$ rpki-client -vvf repo-rpki.idnic.net/repo/e717bf14-e49a-4acc-9c63-bf172797bcb2/0/3130332e3136312e3230302e302f32332d3233203d3e20313431363632.roa File: 3130332e3136312e3230302e302f32332d3233203d3e20313431363632.roa (raw, json) Hash identifier: R/l9UhbqPcqwRMnX2hwA8SqujJRrf3IaSQMCnazqgIg= Subject key identifier: 91:7A:68:5F:F0:53:E5:EB:BE:F2:07:A2:6F:DC:67:4F:C5:13:84:C5 Certificate issuer: /CN=6C7DA1DA96788F726F8FF892609842CE1220BCE0 Certificate serial: 67773F19EEAAFBE00D5CA768F753596B3081E47B Authority key identifier: 6C:7D:A1:DA:96:78:8F:72:6F:8F:F8:92:60:98:42:CE:12:20:BC:E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6C7DA1DA96788F726F8FF892609842CE1220BCE0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e717bf14-e49a-4acc-9c63-bf172797bcb2/0/3130332e3136312e3230302e302f32332d3233203d3e20313431363632.roa Signing time: Sat 20 Apr 2024 07:00:00 +0000 ROA not before: Sat 20 Apr 2024 06:55:00 +0000 ROA not after: Sat 19 Apr 2025 07:00:00 +0000 asID: 141662 IP address blocks: 103.161.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e717bf14-e49a-4acc-9c63-bf172797bcb2/0/6C7DA1DA96788F726F8FF892609842CE1220BCE0.crl rsync://repo-rpki.idnic.net/repo/e717bf14-e49a-4acc-9c63-bf172797bcb2/0/6C7DA1DA96788F726F8FF892609842CE1220BCE0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6C7DA1DA96788F726F8FF892609842CE1220BCE0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 16:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:77:3f:19:ee:aa:fb:e0:0d:5c:a7:68:f7:53:59:6b:30:81:e4:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6C7DA1DA96788F726F8FF892609842CE1220BCE0 Validity Not Before: Apr 20 06:55:00 2024 GMT Not After : Apr 19 07:00:00 2025 GMT Subject: CN=917A685FF053E5EBBEF207A26FDC674FC51384C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:98:16:b1:0a:8c:2b:4a:30:08:fd:49:23:20: 70:77:22:5e:96:e6:92:09:b6:7c:64:c4:94:1c:78: 02:16:86:32:47:3b:92:fc:1a:3a:77:3a:01:7d:da: 99:a7:e2:36:93:38:fc:21:bd:b9:49:8d:9a:74:65: 82:54:67:ff:87:04:42:54:d0:da:3a:ac:07:8d:05: 44:1e:39:4c:6a:10:8a:98:9b:f5:9d:02:ed:5e:7d: c2:8d:fa:64:ec:88:a1:b3:ad:04:43:9e:c5:96:94: 95:00:ff:8a:d7:0b:dd:53:6b:32:0f:b9:1d:6e:e9: 9a:01:38:76:0d:98:b2:5b:fd:ad:0d:5d:c8:00:e6: 4b:a2:a5:f3:e8:a2:49:51:05:86:6b:12:d0:9e:0f: c6:9a:9d:41:02:39:5d:8d:8f:d7:62:42:3b:a7:88: 9b:5c:a5:91:c2:c6:9f:ce:ea:02:b6:79:c2:ad:b0: 72:f7:c1:18:9b:c6:f1:ca:de:d3:6c:09:fd:c4:c3: 05:c4:7f:b5:a5:bd:21:c0:97:9e:a5:6e:93:a4:c3: 9d:7f:53:8d:43:82:a0:0c:d7:ee:fa:2d:1c:4c:bd: b4:44:81:f8:7b:5d:43:1c:3d:34:51:f9:ac:da:4a: ec:b4:99:c9:82:a6:85:64:b1:fd:5f:7d:6e:fd:1f: 67:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:7A:68:5F:F0:53:E5:EB:BE:F2:07:A2:6F:DC:67:4F:C5:13:84:C5 X509v3 Authority Key Identifier: keyid:6C:7D:A1:DA:96:78:8F:72:6F:8F:F8:92:60:98:42:CE:12:20:BC:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e717bf14-e49a-4acc-9c63-bf172797bcb2/0/6C7DA1DA96788F726F8FF892609842CE1220BCE0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6C7DA1DA96788F726F8FF892609842CE1220BCE0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e717bf14-e49a-4acc-9c63-bf172797bcb2/0/3130332e3136312e3230302e302f32332d3233203d3e20313431363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.200.