$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3130332e3139352e31382e302f32342d3234203d3e203535363833.roa File: 3130332e3139352e31382e302f32342d3234203d3e203535363833.roa (raw, json) Hash identifier: X/RuB1v3SR8yYoBomP6cZAp2AVDBopHjnU89QLVvHJE= Subject key identifier: 77:B3:B4:2F:9F:0A:6C:82:62:A9:0F:4A:D5:AB:DD:B4:03:D4:46:FB Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Certificate serial: 35479DB35F39A659046973932B17126CE13DA078 Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3130332e3139352e31382e302f32342d3234203d3e203535363833.roa Signing time: Mon 31 Jul 2023 00:06:28 +0000 ROA not before: Mon 31 Jul 2023 00:01:28 +0000 ROA not after: Mon 29 Jul 2024 00:06:28 +0000 asID: 55683 IP address blocks: 103.195.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:47:9d:b3:5f:39:a6:59:04:69:73:93:2b:17:12:6c:e1:3d:a0:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Validity Not Before: Jul 31 00:01:28 2023 GMT Not After : Jul 29 00:06:28 2024 GMT Subject: CN=77B3B42F9F0A6C8262A90F4AD5ABDDB403D446FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3a:82:fa:85:40:4f:40:d3:78:42:02:89:6a: 90:cf:60:a8:b2:59:7f:7e:b3:05:d4:1e:30:0c:3c: 16:2b:8e:5d:67:a6:46:12:3b:f0:e5:58:87:9c:f9: 11:1b:71:26:68:c0:b8:3e:3d:df:e1:72:4b:71:1b: 7e:f6:78:5a:82:28:29:50:79:76:f3:42:80:ef:17: 10:b9:8d:25:ee:18:c2:1d:c2:e3:9d:21:58:a1:af: af:1e:cf:2c:bc:6a:43:22:75:ea:30:57:c7:50:76: 96:ed:58:6f:10:88:46:14:2a:bf:97:b3:70:19:57: 13:ea:da:59:03:12:6f:d2:7f:7c:fa:fc:ac:c2:55: 7d:e7:fa:18:64:93:86:66:c8:2a:2e:08:e0:cc:81: e5:4e:ac:45:bd:9f:ed:a8:52:89:3b:e6:73:7c:34: ba:84:28:09:56:2d:0e:5d:92:8f:fb:48:9f:1e:5b: 6b:59:40:ad:aa:dc:fc:29:c7:7e:6d:90:a8:15:b7: 38:ae:95:99:77:46:5f:f5:49:6f:22:7d:28:76:1a: 56:b6:b8:06:42:9a:e4:ca:cb:ab:7e:e6:13:9e:9d: b3:91:fd:f1:28:ee:d2:74:b8:db:88:4c:e5:7f:df: c5:6d:10:74:ce:02:ec:ff:23:ad:9d:b0:a5:eb:c8: d9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:B3:B4:2F:9F:0A:6C:82:62:A9:0F:4A:D5:AB:DD:B4:03:D4:46:FB X509v3 Authority Key Identifier: keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3130332e3139352e31382e302f32342d3234203d3e203535363833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.18.0/24 Signature Algorithm: sha256WithRSAEncryption dc:fd:a2:3f:29:52:ae:85:4d:dd:a3:26:5f:69:1b:03:a2:c5: 9e:f5:b4:38:98:1d:33:86:65:c5:f5:d3:0d:ba:22:0a:09:0c: 24:fa:75:38:3e:9f:f9:ef:24:97:e2:4a:b5:bd:c8:33:52:57: a0:35:35:bc:78:a2:f6:72:7b:8d:ea:be:93:2c:13:c1:77:33: 23:9e:68:2b:b6:8b:98:5b:c0:3e:b5:aa:f2:7a:3c:70:e8:1e: 5a:f0:7a:3e:95:e4:e9:70:df:e8:85:62:38:11:06:50:48:c0: fa:95:53:5e:2d:ea:5e:b8:cc:30:84:5c:97:a8:c7:15:3d:06: f3:a2:b8:e1:8b:a7:3f:43:90:ba:a0:54:fb:dc:b0:8e:07:10: 5a:b4:8f:34:91:4d:98:9c:e0:fc:1c:74:39:cf:ce:60:3f:c7: f9:b3:74:77:cf:0f:4a:e0:03:1b:c9:46:63:dc:32:45:10:16: 51:48:30:dd:f6:2f:09:50:44:6d:61:22:36:95:a2:29:48:7b: e1:19:ec:e8:86:0b:9f:47:1c:c3:5a:11:26:90:60:36:b9:31: 89:7b:9b:39:bb:16:74:d3:77:55:56:58:35:62:69:57:76:22: 7c:ea:ba:03:78:b7:84:a5:6d:6f:1d:e4:ac:5b:12:66:d1:e4: 6f:ce:01:16 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNUeds185plkEaXOTKxcSbOE9oHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENC NUFEQkQyODAeFw0yMzA3MzEwMDAxMjhaFw0yNDA3MjkwMDA2MjhaMDMxMTAvBgNV BAMTKDc3QjNCNDJGOUYwQTZDODI2MkE5MEY0QUQ1QUJEREI0MDNENDQ2RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSOoL6hUBPQNN4QgKJapDPYKiy WX9+swXUHjAMPBYrjl1npkYSO/DlWIec+REbcSZowLg+Pd/hcktxG372eFqCKClQ eXbzQoDvFxC5jSXuGMIdwuOdIVihr68ezyy8akMideowV8dQdpbtWG8QiEYUKr+X s3AZVxPq2lkDEm/Sf3z6/KzCVX3n+hhkk4ZmyCouCODMgeVOrEW9n+2oUok75nN8 NLqEKAlWLQ5dko/7SJ8eW2tZQK2q3Pwpx35tkKgVtziulZl3Rl/1SW8ifSh2Gla2 uAZCmuTKy6t+5hOenbOR/fEo7tJ0uNuITOV/38VtEHTOAuz/I62dsKXryNmjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUd7O0L58KbIJiqQ9K1avdtAPURvswHwYDVR0j BBgwFoAUNWa2zwDXsLZz+LUmxWrr3LWtvSgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMC8zNTY2QjZDRjAw RDdCMEI2NzNGOEI1MjZDNTZBRUJEQ0I1QURCRDI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENCNUFE QkQyOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzYjhhZTk3LTY4MTgtNDhhOS1h YmU0LWVkYjk2MDQ5ZjNjOC8wLzMxMzAzMzJlMzEzOTM1MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfDEjANBgkqhkiG 9w0BAQsFAAOCAQEA3P2iPylSroVN3aMmX2kbA6LFnvW0OJgdM4ZlxfXTDboiCgkM JPp1OD6f+e8kl+JKtb3IM1JXoDU1vHii9nJ7jeq+kywTwXczI55oK7aLmFvAPrWq 8no8cOgeWvB6PpXk6XDf6IViOBEGUEjA+pVTXi3qXrjMMIRcl6jHFT0G86K44Yun P0OQuqBU+9ywjgcQWrSPNJFNmJzg/Bx0Oc/OYD/H+bN0d88PSuADG8lGY9wyRRAW UUgw3fYvCVBEbWEiNpWiKUh74Rns6IYLn0ccw1oRJpBgNrkxiXubObsWdNN3VVZY NWJpV3YifOq6A3i3hKVtbx3krFsSZtHkb84BFg== -----END CERTIFICATE-----Generated at Sun Jun 23 16:52:39 2024 by rpki-client on console-ams.rpki-client.org