$ rpki-client -vvf repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/3130332e3138382e3136392e302f32342d3234203d3e203538383231.roa File: 3130332e3138382e3136392e302f32342d3234203d3e203538383231.roa (raw, json) Hash identifier: VxUtS32mVNjNaRblEVp2E2xsi5RhwU0w6HhnxpR12SM= Subject key identifier: 3E:88:C1:3D:F9:49:9D:73:BE:8B:B7:43:6B:8F:56:0A:97:44:EF:8F Certificate issuer: /CN=33EF8ED81E12A39E325D47325D8FDA76CC497040 Certificate serial: 471CD3CF67894D0F5956C23059C2DD30368B057E Authority key identifier: 33:EF:8E:D8:1E:12:A3:9E:32:5D:47:32:5D:8F:DA:76:CC:49:70:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33EF8ED81E12A39E325D47325D8FDA76CC497040.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/3130332e3138382e3136392e302f32342d3234203d3e203538383231.roa Signing time: Wed 12 Jul 2023 06:48:01 +0000 ROA not before: Wed 12 Jul 2023 06:43:01 +0000 ROA not after: Wed 10 Jul 2024 06:48:01 +0000 asID: 58821 IP address blocks: 103.188.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/33EF8ED81E12A39E325D47325D8FDA76CC497040.crl rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/33EF8ED81E12A39E325D47325D8FDA76CC497040.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33EF8ED81E12A39E325D47325D8FDA76CC497040.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 19:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:1c:d3:cf:67:89:4d:0f:59:56:c2:30:59:c2:dd:30:36:8b:05:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33EF8ED81E12A39E325D47325D8FDA76CC497040 Validity Not Before: Jul 12 06:43:01 2023 GMT Not After : Jul 10 06:48:01 2024 GMT Subject: CN=3E88C13DF9499D73BE8BB7436B8F560A9744EF8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:81:eb:2b:28:36:95:a1:5f:bf:c7:33:ef:a3: 30:11:68:57:a6:9d:c8:43:5e:b5:9c:45:76:fb:15: fa:40:75:0f:43:06:28:27:e6:8e:fd:db:2c:99:6c: 55:19:f5:79:45:b8:a7:60:09:b6:ef:87:c9:84:e2: b0:6d:c4:43:a5:e4:23:59:97:bb:e1:7a:c0:6b:d8: 62:3f:2b:68:45:a4:fc:5e:ae:a5:31:f5:22:23:82: 4a:73:84:8c:a5:a8:bf:08:a0:e5:e9:3d:b9:8c:ec: 3d:d7:fb:28:7b:b5:e7:0d:47:ba:bf:c5:89:f1:01: f9:4d:1d:fe:ec:c9:24:e5:35:34:e4:dd:4e:7d:50: ba:9a:24:bf:88:19:82:b2:40:e6:4b:2b:a7:9a:ef: 3d:3c:c9:4b:3f:19:4b:65:52:0d:4a:dd:38:9b:e9: af:73:b7:64:21:b4:dc:45:67:eb:9b:5d:c7:f2:21: 65:c8:fc:b2:31:de:71:92:1a:50:29:1e:71:6d:84: 3c:53:d6:7f:e5:46:bd:61:2a:c9:47:b1:b0:09:8d: 9e:6e:1d:eb:49:42:56:f6:63:2d:19:d9:1d:ee:55: 27:ff:0a:bc:38:35:e1:d7:5a:94:2b:9a:d3:ae:52: 78:e4:b1:9f:f0:d0:d9:38:c1:b9:2a:84:ed:91:18: 08:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:88:C1:3D:F9:49:9D:73:BE:8B:B7:43:6B:8F:56:0A:97:44:EF:8F X509v3 Authority Key Identifier: keyid:33:EF:8E:D8:1E:12:A3:9E:32:5D:47:32:5D:8F:DA:76:CC:49:70:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/33EF8ED81E12A39E325D47325D8FDA76CC497040.