$ rpki-client -vvf repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/3130332e39332e3233362e302f32332d3234203d3e203633343930.roa File: 3130332e39332e3233362e302f32332d3234203d3e203633343930.roa (raw, json) Hash identifier: qS1Rkv5hhZGu51FNzNPxJzgSrW8IO7dBXG6bCp+s7hE= Subject key identifier: C8:1A:85:59:B9:A0:FA:AA:6A:78:C8:CC:C8:CA:5D:5F:DF:B2:55:52 Certificate issuer: /CN=1D996206B24E67937CEF2CE40882DBFAD893F1FB Certificate serial: 4A0D1F61FE22298BE92F900291E9F90ED21AF27D Authority key identifier: 1D:99:62:06:B2:4E:67:93:7C:EF:2C:E4:08:82:DB:FA:D8:93:F1:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D996206B24E67937CEF2CE40882DBFAD893F1FB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/3130332e39332e3233362e302f32332d3234203d3e203633343930.roa Signing time: Sun 20 Aug 2023 20:00:00 +0000 ROA not before: Sun 20 Aug 2023 19:55:00 +0000 ROA not after: Sun 18 Aug 2024 20:00:00 +0000 asID: 63490 IP address blocks: 103.93.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/1D996206B24E67937CEF2CE40882DBFAD893F1FB.crl rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/1D996206B24E67937CEF2CE40882DBFAD893F1FB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D996206B24E67937CEF2CE40882DBFAD893F1FB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:0d:1f:61:fe:22:29:8b:e9:2f:90:02:91:e9:f9:0e:d2:1a:f2:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D996206B24E67937CEF2CE40882DBFAD893F1FB Validity Not Before: Aug 20 19:55:00 2023 GMT Not After : Aug 18 20:00:00 2024 GMT Subject: CN=C81A8559B9A0FAAA6A78C8CCC8CA5D5FDFB25552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:07:54:c2:aa:29:bb:07:2d:a3:6c:1c:a1:9e: 5b:4d:77:e8:6d:be:e0:4f:43:9a:97:41:6f:7c:85: a5:4a:04:ca:bc:e6:40:99:eb:7a:ff:f6:25:5f:bf: 53:39:5e:b1:70:48:4d:8e:92:74:39:1b:34:5b:37: ad:51:1d:f2:46:6e:3f:83:ed:94:90:f1:38:b2:3a: ae:d1:c5:1f:ef:7e:da:57:a4:53:13:3b:2a:b5:de: 0b:25:6a:27:c8:a0:d5:b9:bb:be:e0:80:db:16:df: 20:e2:f1:51:a8:34:07:33:7d:c4:08:bb:29:65:fb: b0:43:b3:ea:b2:98:76:2c:24:82:45:8e:8f:d3:d4: 27:c7:fe:18:ae:f2:47:a9:15:92:41:f9:6e:f8:07: e2:9e:b6:01:5c:00:e8:eb:1a:35:b1:af:3d:51:bd: 1c:c3:74:f6:c7:b1:5d:98:64:b4:7b:52:2e:b9:a5: a6:65:3b:ba:1a:37:47:21:7f:50:42:58:22:d0:04: d2:0d:38:7a:e1:9d:ef:85:01:84:95:c7:b9:d4:41: 97:91:03:98:cd:ef:22:3e:57:86:70:68:dc:b9:e2: 7c:3b:eb:e9:5d:7a:16:8e:3e:4f:d0:9d:fe:e5:f7: 86:78:46:90:14:f6:99:fb:c0:b6:5a:c7:de:d5:78: 7d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:1A:85:59:B9:A0:FA:AA:6A:78:C8:CC:C8:CA:5D:5F:DF:B2:55:52 X509v3 Authority Key Identifier: keyid:1D:99:62:06:B2:4E:67:93:7C:EF:2C:E4:08:82:DB:FA:D8:93:F1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/1D996206B24E67937CEF2CE40882DBFAD893F1FB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D996206B24E67937CEF2CE40882DBFAD893F1FB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/3130332e39332e3233362e302f32332d3234203d3e203633343930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.93.236.0/23 