$ rpki-client -vvf repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/3130332e3231302e36382e302f32332d3234203d3e20313431313037.roa File: 3130332e3231302e36382e302f32332d3234203d3e20313431313037.roa (raw, json) Hash identifier: r4XOMyWCXGSJ7wCSJMZgEI9/Pwy4rC3TqtyFlFTn5F4= Subject key identifier: 6F:80:3D:6D:7C:FE:F0:A3:A3:20:A3:CE:B6:69:2B:27:82:2D:19:D3 Certificate issuer: /CN=358F4D417A1317CB220BBDC982D7F35D1540D51A Certificate serial: 4632331DA9A0F34BFC600ACA16050030E8A34AB0 Authority key identifier: 35:8F:4D:41:7A:13:17:CB:22:0B:BD:C9:82:D7:F3:5D:15:40:D5:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/358F4D417A1317CB220BBDC982D7F35D1540D51A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/3130332e3231302e36382e302f32332d3234203d3e20313431313037.roa Signing time: Wed 13 Dec 2023 04:26:44 +0000 ROA not before: Wed 13 Dec 2023 04:21:44 +0000 ROA not after: Wed 11 Dec 2024 04:26:44 +0000 asID: 141107 IP address blocks: 103.210.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/358F4D417A1317CB220BBDC982D7F35D1540D51A.crl rsync://repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/358F4D417A1317CB220BBDC982D7F35D1540D51A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/358F4D417A1317CB220BBDC982D7F35D1540D51A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:32:33:1d:a9:a0:f3:4b:fc:60:0a:ca:16:05:00:30:e8:a3:4a:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=358F4D417A1317CB220BBDC982D7F35D1540D51A Validity Not Before: Dec 13 04:21:44 2023 GMT Not After : Dec 11 04:26:44 2024 GMT Subject: CN=6F803D6D7CFEF0A3A320A3CEB6692B27822D19D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6e:d6:66:70:8f:83:c9:fa:b8:49:9b:08:f4: 0b:4c:3a:ef:64:2d:e5:64:20:a0:d4:1e:b7:9b:f2: bf:29:92:5f:9e:b2:02:a0:8c:40:78:aa:51:73:25: ca:61:24:d7:39:5b:04:47:34:7f:2d:a4:35:b0:e4: 25:8d:80:e6:a4:58:31:cf:ae:4e:27:d2:30:82:0c: 09:5c:1e:77:eb:b3:d8:4a:4f:e8:7a:bb:2d:a2:32: b4:2f:44:f7:84:59:51:a7:71:51:e3:4a:37:b9:26: e2:5b:7b:2f:07:3f:4a:0b:cb:87:cc:f4:cc:a4:62: 81:56:04:79:b5:58:d8:66:a0:47:08:84:a7:2d:a5: 7e:19:86:d4:83:8f:74:a5:8f:58:f4:47:4d:bb:b6: 99:66:67:7a:70:25:8e:da:4e:02:3d:00:13:2e:4e: 90:96:0c:05:56:6a:fa:c3:e2:53:ed:51:7b:93:13: 77:62:ec:ff:91:19:b5:e3:b1:68:1e:b7:e5:83:e0: fc:29:dd:5f:bc:5a:55:3d:8a:e8:19:b6:c7:d5:35: b3:a0:80:b9:83:1d:49:2f:64:8a:4e:12:77:d5:c4: 7b:ec:6c:a6:d1:f7:f4:fc:04:68:24:63:ec:de:11: ea:8a:5c:a7:c1:82:e4:40:a9:1e:2d:83:bc:3e:1a: d2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:80:3D:6D:7C:FE:F0:A3:A3:20:A3:CE:B6:69:2B:27:82:2D:19:D3 X509v3 Authority Key Identifier: keyid:35:8F:4D:41:7A:13:17:CB:22:0B:BD:C9:82:D7:F3:5D:15:40:D5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/358F4D417A1317CB220BBDC982D7F35D1540D51A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/358F4D417A1317CB220BBDC982D7F35D1540D51A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/3130332e3231302e36382e302f32332d3234203d3e20313431313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.68.0/23 