$ rpki-client -vvf repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa File: 3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa (raw, json) Hash identifier: +ewxLSIH38044IGUW603e1+ALrCHYzVh3GYEjkIjDno= Subject key identifier: 2A:12:BB:28:9F:02:D3:26:60:31:4A:D0:0C:42:6D:0A:C8:31:C7:B2 Certificate issuer: /CN=E420F134FA1A6BA70588424BD4E862EE6C50C188 Certificate serial: 185AA671C152D1E9EDE888ED139F20D8029F061A Authority key identifier: E4:20:F1:34:FA:1A:6B:A7:05:88:42:4B:D4:E8:62:EE:6C:50:C1:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa Signing time: Mon 31 Jul 2023 00:09:33 +0000 ROA not before: Mon 31 Jul 2023 00:04:33 +0000 ROA not after: Mon 29 Jul 2024 00:09:33 +0000 asID: 63885 IP address blocks: 103.194.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.crl rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 01:38:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:5a:a6:71:c1:52:d1:e9:ed:e8:88:ed:13:9f:20:d8:02:9f:06:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E420F134FA1A6BA70588424BD4E862EE6C50C188 Validity Not Before: Jul 31 00:04:33 2023 GMT Not After : Jul 29 00:09:33 2024 GMT Subject: CN=2A12BB289F02D32660314AD00C426D0AC831C7B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ba:fa:12:10:a1:85:ba:a6:6b:1e:ae:44:85: 65:be:14:ef:77:06:d6:d3:aa:91:ae:65:c3:12:f0: 0c:4b:c2:9e:42:06:36:00:a2:0a:9e:39:ff:84:97: f0:22:a0:b0:1f:e4:90:09:0b:da:07:a4:c3:6e:a5: 83:5b:c4:b8:db:5d:d4:b7:0e:ff:ea:48:13:ce:98: 7e:0c:b3:44:2d:09:42:b9:73:d8:65:fc:5d:99:59: f0:73:cb:75:23:6b:38:bf:a2:ec:a5:0c:04:0b:c6: 00:95:6c:bb:65:9f:9a:b1:77:3a:95:c4:c5:5b:d9: c4:e8:d5:db:2d:5a:fb:d4:a7:d1:5d:27:35:ce:80: d8:49:f8:f1:f2:b1:f0:e6:a0:ff:b9:4a:d3:90:84: 7b:a1:1e:cc:04:9c:5f:62:88:43:82:c0:02:42:0c: 0f:13:f2:cb:9c:43:2c:49:17:34:bd:e0:d9:b5:ce: f9:51:9a:22:f3:31:fd:97:e4:15:09:b0:6f:bc:ad: 6e:95:bc:c2:c2:0b:fb:b5:09:9f:96:2b:c7:02:cc: 9d:10:a8:d0:af:d3:0c:f3:51:b9:3d:18:6c:ad:c0: 0e:06:8b:cb:8f:46:f7:9d:4f:84:8d:46:fa:f4:66: 95:37:b3:29:1a:1a:54:02:04:ec:a1:f2:7f:a5:c7: 4b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:12:BB:28:9F:02:D3:26:60:31:4A:D0:0C:42:6D:0A:C8:31:C7:B2 X509v3 Authority Key Identifier: keyid:E4:20:F1:34:FA:1A:6B:A7:05:88:42:4B:D4:E8:62:EE:6C:50:C1:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.194.172.0/22 Signature Algorithm: sha256WithRSAEncryption 16:5f:d7:cd:cd:23:33:cc:49:f2:6c:b3:0a:95:ac:d8:23:78: 5c:9d:c8:3d:2a:34:ad:be:fa:81:29:8e:2b:25:ca:5c:1f:cc: 