$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3130332e3139352e31392e302f32342d3234203d3e203535363833.roa File: 3130332e3139352e31392e302f32342d3234203d3e203535363833.roa (raw, json) Hash identifier: sGfAJTHu/ofiRg1sesSjoK2jNOkCxLaCnUqi38w/yBk= Subject key identifier: 87:C5:D1:A2:B2:D2:AC:E9:DC:0C:00:C1:86:46:02:A8:34:2F:A3:3E Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Certificate serial: 2ED2AF7F837652F27152BD33EF8DFDF29966E5B0 Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3130332e3139352e31392e302f32342d3234203d3e203535363833.roa Signing time: Mon 31 Jul 2023 00:06:28 +0000 ROA not before: Mon 31 Jul 2023 00:01:28 +0000 ROA not after: Mon 29 Jul 2024 00:06:28 +0000 asID: 55683 IP address blocks: 103.195.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:d2:af:7f:83:76:52:f2:71:52:bd:33:ef:8d:fd:f2:99:66:e5:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Validity Not Before: Jul 31 00:01:28 2023 GMT Not After : Jul 29 00:06:28 2024 GMT Subject: CN=87C5D1A2B2D2ACE9DC0C00C1864602A8342FA33E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c1:d9:4d:44:dc:1f:a3:f8:28:5a:e3:28:fd: 13:20:24:65:85:cb:f9:7f:8f:cd:7d:7e:c6:e4:ab: b4:7b:ae:c1:e5:67:aa:4c:bd:96:9d:8a:c7:00:95: a5:3d:a9:b1:96:33:c5:49:ae:c7:63:f9:41:42:24: bf:ed:56:a4:ec:3b:d2:c7:6e:5a:fe:b2:18:bd:4f: 9e:e2:ee:54:9c:eb:c0:9d:4e:e9:18:32:31:69:a9: 73:23:10:df:23:59:a5:db:15:52:dc:17:92:4f:9a: c8:5a:1a:1d:36:e4:b8:37:b8:57:c1:62:b7:5b:50: b8:23:59:da:7e:29:78:ed:ca:a5:80:e5:d6:bc:e9: be:17:b5:0c:de:5a:3c:bf:0c:dd:98:d9:73:55:f2: 51:d6:10:7d:1a:70:ff:27:f5:6f:e2:ce:e7:25:12: 06:8b:71:d9:c7:e2:99:b5:e2:2f:35:a2:c0:e5:6d: 80:ba:fd:e4:ae:70:67:a9:a8:11:ed:7f:e0:2d:d2: 6a:ce:8d:8e:a5:dd:12:03:aa:1d:2b:d8:ed:df:2e: e1:30:3c:8f:0d:48:06:ac:a1:0e:98:94:60:84:8c: 5c:2c:4a:5a:a9:07:ba:62:98:ed:8c:da:09:84:3a: b5:57:f3:17:f9:9d:04:b2:3b:8b:f1:2a:48:76:ad: 63:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C5:D1:A2:B2:D2:AC:E9:DC:0C:00:C1:86:46:02:A8:34:2F:A3:3E X509v3 Authority Key Identifier: keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3130332e3139352e31392e302f32342d3234203d3e203535363833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.19.0/24 Signature Algorithm: sha256WithRSAEncryption 31:a0:9a:ae:7f:5a:f7:19:c6:52:12:16:27:f0:b1:2b:0d:54: df:ce:f8:86:9b:23:7a:e2:76:1c:ec:81:f8:29:67:ce:74:5f: 61:03:2c:ae:c7:05:fc:3c:db:86:72:47:03:43:b9:d5:3c:a0: ef:0c:ab:1f:1a:d1:a7:26:24:56:4a:43:d0:3e:c4:0f:6a:bc: 0e:73:a3:f5:62:a1:04:06:1b:5f:80:cb:21:72:55:ca:eb:ba: e7:23:f5:40:02:f3:29:31:5c:cd:6d:25:4b:93:e7:d8:19:63: 46:5a:1c:32:68:52:16:10:bf:9d:7b:18:35:73:b6:0c:7a:d0: a4:76:bc:83:d2:36:e3:f5:c9:eb:9a:ad:8c:a3:1d:d8:c2:65: 62:50:04:eb:16:b8:69:34:7b:d4:21:fc:74:c3:b4:3c:91:ba: d1:29:63:58:09:f6:f4:f6:cf:45:e7:73:4a:6d:1b:9e:74:03: b4:be:cd:01:9e:37:f6:97:88:b7:18:04:f5:c1:43:b4:5d:96: 60:79:2e:4c:e5:47:c9:ba:a2:6f:cf:da:d0:0a:81:03:23:d3: 5e:5e:a5:4a:5f:81:36:be:bd:ec:d3:36:55:94:a3:d5:19:c2: 16:3a:1a:1c:43:02:7c:9f:44:d0:4a:f9:a6:38:05:df:b2:58: bf:29:a3:48 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULtKvf4N2UvJxUr0z74398plm5bAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENC NUFEQkQyODAeFw0yMzA3MzEwMDAxMjhaFw0yNDA3MjkwMDA2MjhaMDMxMTAvBgNV BAMTKDg3QzVEMUEyQjJEMkFDRTlEQzBDMDBDMTg2NDYwMkE4MzQyRkEzM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHwdlNRNwfo/goWuMo/RMgJGWF y/l/j819fsbkq7R7rsHlZ6pMvZadiscAlaU9qbGWM8VJrsdj+UFCJL/tVqTsO9LH blr+shi9T57i7lSc68CdTukYMjFpqXMjEN8jWaXbFVLcF5JPmshaGh025Lg3uFfB YrdbULgjWdp+KXjtyqWA5da86b4XtQzeWjy/DN2Y2XNV8lHWEH0acP8n9W/izucl EgaLcdnH4pm14i81osDlbYC6/eSucGepqBHtf+At0mrOjY6l3RIDqh0r2O3fLuEw PI8NSAasoQ6YlGCEjFwsSlqpB7pimO2M2gmEOrVX8xf5nQSyO4vxKkh2rWMrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUh8XRorLSrOncDADBhkYCqDQvoz4wHwYDVR0j BBgwFoAUNWa2zwDXsLZz+LUmxWrr3LWtvSgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMC8zNTY2QjZDRjAw RDdCMEI2NzNGOEI1MjZDNTZBRUJEQ0I1QURCRDI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENCNUFE QkQyOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzYjhhZTk3LTY4MTgtNDhhOS1h YmU0LWVkYjk2MDQ5ZjNjOC8wLzMxMzAzMzJlMzEzOTM1MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfDEzANBgkqhkiG 9w0BAQsFAAOCAQEAMaCarn9a9xnGUhIWJ/CxKw1U3874hpsjeuJ2HOyB+ClnznRf YQMsrscF/DzbhnJHA0O51Tyg7wyrHxrRpyYkVkpD0D7ED2q8DnOj9WKhBAYbX4DL IXJVyuu65yP1QALzKTFczW0lS5Pn2BljRlocMmhSFhC/nXsYNXO2DHrQpHa8g9I2 4/XJ65qtjKMd2MJlYlAE6xa4aTR71CH8dMO0PJG60SljWAn29PbPRedzSm0bnnQD tL7NAZ439peItxgE9cFDtF2WYHkuTOVHybqib8/a0AqBAyPTXl6lSl+BNr697NM2 VZSj1RnCFjoaHEMCfJ9E0Er5pjgF37JYvymjSA== -----END CERTIFICATE-----Generated at Sun Jun 23 16:52:39 2024 by rpki-client on console-ams.rpki-client.org