Signature Algorithm: sha256WithRSAEncryption 95:59:04:82:f5:24:ff:e5:0b:bd:08:e6:a8:49:a2:96:58:6b: 3f:6e:b3:99:fe:67:52:2f:5d:8e:a9:63:b5:6c:d6:2f:52:de: 5a:a0:81:19:50:ac:05:d1:5b:ce:93:34:f6:63:fb:6d:04:f2: 59:54:2c:29:4f:4a:41:8a:a7:b7:40:36:7b:77:c5:c0:64:d8: de:cc:82:2f:35:c4:29:0d:22:f3:e9:13:40:06:d0:86:c9:c4: df:77:e9:8b:8e:24:0b:ca:e1:ba:4c:64:94:b4:b4:8b:08:eb: b9:4e:fb:c9:29:6e:ec:cc:63:e8:f9:b8:a6:f4:5d:c5:0b:88: 8e:97:98:9f:3d:99:58:7d:c1:9d:47:8e:f6:d0:20:ec:0a:57: 0e:58:8f:65:13:64:6f:4a:f3:18:e6:28:5c:e8:46:aa:45:55: 57:8d:cd:4b:e7:c6:62:7a:30:75:2b:64:41:3c:65:e2:79:47: 07:f7:82:62:db:62:b6:02:7c:df:c5:d8:fd:04:d4:af:45:d4: 7f:74:f0:63:8c:a7:60:e0:44:09:c7:df:20:03:21:b9:11:51: 7b:ab:01:f0:86:de:1b:96:4e:96:8e:1f:93:db:8d:56:3f:d2: 52:d5:b0:87:1f:84:eb:36:74:16:94:af:b4:9c:5f:52:90:bb: 52:64:c1:a2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURjIzHamg80v8YArKFgUAMOijSrAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU4RjRENDE3QTEzMTdDQjIyMEJCREM5ODJEN0YzNUQx NTQwRDUxQTAeFw0yMzEyMTMwNDIxNDRaFw0yNDEyMTEwNDI2NDRaMDMxMTAvBgNV BAMTKDZGODAzRDZEN0NGRUYwQTNBMzIwQTNDRUI2NjkyQjI3ODIyRDE5RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCbtZmcI+Dyfq4SZsI9AtMOu9k LeVkIKDUHreb8r8pkl+esgKgjEB4qlFzJcphJNc5WwRHNH8tpDWw5CWNgOakWDHP rk4n0jCCDAlcHnfrs9hKT+h6uy2iMrQvRPeEWVGncVHjSje5JuJbey8HP0oLy4fM 9MykYoFWBHm1WNhmoEcIhKctpX4ZhtSDj3Slj1j0R027tplmZ3pwJY7aTgI9ABMu TpCWDAVWavrD4lPtUXuTE3di7P+RGbXjsWget+WD4Pwp3V+8WlU9iugZtsfVNbOg gLmDHUkvZIpOEnfVxHvsbKbR9/T8BGgkY+zeEeqKXKfBguRAqR4tg7w+GtKLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUb4A9bXz+8KOjIKPOtmkrJ4ItGdMwHwYDVR0j BBgwFoAUNY9NQXoTF8siC73JgtfzXRVA1RowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NDM4YzE5NS00OTRhLTQ2YTItYjkzYy04ZTE1NjY4ZjA1YjIvMC8zNThGNEQ0MTdB MTMxN0NCMjIwQkJEQzk4MkQ3RjM1RDE1NDBENTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU4RjRENDE3QTEzMTdDQjIyMEJCREM5ODJEN0YzNUQxNTQw RDUxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y0MzhjMTk1LTQ5NGEtNDZhMi1i OTNjLThlMTU2NjhmMDViMi8wLzMxMzAzMzJlMzIzMTMwMmUzNjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9JEMA0GCSqG SIb3DQEBCwUAA4IBAQCVWQSC9ST/5Qu9COaoSaKWWGs/brOZ/mdSL12OqWO1bNYv Ut5aoIEZUKwF0VvOkzT2Y/ttBPJZVCwpT0pBiqe3QDZ7d8XAZNjezIIvNcQpDSLz 6RNABtCGycTfd+mLjiQLyuG6TGSUtLSLCOu5TvvJKW7szGPo+bim9F3FC4iOl5if PZlYfcGdR4720CDsClcOWI9lE2RvSvMY5ihc6EaqRVVXjc1L58ZiejB1K2RBPGXi eUcH94Ji22K2Anzfxdj9BNSvRdR/dPBjjKdg4EQJx98gAyG5EVF7qwHwht4blk6W jh+T241WP9JS1bCHH4TrNnQWlK+0nF9SkLtSZMGi -----END CERTIFICATE-----Generated at Fri May 3 20:32:19 2024 by rpki-client on console-fra.rpki-client.org