$ rpki-client -vvf repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/3130332e3137342e31362e302f32332d3234203d3e20313437303933.roa File: 3130332e3137342e31362e302f32332d3234203d3e20313437303933.roa (raw, json) Hash identifier: HWZ/IkYrhllx7I+V1YovHTb5KYxvfCIUYCd458AkS4E= Subject key identifier: 00:51:31:A5:7F:F0:19:BB:CD:B4:F5:48:12:B5:72:54:84:91:8A:F6 Certificate issuer: /CN=6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4 Certificate serial: 2D5517B84DD1B4EE6345B61911D948300AC03029 Authority key identifier: 6D:39:05:08:CE:26:22:C5:BA:AA:3B:EE:95:AA:61:27:FE:5B:E5:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/3130332e3137342e31362e302f32332d3234203d3e20313437303933.roa Signing time: Wed 25 Oct 2023 05:00:20 +0000 ROA not before: Wed 25 Oct 2023 04:55:20 +0000 ROA not after: Wed 23 Oct 2024 05:00:20 +0000 asID: 147093 IP address blocks: 103.174.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.crl rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:55:17:b8:4d:d1:b4:ee:63:45:b6:19:11:d9:48:30:0a:c0:30:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4 Validity Not Before: Oct 25 04:55:20 2023 GMT Not After : Oct 23 05:00:20 2024 GMT Subject: CN=005131A57FF019BBCDB4F54812B5725484918AF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6c:a8:99:c8:f9:71:38:ef:9b:92:55:c7:f9: 1f:e4:e1:a2:ea:fc:0a:65:e6:68:b2:6d:20:60:49: 4d:cb:dd:27:78:4a:7d:03:32:4b:e9:fe:d6:b4:bd: e2:54:6b:f8:6e:01:0e:ed:94:bc:77:79:57:85:69: 23:8e:19:b4:3b:40:de:41:eb:8c:d2:22:0e:9b:bf: db:29:33:b7:10:1b:51:41:7b:79:b0:b0:60:04:f7: 42:2e:e5:3d:4b:0a:0c:03:82:ac:68:52:8f:53:56: e1:25:d7:b0:cf:96:d8:4a:20:3a:ee:e2:56:0b:cd: dc:b4:b4:d0:b6:a1:7c:c4:ff:f8:72:f3:01:f5:e0: ab:a8:21:7f:9e:59:0f:ff:69:62:b4:fb:b0:d8:7b: fa:05:f5:3d:25:4c:bc:36:c0:fc:9e:42:d0:44:f6: 17:ad:67:2c:68:e4:3b:0b:71:92:1b:7d:99:56:b5: 6d:e8:0f:81:69:07:e3:94:f4:e9:92:e2:13:ba:35: de:a5:d5:e2:25:d0:f6:31:5d:84:da:76:86:21:b3: 9a:c3:37:b2:e3:58:51:8f:bf:5d:c5:75:7e:58:e0: f2:24:8e:1f:1a:56:a6:b7:32:5a:cd:fe:23:a8:11: ec:df:b9:e4:b0:76:cb:fe:7b:37:79:de:36:53:fd: 7b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:51:31:A5:7F:F0:19:BB:CD:B4:F5:48:12:B5:72:54:84:91:8A:F6 X509v3 Authority Key Identifier: keyid:6D:39:05:08:CE:26:22:C5:BA:AA:3B:EE:95:AA:61:27:FE:5B:E5:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/3130332e3137342e31362e302f32332d3234203d3e20313437303933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.16.0/23 Signature Algorithm: sha256WithRSAEncryption