$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35362e302f32342d3234203d3e203538343734.roa File: 3130332e32382e35362e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: bRlu1bn+fHNm+2hFdzetDNu7YnF/os0Vgh7YxQX14V8= Subject key identifier: 6B:CB:95:37:70:59:4F:55:6C:96:DD:68:DC:81:A4:F4:9F:A4:59:32 Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 57BE64DFB6DFD2A10EE9C8E9C1BEFD219239F968 Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35362e302f32342d3234203d3e203538343734.roa Signing time: Sun 24 Sep 2023 05:00:02 +0000 ROA not before: Sun 24 Sep 2023 04:55:02 +0000 ROA not after: Sun 22 Sep 2024 05:00:02 +0000 asID: 58474 IP address blocks: 103.28.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:be:64:df:b6:df:d2:a1:0e:e9:c8:e9:c1:be:fd:21:92:39:f9:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: Sep 24 04:55:02 2023 GMT Not After : Sep 22 05:00:02 2024 GMT Subject: CN=6BCB953770594F556C96DD68DC81A4F49FA45932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a3:cc:a2:b6:ca:ce:b5:9d:55:53:46:6c:a6: 5b:7e:af:89:b5:4d:8b:34:5c:66:ce:2b:87:c3:40: a9:ff:78:45:00:64:f3:6f:fb:c1:02:2d:ab:a6:64: 71:b4:98:f9:07:d9:d0:15:cb:54:df:dd:9d:13:ff: 7b:c2:2a:e3:88:2d:1e:3d:1d:a4:89:fa:4f:ea:a3: be:08:32:3f:3b:63:cd:73:89:8f:9b:2c:b5:8c:16: b9:a0:a7:13:6e:23:87:25:0a:67:2a:30:d5:c4:98: a2:4d:25:89:6b:e7:c3:42:29:9b:ac:a9:89:2c:51: ea:d7:a6:c4:45:78:03:e3:36:6a:29:2c:9e:c2:17: 72:c6:ea:00:70:c7:29:37:d8:25:27:29:f0:28:64: 80:cc:bf:12:86:3d:aa:ce:1a:6b:c0:98:8a:e8:1f: 31:d5:f2:f4:9a:50:4d:4d:74:e6:d5:28:97:e4:73: d1:55:77:53:65:57:33:f0:77:9f:1f:a1:1d:f4:74: 56:fd:57:99:e7:18:7e:d8:73:4d:d3:9f:ba:3f:08: d8:9d:e6:95:f1:9c:49:cb:be:b0:70:0e:78:7f:55: 41:29:b1:92:10:56:8b:c6:26:21:f5:b8:52:9e:6d: ba:92:fb:eb:f1:00:61:36:be:df:bb:e5:61:f8:e5: 34:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:CB:95:37:70:59:4F:55:6C:96:DD:68:DC:81:A4:F4:9F:A4:59:32 X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35362e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.56.0/24 Signature Algorithm: sha256WithRSAEncryption 75:a8:00:5d:91:94:52:40:da:33:34:bb:32:7d:e9:18:e1:78: a3:12:76:9b:b3:c1:32:1b:bb:01:f5:dc:92:3b:bc:e2:50:5d: 14:e0:c9:11:46:61:32:83:50:52:92:5c:89:dd:b0:f1:fa:c7: 17:03:8b:31:e0:02:a3:16:a9:73:ba:cd:f2:19:ce:6f:b7:8f: a5:27:1a:6e:32:38:35:51:a8:4a:94:76:36:91:c2:e6:eb:a9: 9e:0c:86:26:7b:4d:06:f3:ce:8f:be:a2:06:0d:a0:4d:32:ae: 52:41:5d:77:d6:9a:96:70:08:4b:16:d8:bf:bf:e6:fa:8b:11: e5:c7:fd:61:63:1b:b3:51:e2:0b:37:bc:dc:e9:fe:47:e8:a0: 6e:ff:3b:f2:cf:aa:37:ec:8a:b9:d0:8f:8b:4f:35:71:60:25: 23:54:97:8f:37:2a:f3:6a:3e:2c:e1:27:52:f9:0f:9a:55:89: 32:d4:b8:82:c7:6d:2d:88:7f:75:ec:53:93:1d:6a:7e:d1:b8: bb:17:8f:d1:3b:23:bc:4c:75:a5:96:b6:7f:b5:7a:ba:e1:1b: 40:9d:14:a4:23:3b:fa:1a:76:2e:98:aa:24:1d:b7:5f:10:fd: 7d:a2:ff:42:82:7b:d6:d9:8a:4b:d7:90:6f:e0:3e:40:49:45: 06:1b:1b:23 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUV75k37bf0qEO6cjpwb79IZI5+WgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yMzA5MjQwNDU1MDJaFw0yNDA5MjIwNTAwMDJaMDMxMTAvBgNV BAMTKDZCQ0I5NTM3NzA1OTRGNTU2Qzk2REQ2OERDODFBNEY0OUZBNDU5MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1o8yitsrOtZ1VU0Zsplt+r4m1 TYs0XGbOK4fDQKn/eEUAZPNv+8ECLaumZHG0mPkH2dAVy1Tf3Z0T/3vCKuOILR49 HaSJ+k/qo74IMj87Y81ziY+bLLWMFrmgpxNuI4clCmcqMNXEmKJNJYlr58NCKZus qYksUerXpsRFeAPjNmopLJ7CF3LG6gBwxyk32CUnKfAoZIDMvxKGParOGmvAmIro HzHV8vSaUE1NdObVKJfkc9FVd1NlVzPwd58foR30dFb9V5nnGH7Yc03Tn7o/CNid 5pXxnEnLvrBwDnh/VUEpsZIQVovGJiH1uFKebbqS++vxAGE2vt+75WH45TRvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUa8uVN3BZT1Vslt1o3IGk9J+kWTIwHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzMxMzAzMzJlMzIzODJlMzUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM3MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHDgwDQYJKoZIhvcN AQELBQADggEBAHWoAF2RlFJA2jM0uzJ96RjheKMSdpuzwTIbuwH13JI7vOJQXRTg yRFGYTKDUFKSXIndsPH6xxcDizHgAqMWqXO6zfIZzm+3j6UnGm4yODVRqEqUdjaR wubrqZ4MhiZ7TQbzzo++ogYNoE0yrlJBXXfWmpZwCEsW2L+/5vqLEeXH/WFjG7NR 4gs3vNzp/kfooG7/O/LPqjfsirnQj4tPNXFgJSNUl483KvNqPizhJ1L5D5pViTLU uILHbS2If3XsU5Mdan7RuLsXj9E7I7xMdaWWtn+1errhG0CdFKQjO/oadi6YqiQd t18Q/X2i/0KCe9bZikvXkG/gPkBJRQYbGyM= -----END CERTIFICATE-----Generated at Sun May 5 16:28:49 2024 by rpki-client on console-fra.rpki-client.org