$ rpki-client -vvf repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa File: 3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa (raw, json) Hash identifier: gFk9D/Y6Sbl7gHDm5mStl9T5qnAKSQbrq8RgevQbcGA= Subject key identifier: 4E:75:81:DA:C6:E1:EF:D7:C6:6C:70:2C:D3:84:10:D4:29:BE:40:77 Certificate issuer: /CN=D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E Certificate serial: 3CFE32A0E6F40D806EB1743AC9AA1F6C752F22B2 Authority key identifier: D0:D1:DD:92:25:32:1E:1D:4D:1D:2F:63:A7:E0:88:0B:35:F6:83:7E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa Signing time: Thu 07 Sep 2023 06:41:32 +0000 ROA not before: Thu 07 Sep 2023 06:36:32 +0000 ROA not after: Thu 05 Sep 2024 06:41:32 +0000 asID: 140465 IP address blocks: 103.35.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.crl rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:fe:32:a0:e6:f4:0d:80:6e:b1:74:3a:c9:aa:1f:6c:75:2f:22:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E Validity Not Before: Sep 7 06:36:32 2023 GMT Not After : Sep 5 06:41:32 2024 GMT Subject: CN=4E7581DAC6E1EFD7C66C702CD38410D429BE4077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:69:14:72:41:79:9d:cc:8d:80:64:84:ad:97: 8d:e4:b3:a6:65:d7:87:2a:de:67:89:65:6a:1a:cc: af:8e:16:bf:d9:d2:c7:05:af:ef:b9:9e:2b:97:1a: 63:00:b5:c5:a3:68:e1:58:6f:24:6f:8f:6e:08:40: 6d:21:97:fe:29:35:68:12:52:71:5b:e1:99:9f:c7: 0e:86:f8:82:7f:2d:55:21:98:68:95:36:ea:27:1a: 55:36:13:4d:50:5b:e5:b7:c7:fb:e6:1b:2b:ba:2c: 24:e8:41:0d:9d:5d:16:fd:7a:98:11:9f:45:46:ba: 7f:47:4b:7f:07:5a:4a:45:fb:c0:f7:b5:b4:0e:df: 6c:28:ce:50:dd:2e:0a:35:64:d3:84:97:bf:f4:e2: 8d:d9:29:ab:fd:92:83:c5:fd:88:5a:d1:ac:39:f9: f6:8c:83:98:14:bd:c8:d7:a8:6d:2e:b3:eb:a4:44: 9d:a0:2c:d1:0f:67:07:9b:8a:c8:6e:b4:ac:4c:c1: 00:23:27:ee:b1:f5:a5:41:10:6c:0b:24:b3:96:f5: 73:69:23:98:94:31:ed:32:73:b3:c8:e0:d8:39:1c: ec:d8:5c:c5:62:94:e5:cb:4d:40:14:ad:0a:d1:89: e8:fb:66:47:c6:4b:ae:36:18:df:4a:c2:f1:24:2e: c5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:75:81:DA:C6:E1:EF:D7:C6:6C:70:2C:D3:84:10:D4:29:BE:40:77 X509v3 Authority Key Identifier: keyid:D0:D1:DD:92:25:32:1E:1D:4D:1D:2F:63:A7:E0:88:0B:35:F6:83:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.35.154.0/24 Signature Algorithm: sha256WithRSAEncryption 82:49:18:0c:e8:ca:db:ad:83:50:bb:5f:bd:19:74:a8:b2:c8: a5:37:72:7c:5b:8e:51:e5:e4:cf:c0:54:e2:2c:1f:34:17:88: