$ rpki-client -vvf repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32352e302f32342d3234203d3e20313430343033.roa File: 3130332e3136382e32352e302f32342d3234203d3e20313430343033.roa (raw, json) Hash identifier: j9C7QD28rLLAzsNO0YLdMg6+0gHwTQLOiaLKC4F7Mdk= Subject key identifier: 35:D4:6D:52:61:07:B0:5E:E7:5F:7E:35:22:8B:DF:20:49:C2:BE:9A Certificate issuer: /CN=6DEA9B275ECCFB920E0A84D0D158C6000F2561F7 Certificate serial: 26D226E4B5CA0A737579C72C376DBE66CE9223C7 Authority key identifier: 6D:EA:9B:27:5E:CC:FB:92:0E:0A:84:D0:D1:58:C6:00:0F:25:61:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32352e302f32342d3234203d3e20313430343033.roa Signing time: Fri 08 Sep 2023 07:00:00 +0000 ROA not before: Fri 08 Sep 2023 06:55:00 +0000 ROA not after: Fri 06 Sep 2024 07:00:00 +0000 asID: 140403 IP address blocks: 103.168.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.crl rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 05:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:d2:26:e4:b5:ca:0a:73:75:79:c7:2c:37:6d:be:66:ce:92:23:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DEA9B275ECCFB920E0A84D0D158C6000F2561F7 Validity Not Before: Sep 8 06:55:00 2023 GMT Not After : Sep 6 07:00:00 2024 GMT Subject: CN=35D46D526107B05EE75F7E35228BDF2049C2BE9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a1:1a:45:e5:ea:82:76:be:96:5e:93:3c:b9: 18:e4:78:b5:ae:67:cd:17:ea:6f:b1:21:ee:3f:d7: 50:72:40:98:25:b1:26:b2:3e:15:4f:09:e3:e5:24: ac:52:2e:12:de:ae:bb:57:ca:35:ad:cd:4a:3d:a5: 78:d8:f7:56:97:5d:0c:e0:8f:89:2d:33:c1:92:07: 12:3b:e1:29:b5:3c:67:4e:19:e0:39:6a:a1:ab:9f: 7d:69:dd:11:e9:4c:bd:77:05:4c:3e:47:05:af:11: 91:f8:4b:58:13:7a:39:75:bd:d5:28:d6:9a:38:37: 3e:2c:b9:81:41:19:9e:23:2a:96:5c:aa:45:d0:5e: 4f:f8:ba:78:98:17:17:fb:ce:02:63:81:5b:64:43: 83:bc:7c:db:11:0f:ec:ae:b6:2c:08:73:42:9c:28: 96:7c:3b:12:84:17:0c:ab:44:c4:e0:6d:ef:2b:9a: 37:b5:d1:f4:f7:92:28:df:f6:57:43:44:af:5f:d7: 0a:26:b8:cd:86:96:17:9c:7a:ee:eb:d1:0f:0a:8a: ad:66:12:a8:86:3c:62:09:a9:e7:e5:c5:dc:a5:5c: da:47:d6:cc:0f:72:4b:1e:e8:c6:72:43:c9:e0:47: 33:10:11:15:f2:50:ef:12:b8:63:71:91:be:fb:bc: bf:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D4:6D:52:61:07:B0:5E:E7:5F:7E:35:22:8B:DF:20:49:C2:BE:9A X509v3 Authority Key Identifier: keyid:6D:EA:9B:27:5E:CC:FB:92:0E:0A:84:D0:D1:58:C6:00:0F:25:61:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32352e302f32342d3234203d3e20313430343033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.25.0/24 Signature Algorithm: sha256WithRSAEncryption 