$ rpki-client -vvf repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133302e302f32332d3233203d3e20313430343433.roa File: 3130332e37392e3133302e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: 6qdkyaoLoSV3x8r7sS0vwkbKqWGiEK+mWHnVjPJJ2fI= Subject key identifier: B2:2C:E6:A4:88:09:E3:D8:AA:7E:A4:7C:17:B9:D8:F0:6C:E2:FE:D1 Certificate issuer: /CN=BD6194D3C25B637B15DAEB654B288A451054ABE0 Certificate serial: 1E4D675E227EA6B0714A42F5C39843750BA7BA95 Authority key identifier: BD:61:94:D3:C2:5B:63:7B:15:DA:EB:65:4B:28:8A:45:10:54:AB:E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133302e302f32332d3233203d3e20313430343433.roa Signing time: Thu 11 Jan 2024 04:00:01 +0000 ROA not before: Thu 11 Jan 2024 03:55:01 +0000 ROA not after: Thu 09 Jan 2025 04:00:01 +0000 asID: 140443 IP address blocks: 103.79.130.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.crl rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:4d:67:5e:22:7e:a6:b0:71:4a:42:f5:c3:98:43:75:0b:a7:ba:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6194D3C25B637B15DAEB654B288A451054ABE0 Validity Not Before: Jan 11 03:55:01 2024 GMT Not After : Jan 9 04:00:01 2025 GMT Subject: CN=B22CE6A48809E3D8AA7EA47C17B9D8F06CE2FED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:98:60:b9:03:40:8f:0f:cd:43:74:35:82:88: 25:2d:99:b7:e0:a1:84:c9:84:b0:7b:68:0d:11:3f: 19:28:32:38:3a:e1:20:9b:21:1b:22:a7:9a:46:79: f7:c3:d5:d5:10:6d:78:b4:25:d6:86:7b:cd:6b:66: 88:aa:5b:a6:98:98:8a:eb:b3:f5:1d:c8:ea:c0:13: c8:fa:25:62:d7:77:19:ee:79:e2:f4:ff:09:00:d2: fc:c0:5d:96:44:ed:5a:ea:e7:2e:b4:bf:00:5d:c2: 9f:65:61:80:12:01:c4:f6:ce:7e:dc:d3:0b:fb:7a: 01:6e:70:a8:ae:f0:62:5e:32:18:42:39:c5:b5:79: 7a:d0:f4:70:0b:4f:45:fa:81:36:39:58:eb:a5:d2: dd:16:5e:70:31:db:ad:e5:77:71:91:e9:75:ab:85: 57:e2:a9:96:45:85:73:68:c0:d2:79:b3:f1:0e:90: 87:f6:99:f5:18:f2:b3:9f:e8:7f:7e:97:16:0a:a1: b2:87:50:45:3b:dd:2b:c6:5c:f9:6d:d6:ae:ce:6b: 4c:38:3a:17:24:2f:12:35:e5:36:83:65:ec:b8:26: 6a:c5:35:1e:f4:67:d2:af:a3:9c:d8:cf:8e:68:6e: a7:cc:5f:dc:c5:90:e9:95:18:92:a8:2a:df:98:88: eb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2C:E6:A4:88:09:E3:D8:AA:7E:A4:7C:17:B9:D8:F0:6C:E2:FE:D1 X509v3 Authority Key Identifier: keyid:BD:61:94:D3:C2:5B:63:7B:15:DA:EB:65:4B:28:8A:45:10:54:AB:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133302e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.130.0/23 Signature Algorithm: sha256WithRSAEncryption 15:b6:62:6b:bf:8d:6e:e8:d8:18:ac:91:39:15:2f:41:5a:6c: 