$ rpki-client -vvf repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa File: 3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa (raw, json) Hash identifier: rkgA1ecdAQwqwlhPzGICq18Ka5xfEW+a3vh7SCXgiOw= Subject key identifier: 03:CA:EC:DD:BA:46:55:6A:23:A4:4B:B0:5A:5E:7A:C3:F2:21:32:40 Certificate issuer: /CN=2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC Certificate serial: 5EAB5B06C01FE8FC2BC2222A85E2B9BF059D7131 Authority key identifier: 2B:15:30:AD:20:AC:1F:2F:7F:2E:A2:EB:AA:E7:07:D0:E1:28:A1:DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa Signing time: Sun 26 Nov 2023 04:00:01 +0000 ROA not before: Sun 26 Nov 2023 03:55:01 +0000 ROA not after: Sun 24 Nov 2024 04:00:01 +0000 asID: 142381 IP address blocks: 103.172.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.crl rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ab:5b:06:c0:1f:e8:fc:2b:c2:22:2a:85:e2:b9:bf:05:9d:71:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC Validity Not Before: Nov 26 03:55:01 2023 GMT Not After : Nov 24 04:00:01 2024 GMT Subject: CN=03CAECDDBA46556A23A44BB05A5E7AC3F2213240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a2:7e:35:55:51:48:95:00:24:5e:92:fe:42: 79:0d:0c:3d:48:77:19:fd:dc:6e:42:18:5a:3b:c9: fe:dc:3b:4a:0e:93:45:e0:e2:a9:1e:52:9d:f8:5d: c3:47:5f:cf:a7:34:8b:87:d3:68:32:bf:1e:1c:19: af:54:b2:f9:f2:9d:77:43:55:b0:be:cb:9c:fe:44: 24:7d:54:c6:13:6b:97:1f:dd:1f:33:03:80:1a:73: 52:4c:0c:71:27:4f:e9:6a:11:0f:c8:20:ff:5a:75: 79:70:22:ea:6f:7c:d9:f4:28:a4:aa:44:a6:af:69: 50:16:eb:7f:c3:63:d9:0c:e5:89:c2:7b:f6:ea:aa: a1:7f:03:07:7d:c7:10:29:ce:a9:75:58:a9:2c:ec: 07:ef:75:bc:1c:64:81:8e:7c:32:d3:80:bd:2e:34: de:02:0d:73:6c:0d:20:e3:0b:8c:67:3f:7f:7d:3c: c2:47:2e:90:55:67:15:39:be:67:ce:f4:80:3c:6d: 60:18:2a:60:fc:27:21:63:97:cf:9d:5d:8a:34:b9: b5:b8:9b:bd:a0:2d:f3:7a:9c:7b:e5:d7:d1:5f:ec: da:6b:da:99:e0:d1:51:16:12:64:9f:5b:6c:72:80: 66:a5:84:fd:92:26:25:26:d5:8d:3a:21:07:00:f6: 13:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CA:EC:DD:BA:46:55:6A:23:A4:4B:B0:5A:5E:7A:C3:F2:21:32:40 X509v3 Authority Key Identifier: keyid:2B:15:30:AD:20:AC:1F:2F:7F:2E:A2:EB:AA:E7:07:D0:E1:28:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.17.0/24 Signature Algorithm: sha256WithRSAEncryption c6:03:ae:72:57:3c:cb:6f:90:cd:94:8c:85:9f:da:ad:e8:8f: 45:88:35:35:19:0d:af:7e:75:c2:7f:43:1c:d9:21:99:ac:63: 26:ad:6d:16:7a:4c:f4:1f:3b:9f:ab:af:cf:7b:46:33:d4:e9: 