:84:0c:cb:ea:db: eb:14:02:37:92:53:3d:6c:14:fd:4c:17:9d:b9:87:30:79:53: 0e:aa:c1:48 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXM9zS853zT/i5FlKTHwDLy/yzP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVF NzRFMkE2RDAeFw0yMzA3MzEwMDA0NDBaFw0yNDA3MjkwMDA5NDBaMDMxMTAvBgNV BAMTKEY1NzMwOUVCMjI0NEU3MTc0QUEwQjI2QjA3NTZFMDdDNDkxMkZEQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj5LFLClmuw/r7J5i1dNLnriQw 78fhSsUMeVMIQ2kT2fz+OB00PNg1ZdN3uDtblqsFAlzcja3ioWBIXTobXCOR7gFX a08DSryhuGkwy75U3gyHxS+pb5NF9wJWudVww9rLsyEtTI/rpoBf5U/YEb/TvJvD EyE9ehoLyn4HpyXS1biTCX0SopPc8pSXWNECBCASXKYkVH1bGS0tXRqsQ/9+ysnP VjzusMgkl4CncYwd3c5gh7LxvJ0vUMdBZoUKJxksOVFX3IhSKMBjP8MzAMxvpBuY z4Zf3a6vN9J8k5osCzImZiHJhNltkCgbnhyBU4t+wEKR1xLCAJOjWG1QfD//AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9XMJ6yJE5xdKoLJrB1bgfEkS/ccwHwYDVR0j BBgwFoAUlegA6/9kcJiSy1dB2e3HXudOKm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NmI1YWUxZS1iZTY2LTRhMzAtYTk0OC03ZDQ3OGMyMmVhMmIvMC85NUU4MDBFQkZG NjQ3MDk4OTJDQjU3NDFEOUVEQzc1RUU3NEUyQTZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVFNzRF MkE2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2YjVhZTFlLWJlNjYtNGEzMC1h OTQ4LTdkNDc4YzIyZWEyYi8wLzMxMzAzMzJlMzEzMzM0MmUzMTMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4ZoMA0GCSqG SIb3DQEBCwUAA4IBAQA365u9WBKCgb979gmUAQHVtz+6OP89Bx9ZA4eQsc4ICqyf HOJewBNZ3ziEwhWGb1BRbLU6NxRwgD6w/IKDyDDfmLJA4sYd7TNsegGDDlqnzjEI sR6fgpV6EvIVxom6XxjueeazYqtRXSBykFXwyJm+IzbEkFK5gATlQajp9nTtC74z 6U3PkrukjnvHCKlTriFmP6QbZLHcj3rHtjkGJGpLFIDXhd1Pj8XoyKqWh9VnSyol CMt8yU6YY/ecAyRUYf9uIatDArk0zrRG8XjsRAdfaDy0j0JRrBrBSMKvTT/8es84 1gn3hAzL6tvrFAI3klM9bBT9TBeduYcweVMOqsFI -----END CERTIFICATE-----Generated at Tue Apr 30 21:57:49 2024 by rpki-client on console-ams.rpki-client.org