$ rpki-client -vvf repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa File: 3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: /+Dy0S7MvELZVK+6vguUSKlq219n/6kFtXqFTQOLSQ8= Subject key identifier: F3:F7:36:5E:3E:CC:B6:F8:86:84:DA:4D:E1:9D:58:73:46:36:D3:10 Certificate issuer: /CN=47C87696529FAF404AF0E8681AAFA8F224187D59 Certificate serial: 7188209EB64507D3A177DF07FC717FA16B5440D2 Authority key identifier: 47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa Signing time: Sun 03 Sep 2023 08:01:02 +0000 ROA not before: Sun 03 Sep 2023 07:56:02 +0000 ROA not after: Sun 01 Sep 2024 08:01:02 +0000 asID: 58369 IP address blocks: 103.136.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.crl rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:88:20:9e:b6:45:07:d3:a1:77:df:07:fc:71:7f:a1:6b:54:40:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47C87696529FAF404AF0E8681AAFA8F224187D59 Validity Not Before: Sep 3 07:56:02 2023 GMT Not After : Sep 1 08:01:02 2024 GMT Subject: CN=F3F7365E3ECCB6F88684DA4DE19D58734636D310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c0:99:1c:7b:44:ee:cf:89:1d:2b:1b:fc:47: 3d:65:84:51:89:df:a2:41:7e:fd:e5:da:06:eb:b7: 69:af:b6:9c:fb:d7:15:00:b7:58:29:6e:de:2d:67: 08:a5:e3:c0:e8:49:55:02:2f:55:96:67:fc:0c:13: 26:d8:3b:c0:45:27:94:29:0e:d2:b0:7e:37:32:7c: 04:43:b8:36:5d:11:35:76:9a:d9:47:cb:ce:02:24: 1b:f5:b9:05:c6:86:60:77:17:cd:4f:c1:4d:ea:52: 13:38:bc:2d:e0:d0:ca:c2:b1:95:48:14:54:6f:ce: 0e:6d:2b:32:4b:b5:98:8c:64:ed:ab:52:bd:20:c2: d2:aa:02:60:54:e4:b2:3f:79:9f:f1:86:50:05:9f: e5:cf:eb:f8:8d:f7:2d:e1:e9:cf:a4:7c:ea:49:5f: 5e:33:26:2f:94:5b:a6:8f:79:63:38:00:c5:43:f0: de:ae:f1:53:29:a7:f3:ce:b8:ca:08:07:4c:66:67: a9:f8:33:dc:80:7e:44:66:23:4f:77:04:37:ec:c0: 65:34:9d:bc:c5:c1:2e:f0:fa:e5:ff:44:71:1d:14: fb:1b:9b:ea:93:8c:2c:0f:fb:40:db:b5:3f:48:5e: a9:11:f2:b9:f5:01:2b:db:89:99:9f:c6:6b:41:e1: a6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:F7:36:5E:3E:CC:B6:F8:86:84:DA:4D:E1:9D:58:73:46:36:D3:10 X509v3 Authority Key Identifier: keyid:47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.171.