$ rpki-client -vvf repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37332e302f32342d3234203d3e20313530343838.roa File: 3130332e33392e37332e302f32342d3234203d3e20313530343838.roa (raw, json) Hash identifier: n9tkVMu7WahPHYL5DdeFLQhvRMXFFIY3gEE+QEHV40s= Subject key identifier: 88:32:AC:57:07:53:B0:AB:BC:E3:13:56:AD:A9:25:2B:FE:E4:EF:0F Certificate issuer: /CN=D6E54AF6C437868899B99F4312CD3DBB493B5D29 Certificate serial: 1E95DD4F8CE65C71E360C9200E6DE500FD229D11 Authority key identifier: D6:E5:4A:F6:C4:37:86:88:99:B9:9F:43:12:CD:3D:BB:49:3B:5D:29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6E54AF6C437868899B99F4312CD3DBB493B5D29.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37332e302f32342d3234203d3e20313530343838.roa Signing time: Mon 04 Dec 2023 04:01:40 +0000 ROA not before: Mon 04 Dec 2023 03:56:40 +0000 ROA not after: Mon 02 Dec 2024 04:01:40 +0000 asID: 150488 IP address blocks: 103.39.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/D6E54AF6C437868899B99F4312CD3DBB493B5D29.crl rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/D6E54AF6C437868899B99F4312CD3DBB493B5D29.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6E54AF6C437868899B99F4312CD3DBB493B5D29.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:95:dd:4f:8c:e6:5c:71:e3:60:c9:20:0e:6d:e5:00:fd:22:9d:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6E54AF6C437868899B99F4312CD3DBB493B5D29 Validity Not Before: Dec 4 03:56:40 2023 GMT Not After : Dec 2 04:01:40 2024 GMT Subject: CN=8832AC570753B0ABBCE31356ADA9252BFEE4EF0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d9:3b:1d:09:95:fb:22:8a:cf:45:81:d4:d4: 50:ae:23:78:1a:67:d8:13:37:e4:74:7f:af:9f:3e: 0b:97:5b:ed:4e:4a:3f:01:a2:a4:8b:28:12:92:58: 6e:1b:ba:ac:6d:16:dd:47:d0:af:79:4e:de:04:fe: 1a:f9:b8:46:05:9a:c1:d1:da:ab:ac:83:24:bf:60: 63:91:06:52:99:5d:b0:4c:42:b1:3c:ed:59:51:8f: 6b:b9:53:d6:e6:dc:61:bc:16:bc:00:3f:a5:53:f4: f0:b5:8f:8e:5e:b1:29:6e:ff:30:f6:68:7c:90:22: 76:f8:1a:3d:95:43:56:19:8c:ae:06:bc:d1:8f:e6: 7c:56:32:06:bf:36:97:62:28:51:37:b3:05:2c:11: 8d:cf:7d:d2:61:cd:3d:2c:4a:98:48:4f:35:64:31: 6f:65:b6:5d:48:bd:c9:a6:f0:09:99:65:96:d6:7d: cf:f8:df:6b:e8:e4:4e:7d:2e:d4:85:9f:7c:d7:2d: 6f:58:cd:f1:55:40:94:48:da:f0:b8:2c:b3:8d:2b: e3:49:b5:d9:dc:71:1c:37:5c:64:69:68:49:b7:9b: e1:5f:5c:09:74:2c:1d:5a:66:09:c3:f2:08:42:03: d6:7d:d2:8d:60:67:e6:00:0d:35:cf:f2:2d:1a:46: 46:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:32:AC:57:07:53:B0:AB:BC:E3:13:56:AD:A9:25:2B:FE:E4:EF:0F X509v3 Authority Key Identifier: keyid:D6:E5:4A:F6:C4:37:86:88:99:B9:9F:43:12:CD:3D:BB:49:3B:5D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/D6E54AF6C437868899B99F4312CD3DBB493B5D29.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6E54AF6C437868899B99F4312CD3DBB493B5D29.