$ rpki-client -vvf repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32332d3233203d3e20313431303731.roa File: 3130332e3135352e3139362e302f32332d3233203d3e20313431303731.roa (raw, json) Hash identifier: tyBaNRvTwRtGPOH3ZDOfohtzCo5kWp2kTb5iqfnfu4w= Subject key identifier: C3:B8:64:C8:70:CB:99:66:9C:3C:B9:71:6C:1B:53:DC:79:B2:59:F7 Certificate issuer: /CN=A532AD36631301388EC939BEB0F099FCDE956410 Certificate serial: 078F43AB068380DC13B91E418890CDE17DEF2306 Authority key identifier: A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32332d3233203d3e20313431303731.roa Signing time: Sat 04 Nov 2023 09:00:01 +0000 ROA not before: Sat 04 Nov 2023 08:55:01 +0000 ROA not after: Sat 02 Nov 2024 09:00:01 +0000 asID: 141071 IP address blocks: 103.155.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:8f:43:ab:06:83:80:dc:13:b9:1e:41:88:90:cd:e1:7d:ef:23:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A532AD36631301388EC939BEB0F099FCDE956410 Validity Not Before: Nov 4 08:55:01 2023 GMT Not After : Nov 2 09:00:01 2024 GMT Subject: CN=C3B864C870CB99669C3CB9716C1B53DC79B259F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6b:4c:54:10:7d:a3:66:fa:3a:76:c4:90:e9: b2:00:0f:91:a5:8d:a7:de:e6:2c:ff:1e:c4:51:be: 21:59:3a:bf:68:56:23:c8:9e:46:72:8b:ec:0b:aa: 35:e4:98:10:65:2f:ff:ca:35:66:b2:77:43:24:d3: c1:b4:56:81:3b:59:b3:51:8d:6d:b0:ca:5c:dd:c5: 21:d8:ef:82:40:8e:ca:b0:0b:33:8f:eb:21:e0:23: 30:e6:5d:3c:7d:bd:04:4e:38:c3:28:57:28:50:3b: 49:ab:d0:84:4b:0a:47:5a:43:07:b2:a2:6b:47:81: 43:b4:0d:cf:cc:4d:06:e8:e6:50:93:92:12:91:5c: e3:97:d0:16:e1:5d:68:e4:7d:ac:7f:89:89:76:ef: 93:12:0c:21:df:06:bd:1b:05:5a:a5:41:db:be:71: 39:0a:a5:d2:14:5d:30:3c:10:9c:6f:ab:1e:55:81: 64:28:df:d3:0f:63:d0:75:d9:2f:ab:9f:53:38:33: 8a:64:0a:93:15:0d:6d:0d:6a:11:58:04:d8:1a:9e: 52:a5:89:99:be:0f:db:b7:8d:bb:67:69:b7:44:dc: b5:15:27:d4:4c:2e:b3:c3:96:b8:03:57:9d:67:19: 35:4a:b2:5e:c6:1d:42:94:4d:fa:b9:3f:f7:ec:54: 01:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B8:64:C8:70:CB:99:66:9C:3C:B9:71:6C:1B:53:DC:79:B2:59:F7 X509v3 Authority Key Identifier: keyid:A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32332d3233203d3e20313431303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.196.