$ rpki-client -vvf repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/3130332e3135332e39372e302f32342d3234203d3e20313430343630.roa File: 3130332e3135332e39372e302f32342d3234203d3e20313430343630.roa (raw, json) Hash identifier: r6f8Hw3zMW8dJO4D5V1KIADlA52TiTNk736VUWwiru4= Subject key identifier: 69:63:F0:FB:CC:4D:0D:F7:75:8D:95:1A:E7:07:88:0B:6C:22:7B:F6 Certificate issuer: /CN=8D956CF1DF56850C9CF6173DF90141A9C6A46868 Certificate serial: 6D5B94509AE8BF8975BA6668706D76757884B70D Authority key identifier: 8D:95:6C:F1:DF:56:85:0C:9C:F6:17:3D:F9:01:41:A9:C6:A4:68:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D956CF1DF56850C9CF6173DF90141A9C6A46868.cer Subject info access: rsync://repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/3130332e3135332e39372e302f32342d3234203d3e20313430343630.roa Signing time: Wed 27 Sep 2023 02:00:00 +0000 ROA not before: Wed 27 Sep 2023 01:55:00 +0000 ROA not after: Wed 25 Sep 2024 02:00:00 +0000 asID: 140460 IP address blocks: 103.153.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/8D956CF1DF56850C9CF6173DF90141A9C6A46868.crl rsync://repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/8D956CF1DF56850C9CF6173DF90141A9C6A46868.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D956CF1DF56850C9CF6173DF90141A9C6A46868.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 08:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:5b:94:50:9a:e8:bf:89:75:ba:66:68:70:6d:76:75:78:84:b7:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D956CF1DF56850C9CF6173DF90141A9C6A46868 Validity Not Before: Sep 27 01:55:00 2023 GMT Not After : Sep 25 02:00:00 2024 GMT Subject: CN=6963F0FBCC4D0DF7758D951AE707880B6C227BF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:30:b0:fc:81:67:77:67:17:df:2a:ac:ef:2f: b3:7d:47:f1:e8:1c:4b:b4:6d:64:89:73:96:4f:61: da:1f:0d:03:25:33:7b:3e:75:7d:74:4d:a5:9e:d8: 28:a7:b5:16:e8:39:a6:3e:eb:db:79:04:9d:41:8f: f3:3b:67:a9:c4:7f:85:f1:bc:85:b4:91:a7:b9:a1: 58:f5:74:60:a8:09:3a:fa:1d:2a:d2:f0:b3:9e:98: 5a:ce:51:c9:47:c3:29:da:3a:a0:1a:98:e7:9e:8f: 52:4e:fb:95:b7:8e:80:61:6a:1c:17:56:23:7a:ab: 2b:8e:74:8f:75:df:2a:9a:98:8c:f7:e7:0e:f6:60: da:28:aa:e0:02:14:c8:2e:f4:87:bb:a8:7f:29:8c: 60:9b:38:db:ae:83:a0:06:84:6b:66:f4:e9:db:c3: b7:e9:bc:b1:c4:bb:72:be:b5:8e:17:07:fc:83:9e: aa:25:ad:69:e1:fa:93:0f:49:9d:76:62:3d:fa:d1: c2:96:8b:68:5c:47:e3:62:6d:ea:54:32:44:3d:77: 06:07:22:64:1c:3c:8b:e8:00:14:84:a7:dc:bc:59: 43:a9:57:31:4e:50:19:92:4a:b7:c8:8a:2d:7b:2c: 08:6e:db:6e:c1:d9:d0:06:af:04:01:0d:14:5b:c8: 89:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:63:F0:FB:CC:4D:0D:F7:75:8D:95:1A:E7:07:88:0B:6C:22:7B:F6 X509v3 Authority Key Identifier: keyid:8D:95:6C:F1:DF:56:85:0C:9C:F6:17:3D:F9:01:41:A9:C6:A4:68:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/8D956CF1DF56850C9CF6173DF90141A9C6A46868.