$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3130332e342e332e302f32342d3234203d3e203138303539.roa File: 3130332e342e332e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: PxO6JycPUBwQcHFuXH5+L227wvbRt/s/WKud/xw9VCo= Subject key identifier: BC:7D:79:38:C4:D3:BC:F7:FB:84:AD:F3:DB:83:5F:66:F8:2D:AA:45 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 0D7F36F771C2BE56F804B33742B42860F3AA160B Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3130332e342e332e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 02:57:33 +0000 ROA not before: Fri 24 Nov 2023 02:52:33 +0000 ROA not after: Fri 22 Nov 2024 02:57:33 +0000 asID: 18059 IP address blocks: 103.4.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:7f:36:f7:71:c2:be:56:f8:04:b3:37:42:b4:28:60:f3:aa:16:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 02:52:33 2023 GMT Not After : Nov 22 02:57:33 2024 GMT Subject: CN=BC7D7938C4D3BCF7FB84ADF3DB835F66F82DAA45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:27:2a:59:f0:ed:bf:77:b7:a7:48:cc:0e:85: ee:e3:7e:81:66:ca:5e:0c:5b:3c:8b:fb:86:79:8c: ec:6e:88:84:8d:0a:42:ef:64:ad:69:4a:4b:c1:df: da:df:bd:50:cd:d3:78:72:07:7f:17:1c:32:aa:68: 7e:86:f0:01:cf:87:b5:c1:fc:a9:fa:b8:ae:dd:16: 74:a3:04:ee:6e:67:b3:33:bd:c3:61:55:8c:4d:d4: cb:e4:1f:02:a5:38:c1:fd:65:5b:49:d2:ce:20:4c: fc:81:fc:01:d9:37:a7:e9:f6:f9:a4:a3:04:29:ac: 26:68:da:f9:89:cc:af:49:86:3f:e9:79:1f:ab:e1: ed:5f:b8:c3:d3:79:f3:0b:8c:01:7d:33:40:e6:35: 69:fb:73:3a:48:fe:c0:72:fb:40:9d:60:87:52:89: 20:47:14:0f:c8:b1:88:1b:b8:eb:69:de:43:d6:20: f2:9d:3c:c1:a6:0e:dd:52:90:52:63:f1:0b:d7:be: 94:9e:e2:34:92:59:dc:99:1c:fd:27:8b:19:db:03: 1f:6f:ff:74:e8:03:bd:29:29:22:2e:09:75:56:85: c2:f0:40:cf:0b:d3:ad:ce:f4:05:37:39:bd:5c:1a: 0e:55:39:7e:f6:e3:92:9d:ea:a1:06:9a:3d:1d:86: ab:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:7D:79:38:C4:D3:BC:F7:FB:84:AD:F3:DB:83:5F:66:F8:2D:AA:45 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3130332e342e332e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.3.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:a5:41:a9:8b:11:85:a1:38:af:fb:90:36:78:17:37:4a:f9: 0e:a4:3f:2b:2d:9b:48:c1:77:fb:b3:71:42:a1:8c:7e:f5:9f: 10:a5:ca:6d:6a:aa:9a:ed:db:ae:f6:c1:d3:1d:3a:d5:ea:c4: 1b:84:08:76:fe:6d:9f:70:d9:43:fe:d5:7e:af:c5:6d:f4:91: 23:98:ab:11:a8:e4:73:1b:01:ad:71:45:e9:84:7d:d6:c5:55: 9d:2c:fe:56:eb:4f:73:f3:b2:7f:db:af:8d:40:f4:83:3f:1a: 83:c1:7d:d6:6c:4c:5f:c2:a2:63:1f:68:ab:0f:8c:a2:da:dc: 41:e8:d3:57:47:ab:38:75:35:6c:58:73:35:51:62:65:d5:8b: 80:d3:54:6d:2c:a9:2f:2e:1e:ed:fb:c3:e1:06:4c:2b:ac:8c: 20:b1:9b:be:f9:f2:7b:1d:3c:2a:24:19:8b:d0:1a:6c:00:be: 72:38:70:c4:a4:e7:07:b3:0c:54:47:74:f8:aa:b9:98:5c:c7: df:7c:9a:0d:28:da:5c:f0:22:7f:e2:70:42:43:a1:77:5a:39: 2b:b4:31:c8:2b:84:4f:fb:48:46:ff:5e:8d:ad:b2:95:f4:44: bb:56:b3:cf:d8:33:ea:db:07:c4:38:91:11:55:a8:38:5c:49: cc:1b:36:36 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUDX8293HCvlb4BLM3QrQoYPOqFgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMjUyMzNaFw0yNDExMjIwMjU3MzNaMDMxMTAvBgNV BAMTKEJDN0Q3OTM4QzREM0JDRjdGQjg0QURGM0RCODM1RjY2RjgyREFBNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcJypZ8O2/d7enSMwOhe7jfoFm yl4MWzyL+4Z5jOxuiISNCkLvZK1pSkvB39rfvVDN03hyB38XHDKqaH6G8AHPh7XB /Kn6uK7dFnSjBO5uZ7MzvcNhVYxN1MvkHwKlOMH9ZVtJ0s4gTPyB/AHZN6fp9vmk owQprCZo2vmJzK9Jhj/peR+r4e1fuMPTefMLjAF9M0DmNWn7czpI/sBy+0CdYIdS iSBHFA/IsYgbuOtp3kPWIPKdPMGmDt1SkFJj8QvXvpSe4jSSWdyZHP0nixnbAx9v /3ToA70pKSIuCXVWhcLwQM8L063O9AU3Ob1cGg5VOX7245Kd6qEGmj0dhqvfAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUvH15OMTTvPf7hK3z24NfZvgtqkUwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzI4MzY3NjMtMTJiNi00ZDhmLWFk MGItNGNkNWI2MTk1OWVmLzAvMzEzMDMzMmUzNDJlMzMyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZwQDMA0GCSqGSIb3DQEBCwUA A4IBAQBMpUGpixGFoTiv+5A2eBc3SvkOpD8rLZtIwXf7s3FCoYx+9Z8Qpcptaqqa 7duu9sHTHTrV6sQbhAh2/m2fcNlD/tV+r8Vt9JEjmKsRqORzGwGtcUXphH3WxVWd LP5W609z87J/26+NQPSDPxqDwX3WbExfwqJjH2irD4yi2txB6NNXR6s4dTVsWHM1 UWJl1YuA01RtLKkvLh7t+8PhBkwrrIwgsZu++fJ7HTwqJBmL0BpsAL5yOHDEpOcH swxUR3T4qrmYXMfffJoNKNpc8CJ/4nBCQ6F3WjkrtDHIK4RP+0hG/16NrbKV9ES7 VrPP2DPq2wfEOJERVag4XEnMGzY2 -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:54 2024 by rpki-client on console-fra.rpki-client.org