$ rpki-client -vvf repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136342e302f32332d3233203d3e20313437303831.roa File: 3130332e3137332e3136342e302f32332d3233203d3e20313437303831.roa (raw, json) Hash identifier: f2l7IOVuUVczMbKaVhcWu2z/adO9OAD0UAUi5eZr3oU= Subject key identifier: 6D:57:31:47:49:F4:8F:84:B5:F9:3B:FC:7B:9B:27:0B:91:51:4E:51 Certificate issuer: /CN=35AF7B054A8CC95835EC5A2F9275004D39521553 Certificate serial: 0D584644197359A62E1AEB7C46DC87DAE4FCA8D6 Authority key identifier: 35:AF:7B:05:4A:8C:C9:58:35:EC:5A:2F:92:75:00:4D:39:52:15:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35AF7B054A8CC95835EC5A2F9275004D39521553.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136342e302f32332d3233203d3e20313437303831.roa Signing time: Sat 02 Mar 2024 11:02:04 +0000 ROA not before: Sat 02 Mar 2024 10:57:04 +0000 ROA not after: Sat 01 Mar 2025 11:02:04 +0000 asID: 147081 IP address blocks: 103.173.164.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/35AF7B054A8CC95835EC5A2F9275004D39521553.crl rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/35AF7B054A8CC95835EC5A2F9275004D39521553.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35AF7B054A8CC95835EC5A2F9275004D39521553.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 02:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:58:46:44:19:73:59:a6:2e:1a:eb:7c:46:dc:87:da:e4:fc:a8:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35AF7B054A8CC95835EC5A2F9275004D39521553 Validity Not Before: Mar 2 10:57:04 2024 GMT Not After : Mar 1 11:02:04 2025 GMT Subject: CN=6D57314749F48F84B5F93BFC7B9B270B91514E51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:f3:37:ab:75:e5:1a:61:a6:f8:cf:63:60:2d: f1:ae:48:df:7e:f0:60:ff:90:95:ec:17:39:69:6f: cc:37:f8:1d:19:27:5e:42:cc:74:25:10:3f:11:5d: b3:fc:b5:8b:01:b2:39:31:34:d6:34:44:30:45:29: 68:bb:7e:bd:1b:a6:ba:10:6b:59:da:c1:a2:be:82: c3:98:62:11:64:40:3b:dc:52:fd:06:2f:e0:23:3d: f0:53:69:bb:62:c1:6f:45:34:ad:94:c1:23:27:ee: 04:02:30:6a:de:d0:10:e0:b5:a9:3f:c6:2b:c3:ea: 5a:60:80:10:11:be:97:84:c6:2e:39:70:28:ec:46: eb:7a:cc:3a:0f:4e:aa:07:61:30:eb:8f:65:b1:ec: 40:2c:25:d0:4b:2f:eb:f0:34:7f:ca:5d:78:12:46: 3e:c6:ff:d8:c7:d8:b5:56:4f:10:1b:07:4e:e4:67: 20:f4:ad:d5:81:c7:f3:35:09:5b:a0:fa:52:b2:e1: 6c:ae:4e:85:4e:1c:83:05:7d:91:82:22:c3:dd:41: 75:62:3e:e2:68:04:70:bf:44:ba:45:ac:55:9f:8d: c9:ba:86:36:6f:f3:43:e3:af:12:9a:28:15:c5:5c: 36:22:61:86:b3:a3:8d:87:0e:40:9c:2d:41:63:20: 23:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:57:31:47:49:F4:8F:84:B5:F9:3B:FC:7B:9B:27:0B:91:51:4E:51 X509v3 Authority Key Identifier: keyid:35:AF:7B:05:4A:8C:C9:58:35:EC:5A:2F:92:75:00:4D:39:52:15:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/35AF7B054A8CC95835EC5A2F9275004D39521553.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35AF7B054A8CC95835EC5A2F9275004D39521553.