$ rpki-client -vvf repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa File: 3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa (raw, json) Hash identifier: n/NCfba+MTF8gD1E0XGKXU4BQXcOJ9ag8opKUX7WYmI= Subject key identifier: 72:8A:34:CA:43:A7:77:EE:15:68:4D:14:B9:46:1C:9F:1D:1B:B4:84 Certificate issuer: /CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Certificate serial: 6DE91FA7123EE84E367979E852FA15222A9DC08B Authority key identifier: 53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa Signing time: Thu 28 Dec 2023 12:02:01 +0000 ROA not before: Thu 28 Dec 2023 11:57:01 +0000 ROA not after: Thu 26 Dec 2024 12:02:01 +0000 asID: 139431 IP address blocks: 103.143.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:e9:1f:a7:12:3e:e8:4e:36:79:79:e8:52:fa:15:22:2a:9d:c0:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Validity Not Before: Dec 28 11:57:01 2023 GMT Not After : Dec 26 12:02:01 2024 GMT Subject: CN=728A34CA43A777EE15684D14B9461C9F1D1BB484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:27:05:43:bd:4f:87:98:5a:28:b3:17:53:c1: fb:af:d7:3f:0c:3b:27:db:e7:9c:d4:05:95:be:ef: 67:0e:17:65:8d:a6:ad:36:ea:fa:b1:d7:91:ff:37: 09:9c:f0:3b:7c:17:55:06:77:11:35:8c:18:34:54: ba:29:8e:f6:e1:eb:e7:14:eb:18:93:6a:07:36:69: cb:cc:98:f6:47:52:6d:ca:64:01:23:6f:2c:71:fe: 02:45:f9:71:ac:b4:13:9f:d9:32:21:6f:e3:5e:79: cd:16:06:50:79:ba:37:37:1d:90:45:4d:d3:9d:83: 5e:79:3f:04:03:38:e2:01:e4:af:0e:b1:bc:b6:ee: 5c:8f:61:68:08:9f:1f:24:12:ac:d3:5c:7f:59:78: 3e:b3:dc:05:a6:b5:0e:3a:c8:67:49:29:8f:55:2a: f5:eb:7a:38:ba:0d:84:db:58:d7:bf:d5:72:73:00: 6d:bd:05:93:8c:61:a9:f2:21:8d:84:d1:1c:91:a4: 18:7c:3f:71:53:0c:a6:c6:8b:2a:34:43:ed:b1:9c: c3:f9:e8:9f:dd:a3:af:14:5f:93:db:f8:14:59:39: ac:58:9b:7c:60:cf:b3:d4:a5:43:4f:44:d1:31:30: 79:0a:b2:2f:0d:f7:16:ed:fb:58:bb:97:1a:7b:cf: 31:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:8A:34:CA:43:A7:77:EE:15:68:4D:14:B9:46:1C:9F:1D:1B:B4:84 X509v3 Authority Key Identifier: keyid:53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.22.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:7f:ca:0b:0a:91:89:ac:49:c0:07:81:3a:b1:1a:9d:94:0b: dd:68:1a:2c:68:71:90:28:52:af:ad:65:6f:b8:7b:0f:ad:a6: 3d:9f:46:e6:79:1d:49:e5:cb:d4:67:8a:e8:0a:b4:a5:cc:ef: c1:4c:1b:e2:59:6d:32:11:26:05:c5:42:7f:c9:b5:20:ec:01: bf:75:4b:cb:59:2e:49:b8:80:04:b0:7e:f8:91:b0:af:18:29: 40:f4:10:0a:59:9d:55:75:68:3b:3f:b7:16:b1:e4:c8:be:20: e3:33:4b:1f:fa:ec:bb:b2:37:80:b7:89:49:e6:80:fb:b2:f8: 6d:f5:48:91:99:b5:22:7e:f6:b1:75:26:52:07:f1:17:f1:3b: 82:ce:23:bd:ca:3f:48:e5:4c:9c:e6:b5:70:f9:12:52:e1:6c: 10:29:18:42:f2:79:0f:d5:a8:1f:2c:cb:fd:d4:9c:4c:53:92: a9:45:a9:61:1d:86:7d:41:22:27:97:50:2f:b7:6b:47:8f:0e: 37:ce:9c:bf:8a:3c:8b:2c:73:3e:d2:ed:0d:10:ac:d4:1e:ad: 28:a7:2c:28:0c:c4:08:b1:02:a7:fb:26:60:5f:61:b4:d8:e5: d8:1d:c6:5f:91:b9:65:58:95:e9:a1:94:e3:6f:52:18:a7:c2: 63:ce:7b:78 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbekfpxI+6E42eXnoUvoVIiqdwIswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0 QkRGN0FFNzAeFw0yMzEyMjgxMTU3MDFaFw0yNDEyMjYxMjAyMDFaMDMxMTAvBgNV BAMTKDcyOEEzNENBNDNBNzc3RUUxNTY4NEQxNEI5NDYxQzlGMUQxQkI0ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXJwVDvU+HmFoosxdTwfuv1z8M Oyfb55zUBZW+72cOF2WNpq026vqx15H/Nwmc8Dt8F1UGdxE1jBg0VLopjvbh6+cU 6xiTagc2acvMmPZHUm3KZAEjbyxx/gJF+XGstBOf2TIhb+Neec0WBlB5ujc3HZBF TdOdg155PwQDOOIB5K8Osby27lyPYWgInx8kEqzTXH9ZeD6z3AWmtQ46yGdJKY9V KvXreji6DYTbWNe/1XJzAG29BZOMYanyIY2E0RyRpBh8P3FTDKbGiyo0Q+2xnMP5 6J/do68UX5Pb+BRZOaxYm3xgz7PUpUNPRNExMHkKsi8N9xbt+1i7lxp7zzHHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcoo0ykOnd+4VaE0UuUYcnx0btIQwHwYDVR0j BBgwFoAUU11G9AROLMISk8wGGieDB0vfeucwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDZmMzNmMi1mMDZlLTRlYjYtYWU2MS01NTI5YmNhMWNkY2QvMC81MzVENDZGNDA0 NEUyQ0MyMTI5M0NDMDYxQTI3ODMwNzRCREY3QUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0QkRG N0FFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0NmYzM2YyLWYwNmUtNGViNi1h ZTYxLTU1MjliY2ExY2RjZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM5MzQzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ48WMA0GCSqG SIb3DQEBCwUAA4IBAQBuf8oLCpGJrEnAB4E6sRqdlAvdaBosaHGQKFKvrWVvuHsP raY9n0bmeR1J5cvUZ4roCrSlzO/BTBviWW0yESYFxUJ/ybUg7AG/dUvLWS5JuIAE sH74kbCvGClA9BAKWZ1VdWg7P7cWseTIviDjM0sf+uy7sjeAt4lJ5oD7svht9UiR mbUifvaxdSZSB/EX8TuCziO9yj9I5Uyc5rVw+RJS4WwQKRhC8nkP1agfLMv91JxM U5KpRalhHYZ9QSInl1Avt2tHjw43zpy/ijyLLHM+0u0NEKzUHq0opywoDMQIsQKn +yZgX2G02OXYHcZfkbllWJXpoZTjb1IYp8Jjznt4 -----END CERTIFICATE-----Generated at Sun Jun 2 01:00:37 2024 by rpki-client on console-fra.rpki-client.org