$ rpki-client -vvf repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa File: 3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa (raw, json) Hash identifier: 3mtWmxV0RYIuGQ+Jo3/FtJA2L4P6rL/8W87zmr/0vGw= Subject key identifier: 0F:02:01:B0:71:5F:58:B6:2B:FF:6F:8F:48:89:76:72:1B:8E:BC:82 Certificate issuer: /CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Certificate serial: 6DCCA5AFA8CC28DC07BCBEF86C9ACF793F4D6E58 Authority key identifier: D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa Signing time: Fri 08 Sep 2023 10:00:00 +0000 ROA not before: Fri 08 Sep 2023 09:55:00 +0000 ROA not after: Fri 06 Sep 2024 10:00:00 +0000 asID: 142332 IP address blocks: 103.169.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:cc:a5:af:a8:cc:28:dc:07:bc:be:f8:6c:9a:cf:79:3f:4d:6e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Validity Not Before: Sep 8 09:55:00 2023 GMT Not After : Sep 6 10:00:00 2024 GMT Subject: CN=0F0201B0715F58B62BFF6F8F488976721B8EBC82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a7:98:cf:fb:36:eb:0c:1b:4a:0b:0a:35:64: c1:fc:e9:48:32:ef:ee:c4:2e:c3:0d:c6:a9:3a:65: 82:93:a6:ea:86:6d:da:54:f8:26:83:4e:c2:34:bb: 4d:71:6a:ce:04:4d:e8:1d:52:36:d3:90:e0:0d:ce: 56:1a:9b:31:e3:8a:38:83:32:ee:47:42:a7:02:2f: 81:35:a7:87:c4:73:79:a3:71:fc:ea:9d:93:86:d2: 48:f6:b4:e5:e5:5c:d2:75:fe:8c:b5:3c:7b:5d:07: 99:4e:b3:9b:e0:4f:89:22:09:3e:f2:26:d7:cf:62: 45:14:78:18:4a:67:4a:a5:04:a6:b9:cc:4a:0a:29: 67:ec:e1:24:0a:3e:28:eb:7f:52:3c:d7:4e:be:fb: 7c:06:96:84:35:b2:ee:e5:f8:96:35:30:97:33:d2: f6:57:2b:db:db:74:44:eb:44:f2:51:28:28:ff:2a: c0:48:c4:6c:b7:b1:bc:66:b8:29:cf:9c:bb:46:d3: 8f:8e:a9:f9:58:e8:63:0d:9f:15:f1:c5:2c:c4:06: de:59:a6:7f:7a:5a:1a:a0:2b:22:2d:d6:40:55:26: 06:65:a4:f5:50:d5:5f:44:4d:29:18:99:30:ab:60: d2:45:f5:bd:89:9f:e7:3e:bf:da:a2:0c:36:f2:7c: 0d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:02:01:B0:71:5F:58:B6:2B:FF:6F:8F:48:89:76:72:1B:8E:BC:82 X509v3 Authority Key Identifier: keyid:D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.40.0/24 Signature Algorithm: sha256WithRSAEncryption 01:0e:15:9d:55:e0:cb:f9:0d:9a:67:6d:18:af:de:f8:27:11: f1:68:58:73:cd:87:88:ad:58:f1:fc:07:8f:2a:60:5e:c8:24: 5f:56:e6:8f:3a:36:63:7e:4d:c7:6c:f3:d9:d9:a4:73:18:14: b5:09:dd:15:ea:df:32:b8:d7:21:44:f2:31:b4:a2:23:6f:20: 05:98:99:a2:0e:30:35:62:2e:94:10:bf:0b:f8:80:27:0c:4f: b1:d4:78:e7:d5:79:47:9e:83:f6:c9:dc:da:03:be:56:aa:60: 8d:de:fc:bf:9b:89:9e:6e:b0:10:d6:c4:01:5a:84:75:38:b9: a9:3e:7a:1e:8e:74:ec:ed:2b:d1:55:96:d6:b9:b3:ff:f4:c5: c2:79:20:5d:7c:76:8c:f9:88:69:ca:4a:a9:af:ad:32:34:3d: 1c:87:f2:a1:cc:8a:6d:32:5e:df:d2:6c:4d:90:ef:3b:7e:7d: 4e:59:9a:91:ab:b7:99:ea:d5:c3:1f:35:4c:ad:40:f6:6b:19: 26:4a:92:55:8d:72:a3:84:98:7a:41:c7:31:0c:9a:86:55:b2: b7:02:4f:d3:2c:62:7e:25:50:63:6f:86:b2:37:99:26:52:e5: 33:31:42:5d:e3:61:2d:15:a7:e5:bd:6a:67:33:35:07:af:73: 73:53:7e:41 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbcylr6jMKNwHvL74bJrPeT9NblgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhB RjhCREVENzAeFw0yMzA5MDgwOTU1MDBaFw0yNDA5MDYxMDAwMDBaMDMxMTAvBgNV BAMTKDBGMDIwMUIwNzE1RjU4QjYyQkZGNkY4RjQ4ODk3NjcyMUI4RUJDODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8p5jP+zbrDBtKCwo1ZMH86Ugy 7+7ELsMNxqk6ZYKTpuqGbdpU+CaDTsI0u01xas4ETegdUjbTkOANzlYamzHjijiD Mu5HQqcCL4E1p4fEc3mjcfzqnZOG0kj2tOXlXNJ1/oy1PHtdB5lOs5vgT4kiCT7y JtfPYkUUeBhKZ0qlBKa5zEoKKWfs4SQKPijrf1I8106++3wGloQ1su7l+JY1MJcz 0vZXK9vbdETrRPJRKCj/KsBIxGy3sbxmuCnPnLtG04+OqflY6GMNnxXxxSzEBt5Z pn96WhqgKyIt1kBVJgZlpPVQ1V9ETSkYmTCrYNJF9b2Jn+c+v9qiDDbyfA3lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDwIBsHFfWLYr/2+PSIl2chuOvIIwHwYDVR0j BBgwFoAU1YvNR6YmPMOhKr3m46KtKK+L3tcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2I1MjYxOS0zNzlkLTQzMGEtYjE5Yi0xZjBlYzUzYWU5MDkvMC9ENThCQ0Q0N0E2 MjYzQ0MzQTEyQUJERTZFM0EyQUQyOEFGOEJERUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhBRjhC REVENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjYjUyNjE5LTM3OWQtNDMwYS1i MTliLTFmMGVjNTNhZTkwOS8wLzMxMzAzMzJlMzEzNjM5MmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6koMA0GCSqG SIb3DQEBCwUAA4IBAQABDhWdVeDL+Q2aZ20Yr974JxHxaFhzzYeIrVjx/AePKmBe yCRfVuaPOjZjfk3HbPPZ2aRzGBS1Cd0V6t8yuNchRPIxtKIjbyAFmJmiDjA1Yi6U EL8L+IAnDE+x1Hjn1XlHnoP2ydzaA75WqmCN3vy/m4mebrAQ1sQBWoR1OLmpPnoe jnTs7SvRVZbWubP/9MXCeSBdfHaM+Yhpykqpr60yND0ch/KhzIptMl7f0mxNkO87 fn1OWZqRq7eZ6tXDHzVMrUD2axkmSpJVjXKjhJh6QccxDJqGVbK3Ak/TLGJ+JVBj b4ayN5kmUuUzMUJd42EtFaflvWpnMzUHr3NzU35B -----END CERTIFICATE-----Generated at Sun Jun 23 11:46:49 2024 by rpki-client on console-fra.rpki-client.org