$ rpki-client -vvf repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/3130332e3137352e3135382e302f32332d3234203d3e20313331313131.roa File: 3130332e3137352e3135382e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: Aq7F3qay67E3LduhoqSvvg5SGvc+othbCRRycoqXnio= Subject key identifier: 35:36:AD:54:95:19:09:CD:76:B2:9E:1F:AA:1E:04:36:93:24:80:74 Certificate issuer: /CN=6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567 Certificate serial: 311F40ECD9A5FF04829C0F75E539017316A6B87E Authority key identifier: 6C:FA:BB:BC:88:D3:9C:7F:78:09:5D:A7:D3:D3:5D:D3:AA:2E:95:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/3130332e3137352e3135382e302f32332d3234203d3e20313331313131.roa Signing time: Thu 14 Sep 2023 07:00:01 +0000 ROA not before: Thu 14 Sep 2023 06:55:01 +0000 ROA not after: Thu 12 Sep 2024 07:00:01 +0000 asID: 131111 IP address blocks: 103.175.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.crl rsync://repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 12:47:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:1f:40:ec:d9:a5:ff:04:82:9c:0f:75:e5:39:01:73:16:a6:b8:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567 Validity Not Before: Sep 14 06:55:01 2023 GMT Not After : Sep 12 07:00:01 2024 GMT Subject: CN=3536AD54951909CD76B29E1FAA1E043693248074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:34:20:6d:e4:01:a1:14:7a:e9:2c:9c:46:c8: 68:c8:5d:12:4c:62:d8:5b:3c:e2:15:c4:a9:b3:92: 73:d2:6d:36:ac:3a:8f:38:af:56:f8:b2:7e:69:21: ec:46:48:24:9b:23:7c:5f:7e:21:45:6b:9c:6d:96: 21:9a:55:b8:1a:80:28:2d:0c:45:d5:b9:26:6f:08: 3e:46:4e:af:69:c5:39:fe:e9:42:d5:2d:4a:af:12: 8d:ba:d3:9d:73:9d:49:85:0f:99:56:53:b4:76:6a: 79:83:23:45:04:bd:6f:a6:1a:18:f7:8e:66:a6:88: 98:2e:b9:23:11:56:61:6d:b9:cf:68:1a:12:cb:41: 5b:75:49:70:03:0f:a3:68:de:a5:4e:4e:0c:bf:94: d3:a8:2a:1b:14:0b:0a:17:3d:0f:32:13:6b:0e:82: b4:ba:ab:2a:02:90:a5:74:d5:9b:e5:af:1f:c4:8a: eb:ea:3b:f6:ef:dd:7f:27:b9:ae:c4:3b:72:60:f8: 13:c6:49:a9:d9:e3:db:14:49:0e:34:11:85:40:70: 16:16:e8:5d:6a:ec:5a:e2:e7:1e:73:21:d9:aa:34: d7:f6:5b:6c:63:d3:a5:d8:80:ac:d6:71:50:05:aa: 9a:aa:ab:4a:42:78:40:3f:bd:6a:10:06:72:dc:fb: e8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:36:AD:54:95:19:09:CD:76:B2:9E:1F:AA:1E:04:36:93:24:80:74 X509v3 Authority Key Identifier: keyid:6C:FA:BB:BC:88:D3:9C:7F:78:09:5D:A7:D3:D3:5D:D3:AA:2E:95:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/3130332e3137352e3135382e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.158.0/23 Signature Algorithm: sha256WithRSAEncryption