$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231392e302f32342d3234203d3e203338373638.roa File: 3130332e3233342e3231392e302f32342d3234203d3e203338373638.roa (raw, json) Hash identifier: aaUy+A8ycFEdcaWDMa+Q3xU8Q53R8e8DMonAA+rotB8= Subject key identifier: 23:64:FB:A9:DA:49:77:B9:15:1B:C5:B5:57:06:22:89:4E:D1:93:FD Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 03FE951DF5DBF757AAE66D0EE70E26C3C9AE7426 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231392e302f32342d3234203d3e203338373638.roa Signing time: Wed 18 Oct 2023 06:00:01 +0000 ROA not before: Wed 18 Oct 2023 05:55:01 +0000 ROA not after: Wed 16 Oct 2024 06:00:01 +0000 asID: 38768 IP address blocks: 103.234.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 14:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:fe:95:1d:f5:db:f7:57:aa:e6:6d:0e:e7:0e:26:c3:c9:ae:74:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Oct 18 05:55:01 2023 GMT Not After : Oct 16 06:00:01 2024 GMT Subject: CN=2364FBA9DA4977B9151BC5B5570622894ED193FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5f:bf:c7:17:13:56:65:64:7e:10:68:f6:c1: 15:53:42:04:64:22:d5:56:b8:f0:23:c2:b2:0d:63: 89:9a:6d:26:37:b7:c9:b9:19:54:1c:ac:20:ae:3c: 41:df:08:c1:42:89:9d:fb:bc:6d:89:49:0a:ed:c8: a2:20:85:a4:af:54:7d:00:47:fd:79:78:cd:64:7c: 7d:7c:a5:54:7d:ba:8e:27:ac:e1:da:53:15:a6:39: fd:ca:e1:58:f0:66:20:f6:67:46:60:5d:0a:c6:65: f0:b2:3d:3b:6c:a2:06:c2:b5:1f:60:4c:ac:a7:ab: 86:35:13:ba:1d:b7:ff:6b:56:9f:92:5d:36:f9:4b: 20:65:78:bc:57:6d:25:8a:7b:67:cb:62:33:0a:e5: 4e:88:2b:2d:aa:92:c4:6f:0b:22:37:b2:f4:b5:65: b1:9e:14:d2:f3:ed:e7:1d:d0:a3:39:c3:6c:ee:45: 3f:73:2f:5f:bc:d2:69:b5:09:d1:99:08:da:3b:98: c9:05:3e:8c:4c:02:00:01:81:98:24:b5:1c:53:c2: 4a:81:23:d9:3a:c2:3d:60:1b:45:4c:1d:75:90:98: 10:6c:3a:9a:35:d4:f6:4f:a8:6b:d8:53:72:5d:d5: 56:df:ba:2c:86:e8:8a:e9:48:fc:88:3b:f3:26:4c: c5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:64:FB:A9:DA:49:77:B9:15:1B:C5:B5:57:06:22:89:4E:D1:93:FD X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231392e302f32342d3234203d3e203338373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.219.0/24 Signature Algorithm: sha256WithRSAEncryption 17:d7:ab:c9:57:ba:dd:90:0a:a9:40:46:56:44:1b:f8:1f:28: 0b:fe:22:f4:b2:ea:01:31:40:5d:ed:54:a9:59:90:cc:35:41: bf:a2:43:1a:bb:d6:96:9b:0a:91:50:b0:94:cf:ea:c5:b8:fb: 39:bf:c6:47:90:20:7d:92:54:4e:92:2d:11:19:93:7d:26:e2: f5:59:a9:fe:a7:ec:8e:9b:f8:32:c6:4e:d9:69:0b:17:b3:23: ec:ce:07:63:90:05:42:48:af:17:b2:8b:a7:10:2b:32:ac:99: 92:5b:9f:c7:20:62:b2:ac:44:9e:4f:6e:7d:02:d5:e2:2a:f6: d0:56:9a:1e:25:97:5e:06:02:c4:46:4f:31:b0:1e:d3:de:bd: 44:35:54:92:aa:9d:ee:90:6f:4a:7c:eb:7d:71:e8:74:9e:ca: 6c:d5:f1:90:c4:28:17:a5:1a:9d:85:c0:6c:2e:31:d0:b7:2e: 21:b1:19:46:bb:35:fa:ce:2c:51:e3:13:97:5c:bf:ff:27:b6: f9:d6:1d:17:8d:65:c5:07:5b:5d:d2:73:eb:de:9f:e3:ef:9c: 5b:47:3f:4f:d1:bd:12:d5:0a:2d:17:bf:68:f2:20:f3:6f:84: 6c:62:92:cc:5d:67:1b:64:f9:fd:ec:dc:5a:51:f8:69:01:cd: 72:cd:ec:4b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA/6VHfXb91eq5m0O5w4mw8mudCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yMzEwMTgwNTU1MDFaFw0yNDEwMTYwNjAwMDFaMDMxMTAvBgNV BAMTKDIzNjRGQkE5REE0OTc3QjkxNTFCQzVCNTU3MDYyMjg5NEVEMTkzRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNX7/HFxNWZWR+EGj2wRVTQgRk ItVWuPAjwrINY4mabSY3t8m5GVQcrCCuPEHfCMFCiZ37vG2JSQrtyKIghaSvVH0A R/15eM1kfH18pVR9uo4nrOHaUxWmOf3K4VjwZiD2Z0ZgXQrGZfCyPTtsogbCtR9g TKynq4Y1E7odt/9rVp+SXTb5SyBleLxXbSWKe2fLYjMK5U6IKy2qksRvCyI3svS1 ZbGeFNLz7ecd0KM5w2zuRT9zL1+80mm1CdGZCNo7mMkFPoxMAgABgZgktRxTwkqB I9k6wj1gG0VMHXWQmBBsOpo11PZPqGvYU3Jd1VbfuiyG6IrpSPyIO/MmTMVTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUI2T7qdpJd7kVG8W1VwYiiU7Rk/0wHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzAzMzJlMzIzMzM0MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+rbMA0GCSqG SIb3DQEBCwUAA4IBAQAX16vJV7rdkAqpQEZWRBv4HygL/iL0suoBMUBd7VSpWZDM NUG/okMau9aWmwqRULCUz+rFuPs5v8ZHkCB9klROki0RGZN9JuL1Wan+p+yOm/gy xk7ZaQsXsyPszgdjkAVCSK8XsounECsyrJmSW5/HIGKyrESeT259AtXiKvbQVpoe JZdeBgLERk8xsB7T3r1ENVSSqp3ukG9KfOt9ceh0nsps1fGQxCgXpRqdhcBsLjHQ ty4hsRlGuzX6zixR4xOXXL//J7b51h0XjWXFB1td0nPr3p/j75xbRz9P0b0S1Qot F79o8iDzb4RsYpLMXWcbZPn97NxaUfhpAc1yzexL -----END CERTIFICATE-----Generated at Thu May 2 14:31:46 2024 by rpki-client on console-fra.rpki-client.org