$ rpki-client -vvf repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/3130332e34372e31312e302f32342d3234203d3e203539323733.roa File: 3130332e34372e31312e302f32342d3234203d3e203539323733.roa (raw, json) Hash identifier: btJc4MaW3KI9EawLEtDAyqSSE2j4wJzvuvzRIaOqKBo= Subject key identifier: 34:ED:77:D6:E4:7F:C1:37:3E:06:84:AD:C4:CD:A9:11:79:78:69:46 Certificate issuer: /CN=E91D51E54A89C0DDBD57F00A13E96E36FA29AB27 Certificate serial: 32660850280EEB17280EAA8E4734711573DCB4FD Authority key identifier: E9:1D:51:E5:4A:89:C0:DD:BD:57:F0:0A:13:E9:6E:36:FA:29:AB:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/3130332e34372e31312e302f32342d3234203d3e203539323733.roa Signing time: Fri 17 Nov 2023 17:00:01 +0000 ROA not before: Fri 17 Nov 2023 16:55:01 +0000 ROA not after: Fri 15 Nov 2024 17:00:01 +0000 asID: 59273 IP address blocks: 103.47.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.crl rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:66:08:50:28:0e:eb:17:28:0e:aa:8e:47:34:71:15:73:dc:b4:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E91D51E54A89C0DDBD57F00A13E96E36FA29AB27 Validity Not Before: Nov 17 16:55:01 2023 GMT Not After : Nov 15 17:00:01 2024 GMT Subject: CN=34ED77D6E47FC1373E0684ADC4CDA91179786946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d3:10:68:ba:1b:fe:31:f4:a4:2c:eb:0f:03: be:ea:c7:0b:33:17:42:9c:4e:33:7a:bb:94:a4:17: 9f:57:3b:f0:55:4b:04:e5:dd:37:f5:b9:89:a1:90: ce:31:24:37:91:f8:b7:5d:92:33:ad:c8:1d:92:6c: eb:0b:94:cf:48:aa:68:79:65:37:c2:f2:bd:ed:b2: 46:a6:64:98:25:f0:4e:20:4f:07:e0:76:1f:da:78: 1c:68:52:df:f8:3a:da:95:cd:2e:c4:e4:56:7f:82: 72:6d:23:f6:b5:9b:c9:be:52:90:f5:0f:5c:24:31: 84:d5:90:4c:27:26:5c:6a:b4:3f:0c:d5:3e:02:44: eb:f1:b9:7c:63:0b:ea:00:64:9d:4d:ef:cb:a2:53: af:a1:d6:ee:99:e3:4f:f3:06:44:8d:79:e2:3d:a5: ac:15:1f:75:58:63:20:42:05:6b:01:73:6b:b1:2b: f8:bd:d1:98:b0:6d:85:e5:db:a4:39:02:1b:6f:c1: 47:0d:0f:36:1a:7d:cb:97:4a:83:3c:09:43:78:46: c5:e3:a4:d7:35:65:c0:06:ee:a3:21:91:7a:67:bb: c9:75:79:d7:f8:ad:17:a1:4a:48:e1:6f:03:2b:65: 25:7d:42:f9:a5:d0:9d:b0:21:94:b2:c7:6c:12:15: 5a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:ED:77:D6:E4:7F:C1:37:3E:06:84:AD:C4:CD:A9:11:79:78:69:46 X509v3 Authority Key Identifier: keyid:E9:1D:51:E5:4A:89:C0:DD:BD:57:F0:0A:13:E9:6E:36:FA:29:AB:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/3130332e34372e31312e302f32342d3234203d3e203539323733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.47.11.0/24 Signature Algorithm: sha256WithRSAEncryption 16:3d:ff:c7:a3:48:25:d1:4b:c0:09:37:6c:a3:d8:e8:87:56: