$ rpki-client -vvf repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa File: 3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: Zb76sC7k5AU6C00pqLxny0lKUmOfdH4vTo/TlVPfcJY= Subject key identifier: 0D:6E:5F:3E:DF:1F:B5:0F:2C:2E:7E:D9:B5:59:6E:C4:10:57:DC:D8 Certificate issuer: /CN=F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF Certificate serial: 5489C41FC2B93C7C2C9982403E50E46BFBBD538A Authority key identifier: F1:0D:F0:FD:3D:45:5B:BA:95:D0:CE:9E:AA:27:EE:38:3E:44:D6:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa Signing time: Tue 19 Sep 2023 08:00:00 +0000 ROA not before: Tue 19 Sep 2023 07:55:00 +0000 ROA not after: Tue 17 Sep 2024 08:00:00 +0000 asID: 58821 IP address blocks: 103.169.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.crl rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 22:28:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:89:c4:1f:c2:b9:3c:7c:2c:99:82:40:3e:50:e4:6b:fb:bd:53:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF Validity Not Before: Sep 19 07:55:00 2023 GMT Not After : Sep 17 08:00:00 2024 GMT Subject: CN=0D6E5F3EDF1FB50F2C2E7ED9B5596EC41057DCD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5f:43:2e:22:42:e4:c7:fe:4d:34:cf:6b:85: 4e:02:2f:c3:1c:5f:03:bf:3c:a0:20:3c:e6:03:8d: 98:85:43:80:1d:ec:7e:c4:72:c6:a4:9a:32:2a:14: 52:ef:3e:95:83:78:3e:47:dc:ab:20:80:56:91:70: 3a:11:94:7c:d6:74:4d:55:89:62:35:e8:c6:63:dd: 01:c5:d4:7d:b7:fd:34:01:36:7b:78:0d:e3:fd:3f: 25:79:6e:36:22:b0:15:dd:d5:cf:a3:f8:23:b9:7d: c3:95:94:c4:14:06:f4:df:0b:48:0e:5c:7e:1a:b2: e9:d7:c1:6a:af:4a:2e:61:96:77:c7:6b:5a:bf:88: f5:46:99:cc:40:45:55:f2:c8:e6:e1:c1:f7:ce:f8: 0b:cf:a3:29:a6:70:4c:e4:92:38:0b:94:a5:3a:62: 5c:f9:d3:4f:80:a9:3f:d0:81:b6:3a:29:32:be:22: c7:f8:de:9c:f9:f0:55:ca:0a:14:fb:15:e3:e6:66: 8f:05:88:d1:35:05:04:e4:23:c0:0c:22:29:55:47: ca:02:d5:2b:0e:3a:a1:24:68:96:26:ee:23:16:ce: b6:ef:14:70:79:0f:e9:94:00:42:88:7f:3b:f0:cc: e6:d6:4e:56:74:ee:e5:3e:e4:cb:46:7a:cc:f5:8a: 36:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:6E:5F:3E:DF:1F:B5:0F:2C:2E:7E:D9:B5:59:6E:C4:10:57:DC:D8 X509v3 Authority Key Identifier: keyid:F1:0D:F0:FD:3D:45:5B:BA:95:D0:CE:9E:AA:27:EE:38:3E:44:D6:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.136.