$ rpki-client -vvf repo-rpki.idnic.net/repo/76db4cb8-faea-4530-b29e-0b7a4affc316/0/3130332e3136382e3138382e302f32332d3234203d3e203137393935.roa File: 3130332e3136382e3138382e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: FOSZ+k6IqzBm76C73GTLsw0OmxxmYyfgYE1jH8pKN7s= Subject key identifier: C9:77:31:51:10:02:28:4B:6B:0C:97:2A:AD:89:15:51:3C:E6:26:19 Certificate issuer: /CN=3053FFA7A0123B032FC9458281063C89F007FA98 Certificate serial: 528B68660639BD204E4E2F398018983C873684AD Authority key identifier: 30:53:FF:A7:A0:12:3B:03:2F:C9:45:82:81:06:3C:89:F0:07:FA:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3053FFA7A0123B032FC9458281063C89F007FA98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76db4cb8-faea-4530-b29e-0b7a4affc316/0/3130332e3136382e3138382e302f32332d3234203d3e203137393935.roa Signing time: Fri 01 Sep 2023 09:00:00 +0000 ROA not before: Fri 01 Sep 2023 08:55:00 +0000 ROA not after: Fri 30 Aug 2024 09:00:00 +0000 asID: 17995 IP address blocks: 103.168.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76db4cb8-faea-4530-b29e-0b7a4affc316/0/3053FFA7A0123B032FC9458281063C89F007FA98.crl rsync://repo-rpki.idnic.net/repo/76db4cb8-faea-4530-b29e-0b7a4affc316/0/3053FFA7A0123B032FC9458281063C89F007FA98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3053FFA7A0123B032FC9458281063C89F007FA98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:8b:68:66:06:39:bd:20:4e:4e:2f:39:80:18:98:3c:87:36:84:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3053FFA7A0123B032FC9458281063C89F007FA98 Validity Not Before: Sep 1 08:55:00 2023 GMT Not After : Aug 30 09:00:00 2024 GMT Subject: CN=C97731511002284B6B0C972AAD8915513CE62619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3f:13:24:07:e5:24:fd:cb:dd:8a:40:c4:cf: 29:20:0d:61:28:98:d3:dc:38:44:28:b4:07:63:ab: 6c:19:dd:b2:c7:42:84:7f:af:2f:39:2b:56:7d:17: 5e:5a:85:4f:42:2d:31:ae:75:38:86:a2:0d:d9:3f: c7:51:15:cd:e3:e7:9d:2b:5c:2d:61:5d:3b:82:e8: 6e:bc:d0:c9:75:8b:8b:60:73:89:4e:a3:c0:a2:bb: b8:63:54:9e:f0:b5:d0:ce:0e:57:2a:7d:42:06:3a: 51:aa:29:10:04:e0:aa:23:15:4f:f4:a6:0a:e9:5c: b7:e0:c1:89:be:71:9e:bd:aa:28:c9:70:b8:0a:55: e8:d2:cb:e8:89:18:65:76:15:0f:1b:73:fc:cc:f0: b6:e2:19:00:36:cf:37:9d:57:be:45:eb:a5:bd:b3: 5b:6a:f6:23:4d:5f:5a:18:88:7b:9e:c2:b7:32:af: 29:f2:61:f9:5f:2e:d6:4a:01:da:fd:ab:73:fe:a9: 83:58:33:fe:78:4e:3f:d3:9c:6e:86:b2:ae:51:cb: 94:c0:44:06:f9:80:df:b6:19:56:6a:71:21:bb:df: 21:d9:d8:ea:d9:7d:fb:82:96:a5:f9:73:51:e6:03: 0f:8a:2f:fd:f3:65:da:ce:e9:df:d2:6d:68:bd:f3: 1e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:77:31:51:10:02:28:4B:6B:0C:97:2A:AD:89:15:51:3C:E6:26:19 X509v3 Authority Key Identifier: keyid:30:53:FF:A7:A0:12:3B:03:2F:C9:45:82:81:06:3C:89:F0:07:FA:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76db4cb8-faea-4530-b29e-0b7a4affc316/0/3053FFA7A0123B032FC9458281063C89F007FA98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3053FFA7A0123B032FC9458281063C89F007FA98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76db4cb8-faea-4530-b29e-0b7a4affc316/0/3130332e3136382e3138382e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.188.