d2:ee:93:0f:b3:9d:f1:b4:04:73:2c:fb:f4:d5:16:0f:0b:1a: b6:1c:02:55:85:76:b3:a6:3e:63:0d:1f:6e:f2:4d:51:ec:29: 43:94:68:be:13:4a:21:4e:fb:d6:d0:ae:ba:2e:0b:59:ce:6a: 67:3d:7a:3e:57:f0:0b:e1:a6:28:8f:9e:24:1e:ad:ec:fe:29: 99:51:a6:bf:0c:e2:8a:58:15:7d:55:24:b6:23:af:72:10:45: 22:37:92:4c:20:fb:77:4c:62:db:0a:e7:fc:1d:4f:42:d0:a3: f1:f4:68:b9:19:b7:91:0f:87:5a:33:cf:7d:05:1c:f1:76:45: fe:2e:79:68:b8:78:46:5f:aa:d4:94:b6:fb:55:d5:e8:0f:e8: 8d:92:84:66:45:5d:34:13:3e:62:34:b4:7d:c9:95:61:24:0a: 9f:6e:59:c7:e4:96:2f:78:e2:fe:ee:27:1d:62:8a:b1:f2:e2: 8d:7e:ea:bd:9e:63:ac:3f:94:ea:f4:b9:b1:4e:4d:bf:16:bd: e3:c6:72:d8:59:ee:32:ee:5a:9e:9f:dc:c7:fb:85:2c:34:02: 07:92:5d:89:05:74:9c:34:90:40:c2:67:aa:68:56:11:31:28: 28:8a:a9:d0:c6:2e:cc:7a:1b:22:96:90:0e:69:e8:54:cc:e2: 24:2b:0f:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULVUXuE3RtO5jRbYZEdlIMArAMCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQzOTA1MDhDRTI2MjJDNUJBQUEzQkVFOTVBQTYxMjdG RTVCRTVGNDAeFw0yMzEwMjUwNDU1MjBaFw0yNDEwMjMwNTAwMjBaMDMxMTAvBgNV BAMTKDAwNTEzMUE1N0ZGMDE5QkJDREI0RjU0ODEyQjU3MjU0ODQ5MThBRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDebKiZyPlxOO+bklXH+R/k4aLq /Apl5miybSBgSU3L3Sd4Sn0DMkvp/ta0veJUa/huAQ7tlLx3eVeFaSOOGbQ7QN5B 64zSIg6bv9spM7cQG1FBe3mwsGAE90Iu5T1LCgwDgqxoUo9TVuEl17DPlthKIDru 4lYLzdy0tNC2oXzE//hy8wH14KuoIX+eWQ//aWK0+7DYe/oF9T0lTLw2wPyeQtBE 9hetZyxo5DsLcZIbfZlWtW3oD4FpB+OU9OmS4hO6Nd6l1eIl0PYxXYTadoYhs5rD N7LjWFGPv13FdX5Y4PIkjh8aVqa3MlrN/iOoEezfueSwdsv+ezd53jZT/XtNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAFExpX/wGbvNtPVIErVyVISRivYwHwYDVR0j BBgwFoAUbTkFCM4mIsW6qjvulaphJ/5b5fQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTQ4MmFkYS1kMGM4LTQ2NGItYTAwNy04NTE5NDg5Y2IxYzQvMC82RDM5MDUwOENF MjYyMkM1QkFBQTNCRUU5NUFBNjEyN0ZFNUJFNUY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQzOTA1MDhDRTI2MjJDNUJBQUEzQkVFOTVBQTYxMjdGRTVC RTVGNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlNDgyYWRhLWQwYzgtNDY0Yi1h MDA3LTg1MTk0ODljYjFjNC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ64QMA0GCSqG SIb3DQEBCwUAA4IBAQDS7pMPs53xtARzLPv01RYPCxq2HAJVhXazpj5jDR9u8k1R 7ClDlGi+E0ohTvvW0K66LgtZzmpnPXo+V/AL4aYoj54kHq3s/imZUaa/DOKKWBV9 VSS2I69yEEUiN5JMIPt3TGLbCuf8HU9C0KPx9Gi5GbeRD4daM899BRzxdkX+Lnlo uHhGX6rUlLb7VdXoD+iNkoRmRV00Ez5iNLR9yZVhJAqfblnH5JYveOL+7icdYoqx 8uKNfuq9nmOsP5Tq9LmxTk2/Fr3jxnLYWe4y7lqen9zH+4UsNAIHkl2JBXScNJBA wmeqaFYRMSgoiqnQxi7MehsilpAOaehUzOIkKw/c -----END CERTIFICATE-----Generated at Sat Jun 22 21:44:31 2024 by rpki-client on console-fra.rpki-client.org