$ rpki-client -vvf repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32342e302f32342d3234203d3e20313430343033.roa File: 3130332e3136382e32342e302f32342d3234203d3e20313430343033.roa (raw, json) Hash identifier: pCTl/5+xw7K2O7eJWaSDD2kFMSjW1oHLgnXRu+lIqUU= Subject key identifier: 8F:4D:4B:8D:CC:FD:BF:7B:02:25:E5:CB:A2:CD:83:8C:2E:F9:D8:A4 Certificate issuer: /CN=6DEA9B275ECCFB920E0A84D0D158C6000F2561F7 Certificate serial: 777CA15BDC5E9084682B2C406696068AE2B626E5 Authority key identifier: 6D:EA:9B:27:5E:CC:FB:92:0E:0A:84:D0:D1:58:C6:00:0F:25:61:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32342e302f32342d3234203d3e20313430343033.roa Signing time: Tue 29 Aug 2023 08:00:00 +0000 ROA not before: Tue 29 Aug 2023 07:55:00 +0000 ROA not after: Tue 27 Aug 2024 08:00:00 +0000 asID: 140403 IP address blocks: 103.168.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.crl rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 13:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:7c:a1:5b:dc:5e:90:84:68:2b:2c:40:66:96:06:8a:e2:b6:26:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DEA9B275ECCFB920E0A84D0D158C6000F2561F7 Validity Not Before: Aug 29 07:55:00 2023 GMT Not After : Aug 27 08:00:00 2024 GMT Subject: CN=8F4D4B8DCCFDBF7B0225E5CBA2CD838C2EF9D8A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5e:1b:c2:a1:d2:4d:e8:17:14:2d:3a:66:f2: 29:9e:7f:7b:5f:2f:08:c1:16:6f:e5:2d:c2:5e:d8: 9c:e2:00:54:9b:11:58:ae:61:cc:03:9c:fc:84:6c: 0d:c8:d4:63:fd:16:f1:ae:74:e0:c0:87:5a:cd:85: 36:65:2c:08:8c:5d:11:6b:0e:a6:71:3b:28:f4:a0: a9:a5:fd:01:b0:37:7c:3d:f4:c2:1c:75:55:45:7e: ed:0b:c8:47:21:2c:aa:20:8b:4f:f8:95:13:96:f8: fe:22:c1:a0:90:4b:2d:db:43:cf:27:f8:e7:9f:6d: 1e:a2:12:2c:fc:5e:1e:ac:ab:dd:4e:de:98:51:d4: 31:91:9f:41:c8:08:59:74:3f:c9:40:cd:71:90:98: 90:61:b5:84:4c:ec:0a:40:f8:7c:1d:27:d7:ad:67: ef:c6:7a:2d:a1:f9:d8:08:4a:1d:26:5e:fb:e2:04: f9:ef:9c:d4:1d:cd:21:8b:25:49:8c:a4:cf:06:ed: 03:e3:29:a6:92:54:93:ca:98:7e:ee:c7:38:54:28: 69:19:39:83:f7:4e:9b:5a:65:58:ad:ab:43:c7:35: ef:2b:0f:03:72:d0:74:34:3b:6b:6b:22:04:1a:e3: d4:48:51:74:99:f2:66:c2:53:fe:55:20:2e:e5:65: f0:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4D:4B:8D:CC:FD:BF:7B:02:25:E5:CB:A2:CD:83:8C:2E:F9:D8:A4 X509v3 Authority Key Identifier: keyid:6D:EA:9B:27:5E:CC:FB:92:0E:0A:84:D0:D1:58:C6:00:0F:25:61:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32342e302f32342d3234203d3e20313430343033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.24.