$ rpki-client -vvf repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32332d3234203d3e20313430343233.roa File: 3130332e3139312e36302e302f32332d3234203d3e20313430343233.roa (raw, json) Hash identifier: 67el1ojPLf9KvLG5GEtHjoByPlriEtO0j/ui911RTRg= Subject key identifier: 6A:A7:9C:2B:02:5E:42:98:B6:F4:05:92:22:16:3E:10:D8:C9:97:8F Certificate issuer: /CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Certificate serial: 41731B1AC8D8820710A8A666B4F4010199E15C94 Authority key identifier: 2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32332d3234203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:01:52 +0000 ROA not before: Sun 01 Oct 2023 05:56:52 +0000 ROA not after: Sun 29 Sep 2024 06:01:52 +0000 asID: 140423 IP address blocks: 103.191.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.crl rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:73:1b:1a:c8:d8:82:07:10:a8:a6:66:b4:f4:01:01:99:e1:5c:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Validity Not Before: Oct 1 05:56:52 2023 GMT Not After : Sep 29 06:01:52 2024 GMT Subject: CN=6AA79C2B025E4298B6F4059222163E10D8C9978F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:92:65:97:e9:78:5f:d9:4e:22:0f:c3:93:93: 57:a5:7f:9a:2b:2f:51:bb:a9:e6:13:55:7f:a5:df: 7a:71:4b:ae:da:89:fd:93:50:69:d9:f9:a9:9d:47: 40:aa:cb:b3:05:87:e9:db:e6:6d:6c:ed:b4:a4:04: ba:84:3d:e0:ae:7c:0f:04:1a:78:02:92:95:ac:b8: 97:45:b1:57:ca:98:1e:82:4b:f8:65:b8:5d:c7:b5: 9d:37:bb:e3:5e:5f:ae:9b:b7:9c:58:f5:86:a2:71: 71:5d:e1:ee:9c:56:ee:6e:37:cf:e2:83:26:58:b8: 05:fa:72:60:8b:28:0f:c5:da:2e:91:03:00:5b:e5: db:7d:83:0a:a6:65:f8:c1:e2:82:fa:63:af:81:35: bf:50:21:64:c0:5a:cf:00:c9:36:ce:76:a3:78:b7: e6:03:11:3d:30:cb:8c:04:d1:c7:9d:d4:72:02:44: 36:5e:38:47:ed:18:a9:63:8d:83:4f:e8:b1:63:2a: fd:05:da:22:8b:9f:b3:67:92:ae:35:90:2b:8a:a0: 55:b8:cb:7d:f0:2d:f0:1b:26:fc:c7:e2:41:fe:d8: c1:1e:85:66:74:28:6b:10:d9:a0:ee:f4:6c:a6:65: 67:6d:cc:b8:08:e7:21:1d:d8:17:c8:2e:2c:13:86: ef:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A7:9C:2B:02:5E:42:98:B6:F4:05:92:22:16:3E:10:D8:C9:97:8F X509v3 Authority Key Identifier: keyid:2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32332d3234203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.60.0/23 Signature Algorithm: sha256WithRSAEncryption 56:72:e6:9f:aa:e9:9d:e7:4d:71:ad:47:2a:ce:d6:02:8e:1e: 53:f6:77:75:61:5f:43:ea:8c:28:af:81:a1:cc:2c:9b:5d:52: 