Signature Algorithm: sha256WithRSAEncryption a5:4f:e3:64:0b:3d:84:fd:35:1d:a3:6e:ee:c0:3e:6a:b8:57: 62:b7:e8:78:e5:f7:5a:a3:e6:91:71:c0:d2:04:3d:2d:27:0b: 97:ae:00:db:20:34:44:c2:97:a1:3f:c0:f7:1f:99:07:23:04: aa:f2:9f:ac:89:31:56:6b:53:c5:13:67:99:a6:b7:35:3c:26: 0a:a5:26:57:f9:08:d1:d6:c2:82:44:86:6e:68:7d:f9:6f:0a: 07:a6:76:3f:53:53:dc:e8:d0:9a:35:33:e7:86:d1:1b:50:81: eb:fe:e7:2c:ff:da:a0:b2:b2:4b:83:34:92:14:34:dc:db:54: 60:c1:fb:67:c6:a4:40:3a:3c:c2:9c:76:3d:90:d8:a0:9b:7a: 46:31:3a:a0:57:75:f0:97:5e:7d:44:e9:e7:a8:d5:bb:28:b0: 38:09:76:b9:4f:d5:72:8d:f8:ee:29:0f:40:bf:b2:e4:e5:ce: d9:31:c5:99:82:57:2f:45:a9:0a:10:76:6d:10:1e:d8:bb:59: c0:93:5e:fd:f9:ef:20:6e:4c:a3:fa:84:b4:36:3b:60:6e:d2: 3f:e2:17:f6:31:f5:1d:e8:89:d9:c0:30:69:6a:ab:09:82:4e: e6:a0:2a:af:5a:a3:b9:72:20:da:70:7b:c4:57:cb:17:f8:36: 3c:d4:20:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSg0fYf4iKYvpL5ACken5DtIa8n0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ5OTYyMDZCMjRFNjc5MzdDRUYyQ0U0MDg4MkRCRkFE ODkzRjFGQjAeFw0yMzA4MjAxOTU1MDBaFw0yNDA4MTgyMDAwMDBaMDMxMTAvBgNV BAMTKEM4MUE4NTU5QjlBMEZBQUE2QTc4QzhDQ0M4Q0E1RDVGREZCMjU1NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoB1TCqim7By2jbByhnltNd+ht vuBPQ5qXQW98haVKBMq85kCZ63r/9iVfv1M5XrFwSE2OknQ5GzRbN61RHfJGbj+D 7ZSQ8TiyOq7RxR/vftpXpFMTOyq13gslaifIoNW5u77ggNsW3yDi8VGoNAczfcQI uyll+7BDs+qymHYsJIJFjo/T1CfH/hiu8kepFZJB+W74B+KetgFcAOjrGjWxrz1R vRzDdPbHsV2YZLR7Ui65paZlO7oaN0chf1BCWCLQBNINOHrhne+FAYSVx7nUQZeR A5jN7yI+V4ZwaNy54nw76+ldehaOPk/Qnf7l94Z4RpAU9pn7wLZax97VeH1JAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyBqFWbmg+qpqeMjMyMpdX9+yVVIwHwYDVR0j BBgwFoAUHZliBrJOZ5N87yzkCILb+tiT8fswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWUzNjA1Ni1mMDk3LTQ5YTctYmQyMy0zZDcxMWU4OWYzMDUvMC8xRDk5NjIwNkIy NEU2NzkzN0NFRjJDRTQwODgyREJGQUQ4OTNGMUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ5OTYyMDZCMjRFNjc5MzdDRUYyQ0U0MDg4MkRCRkFEODkz RjFGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5ZTM2MDU2LWYwOTctNDlhNy1i ZDIzLTNkNzExZTg5ZjMwNS8wLzMxMzAzMzJlMzkzMzJlMzIzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzYzMzM0MzkzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdd7DANBgkqhkiG 9w0BAQsFAAOCAQEApU/jZAs9hP01HaNu7sA+arhXYrfoeOX3WqPmkXHA0gQ9LScL l64A2yA0RMKXoT/A9x+ZByMEqvKfrIkxVmtTxRNnmaa3NTwmCqUmV/kI0dbCgkSG bmh9+W8KB6Z2P1NT3OjQmjUz54bRG1CB6/7nLP/aoLKyS4M0khQ03NtUYMH7Z8ak QDo8wpx2PZDYoJt6RjE6oFd18JdefUTp56jVuyiwOAl2uU/Vco347ikPQL+y5OXO 2THFmYJXL0WpChB2bRAe2LtZwJNe/fnvIG5Mo/qEtDY7YG7SP+IX9jH1HeiJ2cAw aWqrCYJO5qAqr1qjuXIg2nB7xFfLF/g2PNQgOw== -----END CERTIFICATE-----Generated at Sun May 5 17:20:20 2024 by rpki-client on console-fra.rpki-client.org