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:d6:b4:25:c7:fc:97:45:fc:55:a8:42:92:cc:52:71:0b:21: 8c:77:8a:89:37:20:43:6f:65:cc:ae:1a:fe:26:df:30:d0:9d: ca:44:8f:87:64:6c:51:93:b2:a4:33:64:fd:e8:27:fe:be:d9: e3:ab:e9:05:d0:06:35:34:47:c5:48:a8:bc:dc:be:ef:bb:fe: 19:03:e1:d2:94:44:c9:de:a2:4a:45:ae:05:ff:15:81:8b:d7: 43:5f:b2:fa:23:d2:1d:f8:60:6b:dd:1a:88:3b:cb:19:1f:dc: 96:d1:de:bd:6e:f7:0c:ca:57:18:19:80:0a:1f:fe:cc:59:d5: d3:51:86:c7:07:11:7a:3d:f2:a1:8d:89:08:12:b3:88:23:77: 1e:9c:c7:6b:9e:79:6e:63:25:e5:3c:5c:01:62:00:e2:ac:2d: 63:78:62:31:30:61:52:84:1d:2f:29:0c:96:08:f0:8e:48:ee: 8d:84:e0:6c:c1:14:b3:0c:9a:0b:99:92:ba:8f:5b:76:ef:42: 41:4f:12:34:92:27:50:0c:90:db:2f:9c:77:f7:c4:09:ca:a4: 15:bc:f7:bd:57:ad:38:40:2a:20:1d:90:e1:a2:08:75:8e:4b: 2d:b6:0a:b0:f0:19:24:77:34:d2:2b:fd:56:53:e0:61:ce:b2: 62:58:ca:08 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZ3c/Ge6q++ANXKdo91NZazCB5HswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkM3REExREE5Njc4OEY3MjZGOEZGODkyNjA5ODQyQ0Ux MjIwQkNFMDAeFw0yNDA0MjAwNjU1MDBaFw0yNTA0MTkwNzAwMDBaMDMxMTAvBgNV BAMTKDkxN0E2ODVGRjA1M0U1RUJCRUYyMDdBMjZGREM2NzRGQzUxMzg0QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRmBaxCowrSjAI/UkjIHB3Il6W 5pIJtnxkxJQceAIWhjJHO5L8Gjp3OgF92pmn4jaTOPwhvblJjZp0ZYJUZ/+HBEJU 0No6rAeNBUQeOUxqEIqYm/WdAu1efcKN+mTsiKGzrQRDnsWWlJUA/4rXC91TazIP uR1u6ZoBOHYNmLJb/a0NXcgA5kuipfPooklRBYZrEtCeD8aanUECOV2Nj9diQjun iJtcpZHCxp/O6gK2ecKtsHL3wRibxvHK3tNsCf3EwwXEf7WlvSHAl56lbpOkw51/ U41DgqAM1+76LRxMvbREgfh7XUMcPTRR+azaSuy0mcmCpoVksf1ffW79H2dvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkXpoX/BT5eu+8geib9xnT8UThMUwHwYDVR0j BBgwFoAUbH2h2pZ4j3Jvj/iSYJhCzhIgvOAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NzE3YmYxNC1lNDlhLTRhY2MtOWM2My1iZjE3Mjc5N2JjYjIvMC82QzdEQTFEQTk2 Nzg4RjcyNkY4RkY4OTI2MDk4NDJDRTEyMjBCQ0UwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkM3REExREE5Njc4OEY3MjZGOEZGODkyNjA5ODQyQ0UxMjIw QkNFMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U3MTdiZjE0LWU0OWEtNGFjYy05 YzYzLWJmMTcyNzk3YmNiMi8wLzMxMzAzMzJlMzEzNjMxMmUzMjMwMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnocgwDQYJ KoZIhvcNAQELBQADggEBAF3WtCXH/JdF/FWoQpLMUnELIYx3iok3IENvZcyuGv4m 3zDQncpEj4dkbFGTsqQzZP3oJ/6+2eOr6QXQBjU0R8VIqLzcvu+7/hkD4dKURMne okpFrgX/FYGL10Nfsvoj0h34YGvdGog7yxkf3JbR3r1u9wzKVxgZgAof/sxZ1dNR hscHEXo98qGNiQgSs4gjdx6cx2ueeW5jJeU8XAFiAOKsLWN4YjEwYVKEHS8pDJYI 8I5I7o2E4GzBFLMMmguZkrqPW3bvQkFPEjSSJ1AMkNsvnHf3xAnKpBW8971XrThA KiAdkOGiCHWOSy22CrDwGSR3NNIr/VZT4GHOsmJYygg= -----END CERTIFICATE-----Generated at Fri May 31 15:07:38 2024 by rpki-client on console-fra.rpki-client.org