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:7b:49:7a:9c:ea:89:cc:3a:13:10:7d:dc:1f:ef:ae:9e:94: bb:f9:56:96:2a:81:9c:18:36:16:db:c0:c8:48:5e:20:3f:2c: c2:9d:40:6c:dd:00:99:8b:71:06:62:f8:de:d7:f7:6b:78:3e: a4:88:38:61:d3:0b:69:6f:db:94:a3:15:5c:7f:6f:11:a0:3a: d3:8c:e8:78:90:fd:77:60:a1:fe:90:fc:64:62:04:27:97:f2: 72:42:5c:36:8a:6e:43:80:fa:b3:99:f4:40:25:66:93:1a:62: e6:91:85:db:ec:bc:c0:19:3f:2a:67:e1:cc:2b:6b:2c:4b:69: 6a:96:32:43:b0:d1:27:de:07:e5:50:54:fe:a2:f3:ed:f7:3f: 65:cc:a0:ec:c9:2c:43:f4:ce:5f:f1:28:54:d1:a7:fc:2b:9c: b0:c8:17:47:5c:24:b0:38:2f:79:bb:cf:49:4c:43:7a:09:5b: c4:57:8e:46:25:0d:3d:0e:5a:0f:f9:46:18:e5:8d:22:73:bc: fa:ee:a0:d4:a6:03:11:8e:52:d1:81:e9:e9:c5:2d:da:31:27: 41:ea:25:73:fa:51:c4:8f:40:9a:0d:65:38:59:90:69:87:d2: c9:a6:78:14:dc:6c:9b:62:39:02:a6:a4:14:e5:ba:e7:38:ee: 40:63:eb:5d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcYggnrZFB9Ohd98H/HF/oWtUQNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdDODc2OTY1MjlGQUY0MDRBRjBFODY4MUFBRkE4RjIy NDE4N0Q1OTAeFw0yMzA5MDMwNzU2MDJaFw0yNDA5MDEwODAxMDJaMDMxMTAvBgNV BAMTKEYzRjczNjVFM0VDQ0I2Rjg4Njg0REE0REUxOUQ1ODczNDYzNkQzMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCywJkce0Tuz4kdKxv8Rz1lhFGJ 36JBfv3l2gbrt2mvtpz71xUAt1gpbt4tZwil48DoSVUCL1WWZ/wMEybYO8BFJ5Qp DtKwfjcyfARDuDZdETV2mtlHy84CJBv1uQXGhmB3F81PwU3qUhM4vC3g0MrCsZVI FFRvzg5tKzJLtZiMZO2rUr0gwtKqAmBU5LI/eZ/xhlAFn+XP6/iN9y3h6c+kfOpJ X14zJi+UW6aPeWM4AMVD8N6u8VMpp/POuMoIB0xmZ6n4M9yAfkRmI093BDfswGU0 nbzFwS7w+uX/RHEdFPsbm+qTjCwP+0DbtT9IXqkR8rn1ASvbiZmfxmtB4aYRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8/c2Xj7MtviGhNpN4Z1Yc0Y20xAwHwYDVR0j BBgwFoAUR8h2llKfr0BK8OhoGq+o8iQYfVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjYxZjA0ZC0xOGU3LTQyZmYtYWU4Mi1kNTY1NTRmOTI2NGMvMC80N0M4NzY5NjUy OUZBRjQwNEFGMEU4NjgxQUFGQThGMjI0MTg3RDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdDODc2OTY1MjlGQUY0MDRBRjBFODY4MUFBRkE4RjIyNDE4 N0Q1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNjFmMDRkLTE4ZTctNDJmZi1h ZTgyLWQ1NjU1NGY5MjY0Yy8wLzMxMzAzMzJlMzEzMzM2MmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4irMA0GCSqG SIb3DQEBCwUAA4IBAQBae0l6nOqJzDoTEH3cH++unpS7+VaWKoGcGDYW28DISF4g PyzCnUBs3QCZi3EGYvje1/dreD6kiDhh0wtpb9uUoxVcf28RoDrTjOh4kP13YKH+ kPxkYgQnl/JyQlw2im5DgPqzmfRAJWaTGmLmkYXb7LzAGT8qZ+HMK2ssS2lqljJD sNEn3gflUFT+ovPt9z9lzKDsySxD9M5f8ShU0af8K5ywyBdHXCSwOC95u89JTEN6 CVvEV45GJQ09DloP+UYY5Y0ic7z67qDUpgMRjlLRgenpxS3aMSdB6iVz+lHEj0Ca DWU4WZBph9LJpngU3GybYjkCpqQU5brnOO5AY+td -----END CERTIFICATE-----Generated at Fri Apr 19 00:30:53 2024 by rpki-client on console-fra.rpki-client.org