$ rpki-client -vvf repo-rpki.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/3130332e38352e31322e302f32322d3234203d3e20313336303736.roa File: 3130332e38352e31322e302f32322d3234203d3e20313336303736.roa (raw, json) Hash identifier: Tg8wGpIv3trAy2iNXaLbkWrWPPN2aqOpTodCfdtQWQU= Subject key identifier: BC:7E:23:E1:11:F0:33:3A:51:7A:D1:6C:91:63:95:58:25:58:3C:FC Certificate issuer: /CN=34C216B3A625831CC41C6A7A1460CF9DDF656B86 Certificate serial: 49958BACD8E4FF660673E56B9243F41AEDFCC321 Authority key identifier: 34:C2:16:B3:A6:25:83:1C:C4:1C:6A:7A:14:60:CF:9D:DF:65:6B:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C216B3A625831CC41C6A7A1460CF9DDF656B86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/3130332e38352e31322e302f32322d3234203d3e20313336303736.roa Signing time: Mon 31 Jul 2023 00:08:35 +0000 ROA not before: Mon 31 Jul 2023 00:03:35 +0000 ROA not after: Mon 29 Jul 2024 00:08:35 +0000 asID: 136076 IP address blocks: 103.85.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/34C216B3A625831CC41C6A7A1460CF9DDF656B86.crl rsync://repo-rpki.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/34C216B3A625831CC41C6A7A1460CF9DDF656B86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C216B3A625831CC41C6A7A1460CF9DDF656B86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 17:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:95:8b:ac:d8:e4:ff:66:06:73:e5:6b:92:43:f4:1a:ed:fc:c3:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34C216B3A625831CC41C6A7A1460CF9DDF656B86 Validity Not Before: Jul 31 00:03:35 2023 GMT Not After : Jul 29 00:08:35 2024 GMT Subject: CN=BC7E23E111F0333A517AD16C9163955825583CFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:90:4e:db:b9:12:cc:81:3b:cc:b9:69:6f:7a: c2:07:03:56:ce:81:19:8f:ba:96:43:66:69:a8:02: 8b:4b:94:cb:c5:b0:8d:84:a6:5e:74:11:f0:70:03: f6:ab:0a:98:0c:5d:21:53:73:1a:e9:19:0d:60:ce: c8:05:b6:10:f5:c7:e7:95:46:e5:1c:64:58:9d:87: b2:6b:c9:9e:76:ac:5c:e2:6a:c5:33:2e:f0:f6:04: bf:c0:65:78:1f:11:ad:4a:3f:8b:da:b2:5c:72:0d: b7:b7:99:42:4b:64:63:49:4b:94:ef:41:89:8c:2b: 62:fa:c6:56:01:7f:37:55:dd:93:b9:58:b2:4f:4b: 8f:ef:b7:c9:1e:18:e5:a1:82:c8:b7:e5:1c:c6:5a: 88:04:41:04:08:b8:58:dc:48:b4:c5:a8:67:8a:2a: dc:aa:75:b5:8b:db:3b:47:f4:49:24:d3:e0:52:91: 10:1d:3c:97:96:49:60:89:a5:09:24:14:a4:36:9e: 5d:61:1b:ab:8c:23:5b:9d:b6:6d:b9:1c:4b:43:64: 21:0d:3c:f2:fa:09:d6:ce:bf:9a:e7:14:59:36:ad: 37:40:07:6b:57:95:e1:e6:4f:cd:fb:03:92:b9:2d: 47:4a:d8:ad:5e:80:df:4d:2c:b5:95:b0:5e:a8:9d: 0b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:7E:23:E1:11:F0:33:3A:51:7A:D1:6C:91:63:95:58:25:58:3C:FC X509v3 Authority Key Identifier: keyid:34:C2:16:B3:A6:25:83:1C:C4:1C:6A:7A:14:60:CF:9D:DF:65:6B:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/34C216B3A625831CC41C6A7A1460CF9DDF656B86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C216B3A625831CC41C6A7A1460CF9DDF656B86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/3130332e38352e31322e302f32322d3234203d3e20313336303736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.85.12.