4c:b2:ac:25:c9:12:fb:1c:92:15:69:c1:8c:ab:a4:b1:e2:17: 57:9b:ae:ea:c5:80:a1:77:52:07:48:02:2f:f4:f4:86:fe:0a: ec:22:ea:03:5d:5c:b4:f5:7f:84:1a:47:c7:17:1b:b3:18:47: a7:a5:54:48:f3:f7:bb:d4:fc:c8:c5:90:aa:17:2b:62:c4:17: 73:d6:60:d6:d6:75:af:66:87:41:e2:40:ad:c6:e3:37:21:44: 2a:48:59:14:28:c6:23:44:01:92:b4:e3:7b:21:8a:00:b1:a0: 9d:0a:98:9c:17:be:d7:84:36:d2:26:61:0f:5f:33:6b:e0:a6: c4:fc:3d:2e:e2:8e:de:b6:0e:92:7c:04:e0:c3:79:e7:fb:84: 26:18:42:84:4d:ea:b9:4e:ab:b3:e6:10:f7:8d:f7:02:01:13: 89:5c:03:9b:cf:46:ee:4e:cb:2f:4d:72:84:92:a5:ef:92:4f: 9b:0f:17:0b:97:07:d1:be:1e:bc:02:0c:3d:c7:52:a7:a1:c3: 61:7b:ff:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXqtbBsAf6PwrwiIqheK5vwWdcTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkIxNTMwQUQyMEFDMUYyRjdGMkVBMkVCQUFFNzA3RDBF MTI4QTFEQzAeFw0yMzExMjYwMzU1MDFaFw0yNDExMjQwNDAwMDFaMDMxMTAvBgNV BAMTKDAzQ0FFQ0REQkE0NjU1NkEyM0E0NEJCMDVBNUU3QUMzRjIyMTMyNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJon41VVFIlQAkXpL+QnkNDD1I dxn93G5CGFo7yf7cO0oOk0Xg4qkeUp34XcNHX8+nNIuH02gyvx4cGa9UsvnynXdD VbC+y5z+RCR9VMYTa5cf3R8zA4Aac1JMDHEnT+lqEQ/IIP9adXlwIupvfNn0KKSq RKavaVAW63/DY9kM5YnCe/bqqqF/Awd9xxApzql1WKks7AfvdbwcZIGOfDLTgL0u NN4CDXNsDSDjC4xnP399PMJHLpBVZxU5vmfO9IA8bWAYKmD8JyFjl8+dXYo0ubW4 m72gLfN6nHvl19Ff7Npr2png0VEWEmSfW2xygGalhP2SJiUm1Y06IQcA9hNTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUA8rs3bpGVWojpEuwWl56w/IhMkAwHwYDVR0j BBgwFoAUKxUwrSCsHy9/LqLrqucH0OEoodwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NjY4ODU0YS0zZjI0LTQwYjEtODBjZC1lNjM2YWE3ZThiMWMvMC8yQjE1MzBBRDIw QUMxRjJGN0YyRUEyRUJBQUU3MDdEMEUxMjhBMURDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkIxNTMwQUQyMEFDMUYyRjdGMkVBMkVCQUFFNzA3RDBFMTI4 QTFEQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2Njg4NTRhLTNmMjQtNDBiMS04 MGNkLWU2MzZhYTdlOGIxYy8wLzMxMzAzMzJlMzEzNzMyMmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6wRMA0GCSqG SIb3DQEBCwUAA4IBAQDGA65yVzzLb5DNlIyFn9qt6I9FiDU1GQ2vfnXCf0Mc2SGZ rGMmrW0Wekz0Hzufq6/Pe0Yz1OlMsqwlyRL7HJIVacGMq6Sx4hdXm67qxYChd1IH SAIv9PSG/grsIuoDXVy09X+EGkfHFxuzGEenpVRI8/e71PzIxZCqFytixBdz1mDW 1nWvZodB4kCtxuM3IUQqSFkUKMYjRAGStON7IYoAsaCdCpicF77XhDbSJmEPXzNr 4KbE/D0u4o7etg6SfATgw3nn+4QmGEKETeq5Tquz5hD3jfcCAROJXAObz0buTssv TXKEkqXvkk+bDxcLlwfRvh68Agw9x1KnocNhe/8Y -----END CERTIFICATE-----Generated at Sat Jun 1 23:43:21 2024 by rpki-client on console-fra.rpki-client.org