$ rpki-client -vvf repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa File: 3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa (raw, json) Hash identifier: iczaw2AvnGkNMMa/9c9aKJ+83W5DU61XDhEPQ8T0k0Q= Subject key identifier: E6:BA:F4:7F:8B:6A:B9:DB:02:CE:99:A3:B2:71:74:72:8A:80:71:12 Certificate issuer: /CN=3E788037924369AA3B8E52A5857804BE5D285FA2 Certificate serial: 350BAB6AB7AAFBDB19342A0D2ECFA80B3D53B1 Authority key identifier: 3E:78:80:37:92:43:69:AA:3B:8E:52:A5:85:78:04:BE:5D:28:5F:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa Signing time: Wed 29 Nov 2023 06:00:00 +0000 ROA not before: Wed 29 Nov 2023 05:55:00 +0000 ROA not after: Wed 27 Nov 2024 06:00:00 +0000 asID: 141645 IP address blocks: 103.179.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.crl rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:0b:ab:6a:b7:aa:fb:db:19:34:2a:0d:2e:cf:a8:0b:3d:53:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E788037924369AA3B8E52A5857804BE5D285FA2 Validity Not Before: Nov 29 05:55:00 2023 GMT Not After : Nov 27 06:00:00 2024 GMT Subject: CN=E6BAF47F8B6AB9DB02CE99A3B27174728A807112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:55:92:7c:f8:d6:85:0b:97:bc:1a:9c:89:59: 89:90:ce:7b:49:3d:06:71:cc:4f:9a:b8:8d:18:47: 85:5b:c5:ea:4d:1c:0a:7f:c7:b5:6c:e8:f2:9f:fc: 54:32:59:61:be:35:fd:99:d5:05:2c:0a:eb:16:d9: 63:75:83:1d:61:e8:46:8d:c0:96:90:d3:66:34:7a: f8:f7:33:b9:d3:1d:3f:47:f9:5a:49:b0:65:f8:95: 30:03:e3:30:78:56:ba:5f:0b:3a:46:76:b7:9b:b6: 41:d6:b4:ee:3a:91:0b:c1:f9:f1:23:70:87:f8:88: b4:af:48:61:88:cf:38:4f:93:66:99:c6:ef:2d:4a: 1a:4a:bb:12:ad:95:18:ae:92:43:13:25:b7:d4:d2: a9:3a:43:08:52:ef:7b:80:ca:ba:84:b9:3a:8c:d7: 45:92:40:e2:83:77:aa:13:1d:d8:1d:c6:0d:50:67: 13:05:24:b7:5f:f4:fb:7d:2f:85:a2:1b:7d:3c:bb: 8b:8d:78:19:88:b6:c0:8b:6a:21:41:73:88:30:e6: 3b:dc:61:c5:2f:25:f4:3f:12:30:77:1d:84:29:c6: 4d:3e:d8:b8:d2:26:8c:bc:de:8a:c0:b3:47:69:ca: 86:60:66:a4:57:62:b3:ba:09:41:d7:85:b9:3d:c9: 31:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:BA:F4:7F:8B:6A:B9:DB:02:CE:99:A3:B2:71:74:72:8A:80:71:12 X509v3 Authority Key Identifier: keyid:3E:78:80:37:92:43:69:AA:3B:8E:52:A5:85:78:04:BE:5D:28:5F:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.117.