$ rpki-client -vvf repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230352e302f32342d3234203d3e203538333937.roa File: 3130332e34312e3230352e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: 0zuTvljvdNNL9h43xLv1n/Jd/iDOArcEMQK9WF7aqRU= Subject key identifier: 63:97:D8:32:4B:82:94:58:EC:C2:D0:4C:39:A0:F2:DA:4B:6B:E1:4D Certificate issuer: /CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Certificate serial: 301531EEB27C21FD4F22CC3C197FC7BB8BD44510 Authority key identifier: C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230352e302f32342d3234203d3e203538333937.roa Signing time: Fri 08 Dec 2023 21:00:01 +0000 ROA not before: Fri 08 Dec 2023 20:55:01 +0000 ROA not after: Fri 06 Dec 2024 21:00:01 +0000 asID: 58397 IP address blocks: 103.41.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 23:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:15:31:ee:b2:7c:21:fd:4f:22:cc:3c:19:7f:c7:bb:8b:d4:45:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Validity Not Before: Dec 8 20:55:01 2023 GMT Not After : Dec 6 21:00:01 2024 GMT Subject: CN=6397D8324B829458ECC2D04C39A0F2DA4B6BE14D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c6:7e:9d:d3:d4:2f:db:8c:55:ee:4a:e2:b3: e3:53:1b:50:7b:51:b2:1f:56:58:3f:eb:4c:e8:34: 83:74:73:bb:c2:e2:df:c8:93:34:2e:0f:b2:ca:55: 46:f7:e8:f8:9e:2d:e3:6a:1d:5b:58:89:48:0d:f6: e9:e0:d2:d8:0b:e8:c2:bf:ac:1d:18:d9:de:50:b6: 87:4f:4b:14:a5:bc:0d:88:17:56:cd:21:71:83:89: de:7a:41:6c:cc:43:1e:e7:58:2b:92:b5:57:f0:a0: c7:52:92:77:0b:de:a0:0b:d9:c4:66:88:9d:f1:ae: 03:9a:49:da:dd:ca:c6:d2:53:32:58:03:be:83:98: 45:66:47:6f:fd:ef:85:28:3d:c5:a5:31:c4:34:bc: f1:2a:fb:26:3b:12:83:e2:cf:72:75:4f:8c:f8:07: cd:2c:9a:5c:8d:03:70:d9:6a:4f:f1:fb:a9:0e:74: ad:55:c6:5e:28:2d:13:c4:07:aa:f7:0d:ff:4e:d0: 1d:c6:a9:dc:be:f2:0e:08:71:d7:bb:05:d8:5e:a1: 4e:45:a0:c3:b3:81:d4:05:f0:fa:66:61:f1:66:2d: 5a:b0:94:8f:ff:d0:b8:a9:23:13:46:19:3c:34:d9: 6d:9c:4e:55:06:9d:cc:e8:b6:f2:ea:74:a1:86:31: 54:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:97:D8:32:4B:82:94:58:EC:C2:D0:4C:39:A0:F2:DA:4B:6B:E1:4D X509v3 Authority Key Identifier: keyid:C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230352e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.205.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:a0:a1:37:d5:91:ce:6a:11:4e:cc:19:b4:3c:18:79:e6:47: 4e:77:2a:c9:bd:a4:dc:cd:5e:14:d4:4b:c8:27:78:bd:78:cf: 4a:a0:48:13:4c:04:b5:d4:4b:14:56:38:03:e4:59:7a:7f:c8: 86:92:30:0d:05:b5:c9:7c:c6:4f:cb:8c:36:33:ae:ee:96:d2: 9c:d6:ab:54:71:ee:6c:cc:b0:b8:df:a2:79:0a:42:51:f7:1a: 09:12:89:79:62:ed:6d:a4:1d:e2:9a:eb:49:e3:0f:de:4b:7b: 90:32:25:e2:ed:30:25:85:b9:3a:a4:15:c0:c2:a6:f3:d9:3d: 6b:d2:d5:0c:38:e3:aa:91:aa:e3:94:22:28:ee:33:e4:f5:8d: a5:21:1f:4d:31:ec:f8:35:2b:a0:85:39:70:28:50:21:f5:a6: bc:ff:72:46:3a:50:0e:80:03:22:41:22:e4:06:cc:c7:81:88: 6e:86:05:f6:3a:44:79:a0:3c:3c:ee:79:ba:f9:e0:3a:00:af: a2:73:28:fe:82:23:20:0d:42:62:d5:fb:5b:96:3f:e9:47:62: cb:9d:7e:c0:22:97:7f:ba:1d:a7:2b:a0:cb:c1:61:b9:59:cf: 71:0b:54:57:40:06:d0:dc:f6:c4:e3:2f:b3:1d:67:06:da:b1: ff:40:48:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMBUx7rJ8If1PIsw8GX/Hu4vURRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1 Mzg5OThBRTAeFw0yMzEyMDgyMDU1MDFaFw0yNDEyMDYyMTAwMDFaMDMxMTAvBgNV BAMTKDYzOTdEODMyNEI4Mjk0NThFQ0MyRDA0QzM5QTBGMkRBNEI2QkUxNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/xn6d09Qv24xV7kris+NTG1B7 UbIfVlg/60zoNIN0c7vC4t/IkzQuD7LKVUb36PieLeNqHVtYiUgN9ung0tgL6MK/ rB0Y2d5QtodPSxSlvA2IF1bNIXGDid56QWzMQx7nWCuStVfwoMdSkncL3qAL2cRm iJ3xrgOaSdrdysbSUzJYA76DmEVmR2/974UoPcWlMcQ0vPEq+yY7EoPiz3J1T4z4 B80smlyNA3DZak/x+6kOdK1Vxl4oLRPEB6r3Df9O0B3Gqdy+8g4Icde7BdheoU5F oMOzgdQF8PpmYfFmLVqwlI//0LipIxNGGTw02W2cTlUGnczotvLqdKGGMVRhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUY5fYMkuClFjswtBMOaDy2ktr4U0wHwYDVR0j BBgwFoAUxpAFu3ukaKEKMs5E6cTOeFOJmK4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiYTQ1ZS1mNWRhLTQ1ODEtYmZlNS1jMTYxNmMzMGVmYWIvMC9DNjkwMDVCQjdC QTQ2OEExMEEzMkNFNDRFOUM0Q0U3ODUzODk5OEFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1Mzg5 OThBRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzAzMzJlMzQzMTJlMzIzMDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcpzTANBgkqhkiG 9w0BAQsFAAOCAQEAL6ChN9WRzmoRTswZtDwYeeZHTncqyb2k3M1eFNRLyCd4vXjP SqBIE0wEtdRLFFY4A+RZen/IhpIwDQW1yXzGT8uMNjOu7pbSnNarVHHubMywuN+i eQpCUfcaCRKJeWLtbaQd4prrSeMP3kt7kDIl4u0wJYW5OqQVwMKm89k9a9LVDDjj qpGq45QiKO4z5PWNpSEfTTHs+DUroIU5cChQIfWmvP9yRjpQDoADIkEi5AbMx4GI boYF9jpEeaA8PO55uvngOgCvonMo/oIjIA1CYtX7W5Y/6Udiy51+wCKXf7odpyug y8FhuVnPcQtUV0AG0Nz2xOMvsx1nBtqx/0BIpA== -----END CERTIFICATE-----Generated at Thu May 2 17:16:34 2024 by rpki-client on console-ams.rpki-client.org