$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: Op88RQPSCCe3LrIzbgPrt6Qw8PTv8TnOyH0rb8hK/r8= Subject key identifier: 5A:57:72:18:20:60:7D:15:98:49:2A:58:DD:10:8B:0B:1E:98:77:56 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 44991580B9E00498708587362ABD72FFA4E9B40D Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa Signing time: Wed 20 Dec 2023 09:00:02 +0000 ROA not before: Wed 20 Dec 2023 08:55:02 +0000 ROA not after: Wed 18 Dec 2024 09:00:02 +0000 asID: 58487 IP address blocks: 103.253.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:99:15:80:b9:e0:04:98:70:85:87:36:2a:bd:72:ff:a4:e9:b4:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Dec 20 08:55:02 2023 GMT Not After : Dec 18 09:00:02 2024 GMT Subject: CN=5A57721820607D1598492A58DD108B0B1E987756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4e:68:74:ab:2d:43:0c:32:a1:05:0d:44:b1: bd:66:6e:1c:72:0b:aa:46:ac:b5:c5:94:b0:52:bb: d6:21:4e:f6:d2:0f:bb:cb:9f:05:65:bb:99:59:92: 4b:8f:e5:76:22:16:d4:7a:bf:dd:24:b9:f8:1e:05: 3d:42:06:98:fb:38:0c:ef:99:ae:71:41:f8:b9:a2: df:cb:0c:c3:62:e3:48:99:5a:05:40:4b:28:cf:73: d5:6e:b5:70:82:04:db:62:0a:d7:64:7d:52:72:c3: 92:85:0f:b2:58:7d:ba:8b:63:d3:41:cd:37:38:57: 97:cf:35:5b:2c:05:09:f0:55:bc:5e:23:a4:91:13: ae:a9:a0:a6:db:58:dc:f2:dd:78:f2:e2:b7:27:f3: cc:14:4d:c0:eb:aa:85:c1:3b:d6:a1:53:91:3d:1e: 43:06:d6:1c:35:f8:63:70:4c:35:77:c5:a8:ed:9a: 2d:3f:03:fe:bb:68:97:97:bb:08:81:33:84:a1:2b: 26:d2:0a:d3:1d:87:0c:4e:ce:84:18:7d:21:8e:2a: 8f:5d:44:57:71:db:a8:93:99:11:0d:3e:73:08:05: 34:37:b5:c2:05:7d:e6:69:4d:78:4f:f8:74:29:ee: ef:5a:16:a5:41:19:b5:e8:cd:0c:ae:85:0c:9f:90: b7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:57:72:18:20:60:7D:15:98:49:2A:58:DD:10:8B:0B:1E:98:77:56 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.214.0/24 Signature Algorithm: sha256WithRSAEncryption c4:69:a9:7b:d6:7b:88:49:0d:c1:a9:20:5f:64:cf:6c:13:3b: 29:70:ac:f9:ca:08:c1:f1:28:22:48:54:1a:73:01:8d:fe:37: 59:03:e1:6a:49:5e:08:28:4a:9d:76:d8:5d:04:fd:d7:ba:fe: a0:c9:7e:50:02:a5:1b:fc:22:12:ee:7f:1e:8b:60:94:13:65: 23:2d:4c:b3:99:88:86:5a:c9:d1:a6:9b:04:ea:e6:f7:1d:36: 77:de:7c:b6:b6:c9:d7:30:7a:23:e5:69:75:60:0e:71:57:22: 02:bb:c6:d8:f4:89:b3:45:ca:b9:49:29:24:72:40:de:60:dd: c8:30:8a:49:a5:d1:95:3d:ba:88:7d:1b:ac:82:13:09:d9:fc: b4:b6:e1:15:83:4a:83:ad:87:93:26:99:78:c5:82:bf:50:79: 4e:93:53:c4:1b:3f:aa:bd:3c:af:ce:d6:52:35:06:d1:ac:ff: 61:ef:c8:13:55:2e:5d:98:b8:36:07:c0:6a:4e:a2:f7:76:dd: f4:d9:9e:2a:72:9d:6a:87:21:8f:32:18:36:11:20:24:fc:ec: d9:bc:02:31:d6:fb:11:88:15:30:53:80:bd:d1:f3:40:78:ad: d7:4e:94:0a:d1:47:14:40:e3:ef:9b:df:c5:65:02:eb:8a:5c: 7d:a6:1f:b6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURJkVgLngBJhwhYc2Kr1y/6TptA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yMzEyMjAwODU1MDJaFw0yNDEyMTgwOTAwMDJaMDMxMTAvBgNV BAMTKDVBNTc3MjE4MjA2MDdEMTU5ODQ5MkE1OEREMTA4QjBCMUU5ODc3NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuTmh0qy1DDDKhBQ1Esb1mbhxy C6pGrLXFlLBSu9YhTvbSD7vLnwVlu5lZkkuP5XYiFtR6v90kufgeBT1CBpj7OAzv ma5xQfi5ot/LDMNi40iZWgVASyjPc9VutXCCBNtiCtdkfVJyw5KFD7JYfbqLY9NB zTc4V5fPNVssBQnwVbxeI6SRE66poKbbWNzy3Xjy4rcn88wUTcDrqoXBO9ahU5E9 HkMG1hw1+GNwTDV3xajtmi0/A/67aJeXuwiBM4ShKybSCtMdhwxOzoQYfSGOKo9d RFdx26iTmRENPnMIBTQ3tcIFfeZpTXhP+HQp7u9aFqVBGbXozQyuhQyfkLcZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWldyGCBgfRWYSSpY3RCLCx6Yd1YwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3WMA0GCSqG SIb3DQEBCwUAA4IBAQDEaal71nuISQ3BqSBfZM9sEzspcKz5ygjB8SgiSFQacwGN /jdZA+FqSV4IKEqddthdBP3Xuv6gyX5QAqUb/CIS7n8ei2CUE2UjLUyzmYiGWsnR ppsE6ub3HTZ33ny2tsnXMHoj5Wl1YA5xVyICu8bY9ImzRcq5SSkkckDeYN3IMIpJ pdGVPbqIfRusghMJ2fy0tuEVg0qDrYeTJpl4xYK/UHlOk1PEGz+qvTyvztZSNQbR rP9h78gTVS5dmLg2B8BqTqL3dt302Z4qcp1qhyGPMhg2ESAk/OzZvAIx1vsRiBUw U4C90fNAeK3XTpQK0UcUQOPvm9/FZQLrilx9ph+2 -----END CERTIFICATE-----Generated at Sat May 4 11:06:15 2024 by rpki-client on console-fra.rpki-client.org