ae:4d:42:c4:59:64:b3:04:39:78:32:a0:9a:82:e2:94:1b:0a: 09:ae:16:22:78:e0:39:f2:ec:c1:6e:46:c4:e6:59:52:52:8c: 4f:ea:ac:f7:b4:86:fc:1c:c7:83:4e:3d:8a:4d:12:f5:8e:40: ee:f2:70:9c:c4:1e:a6:d0:96:62:4c:da:81:a6:d5:8c:7a:b7: 27:24:4b:8d:4a:37:ac:29:8a:75:38:4f:88:ee:f1:76:c3:05: c8:5e:d6:90:ed:e5:11:7f:b2:18:ac:2e:cf:8d:18:7b:bd:27: 53:a1:8f:d4:47:38:fe:00:c7:11:30:50:b1:8a:07:17:9c:b9: 1b:90:91:c3:87:59:a6:96:88:a2:d4:fd:0f:59:04:62:eb:b0: 3e:9c:45:5b:e9:dc:d6:98:ec:ec:ba:44:be:ad:be:78:57:dd: e1:83:c1:e4:9f:5c:7e:f0:a3:aa:81:43:9d:ba:90:92:e2:e8: 55:40:8d:2f:df:76:67:1b:6f:71:21:be:7a:c9:3d:10:db:56: 40:6b:a5:51:6c:ff:f0:14:c2:ec:c9:d6:e2:aa:4d:7c:14:ba: b3:7f:f0:36:6e:02:5e:9b:5c:3d:e0:62:1b:c7:ea:78:6b:b5: 6f:b1:61:a5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMmYIUCgO6xcoDqqORzRxFXPctP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTkxRDUxRTU0QTg5QzBEREJENTdGMDBBMTNFOTZFMzZG QTI5QUIyNzAeFw0yMzExMTcxNjU1MDFaFw0yNDExMTUxNzAwMDFaMDMxMTAvBgNV BAMTKDM0RUQ3N0Q2RTQ3RkMxMzczRTA2ODRBREM0Q0RBOTExNzk3ODY5NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv0xBouhv+MfSkLOsPA77qxwsz F0KcTjN6u5SkF59XO/BVSwTl3Tf1uYmhkM4xJDeR+LddkjOtyB2SbOsLlM9Iqmh5 ZTfC8r3tskamZJgl8E4gTwfgdh/aeBxoUt/4OtqVzS7E5FZ/gnJtI/a1m8m+UpD1 D1wkMYTVkEwnJlxqtD8M1T4CROvxuXxjC+oAZJ1N78uiU6+h1u6Z40/zBkSNeeI9 pawVH3VYYyBCBWsBc2uxK/i90ZiwbYXl26Q5AhtvwUcNDzYafcuXSoM8CUN4RsXj pNc1ZcAG7qMhkXpnu8l1edf4rRehSkjhbwMrZSV9Qvml0J2wIZSyx2wSFVpxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUNO131uR/wTc+BoStxM2pEXl4aUYwHwYDVR0j BBgwFoAU6R1R5UqJwN29V/AKE+luNvopqycwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NWE3MmViOS04ZTUzLTQ0NzItYTM1YS1mZWU4YmYwYWY0NmYvMC9FOTFENTFFNTRB ODlDMEREQkQ1N0YwMEExM0U5NkUzNkZBMjlBQjI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTkxRDUxRTU0QTg5QzBEREJENTdGMDBBMTNFOTZFMzZGQTI5 QUIyNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI1YTcyZWI5LThlNTMtNDQ3Mi1h MzVhLWZlZThiZjBhZjQ2Zi8wLzMxMzAzMzJlMzQzNzJlMzEzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzkzMjM3MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnLwswDQYJKoZIhvcN AQELBQADggEBABY9/8ejSCXRS8AJN2yj2OiHVq5NQsRZZLMEOXgyoJqC4pQbCgmu FiJ44Dny7MFuRsTmWVJSjE/qrPe0hvwcx4NOPYpNEvWOQO7ycJzEHqbQlmJM2oGm 1Yx6tyckS41KN6wpinU4T4ju8XbDBche1pDt5RF/shisLs+NGHu9J1Ohj9RHOP4A xxEwULGKBxecuRuQkcOHWaaWiKLU/Q9ZBGLrsD6cRVvp3NaY7Oy6RL6tvnhX3eGD weSfXH7wo6qBQ526kJLi6FVAjS/fdmcbb3EhvnrJPRDbVkBrpVFs//AUwuzJ1uKq TXwUurN/8DZuAl6bXD3gYhvH6nhrtW+xYaU= -----END CERTIFICATE-----Generated at Sat Jun 1 15:44:21 2024 by rpki-client on console-fra.rpki-client.org