$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: qYwPZK/P5awbbid6iEKpggItC6yQgwgzq7tQHKV1sEw= Subject key identifier: 2D:A4:8A:A6:66:B9:E0:DF:35:86:E9:C7:24:83:69:9A:74:6A:E3:78 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 337F245F539920618077800FF93F482CCCF6A639 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa Signing time: Wed 20 Dec 2023 09:00:02 +0000 ROA not before: Wed 20 Dec 2023 08:55:02 +0000 ROA not after: Wed 18 Dec 2024 09:00:02 +0000 asID: 58487 IP address blocks: 103.253.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:7f:24:5f:53:99:20:61:80:77:80:0f:f9:3f:48:2c:cc:f6:a6:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Dec 20 08:55:02 2023 GMT Not After : Dec 18 09:00:02 2024 GMT Subject: CN=2DA48AA666B9E0DF3586E9C72483699A746AE378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:35:98:e5:5c:18:02:44:34:aa:02:ed:b2:b4: 1c:fd:0e:66:48:3b:23:f4:9f:fb:8e:4f:b3:bc:de: d6:55:77:e0:f8:24:e2:d2:26:cb:fe:05:2f:2d:15: bc:ec:69:e2:1e:4e:d3:a3:d1:7e:61:5d:bd:1d:43: 7d:5d:b4:c7:ea:58:f5:5f:99:07:75:68:57:47:cb: 93:9e:52:2d:a9:f2:a2:e4:ad:5f:c7:2b:a5:66:d5: fe:8d:3b:0d:ed:38:87:e5:d6:a8:49:40:a5:fb:58: 4a:41:d4:ee:c2:db:51:d4:25:48:57:89:fd:71:d0: 51:b3:ec:5a:64:48:c1:b3:7a:d8:72:b3:f7:2d:a8: 12:87:fd:e2:da:1d:8e:f4:12:ce:c2:b7:16:99:93: 36:2a:e5:bc:39:95:e9:21:7f:90:81:88:0d:bc:f2: 3f:a6:2d:a0:e0:04:39:a4:51:12:76:33:4a:fd:10: 0e:83:ad:b6:88:92:61:52:7c:70:76:a3:99:f0:8c: 32:75:9a:db:39:eb:94:31:1b:96:d3:77:76:d8:31: 6a:e3:7a:93:46:eb:4b:da:04:d1:bf:2d:bb:15:fb: 68:29:7c:4c:77:43:50:c7:f8:a5:db:4a:a0:88:cf: f4:56:24:75:ea:d3:d2:96:53:90:1b:0b:95:48:40: 11:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:A4:8A:A6:66:B9:E0:DF:35:86:E9:C7:24:83:69:9A:74:6A:E3:78 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.215.0/24 Signature Algorithm: sha256WithRSAEncryption c2:a9:21:39:1f:af:5d:67:67:5b:0f:2a:e5:87:5d:f0:a5:45: 8d:f1:39:af:22:33:99:6c:04:01:2b:48:4e:0f:d6:7c:80:8f: 19:eb:20:a1:ab:24:2c:1e:9b:72:7c:6b:ee:01:2c:7f:17:ac: c4:7d:5e:98:18:cd:7b:59:ca:78:f1:56:f8:e7:90:fc:8d:e6: a2:95:93:93:35:b9:27:94:78:c7:79:f0:09:7a:50:0d:35:2c: fc:bf:e4:bb:73:bb:25:2c:4c:8d:73:dd:2e:dc:2f:df:e0:f5: 80:a1:57:b6:53:81:cc:c6:0d:78:e4:3c:f7:19:a2:45:f1:b5: 6a:ff:30:93:01:fb:6f:4a:0d:56:c2:cb:b8:a5:a4:3e:7e:0b: 2a:83:88:30:0e:f5:94:76:55:8b:4d:12:be:1b:57:cd:e7:f3: 4a:b2:44:1c:d1:94:3f:97:51:74:00:e7:68:5b:c8:f1:ed:f2: 7a:eb:ce:e4:7c:5c:e6:57:98:26:65:35:c3:f7:45:8b:74:7c: 39:2e:d7:a4:dc:fa:57:5b:c0:4a:3e:bd:7f:ca:5e:d9:a3:82: 59:55:8a:1d:9f:5e:fe:a3:96:8a:ec:ea:6d:33:45:24:5d:bb: f0:0b:af:46:5a:7c:5d:a5:4b:56:57:36:b4:8a:46:6f:64:dd: 62:76:32:e0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM38kX1OZIGGAd4AP+T9ILMz2pjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yMzEyMjAwODU1MDJaFw0yNDEyMTgwOTAwMDJaMDMxMTAvBgNV BAMTKDJEQTQ4QUE2NjZCOUUwREYzNTg2RTlDNzI0ODM2OTlBNzQ2QUUzNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLNZjlXBgCRDSqAu2ytBz9DmZI OyP0n/uOT7O83tZVd+D4JOLSJsv+BS8tFbzsaeIeTtOj0X5hXb0dQ31dtMfqWPVf mQd1aFdHy5OeUi2p8qLkrV/HK6Vm1f6NOw3tOIfl1qhJQKX7WEpB1O7C21HUJUhX if1x0FGz7FpkSMGzethys/ctqBKH/eLaHY70Es7CtxaZkzYq5bw5lekhf5CBiA28 8j+mLaDgBDmkURJ2M0r9EA6DrbaIkmFSfHB2o5nwjDJ1mts565QxG5bTd3bYMWrj epNG60vaBNG/LbsV+2gpfEx3Q1DH+KXbSqCIz/RWJHXq09KWU5AbC5VIQBHLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULaSKpma54N81hunHJINpmnRq43gwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3XMA0GCSqG SIb3DQEBCwUAA4IBAQDCqSE5H69dZ2dbDyrlh13wpUWN8TmvIjOZbAQBK0hOD9Z8 gI8Z6yChqyQsHptyfGvuASx/F6zEfV6YGM17Wcp48Vb455D8jeailZOTNbknlHjH efAJelANNSz8v+S7c7slLEyNc90u3C/f4PWAoVe2U4HMxg145Dz3GaJF8bVq/zCT AftvSg1Wwsu4paQ+fgsqg4gwDvWUdlWLTRK+G1fN5/NKskQc0ZQ/l1F0AOdoW8jx 7fJ6687kfFzmV5gmZTXD90WLdHw5Ltek3PpXW8BKPr1/yl7Zo4JZVYodn17+o5aK 7OptM0UkXbvwC69GWnxdpUtWVza0ikZvZN1idjLg -----END CERTIFICATE-----Generated at Sat May 4 11:06:15 2024 by rpki-client on console-fra.rpki-client.org