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:17:92:90:81:d8:1e:0f:3c:14:41:8e:b1:98:17:15:ce:19: 8a:fa:0e:22:3b:8e:5c:2a:ce:1e:5f:98:b3:73:0e:c2:f2:58: e7:09:5c:4c:be:67:20:4e:6e:a8:24:31:5e:1b:ba:41:e2:fb: 96:a6:0d:c4:2c:88:d3:a1:4a:9e:80:f2:a8:fd:47:39:ea:8f: 34:4d:2d:6c:5a:2a:fb:33:e9:62:9d:b6:a3:36:4e:56:d8:24: 07:b2:6f:19:e2:ab:74:5f:82:25:62:d0:c4:b3:2c:82:39:1a: 3d:c2:c4:47:3c:e2:5c:d6:66:ce:19:07:2c:08:39:36:0e:10: e3:32:e8:8b:f0:6d:75:d7:e4:92:80:88:6f:36:e5:ba:66:ea: a3:0b:51:31:4d:16:95:a2:ad:2f:75:85:f0:09:b3:24:65:8a: a2:b9:a7:91:ce:77:ff:fb:7d:ca:8a:be:96:51:d6:99:5e:30: 97:55:af:35:27:75:70:92:f0:49:46:d3:2e:7d:85:94:c9:79: 6b:f3:8d:1f:29:15:57:39:c5:ba:1e:bb:ab:17:b4:2a:a9:38: 4a:72:d9:0a:42:58:65:a4:48:4c:23:97:d4:a5:47:48:52:2e: 8b:95:55:cd:8c:ef:07:95:57:33:71:24:1f:5e:75:1c:21:2b: c0:27:ac:2d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd3yhW9xekIRoKyxAZpYGiuK2JuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRFQTlCMjc1RUNDRkI5MjBFMEE4NEQwRDE1OEM2MDAw RjI1NjFGNzAeFw0yMzA4MjkwNzU1MDBaFw0yNDA4MjcwODAwMDBaMDMxMTAvBgNV BAMTKDhGNEQ0QjhEQ0NGREJGN0IwMjI1RTVDQkEyQ0Q4MzhDMkVGOUQ4QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVXhvCodJN6BcULTpm8imef3tf LwjBFm/lLcJe2JziAFSbEViuYcwDnPyEbA3I1GP9FvGudODAh1rNhTZlLAiMXRFr DqZxOyj0oKml/QGwN3w99MIcdVVFfu0LyEchLKogi0/4lROW+P4iwaCQSy3bQ88n +OefbR6iEiz8Xh6sq91O3phR1DGRn0HICFl0P8lAzXGQmJBhtYRM7ApA+HwdJ9et Z+/Gei2h+dgISh0mXvviBPnvnNQdzSGLJUmMpM8G7QPjKaaSVJPKmH7uxzhUKGkZ OYP3TptaZVitq0PHNe8rDwNy0HQ0O2trIgQa49RIUXSZ8mbCU/5VIC7lZfABAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUj01Ljcz9v3sCJeXLos2DjC752KQwHwYDVR0j BBgwFoAUbeqbJ17M+5IOCoTQ0VjGAA8lYfcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MWI3N2QxZS0xNTg1LTQ2MDQtYjZiMS0wNzFmMGEyOTQwYzQvMC82REVBOUIyNzVF Q0NGQjkyMEUwQTg0RDBEMTU4QzYwMDBGMjU2MUY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRFQTlCMjc1RUNDRkI5MjBFMEE4NEQwRDE1OEM2MDAwRjI1 NjFGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MxYjc3ZDFlLTE1ODUtNDYwNC1i NmIxLTA3MWYwYTI5NDBjNC8wLzMxMzAzMzJlMzEzNjM4MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6gYMA0GCSqG SIb3DQEBCwUAA4IBAQBsF5KQgdgeDzwUQY6xmBcVzhmK+g4iO45cKs4eX5izcw7C 8ljnCVxMvmcgTm6oJDFeG7pB4vuWpg3ELIjToUqegPKo/Uc56o80TS1sWir7M+li nbajNk5W2CQHsm8Z4qt0X4IlYtDEsyyCORo9wsRHPOJc1mbOGQcsCDk2DhDjMuiL 8G111+SSgIhvNuW6ZuqjC1ExTRaVoq0vdYXwCbMkZYqiuaeRznf/+33Kir6WUdaZ XjCXVa81J3VwkvBJRtMufYWUyXlr840fKRVXOcW6HrurF7QqqThKctkKQlhlpEhM I5fUpUdIUi6LlVXNjO8HlVczcSQfXnUcISvAJ6wt -----END CERTIFICATE-----Generated at Tue Apr 16 12:29:24 2024 by rpki-client on console-fra.rpki-client.org