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:0d:e3:ab:7c:7b:33:c5:c8:50:ce:be:26:4c:95:e4:50:34: 7c:92:c0:fb:82:13:d9:d4:92:62:5c:62:1d:17:d1:c3:be:64: 38:89:66:70:79:8a:f4:33:18:05:74:66:06:77:72:88:6d:a8: d6:32:10:40:ff:2e:10:bf:57:4b:8a:18:f9:ed:fc:db:e1:ee: e2:1f:d9:55:40:84:25:b9:cd:80:ef:96:9f:ec:b0:48:e5:35: da:d3:17:da:70:ad:50:c0:ab:58:a8:10:f8:6e:33:a8:5d:98: 59:28:15:5c:38:a6:07:cc:ad:ef:39:ba:ed:41:9a:08:d9:86: 3a:ac:06:c7:8c:9d:0c:c3:24:5f:fc:7f:49:d9:61:92:80:41: fa:68:48:e8:aa:96:db:a1:d4:96:f8:9d:ee:7d:c6:dd:46:ef: 27:58:0a:87:a4:94:21:c6:ac:39:14:38:35:fe:88:62:b0:67: 2c:ad:00:70:83:6e:e0:ef:aa:11:61:57:a3:24:cd:03:77:67: 89:32:0a:19:6d:0e:ba:db:84:c1:7f:8b:6a:a8:e8:f1:4f:6b: b1:46:e5:8e:66:13:bd:83:1d:c2:c5:07:0f:98:02:e3:a4:8d: 19:c5:ff:a3:c8:7f:5d:db:53:b5:9d:dd:2b:0f:75:23:40:68: 62:20:93:b9 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgITNQurareq+9sZNCoNLs+oCz1TsTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygzRTc4ODAzNzkyNDM2OUFBM0I4RTUyQTU4NTc4MDRCRTVE Mjg1RkEyMB4XDTIzMTEyOTA1NTUwMFoXDTI0MTEyNzA2MDAwMFowMzExMC8GA1UE AxMoRTZCQUY0N0Y4QjZBQjlEQjAyQ0U5OUEzQjI3MTc0NzI4QTgwNzExMjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKlVknz41oULl7wanIlZiZDOe0k9 BnHMT5q4jRhHhVvF6k0cCn/HtWzo8p/8VDJZYb41/ZnVBSwK6xbZY3WDHWHoRo3A lpDTZjR6+PczudMdP0f5WkmwZfiVMAPjMHhWul8LOkZ2t5u2Qda07jqRC8H58SNw h/iItK9IYYjPOE+TZpnG7y1KGkq7Eq2VGK6SQxMlt9TSqTpDCFLve4DKuoS5OozX RZJA4oN3qhMd2B3GDVBnEwUkt1/0+30vhaIbfTy7i414GYi2wItqIUFziDDmO9xh xS8l9D8SMHcdhCnGTT7YuNImjLzeisCzR2nKhmBmpFdis7oJQdeFuT3JMR0CAwEA AaOCAjYwggIyMB0GA1UdDgQWBBTmuvR/i2q52wLOmaOycXRyioBxEjAfBgNVHSME GDAWgBQ+eIA3kkNpqjuOUqWFeAS+XShfojAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4 NTNhZmRkLTJlMDktNDc3My04YmU0LTZmZDBlZTkwYjA0MC8wLzNFNzg4MDM3OTI0 MzY5QUEzQjhFNTJBNTg1NzgwNEJFNUQyODVGQTIuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi8zRTc4ODAzNzkyNDM2OUFBM0I4RTUyQTU4NTc4MDRCRTVEMjg1 RkEyLmNlcjCBpgYIKwYBBQUHAQsEgZkwgZYwgZMGCCsGAQUFBzALhoGGcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjg1M2FmZGQtMmUwOS00NzczLThi ZTQtNmZkMGVlOTBiMDQwLzAvMzEzMDMzMmUzMTM3MzkyZTMxMzEzNzJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGezdTANBgkq hkiG9w0BAQsFAAOCAQEADw3jq3x7M8XIUM6+JkyV5FA0fJLA+4IT2dSSYlxiHRfR w75kOIlmcHmK9DMYBXRmBndyiG2o1jIQQP8uEL9XS4oY+e382+Hu4h/ZVUCEJbnN gO+Wn+ywSOU12tMX2nCtUMCrWKgQ+G4zqF2YWSgVXDimB8yt7zm67UGaCNmGOqwG x4ydDMMkX/x/SdlhkoBB+mhI6KqW26HUlvid7n3G3UbvJ1gKh6SUIcasORQ4Nf6I YrBnLK0AcINu4O+qEWFXoyTNA3dniTIKGW0OutuEwX+Laqjo8U9rsUbljmYTvYMd wsUHD5gC46SNGcX/o8h/XdtTtZ3dKw91I0BoYiCTuQ== -----END CERTIFICATE-----Generated at Fri May 3 14:51:18 2024 by rpki-client on console-fra.rpki-client.org