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136342e302f32332d3233203d3e20313437303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.164.0/23 Signature Algorithm: sha256WithRSAEncryption 60:01:c0:97:6b:db:14:a0:11:88:45:db:e3:75:b9:4d:3b:2e: 13:74:60:65:82:67:d7:22:f0:4d:c0:4c:c2:a2:b1:95:79:ce: 89:b1:bf:bb:ca:9b:b4:38:59:77:66:c9:c7:ca:c8:47:61:69: eb:08:98:c2:41:a8:24:79:1e:2d:34:f5:6f:1d:2e:03:29:5e: 12:ba:28:9f:30:50:f1:31:a0:75:e2:fa:a3:36:e8:a4:f7:87: 2a:c0:6d:06:07:f6:01:7b:61:65:f9:be:3f:35:38:e0:39:db: 2d:f3:b4:21:47:d2:4e:83:36:9a:40:3e:2b:dd:8e:70:6e:3b: 5b:d5:ec:21:af:4b:9d:1b:07:a9:20:d5:c0:27:73:07:d6:33: 39:09:24:25:90:77:d1:3e:1a:ac:fb:7d:6c:18:cc:6b:3d:b3: 69:cd:89:3f:d3:1b:58:14:55:b1:1f:84:16:50:14:d9:e0:0b: ff:22:5c:cf:04:13:7f:f7:3b:a7:7c:4d:c9:86:cc:2a:14:f0: 9f:fa:dd:15:69:42:df:6b:3c:b9:08:3c:7f:2f:3c:02:2e:4c: c3:cb:8f:a5:76:41:90:87:6c:7e:89:24:68:25:69:d1:a7:bf: f5:35:87:8e:9a:ef:fd:18:63:54:53:89:f9:22:46:77:83:59: 3b:55:e5:90 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDVhGRBlzWaYuGut8RtyH2uT8qNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVBRjdCMDU0QThDQzk1ODM1RUM1QTJGOTI3NTAwNEQz OTUyMTU1MzAeFw0yNDAzMDIxMDU3MDRaFw0yNTAzMDExMTAyMDRaMDMxMTAvBgNV BAMTKDZENTczMTQ3NDlGNDhGODRCNUY5M0JGQzdCOUIyNzBCOTE1MTRFNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDx8zerdeUaYab4z2NgLfGuSN9+ 8GD/kJXsFzlpb8w3+B0ZJ15CzHQlED8RXbP8tYsBsjkxNNY0RDBFKWi7fr0bproQ a1nawaK+gsOYYhFkQDvcUv0GL+AjPfBTabtiwW9FNK2UwSMn7gQCMGre0BDgtak/ xivD6lpggBARvpeExi45cCjsRut6zDoPTqoHYTDrj2Wx7EAsJdBLL+vwNH/KXXgS Rj7G/9jH2LVWTxAbB07kZyD0rdWBx/M1CVug+lKy4WyuToVOHIMFfZGCIsPdQXVi PuJoBHC/RLpFrFWfjcm6hjZv80PjrxKaKBXFXDYiYYazo42HDkCcLUFjICPdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbVcxR0n0j4S1+Tv8e5snC5FRTlEwHwYDVR0j BBgwFoAUNa97BUqMyVg17FovknUATTlSFVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDQ2YTljYS0xMDk2LTRmZTQtODk5My1kMGJlOTdiNTRhNzYvMC8zNUFGN0IwNTRB OENDOTU4MzVFQzVBMkY5Mjc1MDA0RDM5NTIxNTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVBRjdCMDU0QThDQzk1ODM1RUM1QTJGOTI3NTAwNEQzOTUy MTU1My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkNDZhOWNhLTEwOTYtNGZlNC04 OTkzLWQwYmU5N2I1NGE3Ni8wLzMxMzAzMzJlMzEzNzMzMmUzMTM2MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMDM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnraQwDQYJ KoZIhvcNAQELBQADggEBAGABwJdr2xSgEYhF2+N1uU07LhN0YGWCZ9ci8E3ATMKi sZV5zomxv7vKm7Q4WXdmycfKyEdhaesImMJBqCR5Hi009W8dLgMpXhK6KJ8wUPEx oHXi+qM26KT3hyrAbQYH9gF7YWX5vj81OOA52y3ztCFH0k6DNppAPivdjnBuO1vV 7CGvS50bB6kg1cAncwfWMzkJJCWQd9E+Gqz7fWwYzGs9s2nNiT/TG1gUVbEfhBZQ FNngC/8iXM8EE3/3O6d8TcmGzCoU8J/63RVpQt9rPLkIPH8vPAIuTMPLj6V2QZCH bH6JJGgladGnv/U1h46a7/0YY1RTifkiRneDWTtV5ZA= -----END CERTIFICATE-----Generated at Sat Jun 1 23:00:05 2024 by rpki-client on console-ams.rpki-client.org