$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa File: 3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa (raw, json) Hash identifier: TY/f9sU+q5Yd5pS7++vY6X7t1zvDTQ+dGJE+buUf9v8= Subject key identifier: 7A:30:71:E6:DE:1C:B2:AD:6E:A9:14:8A:63:4D:45:CF:1C:A6:8F:4A Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 7FB5B95622AF7A381D5B23E76F9B6F6927C9BB30 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa Signing time: Mon 31 Jul 2023 00:14:30 +0000 ROA not before: Mon 31 Jul 2023 00:09:30 +0000 ROA not after: Mon 29 Jul 2024 00:14:30 +0000 asID: 38788 IP address blocks: 103.242.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b5:b9:56:22:af:7a:38:1d:5b:23:e7:6f:9b:6f:69:27:c9:bb:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 31 00:09:30 2023 GMT Not After : Jul 29 00:14:30 2024 GMT Subject: CN=7A3071E6DE1CB2AD6EA9148A634D45CF1CA68F4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:06:5f:45:39:22:03:db:19:db:53:85:6f:55: 6a:bd:03:7a:4d:2d:a9:d4:76:8e:7d:75:a3:ef:31: 53:f0:57:10:c8:76:40:79:7e:b7:c4:b5:87:71:d0: 30:cc:2f:12:1a:26:24:18:2f:5c:74:39:78:15:d8: b0:c8:9c:00:47:91:22:df:bd:f7:f4:c1:8d:d2:a4: d6:a9:1e:0e:15:4d:d9:93:55:1a:ee:fa:f1:2e:ef: a7:9a:04:43:23:2e:29:52:b1:b8:a6:73:bb:41:86: 1a:4c:ce:de:44:0b:bd:f7:31:79:ce:7b:eb:5a:c9: 4b:8c:08:ce:b2:3f:74:c0:3b:5d:74:57:b6:22:03: cd:ab:78:29:59:98:d3:e8:04:21:8e:5e:c0:69:b9: bb:1c:f0:09:96:86:78:aa:8c:20:01:12:58:31:3b: c6:8b:d0:71:1c:dd:95:0c:83:e7:64:30:60:0e:82: 5c:0e:1d:08:ad:05:b3:e7:c2:41:49:46:5b:5c:5a: c0:04:78:1b:f7:b4:ea:3c:da:12:8f:9e:44:1d:43: 36:c2:14:e6:48:4e:7b:86:3c:15:d4:31:0e:d5:90: c1:fd:f4:27:6b:88:d3:96:3c:68:cf:c2:aa:0a:fa: 5d:95:bf:41:fb:4d:19:ae:0a:b0:0f:77:30:e0:17: 1d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:30:71:E6:DE:1C:B2:AD:6E:A9:14:8A:63:4D:45:CF:1C:A6:8F:4A X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.180.0/23 Signature Algorithm: sha256WithRSAEncryption 31:f7:c6:7b:32:56:e4:c1:92:34:c6:45:5e:4c:36:34:27:ce: 09:e6:65:1b:02:eb:13:b2:2c:ea:eb:30:83:26:62:aa:f7:d3: c7:dc:0f:34:64:47:3d:64:24:19:fc:e3:6d:26:f5:25:86:fa: 5c:d1:dc:df:a3:53:ce:9e:8f:22:a4:6f:59:c2:3c:84:33:52: 37:1e:04:9b:cd:18:fe:07:b9:fc:ca:1f:bf:0e:5b:7c:a7:20: e4:26:80:a4:79:62:54:54:7c:b0:2f:ca:2c:a0:d7:1a:d3:b7: 2f:0f:f7:7e:35:92:b4:cd:73:59:0c:34:a7:ab:c7:cb:03:91: d1:79:16:69:f7:35:4e:bc:38:8c:6f:f1:7b:d8:7c:6d:02:2d: e3:51:fe:05:fc:bd:13:06:85:56:e5:de:1b:f8:7d:68:ce:ee: b1:e3:a7:c9:79:7d:23:43:8f:98:83:25:27:fe:06:2e:b5:db: 74:05:5e:f7:b2:04:2e:eb:fb:eb:be:7c:54:5b:d5:eb:ed:32: 16:7d:c8:07:7c:9e:60:8e:6a:67:03:4b:04:86:6c:63:18:b5: 8a:ba:df:04:c4:67:e7:30:a5:f7:91:f9:a7:92:cc:23:29:b9: 2f:ed:25:db:41:59:4b:27:b6:56:5c:77:61:0c:ff:9f:9f:33: 08:e3:49:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf7W5ViKvejgdWyPnb5tvaSfJuzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yMzA3MzEwMDA5MzBaFw0yNDA3MjkwMDE0MzBaMDMxMTAvBgNV BAMTKDdBMzA3MUU2REUxQ0IyQUQ2RUE5MTQ4QTYzNEQ0NUNGMUNBNjhGNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBl9FOSID2xnbU4VvVWq9A3pN LanUdo59daPvMVPwVxDIdkB5frfEtYdx0DDMLxIaJiQYL1x0OXgV2LDInABHkSLf vff0wY3SpNapHg4VTdmTVRru+vEu76eaBEMjLilSsbimc7tBhhpMzt5EC733MXnO e+tayUuMCM6yP3TAO110V7YiA82reClZmNPoBCGOXsBpubsc8AmWhniqjCABElgx O8aL0HEc3ZUMg+dkMGAOglwOHQitBbPnwkFJRltcWsAEeBv3tOo82hKPnkQdQzbC FOZITnuGPBXUMQ7VkMH99CdriNOWPGjPwqoK+l2Vv0H7TRmuCrAPdzDgFx2fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUejBx5t4csq1uqRSKY01Fzxymj0owHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzMxMzAzMzJlMzIzNDMyMmUzMTM4MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/K0MA0GCSqG SIb3DQEBCwUAA4IBAQAx98Z7MlbkwZI0xkVeTDY0J84J5mUbAusTsizq6zCDJmKq 99PH3A80ZEc9ZCQZ/ONtJvUlhvpc0dzfo1POno8ipG9ZwjyEM1I3HgSbzRj+B7n8 yh+/Dlt8pyDkJoCkeWJUVHywL8osoNca07cvD/d+NZK0zXNZDDSnq8fLA5HReRZp 9zVOvDiMb/F72HxtAi3jUf4F/L0TBoVW5d4b+H1ozu6x46fJeX0jQ4+YgyUn/gYu tdt0BV73sgQu6/vrvnxUW9Xr7TIWfcgHfJ5gjmpnA0sEhmxjGLWKut8ExGfnMKX3 kfmnkswjKbkv7SXbQVlLJ7ZWXHdhDP+fnzMI40mL -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org