$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: RHqv86xk9k5ew6dMui2weK2H8c7WKFqSiGvHdq8tC1U= Subject key identifier: D3:51:1A:79:80:78:A8:0C:46:AE:C9:B3:B1:7E:3B:46:A7:62:7F:9D Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 27489522810561BBE9FFE722F999420C67B102E2 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa Signing time: Wed 20 Dec 2023 10:01:50 +0000 ROA not before: Wed 20 Dec 2023 09:56:50 +0000 ROA not after: Wed 18 Dec 2024 10:01:50 +0000 asID: 58487 IP address blocks: 103.253.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:48:95:22:81:05:61:bb:e9:ff:e7:22:f9:99:42:0c:67:b1:02:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Dec 20 09:56:50 2023 GMT Not After : Dec 18 10:01:50 2024 GMT Subject: CN=D3511A798078A80C46AEC9B3B17E3B46A7627F9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:73:77:d8:da:e0:ce:91:fc:37:a7:4c:d9:ed: 43:71:8e:9b:87:2c:b1:65:15:f5:62:65:7d:65:5b: 3b:4f:08:17:db:5f:b1:c7:cb:ed:44:1d:c8:88:52: cb:18:d0:d3:94:b3:34:7c:63:fb:f2:9c:a4:d9:82: bc:91:49:8f:c8:67:7c:ae:8c:2e:b7:5b:56:de:8d: cf:cc:f3:37:1b:a5:f3:5e:9e:9f:24:e0:a2:f3:75: 8b:09:cd:93:49:4c:dd:c9:f7:1c:43:ff:9b:8b:be: 89:4c:a4:92:4c:c6:bf:48:3e:a7:45:ce:a7:44:1b: 73:8f:e0:ec:d4:e3:49:14:62:4c:e4:1a:73:44:c9: 0c:23:42:a3:a1:cc:e6:4c:c0:9d:5a:2c:1c:bf:ff: 78:98:b6:35:0a:5c:df:d4:08:0c:e0:b5:dc:94:5e: 68:ab:da:ed:c8:c5:e0:ac:3e:1c:d1:6b:4e:da:9f: 7f:95:02:3a:f3:e5:69:55:90:8e:1f:e8:19:f5:00: 99:6f:ba:33:dd:0c:f2:2b:0d:1f:1a:e6:d4:b2:c5: 58:0c:e2:63:73:22:04:33:14:7f:30:9b:6a:07:57: ee:dd:6d:02:4a:27:a4:f6:72:1c:71:9f:a8:f9:50: d0:85:b4:4a:06:d5:9e:78:77:f7:c9:1c:90:c9:3b: e9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:51:1A:79:80:78:A8:0C:46:AE:C9:B3:B1:7E:3B:46:A7:62:7F:9D X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.213.0/24 Signature Algorithm: sha256WithRSAEncryption ad:d7:0a:47:76:42:40:16:9e:5e:10:b8:d0:24:d5:10:5f:fe: 16:3e:25:45:90:38:22:5c:4b:df:c0:31:31:83:43:d2:ef:17: 6a:d6:64:ec:65:a6:98:fc:ad:9b:b3:b8:8d:8a:b4:13:1a:57: 0d:92:43:6b:54:63:fb:98:51:c5:c5:e7:5d:23:27:0b:87:c1: 27:5b:76:d4:ac:5c:e7:ff:c8:1a:0d:31:bb:65:0a:ae:cf:2e: 35:16:aa:a0:7d:e3:ee:29:e0:06:49:12:18:c7:9e:ce:0e:fb: 2f:b7:83:f4:20:66:41:5f:98:31:21:db:b6:53:89:4a:75:2f: 09:ef:59:49:1d:58:72:64:6f:ea:af:a8:44:a8:34:c0:75:d7: 74:60:01:ee:0b:1f:0a:2f:c5:81:cf:07:6f:34:d9:20:a8:07: 76:4c:43:08:9e:02:b5:ab:bc:5a:2d:83:a3:83:c3:1b:3d:de: 0b:91:28:4b:7b:25:c2:22:6f:fe:f4:86:55:6c:93:51:43:47: 2c:ec:05:7e:fb:cd:98:18:15:99:eb:4e:2b:77:7e:4f:e6:11: e5:1d:bf:2e:bf:63:4f:ee:90:71:28:0a:ff:40:2a:06:db:8c: e4:95:d8:08:54:98:78:16:92:85:1c:6b:d6:5e:57:a1:95:7d: 36:ed:f0:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ0iVIoEFYbvp/+ci+ZlCDGexAuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yMzEyMjAwOTU2NTBaFw0yNDEyMTgxMDAxNTBaMDMxMTAvBgNV BAMTKEQzNTExQTc5ODA3OEE4MEM0NkFFQzlCM0IxN0UzQjQ2QTc2MjdGOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5c3fY2uDOkfw3p0zZ7UNxjpuH LLFlFfViZX1lWztPCBfbX7HHy+1EHciIUssY0NOUszR8Y/vynKTZgryRSY/IZ3yu jC63W1bejc/M8zcbpfNenp8k4KLzdYsJzZNJTN3J9xxD/5uLvolMpJJMxr9IPqdF zqdEG3OP4OzU40kUYkzkGnNEyQwjQqOhzOZMwJ1aLBy//3iYtjUKXN/UCAzgtdyU Xmir2u3IxeCsPhzRa07an3+VAjrz5WlVkI4f6Bn1AJlvujPdDPIrDR8a5tSyxVgM 4mNzIgQzFH8wm2oHV+7dbQJKJ6T2chxxn6j5UNCFtEoG1Z54d/fJHJDJO+nzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU01EaeYB4qAxGrsmzsX47Rqdif50wHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3VMA0GCSqG SIb3DQEBCwUAA4IBAQCt1wpHdkJAFp5eELjQJNUQX/4WPiVFkDgiXEvfwDExg0PS 7xdq1mTsZaaY/K2bs7iNirQTGlcNkkNrVGP7mFHFxeddIycLh8EnW3bUrFzn/8ga DTG7ZQquzy41FqqgfePuKeAGSRIYx57ODvsvt4P0IGZBX5gxIdu2U4lKdS8J71lJ HVhyZG/qr6hEqDTAddd0YAHuCx8KL8WBzwdvNNkgqAd2TEMIngK1q7xaLYOjg8Mb Pd4LkShLeyXCIm/+9IZVbJNRQ0cs7AV++82YGBWZ604rd35P5hHlHb8uv2NP7pBx KAr/QCoG24zkldgIVJh4FpKFHGvWXlehlX027fDo -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org