$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa File: 3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: Sf0rNa8MwpEKOy6/W8AVf3XnJnem1ZszR5MGa1H2rhQ= Subject key identifier: E9:B9:D5:BC:F1:67:83:62:42:A9:75:A2:8B:E4:D0:B3:8F:04:68:01 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 3A8E0B7787086BC711354FBEE487BAE612822EE0 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa Signing time: Wed 20 Dec 2023 10:01:50 +0000 ROA not before: Wed 20 Dec 2023 09:56:50 +0000 ROA not after: Wed 18 Dec 2024 10:01:50 +0000 asID: 58487 IP address blocks: 103.253.214.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:8e:0b:77:87:08:6b:c7:11:35:4f:be:e4:87:ba:e6:12:82:2e:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Dec 20 09:56:50 2023 GMT Not After : Dec 18 10:01:50 2024 GMT Subject: CN=E9B9D5BCF167836242A975A28BE4D0B38F046801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:18:71:4f:d2:70:7b:53:bc:c4:e9:9e:e1:30: 32:5e:87:61:43:ca:cd:ea:58:5a:89:a6:0f:9b:d6: 1e:55:a4:5a:ed:cb:e3:48:ff:60:d3:56:02:4e:cf: 46:4f:84:44:97:1b:0e:36:d8:8c:29:99:3e:6b:ba: 05:f7:c9:1e:17:27:72:a3:e7:09:45:f7:90:3a:3f: a3:79:d2:42:61:f6:e6:3b:3e:4c:74:98:63:e0:db: b4:9c:ae:32:ae:c9:66:e0:12:81:13:ac:a4:fb:74: de:6d:26:35:35:4e:0c:eb:9b:e9:2c:7f:70:6d:95: 41:1f:b5:93:84:8e:61:73:de:15:24:cd:1f:a2:8d: 29:ca:24:ea:28:64:45:d1:d8:1a:d1:fe:ee:39:6d: e7:f9:1d:5f:74:88:64:5f:a7:f8:75:17:89:38:fd: 2d:fa:07:f6:2b:3a:1a:5e:32:c5:f9:ab:ee:45:8c: f0:ac:86:67:1d:3f:06:7d:18:02:25:d6:65:9c:55: 1d:de:03:72:21:3a:b1:5d:51:17:87:74:32:7a:9f: 42:51:07:8d:2f:77:b7:07:4c:29:3b:95:90:aa:a1: 73:b5:ce:70:58:40:3b:7c:87:98:19:ab:50:74:7d: 76:66:36:f5:52:b2:ef:bb:ad:20:32:b9:ad:46:09: 33:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B9:D5:BC:F1:67:83:62:42:A9:75:A2:8B:E4:D0:B3:8F:04:68:01 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.214.0/23 Signature Algorithm: sha256WithRSAEncryption 32:18:5b:43:aa:5b:a6:f3:21:a3:0a:f0:0a:e9:88:91:b8:e1: 0b:63:3f:15:c6:fe:fe:dd:8e:bb:b2:82:19:d9:5d:d0:78:78: bd:04:d5:ae:25:2a:6d:99:65:b7:14:e7:57:b7:b2:46:36:24: 27:bd:5c:8d:7a:0f:9a:82:5a:ec:30:81:34:22:97:5b:6c:18: d0:d0:95:39:e6:22:d6:f0:36:81:b0:bd:c4:27:65:16:aa:df: be:37:71:20:80:74:4c:c3:0c:71:9c:44:51:ec:04:e8:a1:fd: 06:a2:00:16:4c:a8:7a:4e:b4:dd:89:35:db:9b:ed:bf:68:d4: a8:b7:60:a0:f3:20:2e:5f:06:59:ff:4f:4e:a6:e3:25:56:48: 4d:6a:b2:09:7a:7e:45:81:b0:9b:9e:b8:6a:f1:8a:9d:cc:d0: 83:40:30:ee:88:a1:61:9b:4a:dc:f7:66:8b:df:fa:58:9b:14: a9:59:d0:d3:49:bd:98:71:9d:1b:ed:d4:70:4e:95:b8:65:d3: 15:58:b4:20:89:9a:69:14:08:fa:55:71:f4:9e:c1:00:5a:c4: 34:b2:6b:41:02:47:6f:e5:33:8e:5d:d8:04:49:85:38:27:e3: 21:bb:05:b4:6f:91:9d:75:e2:56:b5:09:4b:66:65:db:16:fc: f7:9f:f4:12 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOo4Ld4cIa8cRNU++5Ie65hKCLuAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yMzEyMjAwOTU2NTBaFw0yNDEyMTgxMDAxNTBaMDMxMTAvBgNV BAMTKEU5QjlENUJDRjE2NzgzNjI0MkE5NzVBMjhCRTREMEIzOEYwNDY4MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4GHFP0nB7U7zE6Z7hMDJeh2FD ys3qWFqJpg+b1h5VpFrty+NI/2DTVgJOz0ZPhESXGw422IwpmT5rugX3yR4XJ3Kj 5wlF95A6P6N50kJh9uY7Pkx0mGPg27ScrjKuyWbgEoETrKT7dN5tJjU1Tgzrm+ks f3BtlUEftZOEjmFz3hUkzR+ijSnKJOooZEXR2BrR/u45bef5HV90iGRfp/h1F4k4 /S36B/YrOhpeMsX5q+5FjPCshmcdPwZ9GAIl1mWcVR3eA3IhOrFdUReHdDJ6n0JR B40vd7cHTCk7lZCqoXO1znBYQDt8h5gZq1B0fXZmNvVSsu+7rSAyua1GCTMhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6bnVvPFng2JCqXWii+TQs48EaAEwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/3WMA0GCSqG SIb3DQEBCwUAA4IBAQAyGFtDqlum8yGjCvAK6YiRuOELYz8Vxv7+3Y67soIZ2V3Q eHi9BNWuJSptmWW3FOdXt7JGNiQnvVyNeg+aglrsMIE0IpdbbBjQ0JU55iLW8DaB sL3EJ2UWqt++N3EggHRMwwxxnERR7AToof0GogAWTKh6TrTdiTXbm+2/aNSot2Cg 8yAuXwZZ/09OpuMlVkhNarIJen5FgbCbnrhq8YqdzNCDQDDuiKFhm0rc92aL3/pY mxSpWdDTSb2YcZ0b7dRwTpW4ZdMVWLQgiZppFAj6VXH0nsEAWsQ0smtBAkdv5TOO XdgESYU4J+MhuwW0b5GddeJWtQlLZmXbFvz3n/QS -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org