$ rpki-client -vvf repo-rpki.idnic.net/repo/7c635ce9-0ea5-47d8-9fcc-cad1c9f06fbe/0/3130332e3136372e33302e302f32332d3234203d3e203137393935.roa File: 3130332e3136372e33302e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: bKnT0ID9p9F9Fds+dLHPVD/fyEfVSe7qpAIfp5exZEA= Subject key identifier: DD:0D:D2:5A:ED:0F:34:FB:50:56:EB:3A:BA:D6:20:4E:96:1D:23:16 Certificate issuer: /CN=7B945974A79E8C77CB02F94495BA9F87BAA0E038 Certificate serial: 2B69727D6565AB1B4EF99096B0C5EB04775569B2 Authority key identifier: 7B:94:59:74:A7:9E:8C:77:CB:02:F9:44:95:BA:9F:87:BA:A0:E0:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B945974A79E8C77CB02F94495BA9F87BAA0E038.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c635ce9-0ea5-47d8-9fcc-cad1c9f06fbe/0/3130332e3136372e33302e302f32332d3234203d3e203137393935.roa Signing time: Fri 01 Sep 2023 10:01:51 +0000 ROA not before: Fri 01 Sep 2023 09:56:51 +0000 ROA not after: Fri 30 Aug 2024 10:01:51 +0000 asID: 17995 IP address blocks: 103.167.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c635ce9-0ea5-47d8-9fcc-cad1c9f06fbe/0/7B945974A79E8C77CB02F94495BA9F87BAA0E038.crl rsync://repo-rpki.idnic.net/repo/7c635ce9-0ea5-47d8-9fcc-cad1c9f06fbe/0/7B945974A79E8C77CB02F94495BA9F87BAA0E038.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B945974A79E8C77CB02F94495BA9F87BAA0E038.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:69:72:7d:65:65:ab:1b:4e:f9:90:96:b0:c5:eb:04:77:55:69:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B945974A79E8C77CB02F94495BA9F87BAA0E038 Validity Not Before: Sep 1 09:56:51 2023 GMT Not After : Aug 30 10:01:51 2024 GMT Subject: CN=DD0DD25AED0F34FB5056EB3ABAD6204E961D2316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4a:0c:47:38:17:b1:c4:79:8b:d8:8d:d0:24: 91:5a:3c:03:8d:78:1b:52:b4:6f:96:e0:19:69:1c: 37:5d:08:37:0c:db:b8:02:6d:ee:29:d9:78:b9:07: 99:df:3a:50:ae:90:f2:03:44:32:db:39:89:dc:d8: 1a:9a:3b:37:88:d2:40:e4:cc:1d:8f:0e:4d:a0:4b: 8e:43:d5:ae:1f:e1:bf:e5:14:1e:d3:19:3d:35:3f: f1:30:4d:d1:78:58:5f:94:49:99:0a:24:0d:58:e1: 2a:2e:76:3f:31:86:9d:44:bb:71:4c:ca:7c:65:cf: f8:72:41:82:dc:59:52:6d:22:1d:8c:cc:a9:b3:d6: 96:fb:a6:b4:44:02:d6:b5:79:c9:8d:f8:bf:78:aa: f8:46:87:40:8f:f3:45:c4:4a:15:a4:54:2a:03:0a: 8d:29:91:8e:5c:08:0a:e7:58:39:ce:0b:66:b1:38: 66:f8:2a:5d:0b:a3:cc:4f:db:04:94:15:b5:b6:5e: d2:83:dc:d1:92:79:08:f1:ad:cb:dd:48:7f:3a:bc: 6c:02:30:01:06:bb:57:ff:5c:cc:ec:90:ac:fa:2a: e9:61:4b:9f:56:b4:bc:a6:81:be:e1:02:06:55:db: 20:04:c9:94:d9:fb:de:73:19:fa:04:f5:b2:62:75: 2e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0D:D2:5A:ED:0F:34:FB:50:56:EB:3A:BA:D6:20:4E:96:1D:23:16 X509v3 Authority Key Identifier: keyid:7B:94:59:74:A7:9E:8C:77:CB:02:F9:44:95:BA:9F:87:BA:A0:E0:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c635ce9-0ea5-47d8-9fcc-cad1c9f06fbe/0/7B945974A79E8C77CB02F94495BA9F87BAA0E038.