$ rpki-client -vvf repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa File: 3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa (raw, json) Hash identifier: 0lSBefC+7qcfeCPJxM30A1mx7Vjzg2CZ5BfQEUNPi8U= Subject key identifier: A4:BC:41:1F:D1:D7:B4:A1:A9:E1:05:0B:7C:33:8B:7A:E6:4A:6A:95 Certificate issuer: /CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Certificate serial: 42B41F6DCC6FE70336A4C1D71C17C27C50FE4DA6 Authority key identifier: 3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa Signing time: Fri 02 Jun 2023 04:27:55 +0000 ROA not before: Fri 02 Jun 2023 04:22:55 +0000 ROA not after: Fri 31 May 2024 04:27:55 +0000 asID: 136052 IP address blocks: 103.171.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 12:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:b4:1f:6d:cc:6f:e7:03:36:a4:c1:d7:1c:17:c2:7c:50:fe:4d:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Validity Not Before: Jun 2 04:22:55 2023 GMT Not After : May 31 04:27:55 2024 GMT Subject: CN=A4BC411FD1D7B4A1A9E1050B7C338B7AE64A6A95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a2:72:23:8e:ff:91:a1:f1:7f:1e:b5:47:fe: 77:01:41:71:9c:5d:d8:16:4c:8b:48:f8:6c:90:39: 06:ab:cf:0f:46:aa:13:5c:87:eb:d1:cf:53:4f:bb: f8:a9:cb:32:88:a3:a9:6f:08:63:e1:ba:8c:ca:1e: d6:15:10:36:8b:4f:13:dd:17:8e:a4:48:03:98:3e: 99:3b:20:19:3c:5c:8b:c7:cb:e4:fe:34:ea:fc:69: d5:16:65:22:78:eb:7e:27:4f:65:07:66:3f:b9:54: 4a:36:c0:e8:51:cf:3b:fa:5d:b8:05:35:80:a2:48: b2:b2:ca:76:82:4f:62:1a:04:fa:14:c4:57:15:d2: a9:07:51:6d:21:1c:8b:6b:82:a2:23:1f:5c:c8:ba: b6:ca:3c:cf:83:df:c0:c6:92:21:5a:e4:22:a7:9e: 83:2a:6c:12:a4:81:38:e1:17:bb:8c:f7:a3:6b:92: f5:0f:9b:fc:96:c0:5b:9a:68:57:c5:c6:7b:fa:cd: ad:85:23:40:8c:b7:44:18:3d:c0:a6:e7:b2:19:66: 51:28:55:55:9f:63:b8:18:8b:9b:e5:97:98:95:cc: 4d:bf:56:df:e7:4b:f1:d7:c9:41:c3:97:9d:2e:bd: 52:eb:d5:1f:c1:f8:ec:71:1a:ea:36:6e:4f:86:36: ea:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:BC:41:1F:D1:D7:B4:A1:A9:E1:05:0B:7C:33:8B:7A:E6:4A:6A:95 X509v3 Authority Key Identifier: keyid:3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.18.0/24 Signature Algorithm: sha256WithRSAEncryption c3:f4:c7:3c:38:b8:44:44:57:a6:29:12:43:5a:bd:3f:78:cf: 20:d1:d6:25:a2:d8:36:e0:63:dc:81:84:cd:70:f7:23:11:d3: 57:14:82:4b:92:85:e2:43:51:60:38:89:77:44:14:8f:42:26: 0b:d4:8f:e6:99:f0:a1:47:e9:9f:74:69:61:12:81:3a:9f:d1: 88:4c:7b:25:06:80:a7:98:5e:7b:96:a8:f7:0c:3c:1a:75:85: 92:a2:7b:ae:c5:27:84:9b:c6:44:07:16:92:4f:3a:a1:ad:46: b9:a1:15:f2:d3:57:e6:fa:00:0e:bf:74:5a:ba:7d:ed:42:62: d0:c9:52:70:57:4e:ee:46:63:d2:ad:15:18:74:fe:8c:cb:a2: 22:c6:7c:8e:fd:32:8f:38:11:3b:07:c0:db:1c:83:fb:1c:de: 88:17:ff:52:4a:2e:24:a0:4d:f1:15:cb:6b:6c:86:f7:16:62: 07:27:70:76:4e:d2:38:03:e7:6f:3e:db:65:69:7b:c7:32:21: a2:a5:3a:a1:7b:aa:ae:35:72:0e:73:e6:9a:09:67:a3:19:ec: 54:65:9d:37:5f:e1:2d:3b:d2:ae:a5:18:88:21:e6:0b:7b:3d: 87:6b:45:ab:c5:8b:d6:3b:16:cf:24:5e:64:95:a5:79:41:a1: e8:30:3b:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQrQfbcxv5wM2pMHXHBfCfFD+TaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZB MENCOUY4QjAeFw0yMzA2MDIwNDIyNTVaFw0yNDA1MzEwNDI3NTVaMDMxMTAvBgNV BAMTKEE0QkM0MTFGRDFEN0I0QTFBOUUxMDUwQjdDMzM4QjdBRTY0QTZBOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6onIjjv+RofF/HrVH/ncBQXGc XdgWTItI+GyQOQarzw9GqhNch+vRz1NPu/ipyzKIo6lvCGPhuozKHtYVEDaLTxPd F46kSAOYPpk7IBk8XIvHy+T+NOr8adUWZSJ4634nT2UHZj+5VEo2wOhRzzv6XbgF NYCiSLKyynaCT2IaBPoUxFcV0qkHUW0hHItrgqIjH1zIurbKPM+D38DGkiFa5CKn noMqbBKkgTjhF7uM96NrkvUPm/yWwFuaaFfFxnv6za2FI0CMt0QYPcCm57IZZlEo VVWfY7gYi5vll5iVzE2/Vt/nS/HXyUHDl50uvVLr1R/B+OxxGuo2bk+GNurVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpLxBH9HXtKGp4QULfDOLeuZKapUwHwYDVR0j BBgwFoAUPJFI7yevXtNIE0L13vJaJqDLn4swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YThmNjlmNy05MzMyLTRjZDQtYjNlNS1jYzZjNDc3MmNmNzMvMC8zQzkxNDhFRjI3 QUY1RUQzNDgxMzQyRjVERUYyNUEyNkEwQ0I5RjhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZBMENC OUY4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhOGY2OWY3LTkzMzItNGNkNC1i M2U1LWNjNmM0NzcyY2Y3My8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6sSMA0GCSqG SIb3DQEBCwUAA4IBAQDD9Mc8OLhERFemKRJDWr0/eM8g0dYlotg24GPcgYTNcPcj EdNXFIJLkoXiQ1FgOIl3RBSPQiYL1I/mmfChR+mfdGlhEoE6n9GITHslBoCnmF57 lqj3DDwadYWSonuuxSeEm8ZEBxaSTzqhrUa5oRXy01fm+gAOv3Raun3tQmLQyVJw V07uRmPSrRUYdP6My6IixnyO/TKPOBE7B8DbHIP7HN6IF/9SSi4koE3xFctrbIb3 FmIHJ3B2TtI4A+dvPttlaXvHMiGipTqhe6quNXIOc+aaCWejGexUZZ03X+EtO9Ku pRiIIeYLez2Ha0WrxYvWOxbPJF5klaV5QaHoMDvm -----END CERTIFICATE-----Generated at Wed May 1 08:04:15 2024 by rpki-client on console-ams.rpki-client.org