$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa File: 3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa (raw, json) Hash identifier: OCyWEnnjuQ3iPqh2bLH2DmF9URTCbXHm/Ln0lfFXJy4= Subject key identifier: C6:AF:A1:B8:FE:A7:96:F0:98:17:1A:C6:5C:93:3A:7C:26:E1:FD:2C Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 46E8F4DCBBF969B25B2AD01CEE92695BC3FD5E6D Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa Signing time: Wed 04 Oct 2023 11:00:00 +0000 ROA not before: Wed 04 Oct 2023 10:55:00 +0000 ROA not after: Wed 02 Oct 2024 11:00:00 +0000 asID: 139381 IP address blocks: 103.142.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:e8:f4:dc:bb:f9:69:b2:5b:2a:d0:1c:ee:92:69:5b:c3:fd:5e:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Oct 4 10:55:00 2023 GMT Not After : Oct 2 11:00:00 2024 GMT Subject: CN=C6AFA1B8FEA796F098171AC65C933A7C26E1FD2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ca:28:0d:57:d7:36:f0:17:12:38:d9:f0:44: 7c:0b:fd:19:42:8c:fd:62:de:34:1e:12:21:c0:46: 7a:df:6e:bc:cf:42:b3:7b:f9:5b:ac:86:a5:ee:fc: 1d:43:2f:a8:02:fe:b9:62:ac:95:b0:ad:09:ab:c5: d7:2f:d7:80:99:3d:4a:fd:ed:28:e5:5d:76:e1:ed: e9:25:34:07:a7:81:26:57:58:d4:0b:1e:84:56:1a: 32:df:34:81:05:c0:0a:d0:74:99:b8:62:ce:f5:cb: 6d:71:7a:28:b7:e8:25:9b:9c:4b:db:63:56:50:89: 52:bd:0d:ba:2c:a5:6f:c1:c8:5a:19:a4:3d:0d:30: 41:ef:7c:57:60:94:2d:41:5c:6e:ff:51:63:28:1f: a3:0f:b4:76:77:2e:54:1b:89:0e:78:0e:78:6c:26: 67:4f:61:42:ea:e2:2f:15:ed:de:44:80:e7:36:e7: b1:87:8b:c7:b3:39:07:42:80:37:4c:3b:a3:75:b5: a4:35:f1:c1:8b:b7:c6:8c:36:da:44:08:df:7d:e5: 8c:bb:d9:93:06:01:e1:a4:ec:03:aa:69:58:46:33: 1c:f9:ee:3a:e7:97:5e:34:09:c6:5b:37:c3:31:4e: 44:93:13:df:f0:fd:d2:ed:33:cd:bd:44:13:8e:08: 9a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:AF:A1:B8:FE:A7:96:F0:98:17:1A:C6:5C:93:3A:7C:26:E1:FD:2C X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.254.0/23 Signature Algorithm: sha256WithRSAEncryption 11:d5:50:09:e4:80:9a:52:82:ad:1e:b1:f5:73:b0:5e:8a:0b: 43:d5:a0:60:7e:4a:a8:29:a2:98:7c:b9:96:b0:f2:6e:13:79: 9d:8a:42:50:1e:7c:96:91:6e:42:17:36:0d:f8:96:ed:d8:46: 5e:65:c9:70:ae:fd:7a:a4:3f:e4:95:c7:63:ff:ed:44:be:11: c2:68:a8:ad:35:a4:84:7f:2e:de:16:06:e2:3e:08:4f:c5:e5: 1a:9e:66:95:59:09:d4:14:dd:7b:f2:1b:c5:c4:19:54:65:1d: df:30:53:bd:85:72:a7:c3:38:76:41:80:2e:45:32:81:19:73: 5e:a2:12:80:a1:ba:05:22:f5:7d:89:53:ff:3f:cf:46:90:05: 46:08:9e:62:72:aa:35:75:5d:6b:c3:58:ce:0c:eb:11:27:7e: 64:d2:ce:3c:1c:8c:3e:26:f3:17:05:b8:fc:81:33:f0:bd:6b: 5f:13:2a:0e:42:9b:75:2f:45:40:2d:6f:8d:32:7c:07:5a:8c: e9:60:11:e6:eb:a6:cb:41:86:5f:e1:80:43:c8:c5:02:50:41: 3d:a4:83:22:84:20:74:b6:d7:a2:13:c3:01:65:57:9e:f0:da: 34:0a:3c:68:4a:da:64:4b:74:df:ac:a3:25:00:bf:36:3c:65: 08:17:ad:5c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURuj03Lv5abJbKtAc7pJpW8P9Xm0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yMzEwMDQxMDU1MDBaFw0yNDEwMDIxMTAwMDBaMDMxMTAvBgNV BAMTKEM2QUZBMUI4RkVBNzk2RjA5ODE3MUFDNjVDOTMzQTdDMjZFMUZEMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAyigNV9c28BcSONnwRHwL/RlC jP1i3jQeEiHARnrfbrzPQrN7+VushqXu/B1DL6gC/rlirJWwrQmrxdcv14CZPUr9 7SjlXXbh7eklNAengSZXWNQLHoRWGjLfNIEFwArQdJm4Ys71y21xeii36CWbnEvb Y1ZQiVK9DbospW/ByFoZpD0NMEHvfFdglC1BXG7/UWMoH6MPtHZ3LlQbiQ54Dnhs JmdPYULq4i8V7d5EgOc257GHi8ezOQdCgDdMO6N1taQ18cGLt8aMNtpECN995Yy7 2ZMGAeGk7AOqaVhGMxz57jrnl140CcZbN8MxTkSTE9/w/dLtM829RBOOCJrDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxq+huP6nlvCYFxrGXJM6fCbh/SwwHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZGMxZGQ4LTZkMjUtNDdjNy1h YWE0LWJkZGYxYjlkNjc3ZS8wLzMxMzAzMzJlMzEzNDMyMmUzMjM1MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnjv4wDQYJ KoZIhvcNAQELBQADggEBABHVUAnkgJpSgq0esfVzsF6KC0PVoGB+Sqgpoph8uZaw 8m4TeZ2KQlAefJaRbkIXNg34lu3YRl5lyXCu/XqkP+SVx2P/7US+EcJoqK01pIR/ Lt4WBuI+CE/F5RqeZpVZCdQU3XvyG8XEGVRlHd8wU72FcqfDOHZBgC5FMoEZc16i EoChugUi9X2JU/8/z0aQBUYInmJyqjV1XWvDWM4M6xEnfmTSzjwcjD4m8xcFuPyB M/C9a18TKg5Cm3UvRUAtb40yfAdajOlgEebrpstBhl/hgEPIxQJQQT2kgyKEIHS2 16ITwwFlV57w2jQKPGhK2mRLdN+soyUAvzY8ZQgXrVw= -----END CERTIFICATE-----Generated at Sat Jun 1 16:24:13 2024 by rpki-client on console-fra.rpki-client.org