$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: xmnwY9qJ5/MqOQ46HUwKPqUMcNeyGg2Uac2WMYbUN9U= Subject key identifier: 04:65:4E:3B:FB:66:73:01:82:20:B7:F2:47:7A:5C:78:9B:C9:BE:49 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 0E4D42FB8F07E6985C8FA1FD5FF6C2FA8706F6E7 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa Signing time: Wed 20 Dec 2023 09:00:02 +0000 ROA not before: Wed 20 Dec 2023 08:55:02 +0000 ROA not after: Wed 18 Dec 2024 09:00:02 +0000 asID: 58487 IP address blocks: 103.253.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:4d:42:fb:8f:07:e6:98:5c:8f:a1:fd:5f:f6:c2:fa:87:06:f6:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Dec 20 08:55:02 2023 GMT Not After : Dec 18 09:00:02 2024 GMT Subject: CN=04654E3BFB6673018220B7F2477A5C789BC9BE49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:57:ae:b1:02:da:bd:b4:f8:5f:b5:be:a5:8b: 0a:df:07:47:1d:f4:e1:cb:60:cf:ce:8a:75:ab:d8: 7d:34:a1:33:1f:53:3d:9c:25:c3:c8:5e:9f:4b:2b: f2:ff:23:e8:b5:aa:0d:c0:a6:e7:0f:70:1f:c8:47: 90:2a:e0:b5:0d:49:ef:02:2e:5d:db:23:a6:ae:41: ed:80:29:87:ca:fb:53:82:28:25:30:b0:0a:1c:42: 11:8c:0c:18:c0:1a:49:3d:b1:ae:7e:01:c0:07:0e: 68:e7:47:46:1c:ca:d7:12:3e:49:6d:8d:07:9b:cd: 5b:23:c6:d9:6a:97:f0:f6:5f:c6:46:c7:16:de:4a: d2:c0:0c:6f:a8:04:9b:dc:03:a2:5a:84:22:0a:bb: 13:a2:a9:a5:af:71:47:11:88:f5:2d:29:83:fa:46: f7:77:eb:da:12:03:34:9a:6e:35:8c:09:25:12:54: 18:87:4a:81:8d:46:fd:bc:f0:03:e9:1c:04:4f:04: 2d:29:f2:a3:5c:5d:a2:09:79:9b:51:eb:ad:6a:98: f9:71:86:9b:84:fe:35:e8:24:02:36:19:ac:b3:d7: 73:85:8a:9d:65:c7:33:1c:d1:54:64:03:24:2f:91: 88:94:2f:44:09:1b:90:e7:ce:9d:1d:9c:87:b3:18: 18:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:65:4E:3B:FB:66:73:01:82:20:B7:F2:47:7A:5C:78:9B:C9:BE:49 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.212.0/24 Signature Algorithm: sha256WithRSAEncryption b0:c1:fb:e1:e3:ba:48:7c:51:4c:29:2e:1e:0d:f7:08:26:b8: e4:57:7b:22:4c:95:e4:f1:00:71:8b:f5:38:0f:3e:a7:91:cb: 5c:49:ea:4e:63:01:ab:d6:f2:97:e3:d1:e7:28:59:23:59:dc: f6:99:55:a3:2e:48:6b:e0:05:9e:f2:45:bf:0f:9c:a4:29:9b: e8:1b:ed:9d:74:bc:ef:8d:fe:a8:07:e7:18:5f:af:b8:d2:79: 1a:c9:a6:db:5a:5f:5c:1f:a9:7f:28:33:62:c0:2d:92:fa:13: f3:a6:f4:38:f9:37:61:7b:ae:3d:64:f0:72:fe:77:4d:ee:11: 4c:84:52:be:04:01:95:cf:36:f0:e8:7a:d1:d8:72:66:1c:ed: 44:8b:52:6d:2f:6b:92:47:8a:a0:48:12:fa:04:3a:9d:57:3d: 60:aa:42:23:c2:b3:c0:65:b0:47:f5:f1:16:d6:78:27:fb:12: db:87:12:83:2a:e9:1a:2b:ec:fb:0b:23:a5:6c:91:78:5b:c5: c9:12:83:5f:c4:c9:58:87:ae:27:c0:e9:01:2a:2a:16:2e:bf: fa:9a:17:70:7a:4e:a2:84:2e:54:0d:37:0f:74:a1:da:b8:59: b4:2c:1f:af:05:1e:9c:fc:d6:3d:ad:44:b9:c2:11:e9:6e:6c: ed:7a:7c:6b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDk1C+48H5phcj6H9X/bC+ocG9ucwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yMzEyMjAwODU1MDJaFw0yNDEyMTgwOTAwMDJaMDMxMTAvBgNV BAMTKDA0NjU0RTNCRkI2NjczMDE4MjIwQjdGMjQ3N0E1Qzc4OUJDOUJFNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyV66xAtq9tPhftb6liwrfB0cd 9OHLYM/OinWr2H00oTMfUz2cJcPIXp9LK/L/I+i1qg3ApucPcB/IR5Aq4LUNSe8C Ll3bI6auQe2AKYfK+1OCKCUwsAocQhGMDBjAGkk9sa5+AcAHDmjnR0YcytcSPklt jQebzVsjxtlql/D2X8ZGxxbeStLADG+oBJvcA6JahCIKuxOiqaWvcUcRiPUtKYP6 Rvd369oSAzSabjWMCSUSVBiHSoGNRv288APpHARPBC0p8qNcXaIJeZtR661qmPlx hpuE/jXoJAI2Gayz13OFip1lxzMc0VRkAyQvkYiUL0QJG5Dnzp0dnIezGBhVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBGVOO/tmcwGCILfyR3pceJvJvkkwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3UMA0GCSqG SIb3DQEBCwUAA4IBAQCwwfvh47pIfFFMKS4eDfcIJrjkV3siTJXk8QBxi/U4Dz6n kctcSepOYwGr1vKX49HnKFkjWdz2mVWjLkhr4AWe8kW/D5ykKZvoG+2ddLzvjf6o B+cYX6+40nkayabbWl9cH6l/KDNiwC2S+hPzpvQ4+Tdhe649ZPBy/ndN7hFMhFK+ BAGVzzbw6HrR2HJmHO1Ei1JtL2uSR4qgSBL6BDqdVz1gqkIjwrPAZbBH9fEW1ngn +xLbhxKDKukaK+z7CyOlbJF4W8XJEoNfxMlYh64nwOkBKioWLr/6mhdwek6ihC5U DTcPdKHauFm0LB+vBR6c/NY9rUS5whHpbmztenxr -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org