$ rpki-client -vvf repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39362e302f32322d3234203d3e203137343530.roa File: 3130332e382e39362e302f32322d3234203d3e203137343530.roa (raw, json) Hash identifier: B5BXVdAeOH4Uo9LoIOoXra62j0qIUdE4rGjnSCYwJVA= Subject key identifier: 27:4C:DA:23:44:A9:F3:8F:1D:C5:EB:DC:74:18:87:62:0D:67:C7:A1 Certificate issuer: /CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Certificate serial: 64B5C1BB73F7C68DC291575E6845B8902A57FD7A Authority key identifier: 4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject info access: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39362e302f32322d3234203d3e203137343530.roa Signing time: Wed 11 Oct 2023 08:49:55 +0000 ROA not before: Wed 11 Oct 2023 08:44:55 +0000 ROA not after: Wed 09 Oct 2024 08:49:55 +0000 asID: 17450 IP address blocks: 103.8.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 09:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:b5:c1:bb:73:f7:c6:8d:c2:91:57:5e:68:45:b8:90:2a:57:fd:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Validity Not Before: Oct 11 08:44:55 2023 GMT Not After : Oct 9 08:49:55 2024 GMT Subject: CN=274CDA2344A9F38F1DC5EBDC741887620D67C7A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d5:5a:5c:ee:ef:e3:0b:69:11:09:ed:14:86: 0b:7e:8d:44:f3:4b:0a:dc:c4:9c:d3:5f:7a:ab:f2: 0e:e4:dd:59:97:6b:d0:44:b3:77:bd:ce:ce:c7:b1: 8e:03:2d:26:42:d9:a4:6b:1c:44:df:4e:a3:eb:76: 98:1f:56:e3:79:6b:8c:cc:90:57:a9:a1:59:f5:1f: 84:99:e9:56:6b:27:b1:6f:41:4b:79:cf:99:34:11: 72:eb:4f:a6:90:10:6f:a5:cd:d7:ec:a0:64:8d:4d: 7b:cc:44:1c:93:cc:ca:5b:0f:7a:8b:58:34:f5:1b: e7:fe:d7:53:4f:43:1f:2c:f4:bc:73:31:2c:69:e4: 88:d8:94:d9:88:6d:50:20:73:77:76:a3:82:6a:4a: 27:e5:1f:e0:d1:d1:c0:b4:92:ab:97:a0:0d:34:9c: f8:6a:d2:17:d5:ff:35:3e:c0:59:d9:91:97:7d:3e: cd:9c:ea:f5:8b:2c:c7:13:78:6d:fd:04:b5:be:db: e6:40:60:ea:67:e8:c9:73:1f:31:e3:4d:f8:7d:ee: 2e:5e:63:48:21:6f:ff:4b:a2:ff:61:e4:46:e4:39: c1:26:94:0e:5d:fb:1d:14:02:5d:ed:f2:65:76:5a: 1e:4a:b6:f7:71:fb:c0:4e:ef:5c:65:77:2d:a9:6d: 20:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:4C:DA:23:44:A9:F3:8F:1D:C5:EB:DC:74:18:87:62:0D:67:C7:A1 X509v3 Authority Key Identifier: keyid:4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39362e302f32322d3234203d3e203137343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.96.