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33EF8ED81E12A39E325D47325D8FDA76CC497040.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/3130332e3138382e3136392e302f32342d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.169.0/24 Signature Algorithm: sha256WithRSAEncryption 92:bd:ca:7a:ac:3a:80:a3:bf:a3:5f:29:5b:18:3a:5e:c4:77: 51:b7:16:52:f4:8a:3d:ae:c4:23:42:e4:45:41:70:63:ce:57: d0:57:44:aa:12:b5:56:a6:c8:e4:3a:36:4b:b3:d9:33:8b:c8: 7d:7f:28:9a:de:c9:e3:1b:28:ac:65:93:4b:2c:4d:3b:81:3b: 7a:c0:f7:d7:49:17:c0:40:f0:92:bf:aa:77:e4:9a:ca:f2:ec: a2:f5:31:45:5f:ca:c1:50:c8:8b:d4:f4:42:b7:08:5d:af:a6: 03:c5:88:35:f3:b7:bd:03:e6:d8:bf:d8:8f:28:fa:12:fb:e5: 63:ea:a8:6e:c3:4d:cd:25:5b:7d:68:d4:82:d0:2d:42:c8:fb: 1b:e1:8d:b4:d5:09:af:de:aa:63:a9:e7:28:b5:3f:ee:ac:da: c0:2f:58:5d:20:0e:3e:eb:43:bb:27:ab:ce:4e:25:23:cb:21: e8:fb:8f:d5:f7:53:aa:a9:7a:ae:cc:83:7a:de:c0:81:f0:40: 3e:93:e8:f8:9b:66:d6:d5:22:9e:5d:1b:2a:7b:b1:56:95:bb: 6f:e9:1f:71:c5:f3:1c:3f:5a:e0:3f:d3:b1:d5:76:e4:54:6c: c3:b1:44:82:5d:ea:2c:eb:da:71:99:02:b0:7f:d0:c9:9e:a2: f7:ae:09:ae -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURxzTz2eJTQ9ZVsIwWcLdMDaLBX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNFRjhFRDgxRTEyQTM5RTMyNUQ0NzMyNUQ4RkRBNzZD QzQ5NzA0MDAeFw0yMzA3MTIwNjQzMDFaFw0yNDA3MTAwNjQ4MDFaMDMxMTAvBgNV BAMTKDNFODhDMTNERjk0OTlENzNCRThCQjc0MzZCOEY1NjBBOTc0NEVGOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFgesrKDaVoV+/xzPvozARaFem nchDXrWcRXb7FfpAdQ9DBign5o792yyZbFUZ9XlFuKdgCbbvh8mE4rBtxEOl5CNZ l7vhesBr2GI/K2hFpPxerqUx9SIjgkpzhIylqL8IoOXpPbmM7D3X+yh7tecNR7q/ xYnxAflNHf7sySTlNTTk3U59ULqaJL+IGYKyQOZLK6ea7z08yUs/GUtlUg1K3Tib 6a9zt2QhtNxFZ+ubXcfyIWXI/LIx3nGSGlApHnFthDxT1n/lRr1hKslHsbAJjZ5u HetJQlb2Yy0Z2R3uVSf/Crw4NeHXWpQrmtOuUnjksZ/w0Nk4wbkqhO2RGAg5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPojBPflJnXO+i7dDa49WCpdE748wHwYDVR0j BBgwFoAUM++O2B4So54yXUcyXY/adsxJcEAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w M2FkZTljMC1jZGUxLTQ3ZjAtOWNkMi00YTU3YmRkZTE0ZTgvMC8zM0VGOEVEODFF MTJBMzlFMzI1RDQ3MzI1RDhGREE3NkNDNDk3MDQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNFRjhFRDgxRTEyQTM5RTMyNUQ0NzMyNUQ4RkRBNzZDQzQ5 NzA0MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzYWRlOWMwLWNkZTEtNDdmMC05 Y2QyLTRhNTdiZGRlMTRlOC8wLzMxMzAzMzJlMzEzODM4MmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7ypMA0GCSqG SIb3DQEBCwUAA4IBAQCSvcp6rDqAo7+jXylbGDpexHdRtxZS9Io9rsQjQuRFQXBj zlfQV0SqErVWpsjkOjZLs9kzi8h9fyia3snjGyisZZNLLE07gTt6wPfXSRfAQPCS v6p35JrK8uyi9TFFX8rBUMiL1PRCtwhdr6YDxYg187e9A+bYv9iPKPoS++Vj6qhu w03NJVt9aNSC0C1CyPsb4Y201Qmv3qpjqecotT/urNrAL1hdIA4+60O7J6vOTiUj yyHo+4/V91OqqXquzIN63sCB8EA+k+j4m2bW1SKeXRsqe7FWlbtv6R9xxfMcP1rg P9Ox1XbkVGzDsUSCXeos69pxmQKwf9DJnqL3rgmu -----END CERTIFICATE-----Generated at Thu May 2 17:39:53 2024 by rpki-client on console-fra.rpki-client.org