$ rpki-client -vvf repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32322d3232203d3e20313336383536.roa File: 3130332e3130322e3131322e302f32322d3232203d3e20313336383536.roa (raw, json) Hash identifier: OiBKVKO/YMDUlk53r07NnYkFiIc/wGbNU90Z1DWqqbE= Subject key identifier: 8D:4F:EC:F9:D9:4E:56:4A:98:49:E5:24:86:15:6A:CE:50:A7:C5:49 Certificate issuer: /CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Certificate serial: 200804909380243B34B5642FA1FE453C2990033C Authority key identifier: A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32322d3232203d3e20313336383536.roa Signing time: Mon 31 Jul 2023 00:08:36 +0000 ROA not before: Mon 31 Jul 2023 00:03:36 +0000 ROA not after: Mon 29 Jul 2024 00:08:36 +0000 asID: 136856 IP address blocks: 103.102.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:08:04:90:93:80:24:3b:34:b5:64:2f:a1:fe:45:3c:29:90:03:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Validity Not Before: Jul 31 00:03:36 2023 GMT Not After : Jul 29 00:08:36 2024 GMT Subject: CN=8D4FECF9D94E564A9849E52486156ACE50A7C549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fd:47:fc:58:3b:a3:26:11:68:44:f3:03:7a: 06:a8:b8:c3:32:89:06:80:bb:17:c1:ed:5a:0a:13: d0:77:40:b2:49:1f:6e:75:99:e8:20:c0:a7:5e:46: f9:36:ab:6e:e8:34:e4:af:0f:8a:1d:6f:ef:46:a2: 1f:72:eb:2b:92:3e:19:51:e4:d9:f8:78:69:84:55: ad:14:7e:27:9f:9d:2c:27:79:f4:cb:f9:10:ee:c5: 75:9e:74:64:66:32:97:bb:d2:03:59:45:1e:d3:f8: 9a:99:42:ca:56:ec:3c:73:42:bd:43:ef:8a:03:b5: a4:ad:91:a1:f1:0b:c7:03:87:91:d7:e6:2d:d6:42: 50:45:07:bf:f3:53:b9:47:82:e1:72:84:f9:14:df: 6b:b9:bb:9b:f4:a7:1b:ea:b3:ff:08:4d:62:99:c7: 81:29:ac:e2:6a:8d:c0:c0:2e:e6:fa:d2:b5:c7:b2: 4c:7b:f3:c2:c7:e7:16:3e:b0:57:d1:f4:8d:38:f0: 95:3d:2f:6c:f3:9e:11:d7:cb:ae:ef:94:ae:a9:61: 77:f2:f9:4f:0e:0c:60:2d:c1:61:11:89:31:f6:5d: 82:da:2e:94:35:b4:6f:5f:de:fe:3b:c3:88:5f:c7: 25:3e:56:6f:d8:f1:ed:29:d0:49:ef:8e:4f:8f:c2: 5b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4F:EC:F9:D9:4E:56:4A:98:49:E5:24:86:15:6A:CE:50:A7:C5:49 X509v3 Authority Key Identifier: keyid:A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32322d3232203d3e20313336383536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.112.0/22 Signature Algorithm: sha256WithRSAEncryption 88:7a:b7:2e:d3:38:94:a1:1f:fd:95:79:e4:62:9a:35:d6:1c: 66:a4:2b:b6:11:0a:c2:c1:dd:56:dd:9d:5f:e0:ec:c5:cf:a9: 3a:6d:c9:31:18:2c:fb:92:fa:f3:a9:53:4d:fb:d5:cd:56:64: a6:4a:e6:09:ac:3d:d2:9b:a0:98:f2:31:fc:4e:22:2d:85:81: 5e:77:15:dd:8f:14:d5:10:ca:a5:05:8d:3d:79:de:68:51:c8: d8:22:0b:de:6e:6e:51:bf:a5:ef:60:b1:28:de:9a:d1:99:bf: 4a:df:89:4c:98:af:ca:3b:d5:d4:94:e2:70:3c:a4:f5:4a:30: e4:f3:9b:e3:bb:1a:cf:0d:fe:ed:56:a7:1d:5c:f7:a2:1a:00: eb:f7:41:78:a3:a7:bf:32:05:8c:a0:9b:07:6e:bb:00:28:88: 3a:3e:83:28:ee:34:b4:9b:48:db:64:1a:4c:b7:6c:5e:da:75: e3:10:b3:d4:37:a9:3c:13:f2:db:e6:0f:96:f4:38:b7:c2:f7: 42:f5:91:ee:7e:c0:d6:a4:81:10:f2:38:01:c2:da:76:45:01: f2:1c:0c:b7:09:cb:b2:af:30:84:47:5c:42:3c:17:1d:df:69: 25:89:39:a3:df:84:56:be:5a:79:3d:74:76:cc:bd:24:61:e6: e4:a4:e1:51 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIAgEkJOAJDs0tWQvof5FPCmQAzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2Njgw MjdEMUI2MzAeFw0yMzA3MzEwMDAzMzZaFw0yNDA3MjkwMDA4MzZaMDMxMTAvBgNV BAMTKDhENEZFQ0Y5RDk0RTU2NEE5ODQ5RTUyNDg2MTU2QUNFNTBBN0M1NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA/Uf8WDujJhFoRPMDegaouMMy iQaAuxfB7VoKE9B3QLJJH251meggwKdeRvk2q27oNOSvD4odb+9Goh9y6yuSPhlR 5Nn4eGmEVa0UfiefnSwnefTL+RDuxXWedGRmMpe70gNZRR7T+JqZQspW7DxzQr1D 74oDtaStkaHxC8cDh5HX5i3WQlBFB7/zU7lHguFyhPkU32u5u5v0pxvqs/8ITWKZ x4EprOJqjcDALub60rXHskx788LH5xY+sFfR9I048JU9L2zznhHXy67vlK6pYXfy +U8ODGAtwWERiTH2XYLaLpQ1tG9f3v47w4hfxyU+Vm/Y8e0p0Envjk+Pwlt7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjU/s+dlOVkqYSeUkhhVqzlCnxUkwHwYDVR0j BBgwFoAUoA28eMsvzW2pTcHgffpmaAJ9G2MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NWM3YTQwNC1lYjNmLTRjZjEtOTlmOS04Mjc5NjE2NjFmMzEvMC9BMDBEQkM3OENC MkZDRDZEQTk0REMxRTA3REZBNjY2ODAyN0QxQjYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2NjgwMjdE MUI2My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1YzdhNDA0LWViM2YtNGNmMS05 OWY5LTgyNzk2MTY2MWYzMS8wLzMxMzAzMzJlMzEzMDMyMmUzMTMxMzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzYzODM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnZnAwDQYJ KoZIhvcNAQELBQADggEBAIh6ty7TOJShH/2VeeRimjXWHGakK7YRCsLB3VbdnV/g 7MXPqTptyTEYLPuS+vOpU0371c1WZKZK5gmsPdKboJjyMfxOIi2FgV53Fd2PFNUQ yqUFjT153mhRyNgiC95ublG/pe9gsSjemtGZv0rfiUyYr8o71dSU4nA8pPVKMOTz m+O7Gs8N/u1Wpx1c96IaAOv3QXijp78yBYygmwduuwAoiDo+gyjuNLSbSNtkGky3 bF7adeMQs9Q3qTwT8tvmD5b0OLfC90L1ke5+wNakgRDyOAHC2nZFAfIcDLcJy7Kv MIRHXEI8Fx3faSWJOaPfhFa+Wnk9dHbMvSRh5uSk4VE= -----END CERTIFICATE-----Generated at Wed Apr 24 20:28:50 2024 by rpki-client on console-fra.rpki-client.org