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:51:32:c7:07:34:11:ff:ab:96:34:bc:76:79:fb:00:08:1d: 9e:d7:f2:16:98:69:3e:6b:8e:e2:12:b4:82:5e:85:92:43:80: 5c:8d:b5:d7:8d:0d:86:9c:48:16:c5:e1:7f:ef:e6:66:62:9e: 33:83:b4:23:59:94:74:c3:6e:4a:59:a7:29:01:74:30:35:4a: c3:40:88:f8:bd:fe:40:7a:1e:29:e1:50:14:8e:b8:6d:42:3a: d1:9f:fb:c6:8d:35:7a:43:b9:da:61:74:c1:ab:2e:2e:7e:31: e1:0f:5f:aa:db:90:fd:b1:b5:55:62:e0:79:38:b3:c1:8d:57: e6:53:5d:22:3d:56:ed:b6:96:b7:e7:96:5c:0f:1c:63:13:73: a8:0f:a9:cd:3a:db:a2:15:5b:af:0e:c8:b8:95:2e:b7:6f:03: 3b:2b:00:f9:92:61:41:b7:59:1a:22:6d:f9:ea:fc:de:14:5e: 4d:c6:f6:ba:9c:5b:0f:e7:dd:b2:e2:03:d6:33:ec:9e:4b:30: 5d:c2:56:99:3a:8b:1c:eb:90:32:2d:a6:0c:d2:af:00:d2:85: 82:4e:d6:1f:b3:7a:a1:e0:11:4d:84:0c:14:c8:c9:a2:51:4f: f5:f5:75:e3:04:4d:96:6a:f8:32:15:26:51:3c:5c:42:14:67: 01:e4:2c:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSZWLrNjk/2YGc+VrkkP0Gu38wyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzRDMjE2QjNBNjI1ODMxQ0M0MUM2QTdBMTQ2MENGOURE RjY1NkI4NjAeFw0yMzA3MzEwMDAzMzVaFw0yNDA3MjkwMDA4MzVaMDMxMTAvBgNV BAMTKEJDN0UyM0UxMTFGMDMzM0E1MTdBRDE2QzkxNjM5NTU4MjU1ODNDRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHkE7buRLMgTvMuWlvesIHA1bO gRmPupZDZmmoAotLlMvFsI2Epl50EfBwA/arCpgMXSFTcxrpGQ1gzsgFthD1x+eV RuUcZFidh7JryZ52rFziasUzLvD2BL/AZXgfEa1KP4vaslxyDbe3mUJLZGNJS5Tv QYmMK2L6xlYBfzdV3ZO5WLJPS4/vt8keGOWhgsi35RzGWogEQQQIuFjcSLTFqGeK KtyqdbWL2ztH9Ekk0+BSkRAdPJeWSWCJpQkkFKQ2nl1hG6uMI1udtm25HEtDZCEN PPL6CdbOv5rnFFk2rTdAB2tXleHmT837A5K5LUdK2K1egN9NLLWVsF6onQsTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvH4j4RHwMzpRetFskWOVWCVYPPwwHwYDVR0j BBgwFoAUNMIWs6YlgxzEHGp6FGDPnd9la4YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YzcwMDM1MC02NjMyLTQ5ZTItYjdlMy01ZDU3MzIyNGM1NmMvMC8zNEMyMTZCM0E2 MjU4MzFDQzQxQzZBN0ExNDYwQ0Y5RERGNjU2Qjg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzRDMjE2QjNBNjI1ODMxQ0M0MUM2QTdBMTQ2MENGOURERjY1 NkI4Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljNzAwMzUwLTY2MzItNDllMi1i N2UzLTVkNTczMjI0YzU2Yy8wLzMxMzAzMzJlMzgzNTJlMzEzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdVDDANBgkqhkiG 9w0BAQsFAAOCAQEAHFEyxwc0Ef+rljS8dnn7AAgdntfyFphpPmuO4hK0gl6FkkOA XI21140NhpxIFsXhf+/mZmKeM4O0I1mUdMNuSlmnKQF0MDVKw0CI+L3+QHoeKeFQ FI64bUI60Z/7xo01ekO52mF0wasuLn4x4Q9fqtuQ/bG1VWLgeTizwY1X5lNdIj1W 7baWt+eWXA8cYxNzqA+pzTrbohVbrw7IuJUut28DOysA+ZJhQbdZGiJt+er83hRe Tcb2upxbD+fdsuID1jPsnkswXcJWmTqLHOuQMi2mDNKvANKFgk7WH7N6oeARTYQM FMjJolFP9fV14wRNlmr4MhUmUTxcQhRnAeQspg== -----END CERTIFICATE-----Generated at Thu Apr 25 08:30:39 2024 by rpki-client on console-fra.rpki-client.org