44:b7:b5:48:55:c2:0e:04:6c:e9:47:91:5d:7a:99:ac:02:af: 32:30:df:f9:21:8f:0e:0f:1e:3f:7f:25:3e:2a:02:c3:4c:b4: a8:20:7e:6f:f4:4b:07:b9:4f:56:cb:8a:3d:f5:d0:d5:1d:67: b6:d9:62:33:b6:0e:73:08:62:18:38:ad:d3:0c:ff:c9:e3:16: c5:19:93:43:f0:c9:f6:31:32:1d:9f:4c:e8:9e:f7:cd:49:02: 69:f7:0e:d5:0d:24:d1:56:e8:ae:1b:74:0e:f4:b9:10:60:b7: 15:ea:b6:a0:b8:c8:78:cc:d3:38:3b:f5:83:6a:14:4a:fc:a2: 07:f5:de:7d:51:f8:09:5c:e3:5f:8b:31:90:25:58:cf:5d:09: 9b:8b:93:7d:e8:23:bd:b1:c1:6e:db:81:9c:f6:20:0e:98:4f: e1:8d:10:8b:84:dc:9e:b7:bc:13:1b:39:45:6e:c2:b4:f3:f8: 55:33:5a:27:14:11:2c:f7:d4:84:b1:ad:e5:ea:8e:da:75:90: 35:8f:d3:ee:be:02:68:53:31:bb:3d:7b:43:50:7b:ab:44:b7: 14:15:48:36:65:ba:ca:69:00:25:e6:dc:3d:d6:05:4d:18:a7: 7b:80:32:52:24:d6:14:17:a3:b3:cf:0b:e9:a9:cf:2a:c5:77: 8f:b4:01:9e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJtIm5LXKCnN1eccsN22+Zs6SI8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRFQTlCMjc1RUNDRkI5MjBFMEE4NEQwRDE1OEM2MDAw RjI1NjFGNzAeFw0yMzA5MDgwNjU1MDBaFw0yNDA5MDYwNzAwMDBaMDMxMTAvBgNV BAMTKDM1RDQ2RDUyNjEwN0IwNUVFNzVGN0UzNTIyOEJERjIwNDlDMkJFOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6oRpF5eqCdr6WXpM8uRjkeLWu Z80X6m+xIe4/11ByQJglsSayPhVPCePlJKxSLhLerrtXyjWtzUo9pXjY91aXXQzg j4ktM8GSBxI74Sm1PGdOGeA5aqGrn31p3RHpTL13BUw+RwWvEZH4S1gTejl1vdUo 1po4Nz4suYFBGZ4jKpZcqkXQXk/4uniYFxf7zgJjgVtkQ4O8fNsRD+yutiwIc0Kc KJZ8OxKEFwyrRMTgbe8rmje10fT3kijf9ldDRK9f1womuM2Glheceu7r0Q8Kiq1m EqiGPGIJqeflxdylXNpH1swPckse6MZyQ8ngRzMQERXyUO8SuGNxkb77vL+ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNdRtUmEHsF7nX341IovfIEnCvpowHwYDVR0j BBgwFoAUbeqbJ17M+5IOCoTQ0VjGAA8lYfcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MWI3N2QxZS0xNTg1LTQ2MDQtYjZiMS0wNzFmMGEyOTQwYzQvMC82REVBOUIyNzVF Q0NGQjkyMEUwQTg0RDBEMTU4QzYwMDBGMjU2MUY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRFQTlCMjc1RUNDRkI5MjBFMEE4NEQwRDE1OEM2MDAwRjI1 NjFGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MxYjc3ZDFlLTE1ODUtNDYwNC1i NmIxLTA3MWYwYTI5NDBjNC8wLzMxMzAzMzJlMzEzNjM4MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6gZMA0GCSqG SIb3DQEBCwUAA4IBAQBEt7VIVcIOBGzpR5FdepmsAq8yMN/5IY8ODx4/fyU+KgLD TLSoIH5v9EsHuU9Wy4o99dDVHWe22WIztg5zCGIYOK3TDP/J4xbFGZND8Mn2MTId n0zonvfNSQJp9w7VDSTRVuiuG3QO9LkQYLcV6raguMh4zNM4O/WDahRK/KIH9d59 UfgJXONfizGQJVjPXQmbi5N96CO9scFu24Gc9iAOmE/hjRCLhNyet7wTGzlFbsK0 8/hVM1onFBEs99SEsa3l6o7adZA1j9PuvgJoUzG7PXtDUHurRLcUFUg2ZbrKaQAl 5tw91gVNGKd7gDJSJNYUF6Ozzwvpqc8qxXePtAGe -----END CERTIFICATE-----Generated at Tue Apr 23 18:28:04 2024 by rpki-client on console-fra.rpki-client.org