$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa File: 3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa (raw, json) Hash identifier: Rq8T+hzuBbJcG2GlKLqx1dGnXNaaFHPd/EBIdtQ2Vro= Subject key identifier: 79:1F:84:A7:B2:0B:D3:D3:76:88:A7:E9:88:36:78:0D:0D:B6:E0:A5 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 3D356152DD37BD4B500FA7C57F08A790E33CC89F Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa Signing time: Tue 19 Sep 2023 05:00:00 +0000 ROA not before: Tue 19 Sep 2023 04:55:00 +0000 ROA not after: Tue 17 Sep 2024 05:00:00 +0000 asID: 58500 IP address blocks: 103.101.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:35:61:52:dd:37:bd:4b:50:0f:a7:c5:7f:08:a7:90:e3:3c:c8:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 19 04:55:00 2023 GMT Not After : Sep 17 05:00:00 2024 GMT Subject: CN=791F84A7B20BD3D37688A7E98836780D0DB6E0A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f7:ba:cb:fb:ad:75:1b:0e:13:a7:b1:56:00: f9:1e:3f:a4:7d:e5:5c:db:b2:06:c3:6a:32:d1:fc: ea:55:be:84:ad:a7:29:82:55:f4:6b:52:b8:d1:20: 8d:a7:39:c6:a9:20:75:8e:0a:f7:32:bd:55:19:b6: 93:3e:de:69:7a:89:98:d5:33:40:b2:43:6e:e2:f1: f0:7d:95:72:6a:20:fc:03:ca:74:89:42:f4:3f:e3: 75:34:85:86:a0:8e:63:6a:cd:b2:ba:be:0e:84:84: 81:ca:5e:4d:9e:4e:35:c8:cc:19:74:c5:7e:81:3a: 9d:b2:3f:9f:c7:1a:60:a9:c4:65:ca:05:1f:19:6e: 7a:29:6a:0b:ba:8e:13:f6:76:05:15:0c:b7:06:1c: cc:3d:7f:2a:e7:c3:3d:b3:44:88:5e:42:14:49:c8: e9:82:b7:94:df:8c:27:54:6b:8e:32:07:45:f2:d8: f5:f7:8a:15:54:f5:b1:f1:89:43:eb:30:96:8a:b7: 2f:9e:ad:cf:53:e0:21:c9:a2:33:2d:1e:2d:b5:81: 28:ca:d5:fc:cf:22:c5:6c:42:13:ed:1c:bb:84:8b: 7d:c5:4e:d3:5e:da:d2:28:31:4a:39:2f:9c:7e:d2: f0:4a:80:e6:9f:46:62:e8:02:2e:ee:c6:c9:3e:37: 50:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:1F:84:A7:B2:0B:D3:D3:76:88:A7:E9:88:36:78:0D:0D:B6:E0:A5 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.136.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:f6:35:54:ac:82:31:d4:c6:2e:06:38:45:8e:b9:35:9c:9e: a6:a2:ce:dc:10:0b:c2:90:66:4a:30:ea:9b:32:d1:e2:af:b5: c7:09:49:54:bb:5d:4c:64:80:c8:1b:0d:a6:d9:61:17:f5:a2: 40:4d:76:d5:3e:f9:0f:6f:6d:45:af:6a:9f:2f:3e:ba:5d:f6: 44:d5:5c:f9:2a:c5:63:8e:bd:b9:07:51:4f:86:99:76:51:a4: cb:92:15:ac:17:d7:4d:9c:60:7e:16:d2:f4:f0:31:6a:2f:b7: 0f:e1:12:e5:41:ed:b8:64:9c:bc:8e:3f:83:c6:28:85:92:67: 76:cf:1c:c8:7d:f6:d7:a1:06:00:1f:6a:97:16:9d:7f:6f:11: 62:e4:0d:4a:ff:d2:09:81:15:f2:57:c2:15:88:8f:f8:35:84: 3e:68:f6:02:c2:e9:0f:70:4c:30:1c:e5:41:a1:ee:df:44:8a: ef:6f:83:2f:5d:f0:f3:64:82:2e:16:4b:13:f0:5a:b2:5c:2a: ee:d2:34:72:48:cc:de:15:0c:ff:c1:1c:3f:c6:94:4b:0d:bb: a2:16:bd:91:ad:1a:df:6a:92:56:ed:27:8e:ee:67:ef:2d:17: 62:f5:d7:bd:5f:15:70:d3:e7:db:b8:db:16:fb:0b:dc:74:74: 3a:55:07:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPTVhUt03vUtQD6fFfwinkOM8yJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MTkwNDU1MDBaFw0yNDA5MTcwNTAwMDBaMDMxMTAvBgNV BAMTKDc5MUY4NEE3QjIwQkQzRDM3Njg4QTdFOTg4MzY3ODBEMERCNkUwQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC297rL+611Gw4Tp7FWAPkeP6R9 5VzbsgbDajLR/OpVvoStpymCVfRrUrjRII2nOcapIHWOCvcyvVUZtpM+3ml6iZjV M0CyQ27i8fB9lXJqIPwDynSJQvQ/43U0hYagjmNqzbK6vg6EhIHKXk2eTjXIzBl0 xX6BOp2yP5/HGmCpxGXKBR8Zbnopagu6jhP2dgUVDLcGHMw9fyrnwz2zRIheQhRJ yOmCt5TfjCdUa44yB0Xy2PX3ihVU9bHxiUPrMJaKty+erc9T4CHJojMtHi21gSjK 1fzPIsVsQhPtHLuEi33FTtNe2tIoMUo5L5x+0vBKgOafRmLoAi7uxsk+N1C3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeR+Ep7IL09N2iKfpiDZ4DQ224KUwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2WIMA0GCSqG SIb3DQEBCwUAA4IBAQAq9jVUrIIx1MYuBjhFjrk1nJ6mos7cEAvCkGZKMOqbMtHi r7XHCUlUu11MZIDIGw2m2WEX9aJATXbVPvkPb21Fr2qfLz66XfZE1Vz5KsVjjr25 B1FPhpl2UaTLkhWsF9dNnGB+FtL08DFqL7cP4RLlQe24ZJy8jj+DxiiFkmd2zxzI ffbXoQYAH2qXFp1/bxFi5A1K/9IJgRXyV8IViI/4NYQ+aPYCwukPcEwwHOVBoe7f RIrvb4MvXfDzZIIuFksT8FqyXCru0jRySMzeFQz/wRw/xpRLDbuiFr2RrRrfapJW 7SeO7mfvLRdi9de9XxVw0+fbuNsW+wvcdHQ6VQf4 -----END CERTIFICATE-----Generated at Sat May 4 21:32:03 2024 by rpki-client on console-fra.rpki-client.org