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D956CF1DF56850C9CF6173DF90141A9C6A46868.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/3130332e3135332e39372e302f32342d3234203d3e20313430343630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.97.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:72:65:72:05:89:51:e2:cf:3e:de:ee:4a:6d:21:46:9e:35: 9b:d6:5e:a7:20:70:c9:c9:2c:8e:4c:fd:11:97:76:59:79:63: 1f:95:8c:99:35:4c:a9:8a:7f:48:37:44:4c:af:42:c5:df:dc: f5:b6:1e:52:f4:76:7f:4f:1f:dc:09:1f:56:ed:b0:08:9b:80: 7b:5b:a1:d7:9c:31:d1:59:4e:34:70:4c:9f:b4:9d:67:27:4d: 78:de:f6:26:78:44:94:60:cf:5b:a8:38:22:62:14:12:d9:13: 69:0a:cb:73:ad:19:b6:57:9d:7c:4b:a2:02:35:f9:3d:f5:d5: e0:2c:10:18:3e:a8:4b:f5:f5:96:3b:3c:96:6d:58:79:f8:5e: b6:6d:66:6b:75:06:7e:9d:d9:db:58:89:7f:fd:32:7c:4e:3f: 9b:d5:57:4d:58:63:d4:a0:36:1e:b4:cf:8d:49:50:95:ed:49: bf:8e:b6:f0:bc:45:a1:98:2f:07:03:a5:5e:c5:18:49:af:e5: de:be:7a:82:aa:81:41:fd:6c:2c:a2:53:41:0e:21:f3:89:0b: a4:8a:ff:da:da:e2:08:30:f9:51:b6:27:e1:3f:9f:47:b4:41: 2a:8c:e1:79:9f:e7:c8:0c:d1:b3:e1:84:e2:96:15:b2:4b:75: cc:fc:88:0b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbVuUUJrov4l1umZocG12dXiEtw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ5NTZDRjFERjU2ODUwQzlDRjYxNzNERjkwMTQxQTlD NkE0Njg2ODAeFw0yMzA5MjcwMTU1MDBaFw0yNDA5MjUwMjAwMDBaMDMxMTAvBgNV BAMTKDY5NjNGMEZCQ0M0RDBERjc3NThEOTUxQUU3MDc4ODBCNkMyMjdCRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtMLD8gWd3ZxffKqzvL7N9R/Ho HEu0bWSJc5ZPYdofDQMlM3s+dX10TaWe2CintRboOaY+69t5BJ1Bj/M7Z6nEf4Xx vIW0kae5oVj1dGCoCTr6HSrS8LOemFrOUclHwynaOqAamOeej1JO+5W3joBhahwX ViN6qyuOdI913yqamIz35w72YNooquACFMgu9Ie7qH8pjGCbONuug6AGhGtm9Onb w7fpvLHEu3K+tY4XB/yDnqolrWnh+pMPSZ12Yj360cKWi2hcR+NibepUMkQ9dwYH ImQcPIvoABSEp9y8WUOpVzFOUBmSSrfIii17LAhu227B2dAGrwQBDRRbyInhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaWPw+8xNDfd1jZUa5weIC2wie/YwHwYDVR0j BBgwFoAUjZVs8d9WhQyc9hc9+QFBqcakaGgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTZhNzRkZi1kOTA3LTRhYWYtYTgzNi00M2U0ZTE5Njg1MjUvMC84RDk1NkNGMURG NTY4NTBDOUNGNjE3M0RGOTAxNDFBOUM2QTQ2ODY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEQ5NTZDRjFERjU2ODUwQzlDRjYxNzNERjkwMTQxQTlDNkE0 Njg2OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5NmE3NGRmLWQ5MDctNGFhZi1h ODM2LTQzZTRlMTk2ODUyNS8wLzMxMzAzMzJlMzEzNTMzMmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5lhMA0GCSqG SIb3DQEBCwUAA4IBAQCacmVyBYlR4s8+3u5KbSFGnjWb1l6nIHDJySyOTP0Rl3ZZ eWMflYyZNUypin9IN0RMr0LF39z1th5S9HZ/Tx/cCR9W7bAIm4B7W6HXnDHRWU40 cEyftJ1nJ0143vYmeESUYM9bqDgiYhQS2RNpCstzrRm2V518S6ICNfk99dXgLBAY PqhL9fWWOzyWbVh5+F62bWZrdQZ+ndnbWIl//TJ8Tj+b1VdNWGPUoDYetM+NSVCV 7Um/jrbwvEWhmC8HA6VexRhJr+XevnqCqoFB/WwsolNBDiHziQukiv/a2uIIMPlR tifhP59HtEEqjOF5n+fIDNGz4YTilhWyS3XM/IgL -----END CERTIFICATE-----Generated at Sat Jun 1 11:46:15 2024 by rpki-client on console-ams.rpki-client.org