49:98:9f:84:72:7f:84:ef:31:6f:25:ad:bf:43:90:73:19:bd: dc:51:73:ab:78:94:46:6f:7a:2b:18:65:db:81:0b:11:b4:34: e2:95:45:8d:15:e0:31:3b:c1:8a:dd:e3:39:73:7b:00:eb:23: 10:0f:44:f6:c8:21:1d:70:f8:08:7c:f8:99:31:01:45:54:b0: f2:b7:24:bd:a8:3b:2d:69:39:d3:88:da:52:52:ff:1b:2d:ff: e6:b9:0b:86:64:93:43:1e:6a:74:66:4a:22:22:13:08:3a:9b: 0a:f8:39:43:c1:a7:3b:7c:4f:46:f4:8d:e3:a7:e4:38:d7:65: 14:18:4c:da:eb:d3:0f:72:c0:df:bd:50:0f:88:1b:de:67:7a: 00:d0:c3:65:2e:fd:78:db:82:6f:5b:b2:92:5a:1b:43:08:b6: e0:c7:fb:ec:ae:37:02:be:09:e7:43:5f:e8:4d:b7:9b:39:38: cb:f0:82:0c:02:a1:e9:c9:b8:fc:b4:40:23:9b:4b:2c:6a:0a: e1:f6:a8:9d:53:1a:7e:93:c9:bc:73:98:18:76:12:d6:1d:21: 36:40:2e:a3:31:f9:cf:52:a6:fc:7a:e2:1f:c7:1d:c2:e5:de: 8d:d2:ff:5e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHk1nXiJ+prBxSkL1w5hDdQunupUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2MTk0RDNDMjVCNjM3QjE1REFFQjY1NEIyODhBNDUx MDU0QUJFMDAeFw0yNDAxMTEwMzU1MDFaFw0yNTAxMDkwNDAwMDFaMDMxMTAvBgNV BAMTKEIyMkNFNkE0ODgwOUUzRDhBQTdFQTQ3QzE3QjlEOEYwNkNFMkZFRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/mGC5A0CPD81DdDWCiCUtmbfg oYTJhLB7aA0RPxkoMjg64SCbIRsip5pGeffD1dUQbXi0JdaGe81rZoiqW6aYmIrr s/UdyOrAE8j6JWLXdxnueeL0/wkA0vzAXZZE7Vrq5y60vwBdwp9lYYASAcT2zn7c 0wv7egFucKiu8GJeMhhCOcW1eXrQ9HALT0X6gTY5WOul0t0WXnAx263ld3GR6XWr hVfiqZZFhXNowNJ5s/EOkIf2mfUY8rOf6H9+lxYKobKHUEU73SvGXPlt1q7Oa0w4 OhckLxI15TaDZey4JmrFNR70Z9Kvo5zYz45obqfMX9zFkOmVGJKoKt+YiOuDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsizmpIgJ49iqfqR8F7nY8Gzi/tEwHwYDVR0j BBgwFoAUvWGU08JbY3sV2utlSyiKRRBUq+AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWUyNDkwNy1hNmYyLTRhNTUtYWE2Zi0xOGM3ZGIxNDNmZTgvMC9CRDYxOTREM0My NUI2MzdCMTVEQUVCNjU0QjI4OEE0NTEwNTRBQkUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ2MTk0RDNDMjVCNjM3QjE1REFFQjY1NEIyODhBNDUxMDU0 QUJFMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZTI0OTA3LWE2ZjItNGE1NS1h YTZmLTE4YzdkYjE0M2ZlOC8wLzMxMzAzMzJlMzczOTJlMzEzMzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0+CMA0GCSqG SIb3DQEBCwUAA4IBAQAVtmJrv41u6NgYrJE5FS9BWmxJmJ+Ecn+E7zFvJa2/Q5Bz Gb3cUXOreJRGb3orGGXbgQsRtDTilUWNFeAxO8GK3eM5c3sA6yMQD0T2yCEdcPgI fPiZMQFFVLDytyS9qDstaTnTiNpSUv8bLf/muQuGZJNDHmp0ZkoiIhMIOpsK+DlD wac7fE9G9I3jp+Q412UUGEza69MPcsDfvVAPiBveZ3oA0MNlLv1424JvW7KSWhtD CLbgx/vsrjcCvgnnQ1/oTbebOTjL8IIMAqHpybj8tEAjm0ssagrh9qidUxp+k8m8 c5gYdhLWHSE2QC6jMfnPUqb8euIfxx3C5d6N0v9e -----END CERTIFICATE-----Generated at Sun May 5 12:23:55 2024 by rpki-client on console-fra.rpki-client.org