a8:7f:e1:d3:ec:6e:27:19:68:2e:97:4a:a0:5b:41:76:2c:a3: 70:0f:d5:c5:34:db:f4:26:a1:d1:7e:81:00:56:7d:f4:92:24: f6:b4:7c:04:c4:db:f6:5d:f9:68:71:a5:1b:93:66:1c:b4:2c: 17:9a:a6:b8:25:36:78:71:99:85:65:7a:17:06:eb:a3:02:d3: c2:80:26:7f:da:c7:03:80:02:a6:00:a6:3d:50:e4:8e:47:70: cf:34:55:e0:0e:81:d2:a0:56:31:14:cb:7c:17:f5:bf:ee:24: e9:fc:63:c2:10:06:7a:73:49:6e:b8:8c:08:96:dc:2c:e8:55: ad:eb:cb:43:97:ca:55:84:cb:a6:31:09:69:13:39:1d:7f:77: d9:34:33:f8:be:29:31:08:f8:11:0c:7c:f1:7e:01:2b:c1:b2: 46:69:ce:1b:aa:7f:0a:66:19:df:7e:b4:74:55:95:19:dd:3a: eb:31:52:eb:98:59:ec:7d:52:d0:0d:5f:5d:5f:93:96:9f:cb: a2:a3:4e:05:f9:23:4a:30:6b:ce:5b:07:11:a1:5e:86:4d:63: 81:55:c7:33:0a:fd:d1:0c:8a:32:5e:10:e3:92:bd:df:ee:71: 55:5b:67:f1:91:a3:b4:01:b1:c2:8b:33:53:28:1d:11:a6:2a: ab:06:0f:6d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMR9A7Nml/wSCnA915TkBcxamuH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkNGQUJCQkM4OEQzOUM3Rjc4MDk1REE3RDNEMzVERDNB QTJFOTU2NzAeFw0yMzA5MTQwNjU1MDFaFw0yNDA5MTIwNzAwMDFaMDMxMTAvBgNV BAMTKDM1MzZBRDU0OTUxOTA5Q0Q3NkIyOUUxRkFBMUUwNDM2OTMyNDgwNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfNCBt5AGhFHrpLJxGyGjIXRJM YthbPOIVxKmzknPSbTasOo84r1b4sn5pIexGSCSbI3xffiFFa5xtliGaVbgagCgt DEXVuSZvCD5GTq9pxTn+6ULVLUqvEo26051znUmFD5lWU7R2anmDI0UEvW+mGhj3 jmamiJguuSMRVmFtuc9oGhLLQVt1SXADD6No3qVOTgy/lNOoKhsUCwoXPQ8yE2sO grS6qyoCkKV01Zvlrx/EiuvqO/bv3X8nua7EO3Jg+BPGSanZ49sUSQ40EYVAcBYW 6F1q7Fri5x5zIdmqNNf2W2xj06XYgKzWcVAFqpqqq0pCeEA/vWoQBnLc++hbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNTatVJUZCc12sp4fqh4ENpMkgHQwHwYDVR0j BBgwFoAUbPq7vIjTnH94CV2n09Nd06oulWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Mzg3NGNmMy1hZGIxLTQ5NDctYTdlNC1hMmQzMmM1NGVkMWYvMC82Q0ZBQkJCQzg4 RDM5QzdGNzgwOTVEQTdEM0QzNUREM0FBMkU5NTY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkNGQUJCQkM4OEQzOUM3Rjc4MDk1REE3RDNEMzVERDNBQTJF OTU2Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczODc0Y2YzLWFkYjEtNDk0Ny1h N2U0LWEyZDMyYzU0ZWQxZi8wLzMxMzAzMzJlMzEzNzM1MmUzMTM1MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnr54wDQYJ KoZIhvcNAQELBQADggEBAKh/4dPsbicZaC6XSqBbQXYso3AP1cU02/QmodF+gQBW ffSSJPa0fATE2/Zd+WhxpRuTZhy0LBeaprglNnhxmYVlehcG66MC08KAJn/axwOA AqYApj1Q5I5HcM80VeAOgdKgVjEUy3wX9b/uJOn8Y8IQBnpzSW64jAiW3CzoVa3r y0OXylWEy6YxCWkTOR1/d9k0M/i+KTEI+BEMfPF+ASvBskZpzhuqfwpmGd9+tHRV lRndOusxUuuYWex9UtANX11fk5afy6KjTgX5I0owa85bBxGhXoZNY4FVxzMK/dEM ijJeEOOSvd/ucVVbZ/GRo7QBscKLM1MoHRGmKqsGD20= -----END CERTIFICATE-----Generated at Tue Apr 23 18:36:07 2024 by rpki-client on console-ams.rpki-client.org