$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32332d3233203d3e20313331373137.roa File: 3130332e31342e32302e302f32332d3233203d3e20313331373137.roa (raw, json) Hash identifier: bzPvrnaNQUoSB+SWzjdqJSSTom3pB4NvVXcYiHqcZ6U= Subject key identifier: E3:73:24:C9:80:44:74:C5:AA:E4:AD:A8:39:A9:86:0C:46:53:43:32 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 2C43C74D7175BAC7E4C27A331841FA830609F10A Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32332d3233203d3e20313331373137.roa Signing time: Mon 31 Jul 2023 00:03:13 +0000 ROA not before: Sun 30 Jul 2023 23:58:13 +0000 ROA not after: Mon 29 Jul 2024 00:03:13 +0000 asID: 131717 IP address blocks: 103.14.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:43:c7:4d:71:75:ba:c7:e4:c2:7a:33:18:41:fa:83:06:09:f1:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 30 23:58:13 2023 GMT Not After : Jul 29 00:03:13 2024 GMT Subject: CN=E37324C9804474C5AAE4ADA839A9860C46534332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f5:2d:13:df:ca:3a:0c:55:e0:b5:e1:d9:ec: e0:d2:df:22:59:f2:63:ca:f1:87:49:be:7e:f9:d1: d4:a0:1d:a6:bd:21:4c:ac:6d:58:e5:26:04:d7:83: 84:1b:e8:63:3e:c9:15:a9:1f:07:8a:3f:0c:d8:6f: 1d:4a:7c:46:40:35:d6:0d:14:1f:53:ad:c6:4e:07: 2a:9c:1b:c9:fd:a1:e3:42:ef:c1:bf:9c:0d:ed:70: b3:a1:3f:b3:18:4f:70:31:37:e7:22:c4:a7:1e:0d: f0:d7:a0:c8:5f:e5:64:70:cc:4e:cf:e4:4f:b7:29: 2b:1a:98:f2:8e:a9:15:8f:dc:9e:ad:28:35:12:45: 51:34:72:73:34:ce:ac:56:2f:f1:f8:ab:83:c5:dc: fa:88:d7:65:b4:1e:55:fd:f5:a8:79:94:ca:6e:fb: 68:aa:26:2f:d8:d5:f3:86:67:ae:ec:33:a5:bd:51: eb:c9:df:68:f3:de:fa:ca:b4:20:00:df:60:e9:53: 29:76:27:51:b1:98:ec:01:19:ff:b9:f6:85:47:07: fb:18:ac:10:7a:76:d2:67:77:99:95:a9:02:9e:6e: 9f:1b:a8:18:75:ef:59:26:07:3b:d6:84:55:86:0d: 05:e2:45:86:33:59:67:04:d0:6e:a8:09:c1:42:66: d7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:73:24:C9:80:44:74:C5:AA:E4:AD:A8:39:A9:86:0C:46:53:43:32 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32332d3233203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.20.0/23 Signature Algorithm: sha256WithRSAEncryption 69:88:6e:8d:fe:8e:5a:69:ce:be:2c:31:e8:ea:21:44:5c:61: ec:8c:d0:f7:71:b9:57:5e:9c:ba:3a:bb:ae:9e:d9:c2:03:f4: eb:f6:22:46:c2:b1:53:95:fc:e5:98:df:fa:08:b4:48:89:de: 74:79:99:dc:20:c3:45:a6:52:14:23:ba:6a:d9:60:a4:63:4a: c1:86:1f:8f:a2:10:a2:0f:d1:89:f3:13:98:98:e7:83:9e:75: 4a:19:09:ea:b3:aa:71:78:e1:06:3c:bf:08:27:7a:98:73:80: 6d:56:20:bd:d1:6d:24:e2:72:37:c0:49:2f:77:93:29:46:f7: 08:50:7e:f7:97:54:a5:1e:0f:50:50:76:fe:94:86:77:d4:2f: 4b:d1:05:3a:dd:67:e2:5d:b3:c9:e8:a4:41:55:72:b1:c6:f0: 1c:5c:38:d2:b1:87:5f:22:2d:4a:dd:42:c4:4f:c6:a2:90:0a: 9b:b9:bb:4b:ef:2b:ab:21:47:1f:be:d7:c4:a6:5e:99:ff:c6: ed:e2:fb:9f:f9:27:6a:c1:15:96:63:1a:21:ea:67:c4:dc:46: 90:ee:37:9e:a6:c3:e6:b8:40:2b:63:7e:47:d9:cb:fa:d3:23: 9c:b2:1d:bd:c1:43:c7:a9:30:bf:c2:04:7b:3b:4a:09:26:d4: ab:7b:75:99 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULEPHTXF1usfkwnozGEH6gwYJ8QowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yMzA3MzAyMzU4MTNaFw0yNDA3MjkwMDAzMTNaMDMxMTAvBgNV BAMTKEUzNzMyNEM5ODA0NDc0QzVBQUU0QURBODM5QTk4NjBDNDY1MzQzMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb9S0T38o6DFXgteHZ7ODS3yJZ 8mPK8YdJvn750dSgHaa9IUysbVjlJgTXg4Qb6GM+yRWpHweKPwzYbx1KfEZANdYN FB9TrcZOByqcG8n9oeNC78G/nA3tcLOhP7MYT3AxN+cixKceDfDXoMhf5WRwzE7P 5E+3KSsamPKOqRWP3J6tKDUSRVE0cnM0zqxWL/H4q4PF3PqI12W0HlX99ah5lMpu +2iqJi/Y1fOGZ67sM6W9UevJ32jz3vrKtCAA32DpUyl2J1GxmOwBGf+59oVHB/sY rBB6dtJnd5mVqQKebp8bqBh171kmBzvWhFWGDQXiRYYzWWcE0G6oCcFCZtc/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU43MkyYBEdMWq5K2oOamGDEZTQzIwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMxMzAzMzJlMzEzNDJlMzIzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzMzMTM3MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcOFDANBgkqhkiG 9w0BAQsFAAOCAQEAaYhujf6OWmnOviwx6OohRFxh7IzQ93G5V16cujq7rp7ZwgP0 6/YiRsKxU5X85Zjf+gi0SInedHmZ3CDDRaZSFCO6atlgpGNKwYYfj6IQog/RifMT mJjng551ShkJ6rOqcXjhBjy/CCd6mHOAbVYgvdFtJOJyN8BJL3eTKUb3CFB+95dU pR4PUFB2/pSGd9QvS9EFOt1n4l2zyeikQVVyscbwHFw40rGHXyItSt1CxE/GopAK m7m7S+8rqyFHH77XxKZemf/G7eL7n/knasEVlmMaIepnxNxGkO43nqbD5rhAK2N+ R9nL+tMjnLIdvcFDx6kwv8IEeztKCSbUq3t1mQ== -----END CERTIFICATE-----Generated at Fri Apr 26 00:39:43 2024 by rpki-client on console-fra.rpki-client.org