$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa File: 3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa (raw, json) Hash identifier: AAXhmGOe39ZBEy6ZeICRKMynFKDZ4Ph7kGjDL4B2VLE= Subject key identifier: F4:1E:E5:9C:ED:F1:72:C0:73:E8:81:16:CF:19:E7:67:D7:A4:06:16 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 452E2FACB00CC9A295C52A196377B10571419615 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa Signing time: Tue 19 Sep 2023 04:00:00 +0000 ROA not before: Tue 19 Sep 2023 03:55:00 +0000 ROA not after: Tue 17 Sep 2024 04:00:00 +0000 asID: 23951 IP address blocks: 103.101.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:2e:2f:ac:b0:0c:c9:a2:95:c5:2a:19:63:77:b1:05:71:41:96:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 19 03:55:00 2023 GMT Not After : Sep 17 04:00:00 2024 GMT Subject: CN=F41EE59CEDF172C073E88116CF19E767D7A40616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e5:ac:0c:7f:99:e3:91:20:84:d1:6d:89:f3: 85:a8:22:46:3a:01:c0:38:20:22:6a:15:85:11:c0: 61:ae:a8:2b:a1:70:31:73:0b:2d:30:49:46:f0:1f: 0c:e2:b8:0e:39:89:7b:0b:0b:2b:93:50:3f:c0:04: d1:00:b5:fb:70:25:fe:36:30:6e:3a:ce:86:fc:fc: f2:cd:b4:87:7e:d5:11:4c:81:4b:6a:14:21:a7:87: e3:a1:e2:94:cc:82:24:29:6b:37:1e:d3:a8:0c:2b: f2:53:32:8f:5a:ea:bb:b0:b5:31:48:d0:7b:7d:37: 74:08:4d:36:32:2d:ff:10:6d:10:f3:57:66:1a:fa: 92:25:07:95:86:98:d9:7b:75:86:33:6d:77:a5:ac: 41:04:b0:82:0a:22:58:89:34:17:8e:13:bc:c0:5c: 1f:b0:16:41:d5:85:1a:7a:45:98:d0:29:71:67:bf: dc:46:d0:d0:e2:b1:3f:72:32:02:df:7f:4c:6a:f1: b4:20:5f:b7:10:e0:b6:d3:8e:12:8c:f6:b1:42:e1: b8:a6:33:d5:e6:f3:62:e7:38:f6:87:2f:05:a1:28: 7b:17:05:d6:4b:3e:a8:c0:2e:eb:55:9f:23:09:e3: 7e:3b:52:4f:34:07:42:1c:57:3e:0a:5a:0f:f7:31: d0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1E:E5:9C:ED:F1:72:C0:73:E8:81:16:CF:19:E7:67:D7:A4:06:16 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.138.0/23 Signature Algorithm: sha256WithRSAEncryption 62:43:39:5b:90:13:4d:6e:e4:c1:7f:9d:1a:3c:a6:c6:f5:72: 19:cf:9a:2a:f5:41:f7:32:01:c6:d1:8e:28:bd:69:29:f6:b3: ad:99:9f:62:63:62:a4:32:46:9b:5b:91:ad:8b:94:3c:5d:4f: d5:e4:27:a2:f6:2d:4e:0b:17:ad:ec:8e:d8:fb:ea:82:85:0c: 89:b6:64:6e:b4:50:1a:b1:64:2b:33:dc:fc:46:e1:6c:59:f6: 1d:dd:68:02:3f:f7:cd:ed:6d:1c:1b:2f:0f:b8:d0:95:de:4c: d7:0a:43:4d:3b:c5:b2:ee:77:4a:03:de:e7:09:a9:4b:24:a9: 16:51:42:26:37:94:d8:ae:2d:35:ec:a1:f4:2d:06:8f:3b:2e: eb:59:77:2d:52:e6:a8:df:70:5a:23:41:70:99:fb:93:87:c8: f2:dc:67:e7:42:9c:8f:57:1b:ac:66:09:14:d0:c0:44:7b:21: 0b:48:27:2a:fd:dd:74:0a:9a:53:61:e7:4b:02:f2:81:59:a1: eb:fe:06:08:3a:33:22:2e:1f:81:ff:2a:1e:37:08:ab:81:02: 87:d9:87:4e:8f:de:3a:19:d6:96:42:7b:f1:9c:09:f1:65:dc: 15:2d:68:06:12:cf:a0:54:57:7d:14:fc:f6:14:4b:72:f1:57: 62:ae:35:a5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURS4vrLAMyaKVxSoZY3exBXFBlhUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MTkwMzU1MDBaFw0yNDA5MTcwNDAwMDBaMDMxMTAvBgNV BAMTKEY0MUVFNTlDRURGMTcyQzA3M0U4ODExNkNGMTlFNzY3RDdBNDA2MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC25awMf5njkSCE0W2J84WoIkY6 AcA4ICJqFYURwGGuqCuhcDFzCy0wSUbwHwziuA45iXsLCyuTUD/ABNEAtftwJf42 MG46zob8/PLNtId+1RFMgUtqFCGnh+Oh4pTMgiQpazce06gMK/JTMo9a6ruwtTFI 0Ht9N3QITTYyLf8QbRDzV2Ya+pIlB5WGmNl7dYYzbXelrEEEsIIKIliJNBeOE7zA XB+wFkHVhRp6RZjQKXFnv9xG0NDisT9yMgLff0xq8bQgX7cQ4LbTjhKM9rFC4bim M9Xm82LnOPaHLwWhKHsXBdZLPqjALutVnyMJ4347Uk80B0IcVz4KWg/3MdCbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9B7lnO3xcsBz6IEWzxnnZ9ekBhYwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMjMzMzkzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2WKMA0GCSqG SIb3DQEBCwUAA4IBAQBiQzlbkBNNbuTBf50aPKbG9XIZz5oq9UH3MgHG0Y4ovWkp 9rOtmZ9iY2KkMkabW5Gti5Q8XU/V5Cei9i1OCxet7I7Y++qChQyJtmRutFAasWQr M9z8RuFsWfYd3WgCP/fN7W0cGy8PuNCV3kzXCkNNO8Wy7ndKA97nCalLJKkWUUIm N5TYri017KH0LQaPOy7rWXctUuao33BaI0FwmfuTh8jy3GfnQpyPVxusZgkU0MBE eyELSCcq/d10CppTYedLAvKBWaHr/gYIOjMiLh+B/yoeNwirgQKH2YdOj946GdaW QnvxnAnxZdwVLWgGEs+gVFd9FPz2FEty8VdirjWl -----END CERTIFICATE-----Generated at Mon May 6 22:39:55 2024 by rpki-client on console-ams.rpki-client.org