10:06:26:91:08:4d:5f:97:1b:34:f7:8b:96:c2:81:f3:d1:20: 33:7b:db:b3:b9:4c:c1:73:5d:4a:07:eb:db:80:12:4f:b7:21: 33:bf:1c:a1:9c:33:d9:c8:ca:ee:26:7f:2a:15:36:22:bd:bc: b3:63:15:7f:40:10:7d:0e:30:89:2e:e7:a5:49:53:db:93:60: e3:cb:f2:e3:9c:49:ce:a1:58:bf:c1:45:4e:b8:fa:9d:dd:c9: a0:e2:4b:ab:6a:72:c6:bf:26:0a:b4:dd:af:d6:32:aa:82:84: 19:98:d3:b1:fd:be:89:15:ab:04:9c:a6:d2:18:f7:b9:f8:7a: 9d:ca:b9:04:03:84:9a:bd:91:70:c1:cc:be:c3:52:f7:fc:b6: 77:07:13:15:34:02:a4:24:e4:17:b3:65:b7:2e:2f:69:ab:88: 44:05:c2:31:50:e6:2b:48:54:cf:b0:fe:ef:bb:57:f3:0d:c6: b0:25:73:15:b0:6b:b4:00:f3:24:8b:bc:23:ca:33:ae:70:4e: f3:72:81:b8:c0:15:d4:56:9e:05:80:90:56:5d:90:7e:f8:51: 76:fb:56:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGFqmccFS0ent6IjtE58g2AKfBhowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQyMEYxMzRGQTFBNkJBNzA1ODg0MjRCRDRFODYyRUU2 QzUwQzE4ODAeFw0yMzA3MzEwMDA0MzNaFw0yNDA3MjkwMDA5MzNaMDMxMTAvBgNV BAMTKDJBMTJCQjI4OUYwMkQzMjY2MDMxNEFEMDBDNDI2RDBBQzgzMUM3QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeuvoSEKGFuqZrHq5EhWW+FO93 BtbTqpGuZcMS8AxLwp5CBjYAogqeOf+El/AioLAf5JAJC9oHpMNupYNbxLjbXdS3 Dv/qSBPOmH4Ms0QtCUK5c9hl/F2ZWfBzy3Ujazi/ouylDAQLxgCVbLtln5qxdzqV xMVb2cTo1dstWvvUp9FdJzXOgNhJ+PHysfDmoP+5StOQhHuhHswEnF9iiEOCwAJC DA8T8sucQyxJFzS94Nm1zvlRmiLzMf2X5BUJsG+8rW6VvMLCC/u1CZ+WK8cCzJ0Q qNCv0wzzUbk9GGytwA4Gi8uPRvedT4SNRvr0ZpU3sykaGlQCBOyh8n+lx0sFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKhK7KJ8C0yZgMUrQDEJtCsgxx7IwHwYDVR0j BBgwFoAU5CDxNPoaa6cFiEJL1Ohi7mxQwYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZmUzNWZhYS1lZDJiLTQyNzEtYjQ4Yy00ZWEyMWMzMDkzNTIvMC9FNDIwRjEzNEZB MUE2QkE3MDU4ODQyNEJENEU4NjJFRTZDNTBDMTg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQyMEYxMzRGQTFBNkJBNzA1ODg0MjRCRDRFODYyRUU2QzUw QzE4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNmZTM1ZmFhLWVkMmItNDI3MS1i NDhjLTRlYTIxYzMwOTM1Mi8wLzMxMzAzMzJlMzEzOTM0MmUzMTM3MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNjMzMzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ8KsMA0GCSqG SIb3DQEBCwUAA4IBAQAWX9fNzSMzzEnybLMKlazYI3hcncg9KjStvvqBKY4rJcpc H8wQBiaRCE1flxs094uWwoHz0SAze9uzuUzBc11KB+vbgBJPtyEzvxyhnDPZyMru Jn8qFTYivbyzYxV/QBB9DjCJLuelSVPbk2Djy/LjnEnOoVi/wUVOuPqd3cmg4kur anLGvyYKtN2v1jKqgoQZmNOx/b6JFasEnKbSGPe5+HqdyrkEA4SavZFwwcy+w1L3 /LZ3BxMVNAKkJOQXs2W3Li9pq4hEBcIxUOYrSFTPsP7vu1fzDcawJXMVsGu0APMk i7wjyjOucE7zcoG4wBXUVp4FgJBWXZB++FF2+1br -----END CERTIFICATE-----Generated at Wed Apr 17 21:21:46 2024 by rpki-client on console-fra.rpki-client.org