$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32342d3234203d3e203338373838.roa File: 3130332e372e302e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: zRZSw9cO7N/meNvjy881qzb2zf+rB0v3i4mzbBV+noo= Subject key identifier: 24:87:9D:2A:6D:CB:B3:FC:CB:4F:E9:3F:9B:46:E6:E2:A3:A1:11:E8 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 3241FFBEDE5795021AF6E4ED02BE1C2248437AE0 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32342d3234203d3e203338373838.roa Signing time: Sat 12 Aug 2023 05:01:18 +0000 ROA not before: Sat 12 Aug 2023 04:56:18 +0000 ROA not after: Sat 10 Aug 2024 05:01:18 +0000 asID: 38788 IP address blocks: 103.7.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:41:ff:be:de:57:95:02:1a:f6:e4:ed:02:be:1c:22:48:43:7a:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Aug 12 04:56:18 2023 GMT Not After : Aug 10 05:01:18 2024 GMT Subject: CN=24879D2A6DCBB3FCCB4FE93F9B46E6E2A3A111E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:65:7f:40:d3:1d:de:33:17:c0:d7:56:ae:7a: 7e:b7:7f:99:88:39:4f:1e:ec:d5:b2:ec:dd:be:7d: 36:fb:7a:20:69:40:2c:45:aa:11:81:73:d0:a9:23: b0:71:42:cd:55:77:9c:dc:59:02:45:50:14:fc:2a: b2:67:0d:23:04:24:fd:18:1e:ac:45:82:b7:ed:de: f5:6a:04:20:f0:47:aa:1b:2c:a7:01:a8:f4:0f:a3: ce:0a:7c:e5:a5:ad:29:94:ec:60:27:44:07:0e:2f: ef:3b:5e:77:fb:22:5d:b3:31:e2:cd:12:5b:72:c3: ea:0e:33:a9:7d:03:91:1d:9d:4a:7b:3b:83:76:9d: ea:4c:7b:8b:49:a5:05:50:02:a8:29:6f:1b:46:71: 68:1f:92:ed:fa:2d:91:f0:c0:e1:4f:f6:29:87:89: 88:bb:b7:93:4e:de:bd:a8:95:0d:5b:6e:58:bd:de: f5:32:a0:08:51:a1:3a:00:a7:bf:cd:f6:57:6e:0b: cb:2e:6f:e8:ef:7d:13:b4:7c:2a:ca:2a:23:96:40: 0f:ed:ab:a7:7f:04:d1:95:68:43:fd:dc:4c:92:cf: b4:b0:67:8d:32:03:7a:30:52:ba:37:81:43:28:a8: af:ce:2e:ba:3d:db:04:b7:44:d3:74:2d:6e:a1:3c: 98:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:87:9D:2A:6D:CB:B3:FC:CB:4F:E9:3F:9B:46:E6:E2:A3:A1:11:E8 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.7.0.0/24 Signature Algorithm: sha256WithRSAEncryption 68:5b:8f:f5:17:ff:eb:8c:c4:1e:be:31:25:5d:92:a0:33:a7: 57:2c:bb:67:1e:1e:6d:ce:17:bc:d8:7b:17:58:1b:8f:26:e1: 88:26:39:84:8c:73:58:c1:51:24:a3:d8:77:11:30:11:7c:4d: fb:07:4b:5f:f7:6f:8d:a4:35:4c:c3:ab:74:d0:ba:92:90:53: fc:16:8b:52:4f:0e:0d:8c:46:10:c3:4d:bb:dd:6c:58:b7:d9: 71:67:21:8b:fe:3b:a3:68:a9:c3:4b:06:4b:10:44:33:47:2f: 15:b5:31:72:bc:2c:70:f0:fb:34:17:45:89:19:03:88:ff:0a: 62:e4:dd:6e:47:e2:01:b6:df:4e:5f:18:6f:b4:c5:08:dc:b6: 1a:8a:5a:c4:13:67:d0:13:d6:18:c1:21:05:85:1a:1d:be:04: bb:4c:b5:37:f8:7c:1c:ee:91:95:a4:1d:4f:bf:22:0e:c4:d5: 5b:e2:bc:e7:54:31:d5:13:87:b4:6d:5d:15:51:5a:7a:1e:f2: 1e:da:32:c2:d3:53:ce:e3:dd:25:81:93:24:ff:51:58:79:33: a8:60:e4:00:cf:75:13:09:62:98:f1:f4:68:60:75:6f:42:44: 10:17:a3:21:31:33:5b:dc:f4:35:f9:93:a1:80:86:d7:d8:64: b5:2c:4c:69 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUMkH/vt5XlQIa9uTtAr4cIkhDeuAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yMzA4MTIwNDU2MThaFw0yNDA4MTAwNTAxMThaMDMxMTAvBgNV BAMTKDI0ODc5RDJBNkRDQkIzRkNDQjRGRTkzRjlCNDZFNkUyQTNBMTExRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ZX9A0x3eMxfA11auen63f5mI OU8e7NWy7N2+fTb7eiBpQCxFqhGBc9CpI7BxQs1Vd5zcWQJFUBT8KrJnDSMEJP0Y HqxFgrft3vVqBCDwR6obLKcBqPQPo84KfOWlrSmU7GAnRAcOL+87Xnf7Il2zMeLN Eltyw+oOM6l9A5EdnUp7O4N2nepMe4tJpQVQAqgpbxtGcWgfku36LZHwwOFP9imH iYi7t5NO3r2olQ1bbli93vUyoAhRoToAp7/N9lduC8sub+jvfRO0fCrKKiOWQA/t q6d/BNGVaEP93EySz7SwZ40yA3owUro3gUMoqK/OLro92wS3RNN0LW6hPJhPAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUJIedKm3Ls/zLT+k/m0bm4qOhEegwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzEzMDMzMmUzNzJlMzAyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZwcAMA0GCSqGSIb3DQEBCwUA A4IBAQBoW4/1F//rjMQevjElXZKgM6dXLLtnHh5tzhe82HsXWBuPJuGIJjmEjHNY wVEko9h3ETARfE37B0tf92+NpDVMw6t00LqSkFP8FotSTw4NjEYQw0273WxYt9lx ZyGL/jujaKnDSwZLEEQzRy8VtTFyvCxw8Ps0F0WJGQOI/wpi5N1uR+IBtt9OXxhv tMUI3LYailrEE2fQE9YYwSEFhRodvgS7TLU3+Hwc7pGVpB1PvyIOxNVb4rznVDHV E4e0bV0VUVp6HvIe2jLC01PO490lgZMk/1FYeTOoYOQAz3UTCWKY8fRoYHVvQkQQ F6MhMTNb3PQ1+ZOhgIbX2GS1LExp -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org