$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa File: 3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa (raw, json) Hash identifier: Tocuc+Juhix7CxSmhU4fD7k4+La/hFGR52tqCQiKQl0= Subject key identifier: DA:CA:39:14:45:09:21:90:3E:12:44:D3:9C:DD:A4:E5:DD:EF:0F:BA Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 69F1A316F29AA9AFA1E41E4BDA75958E7CF24074 Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa Signing time: Sat 23 Dec 2023 01:00:01 +0000 ROA not before: Sat 23 Dec 2023 00:55:01 +0000 ROA not after: Sat 21 Dec 2024 01:00:01 +0000 asID: 141968 IP address blocks: 103.167.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 04:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:f1:a3:16:f2:9a:a9:af:a1:e4:1e:4b:da:75:95:8e:7c:f2:40:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Dec 23 00:55:01 2023 GMT Not After : Dec 21 01:00:01 2024 GMT Subject: CN=DACA3914450921903E1244D39CDDA4E5DDEF0FBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7e:fc:17:21:f7:11:ae:d6:c1:78:4c:3a:d1: f5:96:40:07:6c:24:ea:ab:9a:fd:f2:14:9f:ca:aa: 20:f2:da:53:1f:68:fa:12:43:76:be:df:4f:21:6d: d7:08:ad:0d:99:f5:90:16:a7:4a:f6:cd:21:c8:bc: c9:7f:8d:e1:b0:ce:8c:bd:63:d1:8d:6c:cc:1f:c3: e1:b8:e8:b4:b5:5f:78:8b:0e:02:6f:24:98:2b:32: d1:91:75:ba:75:6f:70:47:10:c6:12:7b:b4:1e:32: 76:9f:0f:c6:7f:87:0a:4c:db:cb:8d:9f:89:8c:3f: b7:c4:87:90:00:23:0f:ef:46:99:33:b6:16:e3:b1: c1:30:c5:ba:80:cc:30:83:85:29:13:4a:1f:69:dd: 6a:08:0c:ef:18:f6:da:42:6a:3e:e7:1a:38:f9:98: 18:84:d0:23:93:c3:81:42:d5:7e:4a:08:61:f5:45: c8:5b:f5:e9:49:0c:07:9f:ce:f9:ab:23:cf:6c:0c: c9:0f:b4:ad:99:eb:07:af:ca:7d:f0:58:e0:81:32: fd:e7:4b:fe:01:ac:a2:61:42:e3:f7:3f:e7:df:45: e3:a4:a6:d1:2d:6c:da:21:db:3b:3b:7a:ee:8e:d0: 0b:2f:24:ba:0b:a3:d2:e3:12:32:8f:b4:a5:6e:b0: 34:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:CA:39:14:45:09:21:90:3E:12:44:D3:9C:DD:A4:E5:DD:EF:0F:BA X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.35.0/24 Signature Algorithm: sha256WithRSAEncryption 76:d5:06:f8:8e:00:c5:e9:12:2d:7e:cb:6c:f8:85:16:fe:69: 26:96:f0:1b:33:92:56:39:be:04:8c:20:25:94:30:07:43:19: fe:70:e5:f8:28:57:66:41:42:0a:6d:77:ac:7b:fe:bc:f2:26: f0:ff:ad:2e:7a:f1:bf:92:51:79:c7:63:d9:3a:e6:12:4e:03: ec:8a:9a:ab:c2:ec:02:c8:b2:1f:0c:a4:f2:85:cd:e8:0c:55: 86:ab:07:f7:ed:3d:de:26:35:c6:89:93:1f:fd:82:20:66:30: e2:a5:55:38:ac:07:b5:73:a7:b0:62:78:30:93:b3:f9:10:45: 8e:40:ef:41:78:1c:95:07:ee:07:f9:bf:5c:0c:66:51:14:86: 9e:67:e1:6c:73:d7:87:48:8d:40:2b:11:d4:e7:d2:72:48:ee: 41:19:b2:72:6b:c6:15:e8:d3:bd:b4:00:13:42:00:0d:15:d9: eb:16:71:13:bd:63:63:31:cc:f2:4b:96:0b:c0:4c:94:7e:59: 19:67:fd:99:c5:8f:f8:e3:15:40:29:6f:b9:94:5f:51:99:6d: 94:1b:88:e7:af:86:7b:78:18:42:a2:e0:e8:c8:04:3d:bb:8f: 8f:75:ae:ab:9c:5d:41:7f:ef:3b:45:cf:63:de:5f:46:30:34: 39:ee:71:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUafGjFvKaqa+h5B5L2nWVjnzyQHQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yMzEyMjMwMDU1MDFaFw0yNDEyMjEwMTAwMDFaMDMxMTAvBgNV BAMTKERBQ0EzOTE0NDUwOTIxOTAzRTEyNDREMzlDRERBNEU1RERFRjBGQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdfvwXIfcRrtbBeEw60fWWQAds JOqrmv3yFJ/KqiDy2lMfaPoSQ3a+308hbdcIrQ2Z9ZAWp0r2zSHIvMl/jeGwzoy9 Y9GNbMwfw+G46LS1X3iLDgJvJJgrMtGRdbp1b3BHEMYSe7QeMnafD8Z/hwpM28uN n4mMP7fEh5AAIw/vRpkzthbjscEwxbqAzDCDhSkTSh9p3WoIDO8Y9tpCaj7nGjj5 mBiE0COTw4FC1X5KCGH1Rchb9elJDAefzvmrI89sDMkPtK2Z6wevyn3wWOCBMv3n S/4BrKJhQuP3P+ffReOkptEtbNoh2zs7eu6O0AsvJLoLo9LjEjKPtKVusDTBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2so5FEUJIZA+EkTTnN2k5d3vD7owHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMxMzAzMzJlMzEzNjM3MmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6cjMA0GCSqG SIb3DQEBCwUAA4IBAQB21Qb4jgDF6RItfsts+IUW/mkmlvAbM5JWOb4EjCAllDAH Qxn+cOX4KFdmQUIKbXese/688ibw/60uevG/klF5x2PZOuYSTgPsipqrwuwCyLIf DKTyhc3oDFWGqwf37T3eJjXGiZMf/YIgZjDipVU4rAe1c6ewYngwk7P5EEWOQO9B eByVB+4H+b9cDGZRFIaeZ+Fsc9eHSI1AKxHU59JySO5BGbJya8YV6NO9tAATQgAN FdnrFnETvWNjMczyS5YLwEyUflkZZ/2ZxY/44xVAKW+5lF9RmW2UG4jnr4Z7eBhC ouDoyAQ9u4+Pda6rnF1Bf+87Rc9j3l9GMDQ57nEm -----END CERTIFICATE-----Generated at Thu Jun 20 04:42:59 2024 by rpki-client on console-ams.rpki-client.org