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37332e302f32342d3234203d3e20313530343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.39.73.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:06:8f:ed:bc:3b:de:ee:af:ba:2e:d6:59:bd:f2:90:cb:c8: d7:09:da:c3:78:7e:78:c8:21:49:aa:ac:9c:0a:48:b6:26:57: a6:6e:99:ce:23:64:5d:85:95:f4:9a:19:c9:c8:9a:fe:72:9b: d9:91:8d:69:a6:c0:8f:c4:d7:54:cc:ac:10:40:25:31:d5:26: cf:fd:a6:54:e2:f5:91:f8:d8:b9:d3:4d:7f:7d:63:b5:15:2b: 73:6c:0e:1e:bb:57:54:d6:61:ec:93:a5:8a:81:57:a7:62:e9: eb:fc:f1:fc:41:4d:06:53:b3:1f:fa:de:ea:ea:b6:f6:b0:3c: 87:9f:ea:e0:89:4a:55:0b:30:6b:ae:b3:8f:7e:c8:57:be:39: be:7c:d1:94:87:12:59:ee:9f:86:f2:56:6c:24:f8:47:ba:54: f1:d6:9f:32:31:06:98:57:7a:6e:64:27:c7:69:15:1e:08:8b: d8:e3:3a:41:66:d5:a7:e8:c8:07:02:2c:58:ec:74:da:1b:99: da:d4:31:2a:d0:e4:1f:63:89:01:b7:95:70:8a:95:d7:31:04: da:f7:00:d1:a7:82:f8:bc:90:8b:df:b8:5f:61:54:c1:ce:e0: f8:02:0e:40:94:c6:21:1a:ba:29:5d:09:44:e7:40:20:c2:94: 57:9a:7b:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHpXdT4zmXHHjYMkgDm3lAP0inREwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDZFNTRBRjZDNDM3ODY4ODk5Qjk5RjQzMTJDRDNEQkI0 OTNCNUQyOTAeFw0yMzEyMDQwMzU2NDBaFw0yNDEyMDIwNDAxNDBaMDMxMTAvBgNV BAMTKDg4MzJBQzU3MDc1M0IwQUJCQ0UzMTM1NkFEQTkyNTJCRkVFNEVGMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi2TsdCZX7IorPRYHU1FCuI3ga Z9gTN+R0f6+fPguXW+1OSj8BoqSLKBKSWG4buqxtFt1H0K95Tt4E/hr5uEYFmsHR 2qusgyS/YGORBlKZXbBMQrE87VlRj2u5U9bm3GG8FrwAP6VT9PC1j45esSlu/zD2 aHyQInb4Gj2VQ1YZjK4GvNGP5nxWMga/NpdiKFE3swUsEY3PfdJhzT0sSphITzVk MW9ltl1Ivcmm8AmZZZbWfc/432vo5E59LtSFn3zXLW9YzfFVQJRI2vC4LLONK+NJ tdnccRw3XGRpaEm3m+FfXAl0LB1aZgnD8ghCA9Z90o1gZ+YADTXP8i0aRkZ9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiDKsVwdTsKu84xNWraklK/7k7w8wHwYDVR0j BBgwFoAU1uVK9sQ3hoiZuZ9DEs09u0k7XSkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGM3M2FmNS1hMmMwLTQyNGQtODYyZS0xMTJjNThiNzI3MGUvMC9ENkU1NEFGNkM0 Mzc4Njg4OTlCOTlGNDMxMkNEM0RCQjQ5M0I1RDI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDZFNTRBRjZDNDM3ODY4ODk5Qjk5RjQzMTJDRDNEQkI0OTNC NUQyOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwYzczYWY1LWEyYzAtNDI0ZC04 NjJlLTExMmM1OGI3MjcwZS8wLzMxMzAzMzJlMzMzOTJlMzczMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcnSTANBgkqhkiG 9w0BAQsFAAOCAQEAfAaP7bw73u6vui7WWb3ykMvI1wnaw3h+eMghSaqsnApItiZX pm6ZziNkXYWV9JoZycia/nKb2ZGNaabAj8TXVMysEEAlMdUmz/2mVOL1kfjYudNN f31jtRUrc2wOHrtXVNZh7JOlioFXp2Lp6/zx/EFNBlOzH/re6uq29rA8h5/q4IlK VQswa66zj37IV745vnzRlIcSWe6fhvJWbCT4R7pU8dafMjEGmFd6bmQnx2kVHgiL 2OM6QWbVp+jIBwIsWOx02huZ2tQxKtDkH2OJAbeVcIqV1zEE2vcA0aeC+LyQi9+4 X2FUwc7g+AIOQJTGIRq6KV0JROdAIMKUV5p7sw== -----END CERTIFICATE-----Generated at Sat Jun 22 13:19:02 2024 by rpki-client on console-fra.rpki-client.org