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:15:56:51:dd:f5:13:07:91:c1:f7:f4:f8:c3:a3:64:07:2c: 26:2a:43:0e:2e:95:cf:32:d7:71:5e:a1:57:af:2f:74:49:08: 01:eb:c0:5e:7b:32:ef:86:0a:65:df:44:c9:4c:ba:29:f4:35: 71:bd:e3:50:3b:f2:bd:67:48:dd:5a:52:34:9f:5d:f8:0f:3b: 0d:50:4a:59:c6:f2:df:4c:21:19:03:b1:e7:d6:16:70:4a:48: 05:89:3b:4f:90:a8:6b:be:67:a3:98:20:d6:5e:a4:c6:e1:1f: e4:56:40:ca:fd:13:38:0d:e6:f2:be:e8:31:30:61:af:59:45: ed:76:53:7f:5b:cd:d6:fc:bb:28:96:32:68:b3:3e:4f:51:d1: 41:a1:bf:4e:0e:2f:21:98:b2:d1:55:e9:20:80:c6:d4:65:cb: b5:ad:8c:18:5c:b2:5f:80:67:d6:5c:5a:d7:93:5b:d9:48:b9: 7e:6c:4d:39:03:43:14:cd:0c:01:15:8b:8e:ec:c7:a0:01:f8: 55:5d:16:38:45:c0:b9:e9:4a:97:6b:44:46:ed:8b:aa:9d:9f: 0b:42:5d:ed:e2:76:49:f0:7b:70:51:96:90:27:0b:6a:1f:51: ff:d0:c2:b3:e0:17:25:06:0b:cd:14:f1:08:4f:00:c9:ab:09: a0:74:bd:f1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUB49DqwaDgNwTuR5BiJDN4X3vIwYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNE RTk1NjQxMDAeFw0yMzExMDQwODU1MDFaFw0yNDExMDIwOTAwMDFaMDMxMTAvBgNV BAMTKEMzQjg2NEM4NzBDQjk5NjY5QzNDQjk3MTZDMUI1M0RDNzlCMjU5RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9a0xUEH2jZvo6dsSQ6bIAD5Gl jafe5iz/HsRRviFZOr9oViPInkZyi+wLqjXkmBBlL//KNWayd0Mk08G0VoE7WbNR jW2wylzdxSHY74JAjsqwCzOP6yHgIzDmXTx9vQROOMMoVyhQO0mr0IRLCkdaQwey omtHgUO0Dc/MTQbo5lCTkhKRXOOX0BbhXWjkfax/iYl275MSDCHfBr0bBVqlQdu+ cTkKpdIUXTA8EJxvqx5VgWQo39MPY9B12S+rn1M4M4pkCpMVDW0NahFYBNganlKl iZm+D9u3jbtnabdE3LUVJ9RMLrPDlrgDV51nGTVKsl7GHUKUTfq5P/fsVAEvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUw7hkyHDLmWacPLlxbBtT3HmyWfcwHwYDVR0j BBgwFoAUpTKtNmMTATiOyTm+sPCZ/N6VZBAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWNlMGM5NC0wZDZjLTQ1YjMtYWFjNi0zNGQwY2U5YjFmMDgvMC9BNTMyQUQzNjYz MTMwMTM4OEVDOTM5QkVCMEYwOTlGQ0RFOTU2NDEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNERTk1 NjQxMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5Y2UwYzk0LTBkNmMtNDViMy1h YWM2LTM0ZDBjZTliMWYwOC8wLzMxMzAzMzJlMzEzNTM1MmUzMTM5MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMDM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm8QwDQYJ KoZIhvcNAQELBQADggEBAB0VVlHd9RMHkcH39PjDo2QHLCYqQw4ulc8y13FeoVev L3RJCAHrwF57Mu+GCmXfRMlMuin0NXG941A78r1nSN1aUjSfXfgPOw1QSlnG8t9M IRkDsefWFnBKSAWJO0+QqGu+Z6OYINZepMbhH+RWQMr9EzgN5vK+6DEwYa9ZRe12 U39bzdb8uyiWMmizPk9R0UGhv04OLyGYstFV6SCAxtRly7WtjBhcsl+AZ9ZcWteT W9lIuX5sTTkDQxTNDAEVi47sx6AB+FVdFjhFwLnpSpdrREbti6qdnwtCXe3idknw e3BRlpAnC2ofUf/QwrPgFyUGC80U8QhPAMmrCaB0vfE= -----END CERTIFICATE-----Generated at Sun Jun 23 14:00:37 2024 by rpki-client on console-fra.rpki-client.org