$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa File: 3130332e33382e3130302e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: PfwRas4E9XMThhH+ksRI2aMBIs/MIL++SvMMUU77cb0= Subject key identifier: 98:74:E4:89:73:D7:02:A9:83:6F:B5:2C:F8:86:6C:09:24:46:75:4A Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 3E703B029D13301993255257745CC86B8BC6D7E4 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa Signing time: Mon 31 Jul 2023 00:05:35 +0000 ROA not before: Mon 31 Jul 2023 00:00:35 +0000 ROA not after: Mon 29 Jul 2024 00:05:35 +0000 asID: 38524 IP address blocks: 103.38.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 09:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:70:3b:02:9d:13:30:19:93:25:52:57:74:5c:c8:6b:8b:c6:d7:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 31 00:00:35 2023 GMT Not After : Jul 29 00:05:35 2024 GMT Subject: CN=9874E48973D702A9836FB52CF8866C092446754A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:cb:a0:b0:22:e1:3a:be:a2:e1:8e:3a:2a:fa: 23:07:b3:ad:71:9a:69:68:d0:c2:2c:ee:7e:d0:d7: ff:15:9f:76:89:1b:22:4b:43:14:29:28:c7:f9:a9: 2b:c5:6b:f7:d5:00:30:cc:21:d3:00:d9:cb:4f:c7: 32:5a:d4:c8:bf:f5:78:83:91:01:2c:3d:4d:f3:40: fc:25:0b:60:3a:f4:31:10:d6:80:e8:8c:9a:08:9b: b6:2d:20:20:73:98:30:ec:82:5b:1b:d1:20:4b:a3: dc:21:dc:4b:0f:ba:40:bb:47:af:5f:e3:9a:14:f8: 4d:f8:1c:af:35:cd:4f:07:c3:5b:31:4c:eb:71:83: 27:d2:55:49:13:1b:6a:b6:3e:7f:af:56:be:51:9e: 8a:d2:9c:a4:18:e8:1f:0c:63:b4:6a:1a:26:9a:2a: 4c:ae:fb:da:40:6f:1f:af:f3:b2:4b:c4:fc:2d:ff: c1:87:ce:5b:57:a5:b9:08:7b:db:7c:24:46:37:3d: b9:e6:68:c2:74:44:3d:66:fb:e1:a5:66:f1:09:2d: 21:f3:9e:60:b9:06:91:1d:ae:58:a0:35:93:d5:d7: e3:b6:6f:58:06:4f:02:ca:3a:25:ef:31:84:98:b2: 00:9c:15:e6:61:ee:01:0d:02:4f:2c:49:47:1a:19: 33:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:74:E4:89:73:D7:02:A9:83:6F:B5:2C:F8:86:6C:09:24:46:75:4A X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.100.0/24 Signature Algorithm: sha256WithRSAEncryption 09:df:22:be:f4:c6:4f:64:57:1f:47:58:d5:ea:38:ae:cb:51: 44:9e:97:a2:b1:90:d1:a4:20:ad:d8:3b:75:32:6b:d2:16:c5: e8:d0:6c:a0:d3:76:e6:1e:da:0a:b8:9f:95:38:ed:1d:6b:1d: 2b:aa:e2:01:82:6b:f4:1b:ae:ba:be:e3:29:c4:2a:2c:f3:34: d7:1b:0a:1c:4b:f5:17:95:b8:68:9d:be:9e:5f:96:97:8c:ed: ff:44:7c:95:26:12:5b:88:be:99:59:90:b1:48:33:3d:5a:c9: 65:b1:0a:73:6c:15:94:48:9d:c2:64:61:19:c0:a7:43:a5:86: 9f:4e:ad:c6:98:e7:94:81:34:99:2c:49:10:a3:16:f2:e8:16: cc:f5:2e:f1:00:e6:37:ba:ef:3d:c1:06:f8:f0:3c:45:a6:37: ba:78:47:03:cb:0f:b0:8c:13:53:c5:1b:78:b6:68:1f:e2:6a: 69:46:af:ea:70:6b:9d:22:0f:aa:ef:79:4a:9d:7a:41:6c:0e: 12:ba:87:5a:7b:ec:7a:44:af:11:39:4f:f5:a4:f5:6c:7d:1f: 19:e1:57:53:dc:83:58:6a:9a:b2:38:64:75:68:0e:b8:af:b8: 1e:02:0f:fa:27:66:ab:b5:c8:d0:b9:9b:37:43:07:19:05:97: 3d:d9:eb:c7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPnA7Ap0TMBmTJVJXdFzIa4vG1+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA3MzEwMDAwMzVaFw0yNDA3MjkwMDA1MzVaMDMxMTAvBgNV BAMTKDk4NzRFNDg5NzNENzAyQTk4MzZGQjUyQ0Y4ODY2QzA5MjQ0Njc1NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfy6CwIuE6vqLhjjoq+iMHs61x mmlo0MIs7n7Q1/8Vn3aJGyJLQxQpKMf5qSvFa/fVADDMIdMA2ctPxzJa1Mi/9XiD kQEsPU3zQPwlC2A69DEQ1oDojJoIm7YtICBzmDDsglsb0SBLo9wh3EsPukC7R69f 45oU+E34HK81zU8Hw1sxTOtxgyfSVUkTG2q2Pn+vVr5RnorSnKQY6B8MY7RqGiaa Kkyu+9pAbx+v87JLxPwt/8GHzltXpbkIe9t8JEY3PbnmaMJ0RD1m++GlZvEJLSHz nmC5BpEdrligNZPV1+O2b1gGTwLKOiXvMYSYsgCcFeZh7gENAk8sSUcaGTPLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmHTkiXPXAqmDb7Us+IZsCSRGdUowHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMxMzAzMzJlMzMzODJlMzEzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcmZDANBgkqhkiG 9w0BAQsFAAOCAQEACd8ivvTGT2RXH0dY1eo4rstRRJ6XorGQ0aQgrdg7dTJr0hbF 6NBsoNN25h7aCriflTjtHWsdK6riAYJr9Buuur7jKcQqLPM01xsKHEv1F5W4aJ2+ nl+Wl4zt/0R8lSYSW4i+mVmQsUgzPVrJZbEKc2wVlEidwmRhGcCnQ6WGn06txpjn lIE0mSxJEKMW8ugWzPUu8QDmN7rvPcEG+PA8RaY3unhHA8sPsIwTU8UbeLZoH+Jq aUav6nBrnSIPqu95Sp16QWwOErqHWnvsekSvETlP9aT1bH0fGeFXU9yDWGqasjhk dWgOuK+4HgIP+idmq7XI0LmbN0MHGQWXPdnrxw== -----END CERTIFICATE-----Generated at Thu Apr 25 09:16:52 2024 by rpki-client on console-ams.rpki-client.org