e9:a6:39:7b:bd:dd:ff:16:d3:6a:f0:db:ed:a5:7a:8e:0d:3e: 56:40:96:7f:9d:7a:d4:cb:b1:64:a4:b4:7c:48:1d:4c:90:6d: 5c:37:0e:5b:54:f4:4c:a6:f4:d0:de:02:45:f8:7f:7d:a1:c6: ba:86:9c:e6:ac:ef:26:75:bd:55:da:61:dd:d6:17:e3:78:b5: 2b:16:05:03:46:eb:5d:06:d1:1d:9d:1e:7e:c6:44:bb:3e:b7: a9:77:12:b5:77:28:32:f0:a2:a4:7b:e0:35:0c:75:88:e4:87: 17:52:cb:a4:1b:4d:33:19:7e:a8:51:d8:34:c5:2e:ba:44:a7: 71:98:49:af:7d:a0:88:98:a9:70:fb:10:b1:58:5a:50:ae:a8: be:02:65:57:a8:7d:4f:af:91:e0:9e:36:ba:f8:93:20:f6:00: d1:d2:e2:b9:b0:61:15:04:fa:26:e8:76:f4:30:48:ef:67:14: b4:dc:6a:46:c2:3b:ce:7c:4d:bc:9f:b9:09:dd:44:3e:95:16: a1:52:84:0f:56:c5:59:5e:e7:72:83:05:4e:91:91:49:9f:18: 3a:a4:9e:e3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPP4yoOb0DYBusXQ6yaofbHUvIrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBEMUREOTIyNTMyMUUxRDREMUQyRjYzQTdFMDg4MEIz NUY2ODM3RTAeFw0yMzA5MDcwNjM2MzJaFw0yNDA5MDUwNjQxMzJaMDMxMTAvBgNV BAMTKDRFNzU4MURBQzZFMUVGRDdDNjZDNzAyQ0QzODQxMEQ0MjlCRTQwNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkaRRyQXmdzI2AZIStl43ks6Zl 14cq3meJZWoazK+OFr/Z0scFr++5niuXGmMAtcWjaOFYbyRvj24IQG0hl/4pNWgS UnFb4Zmfxw6G+IJ/LVUhmGiVNuonGlU2E01QW+W3x/vmGyu6LCToQQ2dXRb9epgR n0VGun9HS38HWkpF+8D3tbQO32wozlDdLgo1ZNOEl7/04o3ZKav9koPF/Yha0aw5 +faMg5gUvcjXqG0us+ukRJ2gLNEPZwebishutKxMwQAjJ+6x9aVBEGwLJLOW9XNp I5iUMe0yc7PI4Ng5HOzYXMVilOXLTUAUrQrRiej7ZkfGS642GN9KwvEkLsXHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTnWB2sbh79fGbHAs04QQ1Cm+QHcwHwYDVR0j BBgwFoAU0NHdkiUyHh1NHS9jp+CICzX2g34wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjkzMjljZi0zMTIzLTRjZTAtYTY4Ny0wYTAzY2Q3NTg3MzgvMC9EMEQxREQ5MjI1 MzIxRTFENEQxRDJGNjNBN0UwODgwQjM1RjY4MzdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBEMUREOTIyNTMyMUUxRDREMUQyRjYzQTdFMDg4MEIzNUY2 ODM3RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyOTMyOWNmLTMxMjMtNGNlMC1h Njg3LTBhMDNjZDc1ODczOC8wLzMxMzAzMzJlMzMzNTJlMzEzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyOaMA0GCSqG SIb3DQEBCwUAA4IBAQCCSRgM6MrbrYNQu1+9GXSossilN3J8W45R5eTPwFTiLB80 F4jppjl7vd3/FtNq8NvtpXqODT5WQJZ/nXrUy7FkpLR8SB1MkG1cNw5bVPRMpvTQ 3gJF+H99oca6hpzmrO8mdb1V2mHd1hfjeLUrFgUDRutdBtEdnR5+xkS7PrepdxK1 dygy8KKke+A1DHWI5IcXUsukG00zGX6oUdg0xS66RKdxmEmvfaCImKlw+xCxWFpQ rqi+AmVXqH1Pr5Hgnja6+JMg9gDR0uK5sGEVBPom6Hb0MEjvZxS03GpGwjvOfE28 n7kJ3UQ+lRahUoQPVsVZXudygwVOkZFJnxg6pJ7j -----END CERTIFICATE-----Generated at Sat Jun 22 11:26:36 2024 by rpki-client on console-ams.rpki-client.org