8d:73:41:0e:67:e5:4b:35:e2:1c:f9:b4:81:d4:57:f5:ab:da: a0:2e:3e:24:a4:1e:66:32:bf:b2:e9:f0:bc:95:91:01:c7:84: 75:fe:2c:6a:34:9c:61:c3:4f:4c:80:7b:b8:c4:7f:7f:0e:c1: cb:04:a8:7f:50:07:b7:1c:10:2a:08:30:5e:3a:ff:cd:61:1e: ef:a8:91:91:0e:59:ee:46:81:81:65:5f:c3:e5:60:47:60:72: 57:e1:3d:3d:c1:92:3b:c0:9a:84:c2:8d:4e:45:13:7b:a1:d0: 7e:14:df:13:f5:47:b6:3b:bd:7f:8a:9a:d6:70:f7:de:90:3c: d6:98:05:ef:8c:0d:17:55:f0:a5:60:b6:1d:f1:18:a5:55:75: b1:b0:99:60:1d:88:d0:46:24:6c:35:16:26:6e:e8:dd:17:98: 11:bd:30:30:58:72:bc:9d:1b:23:ab:77:ef:4d:d6:6e:2d:63: e2:5a:7d:46:e3:76:49:08:5e:03:63:be:0d:11:a0:e8:73:55: c6:ae:03:59:e9:4a:4d:33:4e:f1:d9:8e:75:e7:a3:b0:6d:2f: 3e:a2:f9:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQXMbGsjYggcQqKZmtPQBAZnhXJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ2Rjk2RkE2MzBFQTdBRTBBMkIxMjJCNkYwNENDNEY1 RjMyQ0VCNTAeFw0yMzEwMDEwNTU2NTJaFw0yNDA5MjkwNjAxNTJaMDMxMTAvBgNV BAMTKDZBQTc5QzJCMDI1RTQyOThCNkY0MDU5MjIyMTYzRTEwRDhDOTk3OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlkmWX6Xhf2U4iD8OTk1elf5or L1G7qeYTVX+l33pxS67aif2TUGnZ+amdR0Cqy7MFh+nb5m1s7bSkBLqEPeCufA8E GngCkpWsuJdFsVfKmB6CS/hluF3HtZ03u+NeX66bt5xY9YaicXFd4e6cVu5uN8/i gyZYuAX6cmCLKA/F2i6RAwBb5dt9gwqmZfjB4oL6Y6+BNb9QIWTAWs8AyTbOdqN4 t+YDET0wy4wE0ced1HICRDZeOEftGKljjYNP6LFjKv0F2iKLn7Nnkq41kCuKoFW4 y33wLfAbJvzH4kH+2MEehWZ0KGsQ2aDu9GymZWdtzLgI5yEd2BfILiwThu+zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaqecKwJeQpi29AWSIhY+ENjJl48wHwYDVR0j BBgwFoAULW+W+mMOp64KKxIrbwTMT18yzrUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTM0ZDJkOC0zNGFmLTQ3NTctOGFkOS05MmRhMzVkOTIxNjgvMC8yRDZGOTZGQTYz MEVBN0FFMEEyQjEyMkI2RjA0Q0M0RjVGMzJDRUI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ2Rjk2RkE2MzBFQTdBRTBBMkIxMjJCNkYwNENDNEY1RjMy Q0VCNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMzRkMmQ4LTM0YWYtNDc1Ny04 YWQ5LTkyZGEzNWQ5MjE2OC8wLzMxMzAzMzJlMzEzOTMxMmUzNjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ788MA0GCSqG SIb3DQEBCwUAA4IBAQBWcuafqumd501xrUcqztYCjh5T9nd1YV9D6owor4GhzCyb XVKNc0EOZ+VLNeIc+bSB1Ff1q9qgLj4kpB5mMr+y6fC8lZEBx4R1/ixqNJxhw09M gHu4xH9/DsHLBKh/UAe3HBAqCDBeOv/NYR7vqJGRDlnuRoGBZV/D5WBHYHJX4T09 wZI7wJqEwo1ORRN7odB+FN8T9Ue2O71/iprWcPfekDzWmAXvjA0XVfClYLYd8Ril VXWxsJlgHYjQRiRsNRYmbujdF5gRvTAwWHK8nRsjq3fvTdZuLWPiWn1G43ZJCF4D Y74NEaDoc1XGrgNZ6UpNM07x2Y5156OwbS8+ovnX -----END CERTIFICATE-----Generated at Thu May 2 17:40:14 2024 by rpki-client on console-fra.rpki-client.org