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:30:0b:13:cc:8d:38:08:55:cf:01:c8:00:0e:5d:55:a2:d1: d2:c3:68:4e:57:5b:c2:88:c5:e6:29:a1:62:e6:3f:b5:9b:44: 3a:4a:ac:9a:a1:32:2e:5d:6d:8c:24:4c:8d:78:ac:f9:10:13: 8f:35:c5:fb:0f:d7:1e:f3:ab:38:8d:8b:f9:69:e0:20:a8:43: 9e:44:0e:73:8f:54:a6:6f:a2:37:f6:34:d8:2d:e7:02:b8:d0: b9:c6:c4:c9:32:77:09:04:d2:8e:4e:65:5b:55:0a:0f:98:3d: 46:e6:65:4a:69:fe:ba:93:c1:61:60:ba:6c:60:01:91:29:7a: 47:69:ff:d2:a0:de:c4:0f:71:4c:50:6e:46:b9:94:0b:6a:e7: 95:f2:c6:39:5c:c4:59:64:b4:a3:f1:be:59:fd:a7:37:00:3c: a5:d0:6f:d7:2a:6d:35:95:52:af:1a:54:36:4a:80:e1:c2:bc: 3a:a1:c3:a6:ab:e5:0c:59:bf:51:c5:d4:93:3b:27:cb:6d:0e: 90:6f:98:cd:a4:e0:cf:bd:13:e3:17:37:22:d5:d9:16:9c:12: 38:7c:3c:b8:24:22:61:f1:cf:2c:5f:dd:5b:de:bc:74:c7:0d: 8e:b2:b6:7e:51:5c:e5:a3:97:13:d4:c1:7f:af:f7:d0:e1:b1: 14:bc:3e:f0 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUZLXBu3P3xo3CkVdeaEW4kCpX/XowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4Njkx NjM4QTcwNzAeFw0yMzEwMTEwODQ0NTVaFw0yNDEwMDkwODQ5NTVaMDMxMTAvBgNV BAMTKDI3NENEQTIzNDRBOUYzOEYxREM1RUJEQzc0MTg4NzYyMEQ2N0M3QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs1Vpc7u/jC2kRCe0Uhgt+jUTz SwrcxJzTX3qr8g7k3VmXa9BEs3e9zs7HsY4DLSZC2aRrHETfTqPrdpgfVuN5a4zM kFepoVn1H4SZ6VZrJ7FvQUt5z5k0EXLrT6aQEG+lzdfsoGSNTXvMRByTzMpbD3qL WDT1G+f+11NPQx8s9LxzMSxp5IjYlNmIbVAgc3d2o4JqSiflH+DR0cC0kquXoA00 nPhq0hfV/zU+wFnZkZd9Ps2c6vWLLMcTeG39BLW+2+ZAYOpn6MlzHzHjTfh97i5e Y0ghb/9Lov9h5EbkOcEmlA5d+x0UAl3t8mV2Wh5Ktvdx+8BO71xldy2pbSCZAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUJ0zaI0Sp848dxevcdBiHYg1nx6EwHwYDVR0j BBgwFoAUSsfc2OsSNK3EJ66+OUnoaRY4pwcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzgwNjFmMS1mYTMwLTRiZDYtODFhMC0yZWM2NzA4MzZjNDIvMC80QUM3RENEOEVC MTIzNEFEQzQyN0FFQkUzOTQ5RTg2OTE2MzhBNzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4NjkxNjM4 QTcwNy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDM4MDYxZjEtZmEzMC00YmQ2LTgx YTAtMmVjNjcwODM2YzQyLzAvMzEzMDMzMmUzODJlMzkzNjJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDMxMzczNDM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnCGAwDQYJKoZIhvcNAQEL BQADggEBAHowCxPMjTgIVc8ByAAOXVWi0dLDaE5XW8KIxeYpoWLmP7WbRDpKrJqh Mi5dbYwkTI14rPkQE481xfsP1x7zqziNi/lp4CCoQ55EDnOPVKZvojf2NNgt5wK4 0LnGxMkydwkE0o5OZVtVCg+YPUbmZUpp/rqTwWFgumxgAZEpekdp/9Kg3sQPcUxQ bka5lAtq55XyxjlcxFlktKPxvln9pzcAPKXQb9cqbTWVUq8aVDZKgOHCvDqhw6ar 5QxZv1HF1JM7J8ttDpBvmM2k4M+9E+MXNyLV2RacEjh8PLgkImHxzyxf3VvevHTH DY6ytn5RXOWjlxPUwX+v99DhsRS8PvA= -----END CERTIFICATE-----Generated at Sat May 25 15:38:30 2024 by rpki-client on console-ams.rpki-client.org