$ rpki-client -vvf repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa File: 3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa (raw, json) Hash identifier: 2mFEowHknu5hwUMbREuPCnQRB2aUeUq3N+B2wA0X4zw= Subject key identifier: 9F:48:CB:E7:60:90:B8:94:B5:BE:EF:9F:9B:66:0E:D6:D8:1C:AC:C2 Certificate issuer: /CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Certificate serial: 37737A9ACAE7368A23EDB72D488C313E346C6779 Authority key identifier: 73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa Signing time: Wed 16 Aug 2023 08:00:01 +0000 ROA not before: Wed 16 Aug 2023 07:55:01 +0000 ROA not after: Wed 14 Aug 2024 08:00:01 +0000 asID: 133800 IP address blocks: 103.89.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 16:35:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:73:7a:9a:ca:e7:36:8a:23:ed:b7:2d:48:8c:31:3e:34:6c:67:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Validity Not Before: Aug 16 07:55:01 2023 GMT Not After : Aug 14 08:00:01 2024 GMT Subject: CN=9F48CBE76090B894B5BEEF9F9B660ED6D81CACC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:55:b1:c0:b5:31:33:ef:1a:6c:a8:30:e6:b7: 51:fe:11:80:b8:38:57:f2:fe:e8:1c:48:42:f1:a3: df:62:23:1d:c6:70:99:01:73:f8:43:27:24:0f:3d: 20:cd:fa:ca:04:aa:e7:9f:f0:07:0b:4e:4c:cd:fa: a7:3c:c9:a0:1b:cd:53:97:79:ae:88:f7:59:5e:91: 26:92:a9:12:59:17:32:5d:49:17:7a:35:30:9c:04: 08:9d:50:b5:ae:32:9b:07:3d:47:74:ca:05:7d:35: 63:3f:1d:c3:ad:ae:37:54:d4:7d:2a:a0:34:a8:f1: ec:fe:c1:33:da:a2:a0:6e:3a:e8:80:7b:1a:02:24: 12:4f:fa:94:81:83:c8:f2:4f:96:04:bd:ac:b0:ef: 50:6c:d4:a0:ee:3f:ee:a5:87:bf:cf:d2:71:ce:d0: 3a:78:3f:49:e7:95:71:91:d0:ff:f1:e8:69:70:1b: fc:3e:ba:42:a3:28:1b:08:e2:ec:cc:e6:e0:c6:b4: 4a:c1:57:0d:3b:b7:d4:87:5e:c7:8f:a1:57:a7:8f: f8:cc:43:53:60:04:28:54:be:12:80:51:41:c9:38: 1c:f3:87:e5:7e:b7:46:75:16:44:2c:5b:52:91:2f: 29:93:06:05:37:21:ee:00:c7:a5:d9:3c:a4:e8:f3: bb:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:48:CB:E7:60:90:B8:94:B5:BE:EF:9F:9B:66:0E:D6:D8:1C:AC:C2 X509v3 Authority Key Identifier: keyid:73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.164.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:d9:8a:95:5a:c8:a2:9c:b8:4d:b6:6e:65:2e:05:19:b9:bc: 65:8d:8b:e6:5a:93:99:18:cf:1b:81:34:00:b0:91:5a:56:0a: 50:86:4c:50:24:bd:c7:e9:a3:dd:f8:5a:7b:f1:6e:b5:49:6e: 3e:3a:a9:88:79:79:de:ba:84:5f:0b:3d:1e:22:fb:36:72:35: 64:73:64:27:08:c5:15:07:0f:87:9a:38:39:29:10:10:dc:97: c8:f3:d6:61:80:75:90:a6:e8:57:dd:d5:8b:6e:47:d5:56:7c: 38:ae:87:ff:0f:02:c1:b7:cc:7c:0b:70:20:4b:09:5f:9d:05: 88:af:af:80:6b:3b:15:2e:d1:ae:31:e1:78:1b:86:35:32:36: b4:3a:bd:a9:5a:29:03:c0:22:7a:c0:d8:d6:7b:3b:20:56:b7: bb:a8:b7:66:0e:db:8a:83:f4:a1:08:7b:54:99:0b:97:ce:33: 21:0f:5d:e2:ee:20:e8:c4:b6:a6:ba:1f:69:16:eb:1a:4a:94: 72:3e:dc:ab:d6:a2:9a:9f:02:b3:08:e4:29:40:3b:7b:6c:be: 72:b9:2b:65:d5:5a:05:a4:bb:0c:a4:6f:52:1b:01:38:09:b6: 5d:e3:c6:b2:e3:d0:d6:9b:6a:a7:b8:bb:ba:b8:92:ad:c2:a2: 65:e0:a6:06 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN3N6msrnNooj7bctSIwxPjRsZ3kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0 NTFCMDhDMjAeFw0yMzA4MTYwNzU1MDFaFw0yNDA4MTQwODAwMDFaMDMxMTAvBgNV BAMTKDlGNDhDQkU3NjA5MEI4OTRCNUJFRUY5RjlCNjYwRUQ2RDgxQ0FDQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZVbHAtTEz7xpsqDDmt1H+EYC4 OFfy/ugcSELxo99iIx3GcJkBc/hDJyQPPSDN+soEquef8AcLTkzN+qc8yaAbzVOX ea6I91lekSaSqRJZFzJdSRd6NTCcBAidULWuMpsHPUd0ygV9NWM/HcOtrjdU1H0q oDSo8ez+wTPaoqBuOuiAexoCJBJP+pSBg8jyT5YEvayw71Bs1KDuP+6lh7/P0nHO 0Dp4P0nnlXGR0P/x6GlwG/w+ukKjKBsI4uzM5uDGtErBVw07t9SHXsePoVenj/jM Q1NgBChUvhKAUUHJOBzzh+V+t0Z1FkQsW1KRLymTBgU3Ie4Ax6XZPKTo87sjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUn0jL52CQuJS1vu+fm2YO1tgcrMIwHwYDVR0j BBgwFoAUc3aSLJO/Zn/7va8HNa5z0UUbCMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDE3NmRkZC1hOTgwLTQzZDYtOTRhNy05NWVlZGE1Mzk2NjUvMC83Mzc2OTIyQzkz QkY2NjdGRkJCREFGMDczNUFFNzNEMTQ1MUIwOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0NTFC MDhDMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkMTc2ZGRkLWE5ODAtNDNkNi05 NGE3LTk1ZWVkYTUzOTY2NS8wLzMxMzAzMzJlMzgzOTJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1mkMA0GCSqG SIb3DQEBCwUAA4IBAQCN2YqVWsiinLhNtm5lLgUZubxljYvmWpOZGM8bgTQAsJFa VgpQhkxQJL3H6aPd+Fp78W61SW4+OqmIeXneuoRfCz0eIvs2cjVkc2QnCMUVBw+H mjg5KRAQ3JfI89ZhgHWQpuhX3dWLbkfVVnw4rof/DwLBt8x8C3AgSwlfnQWIr6+A azsVLtGuMeF4G4Y1Mja0Or2pWikDwCJ6wNjWezsgVre7qLdmDtuKg/ShCHtUmQuX zjMhD13i7iDoxLamuh9pFusaSpRyPtyr1qKanwKzCOQpQDt7bL5yuStl1VoFpLsM pG9SGwE4CbZd48ay49DWm2qnuLu6uJKtwqJl4KYG -----END CERTIFICATE-----Generated at Fri Apr 26 13:34:42 2024 by rpki-client on console-ams.rpki-client.org