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:98:de:c2:9a:b4:e8:82:1f:96:61:f7:1a:d5:32:f0:5c:ea: 29:cb:b1:78:59:60:61:26:b9:6c:42:0b:ca:e7:7f:5a:34:a5: 72:a4:1c:96:7b:e4:43:3a:76:a3:b6:a0:b7:6a:5e:71:37:fc: 1f:72:88:82:0b:2f:66:55:11:96:83:95:ce:60:0d:13:d0:1b: 6d:c8:2f:a1:c6:af:72:cf:bd:2e:70:b8:90:00:15:a5:e9:4e: 5a:b2:8e:1c:f0:1f:b8:83:27:da:12:a3:39:44:c2:e1:63:35: d4:89:4d:f1:66:76:40:28:ce:83:95:43:1a:7a:47:bb:b2:93: be:45:29:ae:96:f9:f9:23:13:bb:90:76:ee:17:9f:6c:70:6c: 40:34:eb:70:0d:57:cc:1e:76:c4:56:fc:73:75:9b:90:fb:27: 0d:2e:62:7c:51:4f:b6:d3:73:74:61:ee:af:bf:ec:78:72:80: d4:2b:80:0d:92:9f:bc:7d:2e:3e:c2:10:b0:46:30:d3:24:1a: 90:6e:a1:e0:ec:44:ca:25:31:1b:4f:24:cf:fc:70:e6:a5:f3: c7:c9:b0:92:43:ce:e1:68:5e:8d:51:a2:f0:13:80:1c:c2:e5: cf:ef:bb:d3:6f:ec:44:95:79:0b:e7:b8:08:50:d8:67:65:bd: 84:12:69:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVInEH8K5PHwsmYJAPlDka/u9U4owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREYwRkQzRDQ1NUJCQTk1RDBDRTlFQUEyN0VFMzgz RTQ0RDZBRjAeFw0yMzA5MTkwNzU1MDBaFw0yNDA5MTcwODAwMDBaMDMxMTAvBgNV BAMTKDBENkU1RjNFREYxRkI1MEYyQzJFN0VEOUI1NTk2RUM0MTA1N0RDRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmX0MuIkLkx/5NNM9rhU4CL8Mc XwO/PKAgPOYDjZiFQ4Ad7H7EcsakmjIqFFLvPpWDeD5H3KsggFaRcDoRlHzWdE1V iWI16MZj3QHF1H23/TQBNnt4DeP9PyV5bjYisBXd1c+j+CO5fcOVlMQUBvTfC0gO XH4asunXwWqvSi5hlnfHa1q/iPVGmcxARVXyyObhwffO+AvPoymmcEzkkjgLlKU6 Ylz500+AqT/QgbY6KTK+Isf43pz58FXKChT7FePmZo8FiNE1BQTkI8AMIilVR8oC 1SsOOqEkaJYm7iMWzrbvFHB5D+mUAEKIfzvwzObWTlZ07uU+5MtGesz1ijbdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDW5fPt8ftQ8sLn7ZtVluxBBX3NgwHwYDVR0j BBgwFoAU8Q3w/T1FW7qV0M6eqifuOD5E1q8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWNiMmU4ZS1hMWEyLTRjYTAtODBiMC0yMjU1MThmZmFlMTQvMC9GMTBERjBGRDNE NDU1QkJBOTVEMENFOUVBQTI3RUUzODNFNDRENkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREYwRkQzRDQ1NUJCQTk1RDBDRTlFQUEyN0VFMzgzRTQ0 RDZBRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxY2IyZThlLWExYTItNGNhMC04 MGIwLTIyNTUxOGZmYWUxNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6mIMA0GCSqG SIb3DQEBCwUAA4IBAQCbmN7CmrTogh+WYfca1TLwXOopy7F4WWBhJrlsQgvK539a NKVypByWe+RDOnajtqC3al5xN/wfcoiCCy9mVRGWg5XOYA0T0BttyC+hxq9yz70u cLiQABWl6U5aso4c8B+4gyfaEqM5RMLhYzXUiU3xZnZAKM6DlUMaeke7spO+RSmu lvn5IxO7kHbuF59scGxANOtwDVfMHnbEVvxzdZuQ+ycNLmJ8UU+203N0Ye6vv+x4 coDUK4ANkp+8fS4+whCwRjDTJBqQbqHg7ETKJTEbTyTP/HDmpfPHybCSQ87haF6N UaLwE4AcwuXP77vTb+xElXkL57gIUNhnZb2EEmkC -----END CERTIFICATE-----Generated at Thu May 2 20:02:22 2024 by rpki-client on console-ams.rpki-client.org