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:49:d7:dd:d7:cd:d0:d3:5a:8a:e1:57:fb:ae:55:ce:48:7c: 90:72:a6:01:d2:52:fd:bc:31:8b:7d:25:cf:38:19:9e:78:f9: 27:7b:ff:31:7b:2b:d7:a9:91:ba:63:5e:0b:c1:6d:41:8a:c0: 75:11:f8:49:45:83:49:ab:8f:57:66:77:ad:14:9b:c8:19:7c: 6f:71:28:85:a3:a9:93:3d:33:12:3d:9a:52:7c:7c:f8:ef:26: 16:e8:3c:61:87:16:f9:f7:ba:fb:4e:2e:79:3c:96:b9:1c:61: a6:d9:5d:6e:81:86:cb:05:3f:f6:cf:90:ec:3e:5f:c4:f4:e7: 4b:c2:aa:82:58:dd:8d:79:75:22:c4:d7:b7:21:5d:dd:14:aa: 2b:eb:58:2f:b3:55:c6:22:8a:f6:3b:10:79:29:07:5a:1c:0b: 0d:fa:67:79:c9:d9:d6:b6:43:0a:a8:46:77:3b:aa:ef:6d:e2: 74:06:c5:3f:04:4b:ef:c9:0c:1d:7c:99:ee:d4:a5:76:bc:9e: 04:c5:82:24:1f:46:48:5f:b7:e0:b7:e5:2f:13:67:82:74:da: 47:42:08:7c:c5:33:8c:5f:4e:a8:26:71:7e:c5:da:33:81:a6: 41:eb:ab:20:ff:1b:6b:f1:ba:88:4a:b7:ee:18:04:72:47:a3: 3d:70:3f:aa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUotoZgY5vSBOTi85gBiYPIc2hK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA1M0ZGQTdBMDEyM0IwMzJGQzk0NTgyODEwNjNDODlG MDA3RkE5ODAeFw0yMzA5MDEwODU1MDBaFw0yNDA4MzAwOTAwMDBaMDMxMTAvBgNV BAMTKEM5NzczMTUxMTAwMjI4NEI2QjBDOTcyQUFEODkxNTUxM0NFNjI2MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUPxMkB+Uk/cvdikDEzykgDWEo mNPcOEQotAdjq2wZ3bLHQoR/ry85K1Z9F15ahU9CLTGudTiGog3ZP8dRFc3j550r XC1hXTuC6G680Ml1i4tgc4lOo8Ciu7hjVJ7wtdDODlcqfUIGOlGqKRAE4KojFU/0 pgrpXLfgwYm+cZ69qijJcLgKVejSy+iJGGV2FQ8bc/zM8LbiGQA2zzedV75F66W9 s1tq9iNNX1oYiHuewrcyrynyYflfLtZKAdr9q3P+qYNYM/54Tj/TnG6Gsq5Ry5TA RAb5gN+2GVZqcSG73yHZ2OrZffuClqX5c1HmAw+KL/3zZdrO6d/SbWi98x6ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyXcxURACKEtrDJcqrYkVUTzmJhkwHwYDVR0j BBgwFoAUMFP/p6ASOwMvyUWCgQY8ifAH+pgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NmRiNGNiOC1mYWVhLTQ1MzAtYjI5ZS0wYjdhNGFmZmMzMTYvMC8zMDUzRkZBN0Ew MTIzQjAzMkZDOTQ1ODI4MTA2M0M4OUYwMDdGQTk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzA1M0ZGQTdBMDEyM0IwMzJGQzk0NTgyODEwNjNDODlGMDA3 RkE5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2ZGI0Y2I4LWZhZWEtNDUzMC1i MjllLTBiN2E0YWZmYzMxNi8wLzMxMzAzMzJlMzEzNjM4MmUzMTM4MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6i8MA0GCSqG SIb3DQEBCwUAA4IBAQCOSdfd183Q01qK4Vf7rlXOSHyQcqYB0lL9vDGLfSXPOBme ePkne/8xeyvXqZG6Y14LwW1BisB1EfhJRYNJq49XZnetFJvIGXxvcSiFo6mTPTMS PZpSfHz47yYW6Dxhhxb597r7Ti55PJa5HGGm2V1ugYbLBT/2z5DsPl/E9OdLwqqC WN2NeXUixNe3IV3dFKor61gvs1XGIor2OxB5KQdaHAsN+md5ydnWtkMKqEZ3O6rv beJ0BsU/BEvvyQwdfJnu1KV2vJ4ExYIkH0ZIX7fgt+UvE2eCdNpHQgh8xTOMX06o JnF+xdozgaZB66sg/xtr8bqISrfuGARyR6M9cD+q -----END CERTIFICATE-----Generated at Sun Apr 28 10:02:43 2024 by rpki-client on console-ams.rpki-client.org