$ rpki-client -vvf repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa File: 3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa (raw, json) Hash identifier: vIe+smybEka/GFGw+e6bnwqTO3SOJflph7OSezWx66g= Subject key identifier: FF:28:60:D8:2E:3D:D9:39:9E:C6:6F:DC:5F:DB:49:70:BA:F1:6B:73 Certificate issuer: /CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Certificate serial: 064D9ACEAD1F5B994D01276FB8EDCC852A22CBB3 Authority key identifier: D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa Signing time: Fri 08 Sep 2023 10:00:00 +0000 ROA not before: Fri 08 Sep 2023 09:55:00 +0000 ROA not after: Fri 06 Sep 2024 10:00:00 +0000 asID: 142332 IP address blocks: 103.169.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:4d:9a:ce:ad:1f:5b:99:4d:01:27:6f:b8:ed:cc:85:2a:22:cb:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Validity Not Before: Sep 8 09:55:00 2023 GMT Not After : Sep 6 10:00:00 2024 GMT Subject: CN=FF2860D82E3DD9399EC66FDC5FDB4970BAF16B73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0e:6a:03:99:e3:7a:8c:c9:29:06:0e:e6:72: 6d:a9:22:96:e2:d6:0e:19:8a:ef:95:06:94:a7:e7: e0:48:54:ce:1b:fc:97:f7:49:b8:94:cf:b5:dd:6b: 76:b1:01:c7:b2:08:ca:e3:69:f4:2c:a1:64:a8:f2: fa:2b:5e:65:61:f0:38:b9:74:15:8d:cd:ba:21:df: 3e:33:cb:0f:13:5d:b4:17:6b:77:6f:2e:1b:ad:71: 37:20:eb:77:f2:1d:94:b8:83:18:0d:fa:1f:94:6c: 62:c4:9d:ce:6d:a0:67:af:56:6d:bd:5b:ff:6c:5f: 8d:be:1a:f2:01:0a:c9:ba:db:b5:27:07:c4:8e:1c: c7:b5:0c:b7:0b:51:e5:ce:64:2f:d9:36:ad:f0:d9: 49:73:2a:fa:c0:58:93:ef:c9:10:c1:1c:a1:18:7d: 59:36:89:24:de:b1:33:84:b1:fb:1e:c1:5e:f1:83: 88:22:4a:97:46:1c:1b:19:4e:94:9c:2c:c1:f9:3f: a0:60:73:46:83:27:4f:c5:51:f1:d9:79:e9:d6:5e: 04:6e:36:04:f5:d0:45:c2:80:da:7d:40:e4:bb:c9: c6:9e:ff:34:41:28:64:4f:7e:1a:b1:8c:3e:55:a2: 4a:f3:13:7c:46:bf:2c:b8:d0:e1:5c:ef:b7:bf:15: 80:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:28:60:D8:2E:3D:D9:39:9E:C6:6F:DC:5F:DB:49:70:BA:F1:6B:73 X509v3 Authority Key Identifier: keyid:D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.41.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:0b:76:33:f6:1d:03:47:97:0b:c4:48:bd:a5:2c:ac:29:41: c4:b2:13:92:c8:21:1c:07:ad:09:0e:06:11:41:e8:aa:39:bd: 93:e9:20:e0:e8:5a:bc:72:67:73:aa:25:55:a3:5d:0f:81:02: 38:01:a6:74:05:e4:1b:d5:e7:d5:f4:c9:89:ac:73:5b:48:62: bd:76:f3:24:5a:e7:6f:2c:54:00:20:9d:a9:70:eb:b0:88:fa: 39:4e:88:53:60:60:f8:9b:49:d0:91:94:9c:b8:4c:40:26:a7: 8f:11:13:b4:a3:19:d6:4c:74:da:d6:f7:4b:b9:79:ac:ab:ff: 15:13:70:02:75:72:50:da:15:ec:2c:40:a3:7c:44:0e:74:ac: 9d:49:95:16:ef:60:7f:4d:ec:91:20:81:34:be:79:57:be:41: 79:72:b6:fd:27:6b:16:d3:cf:a4:30:93:92:bd:a3:0f:26:de: 79:6e:87:75:02:cb:4b:58:53:84:89:1e:8c:22:08:8e:d4:ce: b5:a7:b4:ea:5e:ee:f5:3e:1a:7f:28:1c:83:4f:5b:90:f5:52: b9:ac:45:64:c6:f8:5b:bf:17:4c:56:27:c2:32:82:aa:51:c3: 3f:8d:f3:5a:c2:aa:a4:d6:56:bd:3a:f0:79:3f:6b:64:23:5c: b8:61:3f:80 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBk2azq0fW5lNASdvuO3MhSoiy7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhB RjhCREVENzAeFw0yMzA5MDgwOTU1MDBaFw0yNDA5MDYxMDAwMDBaMDMxMTAvBgNV BAMTKEZGMjg2MEQ4MkUzREQ5Mzk5RUM2NkZEQzVGREI0OTcwQkFGMTZCNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjDmoDmeN6jMkpBg7mcm2pIpbi 1g4Ziu+VBpSn5+BIVM4b/Jf3SbiUz7Xda3axAceyCMrjafQsoWSo8vorXmVh8Di5 dBWNzboh3z4zyw8TXbQXa3dvLhutcTcg63fyHZS4gxgN+h+UbGLEnc5toGevVm29 W/9sX42+GvIBCsm627UnB8SOHMe1DLcLUeXOZC/ZNq3w2UlzKvrAWJPvyRDBHKEY fVk2iSTesTOEsfsewV7xg4giSpdGHBsZTpScLMH5P6Bgc0aDJ0/FUfHZeenWXgRu NgT10EXCgNp9QOS7ycae/zRBKGRPfhqxjD5VokrzE3xGvyy40OFc77e/FYAZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/yhg2C492Tmexm/cX9tJcLrxa3MwHwYDVR0j BBgwFoAU1YvNR6YmPMOhKr3m46KtKK+L3tcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2I1MjYxOS0zNzlkLTQzMGEtYjE5Yi0xZjBlYzUzYWU5MDkvMC9ENThCQ0Q0N0E2 MjYzQ0MzQTEyQUJERTZFM0EyQUQyOEFGOEJERUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhBRjhC REVENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjYjUyNjE5LTM3OWQtNDMwYS1i MTliLTFmMGVjNTNhZTkwOS8wLzMxMzAzMzJlMzEzNjM5MmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6kpMA0GCSqG SIb3DQEBCwUAA4IBAQAeC3Yz9h0DR5cLxEi9pSysKUHEshOSyCEcB60JDgYRQeiq Ob2T6SDg6Fq8cmdzqiVVo10PgQI4AaZ0BeQb1efV9MmJrHNbSGK9dvMkWudvLFQA IJ2pcOuwiPo5TohTYGD4m0nQkZScuExAJqePERO0oxnWTHTa1vdLuXmsq/8VE3AC dXJQ2hXsLECjfEQOdKydSZUW72B/TeyRIIE0vnlXvkF5crb9J2sW08+kMJOSvaMP Jt55bod1AstLWFOEiR6MIgiO1M61p7TqXu71Php/KByDT1uQ9VK5rEVkxvhbvxdM VifCMoKqUcM/jfNawqqk1la9OvB5P2tkI1y4YT+A -----END CERTIFICATE-----Generated at Sun Jun 23 11:46:49 2024 by rpki-client on console-fra.rpki-client.org