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B945974A79E8C77CB02F94495BA9F87BAA0E038.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c635ce9-0ea5-47d8-9fcc-cad1c9f06fbe/0/3130332e3136372e33302e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.30.0/23 Signature Algorithm: sha256WithRSAEncryption 33:3e:ae:15:4e:c0:7e:ea:81:c1:ee:8f:ea:fb:01:bc:a7:a0: 83:97:e9:75:cb:44:f1:1e:1a:fe:53:bf:c3:50:78:d5:34:7b: be:13:2e:83:bb:d6:b1:e0:62:fe:10:ad:05:8c:8e:58:0e:82: cb:bb:5f:42:f0:ec:3e:64:a9:72:fd:4c:a4:ae:8f:dc:1d:95: 43:03:4c:84:18:8f:d5:e4:ff:3c:c2:34:c9:ea:34:4c:06:ba: cd:53:47:cf:c3:54:d6:5e:a3:2d:e3:cc:a9:fb:70:79:6f:59: 32:85:46:b2:99:ad:d7:b6:f1:bf:00:44:e2:5c:17:e2:33:ac: b2:63:55:28:bc:74:f3:57:66:36:8e:6b:19:e4:bd:53:95:09: 13:10:07:15:a2:51:85:d1:2e:f4:3c:31:85:9b:a7:57:6d:f9: d5:a8:45:e8:11:12:70:a4:12:bd:c9:02:26:17:42:4e:c1:41: 77:58:b8:82:1c:0b:91:4a:02:11:06:96:8f:5d:34:03:de:1f: a2:30:1b:71:ac:ba:82:c1:f7:c8:4d:42:80:71:39:96:7c:1b: 2e:81:a1:29:34:43:c3:60:cf:a7:b6:b7:89:30:96:0c:ae:fa: f2:1f:df:47:91:7f:50:24:04:3d:45:62:c1:3d:7e:23:ad:21: 16:47:24:2c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUK2lyfWVlqxtO+ZCWsMXrBHdVabIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0I5NDU5NzRBNzlFOEM3N0NCMDJGOTQ0OTVCQTlGODdC QUEwRTAzODAeFw0yMzA5MDEwOTU2NTFaFw0yNDA4MzAxMDAxNTFaMDMxMTAvBgNV BAMTKEREMEREMjVBRUQwRjM0RkI1MDU2RUIzQUJBRDYyMDRFOTYxRDIzMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwSgxHOBexxHmL2I3QJJFaPAON eBtStG+W4BlpHDddCDcM27gCbe4p2Xi5B5nfOlCukPIDRDLbOYnc2BqaOzeI0kDk zB2PDk2gS45D1a4f4b/lFB7TGT01P/EwTdF4WF+USZkKJA1Y4Soudj8xhp1Eu3FM ynxlz/hyQYLcWVJtIh2MzKmz1pb7prREAta1ecmN+L94qvhGh0CP80XEShWkVCoD Co0pkY5cCArnWDnOC2axOGb4Kl0Lo8xP2wSUFbW2XtKD3NGSeQjxrcvdSH86vGwC MAEGu1f/XMzskKz6KulhS59WtLymgb7hAgZV2yAEyZTZ+95zGfoE9bJidS6JAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3Q3SWu0PNPtQVus6utYgTpYdIxYwHwYDVR0j BBgwFoAUe5RZdKeejHfLAvlElbqfh7qg4DgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzYzNWNlOS0wZWE1LTQ3ZDgtOWZjYy1jYWQxYzlmMDZmYmUvMC83Qjk0NTk3NEE3 OUU4Qzc3Q0IwMkY5NDQ5NUJBOUY4N0JBQTBFMDM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0I5NDU5NzRBNzlFOEM3N0NCMDJGOTQ0OTVCQTlGODdCQUEw RTAzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjNjM1Y2U5LTBlYTUtNDdkOC05 ZmNjLWNhZDFjOWYwNmZiZS8wLzMxMzAzMzJlMzEzNjM3MmUzMzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWenHjANBgkqhkiG 9w0BAQsFAAOCAQEAMz6uFU7AfuqBwe6P6vsBvKegg5fpdctE8R4a/lO/w1B41TR7 vhMug7vWseBi/hCtBYyOWA6Cy7tfQvDsPmSpcv1MpK6P3B2VQwNMhBiP1eT/PMI0 yeo0TAa6zVNHz8NU1l6jLePMqftweW9ZMoVGspmt17bxvwBE4lwX4jOssmNVKLx0 81dmNo5rGeS9U5UJExAHFaJRhdEu9DwxhZunV2351ahF6BEScKQSvckCJhdCTsFB d1i4ghwLkUoCEQaWj100A94fojAbcay6gsH3yE1CgHE5lnwbLoGhKTRDw2DPp7a3 iTCWDK768h/fR5F/UCQEPUViwT1+I60hFkckLA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:52 2024 by rpki-client on console-ams.rpki-client.org