$ rpki-client -vvf repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa File: 3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa (raw, json) Hash identifier: eoiqESJfyAflmuyxAiqbZbjAB8pFlV4NBTXMBJ5PgaM= Subject key identifier: 67:B7:D5:09:C4:B9:1C:E3:D4:A7:F4:2D:7B:DB:06:00:99:E4:37:E5 Certificate issuer: /CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Certificate serial: 0B468D76529F4A2002F24E1E294A1F60A8C9B2F4 Authority key identifier: 28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa Signing time: Thu 09 May 2024 08:00:02 +0000 ROA not before: Thu 09 May 2024 07:55:02 +0000 ROA not after: Thu 08 May 2025 08:00:02 +0000 asID: 149909 IP address blocks: 103.191.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 02:06:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:46:8d:76:52:9f:4a:20:02:f2:4e:1e:29:4a:1f:60:a8:c9:b2:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Validity Not Before: May 9 07:55:02 2024 GMT Not After : May 8 08:00:02 2025 GMT Subject: CN=67B7D509C4B91CE3D4A7F42D7BDB060099E437E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9a:e0:3b:e3:48:67:37:4f:72:41:1d:71:72: 1c:2a:e7:c1:1d:06:91:a8:b8:2a:7b:61:9e:98:c6: f4:d8:78:b7:0b:76:2e:ca:93:10:bd:14:e6:1f:12: b0:9c:83:4f:49:e7:c4:2e:07:fc:e6:ea:78:5e:3b: 87:1c:6e:fc:d3:c9:04:b2:ac:04:d0:b5:b5:4d:03: 66:e0:7a:41:4b:94:0e:df:56:93:5f:bf:80:9e:3d: 57:32:4c:2c:e9:fc:4f:59:69:db:91:f6:b2:fa:e7: 62:ab:a1:91:03:b5:36:8e:c2:a8:a8:88:74:80:59: 67:bb:b2:8b:f6:47:56:fe:f6:65:8f:72:ca:eb:2c: a2:df:a2:a5:9c:01:24:d1:d5:3d:06:ad:00:58:d9: a7:94:53:0c:df:95:98:84:9b:e0:c2:d8:7c:5f:84: 55:b5:da:3d:d4:8a:8a:e4:43:9e:80:52:63:9d:dd: 8e:78:32:62:56:93:8c:79:39:8a:6b:bc:90:1e:a9: ff:84:5c:fb:59:34:80:03:9f:6d:78:1a:69:e2:43: e5:d4:f4:93:73:d7:e8:6d:f4:af:80:5f:05:b3:cb: 2d:b5:b5:6c:7c:8f:c3:93:cd:39:e5:44:94:ea:1d: bf:10:ab:18:a6:d7:b2:59:65:ff:66:7b:2b:63:cd: 5c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B7:D5:09:C4:B9:1C:E3:D4:A7:F4:2D:7B:DB:06:00:99:E4:37:E5 X509v3 Authority Key Identifier: keyid:28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.58.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:8a:00:29:9e:be:d8:f0:8c:b5:6c:5d:0a:fc:51:aa:c6:80: dd:e1:e1:c8:b3:15:a3:13:f9:a1:b9:0d:10:b4:b2:93:51:64: 5b:2a:b9:50:50:20:45:d9:24:df:be:f2:66:83:75:06:c0:86: e1:5a:39:7b:f1:64:79:a1:d8:06:48:07:8a:70:61:73:ff:5b: 63:d9:fd:3b:25:25:8f:02:8b:53:95:e7:58:ac:8b:05:3b:f3: 43:cf:55:5d:66:08:9e:3d:e5:33:a8:19:df:8e:6c:03:83:d6: b5:b9:67:0c:f7:b0:95:25:b0:22:21:22:82:1f:95:a2:e2:db: 1c:62:95:d2:ef:5b:57:18:15:f5:ce:62:99:01:3c:6b:37:1a: ef:37:27:60:fe:52:97:c5:73:5e:6c:3f:79:de:fd:45:25:17: b3:5a:9a:eb:06:d7:7d:ba:3e:82:56:f6:ed:12:6a:bd:a1:81: 87:5d:1f:da:a9:48:0c:87:02:20:51:54:0e:ed:dd:8b:ff:8c: 04:22:27:4c:fb:88:eb:2c:34:09:8d:0f:f2:8e:69:13:9a:94: f7:6c:45:e1:83:c5:8f:4b:72:c3:5f:23:83:5a:0d:3e:70:2f: 4e:de:38:4f:83:d3:88:e8:d1:cf:d7:22:12:d0:ed:e7:0c:25: 8a:f8:b8:04 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC0aNdlKfSiAC8k4eKUofYKjJsvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgy RkFCM0Q1QzAeFw0yNDA1MDkwNzU1MDJaFw0yNTA1MDgwODAwMDJaMDMxMTAvBgNV BAMTKDY3QjdENTA5QzRCOTFDRTNENEE3RjQyRDdCREIwNjAwOTlFNDM3RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2muA740hnN09yQR1xchwq58Ed BpGouCp7YZ6YxvTYeLcLdi7KkxC9FOYfErCcg09J58QuB/zm6nheO4ccbvzTyQSy rATQtbVNA2bgekFLlA7fVpNfv4CePVcyTCzp/E9ZaduR9rL652KroZEDtTaOwqio iHSAWWe7sov2R1b+9mWPcsrrLKLfoqWcASTR1T0GrQBY2aeUUwzflZiEm+DC2Hxf hFW12j3UiorkQ56AUmOd3Y54MmJWk4x5OYprvJAeqf+EXPtZNIADn214GmniQ+XU 9JNz1+ht9K+AXwWzyy21tWx8j8OTzTnlRJTqHb8Qqxim17JZZf9meytjzVyVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZ7fVCcS5HOPUp/Qte9sGAJnkN+UwHwYDVR0j BBgwFoAUKJFR74rop52PQmaD0VJa2C+rPVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmJlNjgxNS0zMTBlLTQyMDYtYTUwMC02YmI5ZDMyNjNhYmYvMC8yODkxNTFFRjhB RThBNzlEOEY0MjY2ODNEMTUyNUFEODJGQUIzRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgyRkFC M0Q1Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiYmU2ODE1LTMxMGUtNDIwNi1h NTAwLTZiYjlkMzI2M2FiZi8wLzMxMzAzMzJlMzEzOTMxMmUzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ786MA0GCSqG SIb3DQEBCwUAA4IBAQA7igApnr7Y8Iy1bF0K/FGqxoDd4eHIsxWjE/mhuQ0QtLKT UWRbKrlQUCBF2STfvvJmg3UGwIbhWjl78WR5odgGSAeKcGFz/1tj2f07JSWPAotT ledYrIsFO/NDz1VdZgiePeUzqBnfjmwDg9a1uWcM97CVJbAiISKCH5Wi4tscYpXS 71tXGBX1zmKZATxrNxrvNydg/lKXxXNebD953v1FJRezWprrBtd9uj6CVvbtEmq9 oYGHXR/aqUgMhwIgUVQO7d2L/4wEIidM+4jrLDQJjQ/yjmkTmpT3bEXhg8WPS3LD XyODWg0+cC9O3jhPg9OI6NHP1yIS0O3nDCWK+LgE -----END CERTIFICATE-----Generated at Sun Jun 23 00:55:20 2024 by rpki-client on console-ams.rpki-client.org